0b033f37b2c269acda253f471d783c45a81adf1fd7aa8a01a82aaa20fb91eb48 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-30_3d50ef1511fce0dfc743eb38b2203710_avoslocker
Size

4.3MB
Sample

240930-hck4kazhrn
MD5

3d50ef1511fce0dfc743eb38b2203710
SHA1

c5b95fbf787c335524af7f6e458c29173882a32e
SHA256

0b033f37b2c269acda253f471d783c45a81adf1fd7aa8a01a82aaa20fb91eb48
SHA512

cdbe20d278894916f64117b1f347768a8a67434d9b83be9e7ad20896f38891297da19e9c17bac5c450f260574ab190a04ad08ff47bda920dead496a4766afdb6
SSDEEP

98304:JWqq+Mb+9yWvhIy5YFWAvwznhh4c1RT9UstUvrfi41Y0nw:JWaYWvhIy5YPvwznf4AJ4G0w

Score

7^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  2024-09-30_3d50ef1511fce0dfc743eb38b2203710_avoslocker
- Size
  
  4.3MB
- MD5
  
  3d50ef1511fce0dfc743eb38b2203710
- SHA1
  
  c5b95fbf787c335524af7f6e458c29173882a32e
- SHA256
  
  0b033f37b2c269acda253f471d783c45a81adf1fd7aa8a01a82aaa20fb91eb48
- SHA512
  
  cdbe20d278894916f64117b1f347768a8a67434d9b83be9e7ad20896f38891297da19e9c17bac5c450f260574ab190a04ad08ff47bda920dead496a4766afdb6
- SSDEEP
  
  98304:JWqq+Mb+9yWvhIy5YFWAvwznhh4c1RT9UstUvrfi41Y0nw:JWaYWvhIy5YPvwznf4AJ4G0w
Score

7^/10

discovery evasion trojan
- Executes dropped EXE
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojan

behavioral2

discoveryevasiontrojan