e8a281fe09f744fb5869afae1d2fab93eee6288c13263f1f4c652f42f3cd3ec9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-09_470e33b51bff633f669e57dfd6dce297_avoslocker
Size

4.5MB
Sample

240809-n38kfatgqb
MD5

470e33b51bff633f669e57dfd6dce297
SHA1

6a674d460ab7780e71d9910848dfc9bbf795c1b9
SHA256

e8a281fe09f744fb5869afae1d2fab93eee6288c13263f1f4c652f42f3cd3ec9
SHA512

ef09fd9421740ca6ed668e9218f8009566a5f661780bda8f91a9687539efdc8383716a433823e4fab35369ca954b871780385e562288ba76f9db8cdbf5f19a99
SSDEEP

98304:gWqq+Mb+EyWv5rIy5YFWAvwznJ5wkroFYY/YfthXBxfZr7TQxnTmnwZ:gWadWvpIy5YPvwznWFTk/3BrgJTmwZ

Score

7^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  2024-08-09_470e33b51bff633f669e57dfd6dce297_avoslocker
- Size
  
  4.5MB
- MD5
  
  470e33b51bff633f669e57dfd6dce297
- SHA1
  
  6a674d460ab7780e71d9910848dfc9bbf795c1b9
- SHA256
  
  e8a281fe09f744fb5869afae1d2fab93eee6288c13263f1f4c652f42f3cd3ec9
- SHA512
  
  ef09fd9421740ca6ed668e9218f8009566a5f661780bda8f91a9687539efdc8383716a433823e4fab35369ca954b871780385e562288ba76f9db8cdbf5f19a99
- SSDEEP
  
  98304:gWqq+Mb+EyWv5rIy5YFWAvwznJ5wkroFYY/YfthXBxfZr7TQxnTmnwZ:gWadWvpIy5YPvwznWFTk/3BrgJTmwZ
Score

7^/10

discovery evasion trojan
- Executes dropped EXE
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojan

behavioral2

discoveryevasiontrojan