4a46c90e4f3a5ab1fd72fb714d810056cebdd1295523345b246a3321c8f4a554 | Triage

Sharing

General

Target

2024-08-17_546b112314f794e56077b5506b66917a_avoslocker
Size

4.2MB
Sample

240817-defjmstcjc
MD5

546b112314f794e56077b5506b66917a
SHA1

88b1d31746c87d818ddbe9ec65f81a1e94da84e0
SHA256

4a46c90e4f3a5ab1fd72fb714d810056cebdd1295523345b246a3321c8f4a554
SHA512

739940172f80715ed6a424d270e58dc963655812c0cd7d80f5d3e1b9779309aad8f0bebe6370a7100058cf5b2a032462b9be73505cf667229e90129e1837f15c
SSDEEP

98304:Fpq/d8kCBilMyQjujDW9tBcg2jGqwwAad2DfQVSvXzmD7NkB3tiXX:mc55ujyp8jGqwwBd2DfQVSvquNtmX

Score

7^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  2024-08-17_546b112314f794e56077b5506b66917a_avoslocker
- Size
  
  4.2MB
- MD5
  
  546b112314f794e56077b5506b66917a
- SHA1
  
  88b1d31746c87d818ddbe9ec65f81a1e94da84e0
- SHA256
  
  4a46c90e4f3a5ab1fd72fb714d810056cebdd1295523345b246a3321c8f4a554
- SHA512
  
  739940172f80715ed6a424d270e58dc963655812c0cd7d80f5d3e1b9779309aad8f0bebe6370a7100058cf5b2a032462b9be73505cf667229e90129e1837f15c
- SSDEEP
  
  98304:Fpq/d8kCBilMyQjujDW9tBcg2jGqwwAad2DfQVSvXzmD7NkB3tiXX:mc55ujyp8jGqwwBd2DfQVSvquNtmX
Score

7^/10

discovery evasion trojan
- Executes dropped EXE
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojan

behavioral2

discoveryevasiontrojan