6d77413a7498b9a2a072754017ddb6d3462ee32788f1ca48d80c6ba7266cfb65 | Triage

Sharing

General

Target

2024-09-03_68954854b0e88072d2669c8d7d1731a9_avoslocker
Size

4.6MB
Sample

240903-lkn2zavale
MD5

68954854b0e88072d2669c8d7d1731a9
SHA1

11ef49fe8c985cd11788bb3a286c8ee7a22e2996
SHA256

6d77413a7498b9a2a072754017ddb6d3462ee32788f1ca48d80c6ba7266cfb65
SHA512

3eb0f87f6508ef3459249f16edebda4181ca56072ba97c523afcbc9a27f152019e6cccd0b0028b8f18d8db4b9d4a2780ddba27875ae952009a37c252508f6873
SSDEEP

98304:rWqq+Mb+CyWvvIy5YFWAvwznlaFrTpa1syJ41L4o8nw:rWaDWvvIy5YPvwznlePI1V+2o8w

Score

7^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  2024-09-03_68954854b0e88072d2669c8d7d1731a9_avoslocker
- Size
  
  4.6MB
- MD5
  
  68954854b0e88072d2669c8d7d1731a9
- SHA1
  
  11ef49fe8c985cd11788bb3a286c8ee7a22e2996
- SHA256
  
  6d77413a7498b9a2a072754017ddb6d3462ee32788f1ca48d80c6ba7266cfb65
- SHA512
  
  3eb0f87f6508ef3459249f16edebda4181ca56072ba97c523afcbc9a27f152019e6cccd0b0028b8f18d8db4b9d4a2780ddba27875ae952009a37c252508f6873
- SSDEEP
  
  98304:rWqq+Mb+CyWvvIy5YFWAvwznlaFrTpa1syJ41L4o8nw:rWaDWvvIy5YPvwznlePI1V+2o8w
Score

7^/10

discovery evasion trojan
- Executes dropped EXE
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojan

behavioral2

discoveryevasiontrojan