e0d79e5fade124f148df8a90ac5e8b1e28bd2c73b22094dd5fc0cf7e08328d37 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

764ddb885f096ca763e93b0bb8913380N.exe
Size

4.5MB
Sample

240822-amck6ssdjj
MD5

764ddb885f096ca763e93b0bb8913380
SHA1

964d86ea60e3ce0b622437dbeb68a8e4c737d74f
SHA256

e0d79e5fade124f148df8a90ac5e8b1e28bd2c73b22094dd5fc0cf7e08328d37
SHA512

475d07291f9c25d75f63045c5109aa854677f01ee9f161cb851ba1f1da018b404fc8fc6d1346d4bcadc0002426ce55b94da16f0f30685cb6f0b8f1a321e76942
SSDEEP

98304:KWqq+Mb+AyWvjIy5YFWAvwzn7Nx99JEIjFMm2Va/5AZK6j0xnw:KWaZWvjIy5YPvwzn7N/rTAYAZK6jyw

Score

7^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  764ddb885f096ca763e93b0bb8913380N.exe
- Size
  
  4.5MB
- MD5
  
  764ddb885f096ca763e93b0bb8913380
- SHA1
  
  964d86ea60e3ce0b622437dbeb68a8e4c737d74f
- SHA256
  
  e0d79e5fade124f148df8a90ac5e8b1e28bd2c73b22094dd5fc0cf7e08328d37
- SHA512
  
  475d07291f9c25d75f63045c5109aa854677f01ee9f161cb851ba1f1da018b404fc8fc6d1346d4bcadc0002426ce55b94da16f0f30685cb6f0b8f1a321e76942
- SSDEEP
  
  98304:KWqq+Mb+AyWvjIy5YFWAvwzn7Nx99JEIjFMm2Va/5AZK6j0xnw:KWaZWvjIy5YPvwzn7N/rTAYAZK6jyw
Score

7^/10

discovery evasion trojan
- Executes dropped EXE
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojan

behavioral2

discoveryevasiontrojan