7ea61d677d7d641646065f600536014971d613bb034834d811bc5234a060b9a9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cbc2605a7f0982d31cd8d16b4c2933bb
Size

1.9MB
Sample

240315-st4x4sdh73
MD5

cbc2605a7f0982d31cd8d16b4c2933bb
SHA1

11fed3773cdda697b0fe159f3862304478dcd159
SHA256

7ea61d677d7d641646065f600536014971d613bb034834d811bc5234a060b9a9
SHA512

fa8ab5a6b6986f6e130097c9e41795e4cef4e7641c9843e34fbf8af0878db2cbed704bbd9e5b9cbe58ad8afbb43103fc6b3935c3bee91db4cc2ef785ccc71a95
SSDEEP

49152:SlMkbAYB45x5462XRICr1+nWY80iG6Bu5HptXWY:SnbAYB452XRNh90iG9QY

Score

7^/10

evasion trojan

Malware Config

Targets

- Target
  
  Vina.Digital.Talking/Vina Digital Talking parrot.exe
- Size
  
  1.9MB
- MD5
  
  b994463986add73cb5fa0df93f1bba90
- SHA1
  
  8da345315a0d5523f4e4d1e20927780678ab661c
- SHA256
  
  118c3576e65c38e1a0dfff4598c930db82630eed343cec08bba6c720de94a958
- SHA512
  
  e4bcfc145ab4c9ab1f6bbf9a99083fa0ff8fd96dab746f438046bf429af8c9700e6144501ab58287cf0fe67f3daf0993f450800bbd2a5ca659cea96dfc35f72d
- SSDEEP
  
  49152:pkLZUKg6OQQ0sQIZp9PIACr7rCiBuZplMeh937HXWw:eLQ6OQlIZp9glHrlkhMehpmw
Score

7^/10
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  Vina.Digital.Talking/soft55.com.url
- Size
  
  133B
- MD5
  
  1b4147a34108508ca21f91c5d5b20530
- SHA1
  
  a658b9ac2b95d439cc61d4acc0c66b310efa1c9c
- SHA256
  
  c33ba667b44ff9a2067534af33d63e7b52bf6861808dd77d2387139822efbc5f
- SHA512
  
  ebb591e5151aeaa61f221128126d7e03d7a0002e02c339d8fd2f258629913ced418e328188be671d658a115f692135a211cc118c331a908184aba28e309d36a7
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral3 behavioral4
- Target
  
  Vina.Digital.Talking/ 55.url
- Size
  
  133B
- MD5
  
  afce7f797742ed579304d826b06fa90e
- SHA1
  
  acaafc59789b0aff1038aaa1ceba02c237e37e70
- SHA256
  
  7ba34bd32a3fe697a3374eef39b01922a116a6fe5b3af8ce1d90eb50553a6549
- SHA512
  
  d537f55bd3620b185dfad92c153b5e3ef62982100ab3aeeb8917562e126c4afc22abf55a43eb739151d593fbf70090955f577524aea36f558b45f6ef5dc67a2f
Score

1^/10
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6