e03a0826b07f748e72c5dd4616f5ffb927e870035dc325c746a9b9399db9af1e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5135cefbfa61453515631aaf96fc3c28
Size

42KB
Sample

240110-wecf4adbc3
MD5

5135cefbfa61453515631aaf96fc3c28
SHA1

8e2b9084fe3c1d83de5de15c6e98197a2f9e2924
SHA256

e03a0826b07f748e72c5dd4616f5ffb927e870035dc325c746a9b9399db9af1e
SHA512

50be28c5ae5dc014d598292a676e1c3fe9b6a7442ee683dde6cba0144ad5f3db119a0eff03346d2d30e3a94afab5c9149b69e303278453eb5a0dff52052d03d9
SSDEEP

768:LJKc3/xBorSO83DAMFOFwjjY11+nVg/QthuDgvf6HaD/k+YSqxz/IFFQR60:Ac3/foZ8z3O2jYYVgbDOz7MzwFORr

Score

6^/10

evasion trojan

Malware Config

Targets

- Target
  
  EXETOOLS.URL
- Size
  
  50B
- MD5
  
  69eeba0388f852e3131e781039ed52fc
- SHA1
  
  dd8e6943da78f7b4b5a9f090de48eb92de10032e
- SHA256
  
  ea1434dc20cda63db57fa4a6112767a1596407698a06daa65b49aa365c928aaf
- SHA512
  
  b94cfacb4af372eb7de02e1b7bfab95a644550d4464278cfdf6bb5414f11c76695a74562645d88a2ba2749555e0b9594f2453bbec4f06adfbe1a7730787b4135
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2
- Target
  
  pm-setup.exe
- Size
  
  56KB
- MD5
  
  35709d2ec50ef908264c620b0915a877
- SHA1
  
  53b9be7fa5e877e6136e642b46c03ba6aa414e4f
- SHA256
  
  01606a648ad1c69316343088e38ec34485310187ff59b5dd2868ea67a6db8b11
- SHA512
  
  efca645f520a38fd73d8f59c2db0fe8b027570234841a3d2c77a4c9572a3dd7ec5b5fb0b8c8c21b37d2f61eca451156f256ce10be1c15f7c633e3a70cd6a9453
- SSDEEP
  
  1536:PMEfi7P6eVaSJVgWR7w7RCgmJBaXdOmFGJgn3Ne1RuB:P1fYP9VaSNV0RCgmJAdlFhZB
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4