4d00e12652478c6b9070605a9d13e454e8e89548673c68ce32c8a100a70dec43 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07e9900effbe8c25fed3060c9f6a7a0a
Size

52KB
Sample

231230-ab462sffh9
MD5

07e9900effbe8c25fed3060c9f6a7a0a
SHA1

a0d5da2bee24391e75d82fb01099915262c3ffa2
SHA256

4d00e12652478c6b9070605a9d13e454e8e89548673c68ce32c8a100a70dec43
SHA512

25fcdae2f07b73003d8bdb4436d359d54d2b781899ceb04d72ad5def23156a54779bed9ff80bb248b82382d131a74b483ee010b6286f45200e872e344e2c6489
SSDEEP

768:lZ7JsNn5YP3h9aco8X9EVPZrdiEcTMeRt6c/L03seunjfdZ0Xv1aeWVohZ7Avh/W:VI6niNxIXMeLD03EZ0Xv1ouZsvV

Score

7^/10

evasion trojan

Malware Config

Targets

- Target
  
  07e9900effbe8c25fed3060c9f6a7a0a
- Size
  
  52KB
- MD5
  
  07e9900effbe8c25fed3060c9f6a7a0a
- SHA1
  
  a0d5da2bee24391e75d82fb01099915262c3ffa2
- SHA256
  
  4d00e12652478c6b9070605a9d13e454e8e89548673c68ce32c8a100a70dec43
- SHA512
  
  25fcdae2f07b73003d8bdb4436d359d54d2b781899ceb04d72ad5def23156a54779bed9ff80bb248b82382d131a74b483ee010b6286f45200e872e344e2c6489
- SSDEEP
  
  768:lZ7JsNn5YP3h9aco8X9EVPZrdiEcTMeRt6c/L03seunjfdZ0Xv1aeWVohZ7Avh/W:VI6niNxIXMeLD03EZ0Xv1ouZsvV
Score

7^/10

evasion trojan
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2