348451bdc8893691e10bae17dfeeea520248e9b9aaa40cfbeaa2bb6b1b2f0f00 | Triage

Sharing

General

Target

EXM.exe
Size

945KB
Sample

240920-qp8z6aygjk
MD5

09d7028997acf3507f20739e0c365b12
SHA1

0552df362d8c8406ffd267cb3bcc378a21d00a24
SHA256

348451bdc8893691e10bae17dfeeea520248e9b9aaa40cfbeaa2bb6b1b2f0f00
SHA512

9aff98d41202bea02dd62fa00e1e795abd515e0a2d1580cd569fd02c027950f977096384459dfbcd0c32e4c032e4bf61df142e2f15d4d0f6b382c5d9013ce76a
SSDEEP

24576:XtA4KdTztuUza4IcZ3KdXk22WYJVXvnG/CEvz:kdT8U+4IJXv2WYJ9vngvz

Score

10^/10

evasion execution trojan

Malware Config

Targets

- Target
  
  EXM.exe
- Size
  
  945KB
- MD5
  
  09d7028997acf3507f20739e0c365b12
- SHA1
  
  0552df362d8c8406ffd267cb3bcc378a21d00a24
- SHA256
  
  348451bdc8893691e10bae17dfeeea520248e9b9aaa40cfbeaa2bb6b1b2f0f00
- SHA512
  
  9aff98d41202bea02dd62fa00e1e795abd515e0a2d1580cd569fd02c027950f977096384459dfbcd0c32e4c032e4bf61df142e2f15d4d0f6b382c5d9013ce76a
- SSDEEP
  
  24576:XtA4KdTztuUza4IcZ3KdXk22WYJVXvnG/CEvz:kdT8U+4IJXv2WYJ9vngvz
Score

10^/10

evasion execution trojan
- UAC bypass
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Abuse Elevation Control Mechanism

Bypass User Account Control

Defense Evasion

Abuse Elevation Control Mechanism

Bypass User Account Control

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionexecutiontrojan

behavioral2