fba9f9bd6129baf61a49e08a23902d5408b9ad1ebf041fe5bf0ae30d3719d857 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Def Byp @infected.zip
Size

1KB
Sample

240416-bjtkysfc7x
MD5

2220ce62925360ceb9af9eb114b22619
SHA1

71ceb2296944b4b4be7e50572df1bc660ba1d543
SHA256

fba9f9bd6129baf61a49e08a23902d5408b9ad1ebf041fe5bf0ae30d3719d857
SHA512

0219c5be4921c202348daebbe563ab9401e7127ca5ad104ded3b9bf9c537b0d4a6e48a389e5a45d34d10689a528ab6ff440713ae3af80488315be26f7ab540bd

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  Def Byp/vbs.defenderbypass
- Size
  
  1KB
- MD5
  
  8fc69337ab4bbb5ffa1ae6bce6be8b63
- SHA1
  
  826a48936ab1d485d28eb2db4401502e4d0e8891
- SHA256
  
  517e1a63494abb3a33c37dd5a68caa36b44a8a3c18e8729d06d6f81dda3f11c4
- SHA512
  
  ed832c83972a451392fbf9f59468d64dd2e1ae11d026dbb4346b4ca15c5dc1f11df939c769f10c72a09a78866256da0ff9c4578f6bef1cd374db029342056c65
Score

10^/10

evasion trojan
- UAC bypass
  evasion trojan
- Disables Task Manager via registry modification
  evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Abuse Elevation Control Mechanism

Bypass User Account Control

Defense Evasion

Abuse Elevation Control Mechanism

Bypass User Account Control

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1