1b5a766cec352528adffc333dfaaabca902bbbe908bcf819ecc8f6223e10eef4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-22_0af3ec854740cd26be4ee0ecb6084791_avoslocker
Size

4.5MB
Sample

240822-a4bp7szaqe
MD5

0af3ec854740cd26be4ee0ecb6084791
SHA1

3b381b60db551bfb58a98e1a1a7d72b67afe8a04
SHA256

1b5a766cec352528adffc333dfaaabca902bbbe908bcf819ecc8f6223e10eef4
SHA512

c14084caff302fe95648363db9b096204b034be8d9d8d3442250c136186449ee5acc4bf502cc930ea8e24eb3fe51ade435d96d6fe5ee63d058ee28c22b7fcecc
SSDEEP

98304:/Wqq+Mb+byWvjIy5YFWAvwzn7Nx99JEIjFMm2Va/5AZK6j0xnw:/WaGWvjIy5YPvwzn7N/rTAYAZK6jyw

Score

7^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  2024-08-22_0af3ec854740cd26be4ee0ecb6084791_avoslocker
- Size
  
  4.5MB
- MD5
  
  0af3ec854740cd26be4ee0ecb6084791
- SHA1
  
  3b381b60db551bfb58a98e1a1a7d72b67afe8a04
- SHA256
  
  1b5a766cec352528adffc333dfaaabca902bbbe908bcf819ecc8f6223e10eef4
- SHA512
  
  c14084caff302fe95648363db9b096204b034be8d9d8d3442250c136186449ee5acc4bf502cc930ea8e24eb3fe51ade435d96d6fe5ee63d058ee28c22b7fcecc
- SSDEEP
  
  98304:/Wqq+Mb+byWvjIy5YFWAvwzn7Nx99JEIjFMm2Va/5AZK6j0xnw:/WaGWvjIy5YPvwzn7N/rTAYAZK6jyw
Score

7^/10

discovery evasion trojan
- Executes dropped EXE
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojan

behavioral2

discoveryevasiontrojan