1557523e346403aef20779cdb338eaa6d792cc9ea26af94b1d77a41d361736c6 | Triage

Sharing

General

Target

bd2de686624071313a2c231283118353
Size

357KB
Sample

240310-al6smaeh65
MD5

bd2de686624071313a2c231283118353
SHA1

466f2d8c2160d70841816bf7b3a69c9271eaadaa
SHA256

1557523e346403aef20779cdb338eaa6d792cc9ea26af94b1d77a41d361736c6
SHA512

49f57264f7f7e2bd4747c84db32feb8e803284cb9d5652260624eee4ae96379672e102896eb74bfc449bbe3aba0e80a8253a63c3e55c6b7f53a774011dd830bc
SSDEEP

6144:ummm9nFK7Ax+LYBrtSRbIqz+WSrLGj+wvjG+qhloMHDjFNreCToy:uGMAxQ1bH8azq0SFNr9R

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  bd2de686624071313a2c231283118353
- Size
  
  357KB
- MD5
  
  bd2de686624071313a2c231283118353
- SHA1
  
  466f2d8c2160d70841816bf7b3a69c9271eaadaa
- SHA256
  
  1557523e346403aef20779cdb338eaa6d792cc9ea26af94b1d77a41d361736c6
- SHA512
  
  49f57264f7f7e2bd4747c84db32feb8e803284cb9d5652260624eee4ae96379672e102896eb74bfc449bbe3aba0e80a8253a63c3e55c6b7f53a774011dd830bc
- SSDEEP
  
  6144:ummm9nFK7Ax+LYBrtSRbIqz+WSrLGj+wvjG+qhloMHDjFNreCToy:uGMAxQ1bH8azq0SFNr9R
Score

10^/10

evasion trojan
- UAC bypass
  evasion trojan
- Windows security bypass
  evasion trojan
- Disables taskbar notifications via registry modification
  evasion
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Windows security modification
  evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Abuse Elevation Control Mechanism

Bypass User Account Control

Defense Evasion

Abuse Elevation Control Mechanism

Bypass User Account Control

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2