89a324dd66eafea1b3b3b0457f7fdbec9b7b2dcb5a43e1bf36e2dad208b8aed6 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

Setup.exe

windows10-2004-x64

7

Sharing

General

Target

Setup.exe
Size

46.8MB
Sample

240709-3pknsashkq
MD5

40ad46aafda0403a57420bd4a64a0d2d
SHA1

f202536bd0ff7623674b0e85214e7a5d1d709a98
SHA256

89a324dd66eafea1b3b3b0457f7fdbec9b7b2dcb5a43e1bf36e2dad208b8aed6
SHA512

86ec2a5b6a832d4db2c0f9e37426b3128afc92a11f5a20f566fd1e1beddea245bff94d3255f951760cd5cb74751cb6862c6bbc9b8dd674bf8838c50883936077
SSDEEP

786432:7Cj7EXYoDG26qb40D5oktpWQMqzahTLjgUxDJCn2ovvP0vxTGHoT16T3cZ8uK:7CnEIn2bb40D5rbp6hTLUU3ovvP0vxTo

Score

7^/10

discovery evasion trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Setup.exe

Resource

win10v2004-20240709-en

discovery evasion trojan

windows10-2004-x64

10 signatures

600 seconds

Malware Config

Targets

- Target
  
  Setup.exe
- Size
  
  46.8MB
- MD5
  
  40ad46aafda0403a57420bd4a64a0d2d
- SHA1
  
  f202536bd0ff7623674b0e85214e7a5d1d709a98
- SHA256
  
  89a324dd66eafea1b3b3b0457f7fdbec9b7b2dcb5a43e1bf36e2dad208b8aed6
- SHA512
  
  86ec2a5b6a832d4db2c0f9e37426b3128afc92a11f5a20f566fd1e1beddea245bff94d3255f951760cd5cb74751cb6862c6bbc9b8dd674bf8838c50883936077
- SSDEEP
  
  786432:7Cj7EXYoDG26qb40D5oktpWQMqzahTLjgUxDJCn2ovvP0vxTGHoT16T3cZ8uK:7CnEIn2bb40D5rbp6hTLUU3ovvP0vxTo
Score

7^/10

discovery evasion trojan
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
- Drops desktop.ini file(s)
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojan

© 2018-2025

Terms | Privacy