4ab97a353bf1909f4895c91a87d75e76d3602c7d4a434db163bc2de40f3aa7f6 | Triage

Sharing

General

Target

2024-07-23_0ecc7997ddb11d09172cf9146abfa6ea_avoslocker
Size

4.3MB
Sample

240723-aszynaxamg
MD5

0ecc7997ddb11d09172cf9146abfa6ea
SHA1

b1f6ddf74d5196f9e9b231a25646296016d4c6d2
SHA256

4ab97a353bf1909f4895c91a87d75e76d3602c7d4a434db163bc2de40f3aa7f6
SHA512

b7356582d8e5a3bea9b54ac97fa25ec153743790e53c6cea4f159e03886abb16c316352d602eabd3e88c80f6a0934f32ab381ed44a3d3e4a7ffbc3a7a0086621
SSDEEP

98304:Ypq/d8kCBclMyQjujDW9tBcg2jGqwwAOWNTcjcycRgT8kB3tiXZ:Zcz5ujyp8jGqww6ZKTLNtmZ

Score

7^/10

evasion trojan

Malware Config

Targets

- Target
  
  2024-07-23_0ecc7997ddb11d09172cf9146abfa6ea_avoslocker
- Size
  
  4.3MB
- MD5
  
  0ecc7997ddb11d09172cf9146abfa6ea
- SHA1
  
  b1f6ddf74d5196f9e9b231a25646296016d4c6d2
- SHA256
  
  4ab97a353bf1909f4895c91a87d75e76d3602c7d4a434db163bc2de40f3aa7f6
- SHA512
  
  b7356582d8e5a3bea9b54ac97fa25ec153743790e53c6cea4f159e03886abb16c316352d602eabd3e88c80f6a0934f32ab381ed44a3d3e4a7ffbc3a7a0086621
- SSDEEP
  
  98304:Ypq/d8kCBclMyQjujDW9tBcg2jGqwwAOWNTcjcycRgT8kB3tiXZ:Zcz5ujyp8jGqww6ZKTLNtmZ
Score

7^/10

evasion trojan
- Executes dropped EXE
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2