adfc3c8009c44c550db25bfce6f666fbf8d4e96a2d52c0862daa3d79c9131277 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-25_804ae9e1113013bbacf5ac376735cbf8_avoslocker
Size

4.3MB
Sample

240925-bsdwvswgkn
MD5

804ae9e1113013bbacf5ac376735cbf8
SHA1

32462cff89bc4fd118e1c744d9454de2479e8903
SHA256

adfc3c8009c44c550db25bfce6f666fbf8d4e96a2d52c0862daa3d79c9131277
SHA512

d5d2a74bc812804d35dd49428bc0e44ff88e4740b90e42a09405ad600ebc0cce90d0d13237dac007b2bd49e20d7317ad64fd0c3fd8c8be30d9b9148d747bb863
SSDEEP

98304:1pq/d8kCB3lMyQjujDW9tBcg2jGqwwAOWNTcjcycRgT8kB3tiX3:2c+5ujyp8jGqww6ZKTLNtm3

Score

7^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  2024-09-25_804ae9e1113013bbacf5ac376735cbf8_avoslocker
- Size
  
  4.3MB
- MD5
  
  804ae9e1113013bbacf5ac376735cbf8
- SHA1
  
  32462cff89bc4fd118e1c744d9454de2479e8903
- SHA256
  
  adfc3c8009c44c550db25bfce6f666fbf8d4e96a2d52c0862daa3d79c9131277
- SHA512
  
  d5d2a74bc812804d35dd49428bc0e44ff88e4740b90e42a09405ad600ebc0cce90d0d13237dac007b2bd49e20d7317ad64fd0c3fd8c8be30d9b9148d747bb863
- SSDEEP
  
  98304:1pq/d8kCB3lMyQjujDW9tBcg2jGqwwAOWNTcjcycRgT8kB3tiX3:2c+5ujyp8jGqww6ZKTLNtm3
Score

7^/10

discovery evasion trojan
- Executes dropped EXE
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojan

behavioral2

discoveryevasiontrojan