d0f9a8e1017b9498d1d8bc38567500cbffcd44d2644434728223d21516a81221 | Triage

Submit
Reports

Overview

overview

6

Static

static

3

d0f9a8e101...21.exe

windows7-x64

6

d0f9a8e101...21.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

Target

d0f9a8e1017b9498d1d8bc38567500cbffcd44d2644434728223d21516a81221
Size

10.2MB
Sample

231007-ndcfpsbc2t
MD5

6cf3239d7ec28bddd26be103fee1596e
SHA1

dfe771b2efb4ed29b0baffaefb9477d208b50d96
SHA256

d0f9a8e1017b9498d1d8bc38567500cbffcd44d2644434728223d21516a81221
SHA512

7a3678592167b58c598ae3c5843a07094b097b9c343bad370442b5d1ae37ad41a4505c1190080bb7fa4ef615480000dfe06a6f67204f19e83e9597aef93df524
SSDEEP

196608:uAhz3RKH1NJxaHU7b3Wvt3w25Mqi/3x145o/8NsG3MBxnFddcYo+:u0LRG1NbaHUk9p5M/fnFvnpXo+

Score

6^/10

evasion trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d0f9a8e1017b9498d1d8bc38567500cbffcd44d2644434728223d21516a81221.exe

Resource

win7-20230831-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

d0f9a8e1017b9498d1d8bc38567500cbffcd44d2644434728223d21516a81221.exe

Resource

win10v2004-20230915-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  d0f9a8e1017b9498d1d8bc38567500cbffcd44d2644434728223d21516a81221
- Size
  
  10.2MB
- MD5
  
  6cf3239d7ec28bddd26be103fee1596e
- SHA1
  
  dfe771b2efb4ed29b0baffaefb9477d208b50d96
- SHA256
  
  d0f9a8e1017b9498d1d8bc38567500cbffcd44d2644434728223d21516a81221
- SHA512
  
  7a3678592167b58c598ae3c5843a07094b097b9c343bad370442b5d1ae37ad41a4505c1190080bb7fa4ef615480000dfe06a6f67204f19e83e9597aef93df524
- SSDEEP
  
  196608:uAhz3RKH1NJxaHU7b3Wvt3w25Mqi/3x145o/8NsG3MBxnFddcYo+:u0LRG1NbaHUk9p5M/fnFvnpXo+
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy