aa1c83384093a93ce16d724479bc97b52cecc6eb4313f3cc53b43f8d6ab64e78 | Triage

Submit
Reports

Overview

overview

8

Static

static

3

3933d7177f...80.exe

windows7-x64

7

3933d7177f...80.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

3933d7177f1d03654a9db9888e560380
Size

672KB
Sample

231231-rfh8taahcr
MD5

3933d7177f1d03654a9db9888e560380
SHA1

d838b2ccd9bbb9c92e39e3b22ca11a0cf8ad7ca2
SHA256

aa1c83384093a93ce16d724479bc97b52cecc6eb4313f3cc53b43f8d6ab64e78
SHA512

4ca117728d83958319b220c16cf37b4f3675b1b0f54b5fb77e43b8f65e1f897ba5591d5c08ab973b2ceb2566a8cc2301a3ad4ae9437061ac8e70f54120a5bbd6
SSDEEP

12288:9eBNUbTVO86UCHruRdp+WA00SKCpVRwfsXSVUhbxk9e/pJu:9JIUCNd0nKwYkX+UhbW9eM

Score

8^/10

discovery evasion trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

3933d7177f1d03654a9db9888e560380.exe

Resource

win7-20231129-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

3933d7177f1d03654a9db9888e560380.exe

Resource

win10v2004-20231215-en

discovery evasion trojan

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  3933d7177f1d03654a9db9888e560380
- Size
  
  672KB
- MD5
  
  3933d7177f1d03654a9db9888e560380
- SHA1
  
  d838b2ccd9bbb9c92e39e3b22ca11a0cf8ad7ca2
- SHA256
  
  aa1c83384093a93ce16d724479bc97b52cecc6eb4313f3cc53b43f8d6ab64e78
- SHA512
  
  4ca117728d83958319b220c16cf37b4f3675b1b0f54b5fb77e43b8f65e1f897ba5591d5c08ab973b2ceb2566a8cc2301a3ad4ae9437061ac8e70f54120a5bbd6
- SSDEEP
  
  12288:9eBNUbTVO86UCHruRdp+WA00SKCpVRwfsXSVUhbxk9e/pJu:9JIUCNd0nKwYkX+UhbW9eM
Score

8^/10

discovery evasion trojan
- Disables taskbar notifications via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Windows security modification
  evasion trojan
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasiontrojan

© 2018-2025

Terms | Privacy