4a9d815f284adda187982e2b24da2beaad860739bc4b4cb1cf26408e7c221dd6 | Triage

Submit
Reports

Overview

overview

6

Static

static

3

CapCut_737...er.exe

windows7-x64

6

CapCut_737...er.exe

windows10-2004-x64

6

Sharing

General

Target

CapCut_7376368422684229649_installer.exe
Size

2.2MB
Sample

240819-wfchgsxgja
MD5

c91e097550ea6ccedf592d8b83414e0d
SHA1

021f3f26d86f98af28dc987baad8714f64867207
SHA256

4a9d815f284adda187982e2b24da2beaad860739bc4b4cb1cf26408e7c221dd6
SHA512

916898c9850ddfcd2c11da7421eeffc4d48406d9ad4787a4dc572ec17a81a39edd30733aa8cccde8b31450ff8031e3da68be019a8a0eff50c0a17ed4fa0aa3c9
SSDEEP

49152:uGVKq6wrr98ArcTTuVMZCC8GYCNbFLg3dlXI5x8oaigMv3Dh:uGVLprJ8ArnVMZCUPFcNlXID8en1

Score

6^/10

discovery evasion trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

CapCut_7376368422684229649_installer.exe

Resource

win7-20240729-en

discovery evasion trojan

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

CapCut_7376368422684229649_installer.exe

Resource

win10v2004-20240802-en

discovery evasion trojan

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  CapCut_7376368422684229649_installer.exe
- Size
  
  2.2MB
- MD5
  
  c91e097550ea6ccedf592d8b83414e0d
- SHA1
  
  021f3f26d86f98af28dc987baad8714f64867207
- SHA256
  
  4a9d815f284adda187982e2b24da2beaad860739bc4b4cb1cf26408e7c221dd6
- SHA512
  
  916898c9850ddfcd2c11da7421eeffc4d48406d9ad4787a4dc572ec17a81a39edd30733aa8cccde8b31450ff8031e3da68be019a8a0eff50c0a17ed4fa0aa3c9
- SSDEEP
  
  49152:uGVKq6wrr98ArcTTuVMZCC8GYCNbFLg3dlXI5x8oaigMv3Dh:uGVLprJ8ArnVMZCUPFcNlXID8en1
Score

6^/10

discovery evasion trojan
- Checks whether UAC is enabled
  evasion trojan
- Suspicious use of NtCreateThreadExHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

discoveryevasiontrojan

behavioral2

discoveryevasiontrojan

© 2018-2024

Terms | Privacy