db2f15859bf603ae865e77425d78331c310d2165a6a1164b10c21b7a50107938 | Triage

Submit
Reports

Overview

overview

9

Static

static

7

Prax1.0.7.dll

windows10-1703-x64

9

Sharing

General

Target

Prax1.0.7.dll
Size

6.4MB
Sample

240212-yb821ach46
MD5

965cba6a51a8f221a584c6592f6d364a
SHA1

7add8e3f2ba9c497413510ce8d96ace4943296b8
SHA256

db2f15859bf603ae865e77425d78331c310d2165a6a1164b10c21b7a50107938
SHA512

7fc89464e9019a04a1c18a6a124dd1110dafbaa40ae6cdb2d8f44d7bf6267499ef6de0a2166a99d38e73358c0bbd3f6b013cd462a4d693af2fa3a5dbdfaaa010
SSDEEP

196608:JSUqoiFcd9yP0v6ydkNMLlIKWsFefGVlC18Hj:0roiFc6svhaN2IKVeOVY1wj

Score

9^/10

evasion themida trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Prax1.0.7.dll

Resource

win10-20231215-en

evasion themida trojan

windows10-1703-x64

5 signatures

60 seconds

Malware Config

Targets

- Target
  
  Prax1.0.7.dll
- Size
  
  6.4MB
- MD5
  
  965cba6a51a8f221a584c6592f6d364a
- SHA1
  
  7add8e3f2ba9c497413510ce8d96ace4943296b8
- SHA256
  
  db2f15859bf603ae865e77425d78331c310d2165a6a1164b10c21b7a50107938
- SHA512
  
  7fc89464e9019a04a1c18a6a124dd1110dafbaa40ae6cdb2d8f44d7bf6267499ef6de0a2166a99d38e73358c0bbd3f6b013cd462a4d693af2fa3a5dbdfaaa010
- SSDEEP
  
  196608:JSUqoiFcd9yP0v6ydkNMLlIKWsFefGVlC18Hj:0roiFc6svhaN2IKVeOVY1wj
Score

9^/10

evasion themida trojan
- Identifies VirtualBox via ACPI registry values (likely anti-VM)
  evasion
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Themida packer
  Detects Themida, an advanced Windows software protection system.
  themida
- Checks whether UAC is enabled
  evasion trojan
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionthemidatrojan

© 2018-2024

Terms | Privacy