505ae0a4f52a7917e6fda8902bbc47ff913c5c74abe3be30f87db9d075a6614a | Triage

Sharing

General

Target

aa868b27fdc3c9e2dce5868e4f75c6a3
Size

765KB
Sample

240228-ankyyafa4z
MD5

aa868b27fdc3c9e2dce5868e4f75c6a3
SHA1

1ca98056657bb4a871f9468722df94b88c14e3e2
SHA256

505ae0a4f52a7917e6fda8902bbc47ff913c5c74abe3be30f87db9d075a6614a
SHA512

ec7faa23ba717f212d2dddc32bb033a44891d06c56df59476e1ea9bb440b0f08d201a9756b07e52b04cfdbbba4b58ed7717069c8246f55238f8efd7ff4eb135e
SSDEEP

12288:i3eo2TaTVCKnhk1W5A4N/Q8u7MHIVvMxA11lUByFen4veANO2v2LX5MnuWH1TmdJ:k52XKy1W5AcXETdQ4ve0O2vWDRv

Score

7^/10

evasion trojan

Malware Config

Targets

- Target
  
  aa868b27fdc3c9e2dce5868e4f75c6a3
- Size
  
  765KB
- MD5
  
  aa868b27fdc3c9e2dce5868e4f75c6a3
- SHA1
  
  1ca98056657bb4a871f9468722df94b88c14e3e2
- SHA256
  
  505ae0a4f52a7917e6fda8902bbc47ff913c5c74abe3be30f87db9d075a6614a
- SHA512
  
  ec7faa23ba717f212d2dddc32bb033a44891d06c56df59476e1ea9bb440b0f08d201a9756b07e52b04cfdbbba4b58ed7717069c8246f55238f8efd7ff4eb135e
- SSDEEP
  
  12288:i3eo2TaTVCKnhk1W5A4N/Q8u7MHIVvMxA11lUByFen4veANO2v2LX5MnuWH1TmdJ:k52XKy1W5AcXETdQ4ve0O2vWDRv
Score

7^/10

evasion trojan
- Deletes itself
- Executes dropped EXE
- Checks whether UAC is enabled
  evasion trojan
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2