efaa21696fb7895a6aae1664d433b2da509c82375f19660632e1b2767d7e35bd | Triage

Sharing

General

Target

TestBot.exe
Size

4.5MB
Sample

240807-de471aserf
MD5

c8a0600fd0b3325d1e9b6fce61f3a52c
SHA1

ccab92a0c286b8056e7cdec1dfafb4bf737ad8cd
SHA256

efaa21696fb7895a6aae1664d433b2da509c82375f19660632e1b2767d7e35bd
SHA512

32dbe003de7a21c3a8c26d9d513555575b47fc7f58886a4ebbd3e2c9fe9647b51aaa5ee3b2aa74aa3cc09d2848c7e87f10c06a8158e15e74c8ffeeb3fe83c530
SSDEEP

98304:HvdL2KihFbOchkk9dBoxmCMVEBR0YtQPhX0jR+AC2hJsXDiiPfmKq9:HvlijPOk9EmCbBftQONWVz1uK+

Score

6^/10

evasion pyinstaller trojan

Malware Config

Targets

- Target
  
  TestBot.exe
- Size
  
  4.5MB
- MD5
  
  c8a0600fd0b3325d1e9b6fce61f3a52c
- SHA1
  
  ccab92a0c286b8056e7cdec1dfafb4bf737ad8cd
- SHA256
  
  efaa21696fb7895a6aae1664d433b2da509c82375f19660632e1b2767d7e35bd
- SHA512
  
  32dbe003de7a21c3a8c26d9d513555575b47fc7f58886a4ebbd3e2c9fe9647b51aaa5ee3b2aa74aa3cc09d2848c7e87f10c06a8158e15e74c8ffeeb3fe83c530
- SSDEEP
  
  98304:HvdL2KihFbOchkk9dBoxmCMVEBR0YtQPhX0jR+AC2hJsXDiiPfmKq9:HvlijPOk9EmCbBftQONWVz1uK+
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral1
- Target
  
  script.pyc
- Size
  
  5KB
- MD5
  
  cc79e7b11fcf07510366baf4bc77328e
- SHA1
  
  e1cfaebf99b3524cfe4efce7b1c8e2a810306eba
- SHA256
  
  9b83efa89dacaced2ee12bfb4dbe3d2feb4f0b39e7324ff6ac08c8109ca52a61
- SHA512
  
  d5959e38bbdf32ffb28dd81b8cd89be40ceb6dc2ab201704d34f3c6cf07c22ca03f00ab9a1e8920b4a299b786180bd6fbf4a524ed88cbd6fdce53c29ffed6510
- SSDEEP
  
  96:I+svN5QpeNFbAofntE0g/425/Qo7OUH4k5zK:TsMpeDbAr0YZpQYJPg
Score

3^/10
behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2