6e5c8f012bf7d48e84fa18f47eb2927c27227170777c24f91349d79b37b74845 | Triage

Sharing

General

Target

2024-08-26_19105513bc5023c460b0e84de0a7862c_avoslocker
Size

4.5MB
Sample

240826-becrmswbqc
MD5

19105513bc5023c460b0e84de0a7862c
SHA1

0438be0757e1f3e1cca21625f0af51ce0deb5e33
SHA256

6e5c8f012bf7d48e84fa18f47eb2927c27227170777c24f91349d79b37b74845
SHA512

987bb18a39ba408609c7f92fe68815dcf8bc544372ce7b81cab2fb7b9b5292e0d85e1c84e56189d4cebcfa337aee06d63e8926e42ce0a008e99c6a90b6a49329
SSDEEP

98304:lWqq+Mb+hyWvjIy5YFWAvwzn7Nx99JEIjFMm2Va/5AZK6j0xnw:lWa8WvjIy5YPvwzn7N/rTAYAZK6jyw

Score

7^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  2024-08-26_19105513bc5023c460b0e84de0a7862c_avoslocker
- Size
  
  4.5MB
- MD5
  
  19105513bc5023c460b0e84de0a7862c
- SHA1
  
  0438be0757e1f3e1cca21625f0af51ce0deb5e33
- SHA256
  
  6e5c8f012bf7d48e84fa18f47eb2927c27227170777c24f91349d79b37b74845
- SHA512
  
  987bb18a39ba408609c7f92fe68815dcf8bc544372ce7b81cab2fb7b9b5292e0d85e1c84e56189d4cebcfa337aee06d63e8926e42ce0a008e99c6a90b6a49329
- SSDEEP
  
  98304:lWqq+Mb+hyWvjIy5YFWAvwzn7Nx99JEIjFMm2Va/5AZK6j0xnw:lWa8WvjIy5YPvwzn7N/rTAYAZK6jyw
Score

7^/10

discovery evasion trojan
- Executes dropped EXE
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojan

behavioral2

discoveryevasiontrojan