7b8694994a4e3c87ba0db5e6d1aeeac1611b3080112910a35e15e29fd407e778 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

7b8694994a...78.exe

windows7-x64

4

7b8694994a...78.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

7b8694994a4e3c87ba0db5e6d1aeeac1611b3080112910a35e15e29fd407e778
Size

549KB
Sample

230314-ee111sdb38
MD5

88a3bbabf02676f7547663dca922ac87
SHA1

f3bf5bbfdac1bff6b500ea1ee99cb73b758caf5e
SHA256

7b8694994a4e3c87ba0db5e6d1aeeac1611b3080112910a35e15e29fd407e778
SHA512

3fe49f7c43932497c3ef861fcb1c6ff70afd88b264c853f2c1812d2073a919c5d59c2f32ad30a492d850b4609f6add58775fc0357eeff3aa87baa08ae37f5b76
SSDEEP

12288:Egm5o84QWvnm8kTgFs4IQc/Rta2xXZgfxP9BoTq7qW:EuBugzIQc/52X+j

Score

8^/10

discovery evasion trojan

Static task

static1

Behavioral task

behavioral1

Sample

7b8694994a4e3c87ba0db5e6d1aeeac1611b3080112910a35e15e29fd407e778.exe

Resource

win7-20230220-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

7b8694994a4e3c87ba0db5e6d1aeeac1611b3080112910a35e15e29fd407e778.exe

Resource

win10v2004-20230220-en

discovery evasion trojan

windows10-2004-x64

17 signatures

150 seconds

Malware Config

Targets

- Target
  
  7b8694994a4e3c87ba0db5e6d1aeeac1611b3080112910a35e15e29fd407e778
- Size
  
  549KB
- MD5
  
  88a3bbabf02676f7547663dca922ac87
- SHA1
  
  f3bf5bbfdac1bff6b500ea1ee99cb73b758caf5e
- SHA256
  
  7b8694994a4e3c87ba0db5e6d1aeeac1611b3080112910a35e15e29fd407e778
- SHA512
  
  3fe49f7c43932497c3ef861fcb1c6ff70afd88b264c853f2c1812d2073a919c5d59c2f32ad30a492d850b4609f6add58775fc0357eeff3aa87baa08ae37f5b76
- SSDEEP
  
  12288:Egm5o84QWvnm8kTgFs4IQc/Rta2xXZgfxP9BoTq7qW:EuBugzIQc/52X+j
Score

8^/10

discovery evasion trojan
- Disables taskbar notifications via registry modification
  evasion
- Executes dropped EXE
- Windows security modification
  evasion trojan
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasiontrojan

© 2018-2025

Terms | Privacy