07c70968c66c93b6d6c9a90255e1c81a3b385632c83f53f69534b3f55212ced9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bd83e75f_dllreflinj.dll
Size

373KB
Sample

230604-cz5tlaag68
MD5

473d65d1231ccdfa0099d463b09cf9b9
SHA1

9cbc7417fa5ce2f6d87026337fc7892e4f485819
SHA256

07c70968c66c93b6d6c9a90255e1c81a3b385632c83f53f69534b3f55212ced9
SHA512

06556787876e7078b07ab61859f87c29d78b481b8d542dcb25d4ce74fffa503d5232ff6c5eb934217b41cdf9aefb5d351b8db84612624baab635bb4a56bf50fd
SSDEEP

6144:/OwxmL8r1P1piUUXP5n1o0g08Fxr3AV/SNxBUnjF444C48t9g4/N:WwZpw/Rb8FmZWBWj/48oo

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  bd83e75f_dllreflinj.dll
- Size
  
  373KB
- MD5
  
  473d65d1231ccdfa0099d463b09cf9b9
- SHA1
  
  9cbc7417fa5ce2f6d87026337fc7892e4f485819
- SHA256
  
  07c70968c66c93b6d6c9a90255e1c81a3b385632c83f53f69534b3f55212ced9
- SHA512
  
  06556787876e7078b07ab61859f87c29d78b481b8d542dcb25d4ce74fffa503d5232ff6c5eb934217b41cdf9aefb5d351b8db84612624baab635bb4a56bf50fd
- SSDEEP
  
  6144:/OwxmL8r1P1piUUXP5n1o0g08Fxr3AV/SNxBUnjF444C48t9g4/N:WwZpw/Rb8FmZWBWj/48oo
Score

10^/10

evasion trojan
- UAC bypass
  evasion trojan
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Bypass User Account Control

Defense Evasion

Bypass User Account Control

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2