4e09de29dce4b1fcbf2f83678bbebeda2d74cf95a3347ceea4d75c533135762a | Triage

Submit
Reports

Overview

overview

Static

static

1

dridex

windows10-1703-x64

Sharing

General

Target

4e09de29dce4b1fcbf2f83678bbebeda2d74cf95a3347ceea4d75c533135762a
Size

1.3MB
Sample

230330-gxea3sbb73
MD5

f87cbc52e8908b2a3e397f141198d8ef
SHA1

6b03aeb3ece617e463e879f78e04f4d8ff3fa9bb
SHA256

4e09de29dce4b1fcbf2f83678bbebeda2d74cf95a3347ceea4d75c533135762a
SHA512

30a4b1798808ad7ea1ea09a174d70f0929541953a7f8ab8c5722d7da6185c90a3e869e9e8866d770eac1ae06ae2b017bd307be347c7a811bf5b427be30de4853
SSDEEP

24576:VHOrzcMCRLl8x+gTGRtwgLDkZH3iAcyezF2jammpFOFbGe8utDcG5oDHWOJv13:CPCRLyx+gE9LDQdexy3mpgFbGfutUzvN

Score

10^/10

adware evasion persistence trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

4e09de29dce4b1fcbf2f83678bbebeda2d74cf95a3347ceea4d75c533135762a.exe

Resource

win10-20230220-en

adware evasion persistence trojan

windows10-1703-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  4e09de29dce4b1fcbf2f83678bbebeda2d74cf95a3347ceea4d75c533135762a
- Size
  
  1.3MB
- MD5
  
  f87cbc52e8908b2a3e397f141198d8ef
- SHA1
  
  6b03aeb3ece617e463e879f78e04f4d8ff3fa9bb
- SHA256
  
  4e09de29dce4b1fcbf2f83678bbebeda2d74cf95a3347ceea4d75c533135762a
- SHA512
  
  30a4b1798808ad7ea1ea09a174d70f0929541953a7f8ab8c5722d7da6185c90a3e869e9e8866d770eac1ae06ae2b017bd307be347c7a811bf5b427be30de4853
- SSDEEP
  
  24576:VHOrzcMCRLl8x+gTGRtwgLDkZH3iAcyezF2jammpFOFbGe8utDcG5oDHWOJv13:CPCRLyx+gE9LDQdexy3mpgFbGfutUzvN
Score

10^/10

adware evasion persistence trojan
- UAC bypass
  evasion trojan
- Allows Chrome notifications for new domains
  adware
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Checks whether UAC is enabled
  evasion trojan
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Bypass User Account Control

Defense Evasion

Bypass User Account Control

Disabling Security Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

adwareevasionpersistencetrojan

© 2018-2024

Terms | Privacy