General
-
Target
2024-11-05_9fbfab18e08722ccf6c263a2bd3eedfa_datper_trigona
-
Size
342KB
-
Sample
241105-h9an4azkhk
-
MD5
9fbfab18e08722ccf6c263a2bd3eedfa
-
SHA1
507a5c5726777e543cf18f366aa08b4148b427a0
-
SHA256
3c3dc944357a51546a0b0dc45f1532f7bdf357baf03a83e1ecb8a402d305c52b
-
SHA512
415909f8fe66bf6e45bea36caa12d4bc8343f4218d4887d6918f5a52059a471672c5c89f0c43b0a6f3b9c0b9d553eb6b22a61468463f8037d11f0fac4e678520
-
SSDEEP
6144:Gx2QdiglMFGfzIBeZO8Wf2cMROCO/xZqqDLuz+4pQoL27aR9:GAQsgScEydOCJqnuq4z2mR9
Static task
static1
Behavioral task
behavioral1
Sample
2024-11-05_9fbfab18e08722ccf6c263a2bd3eedfa_datper_trigona.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
2024-11-05_9fbfab18e08722ccf6c263a2bd3eedfa_datper_trigona.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
2024-11-05_9fbfab18e08722ccf6c263a2bd3eedfa_datper_trigona
-
Size
342KB
-
MD5
9fbfab18e08722ccf6c263a2bd3eedfa
-
SHA1
507a5c5726777e543cf18f366aa08b4148b427a0
-
SHA256
3c3dc944357a51546a0b0dc45f1532f7bdf357baf03a83e1ecb8a402d305c52b
-
SHA512
415909f8fe66bf6e45bea36caa12d4bc8343f4218d4887d6918f5a52059a471672c5c89f0c43b0a6f3b9c0b9d553eb6b22a61468463f8037d11f0fac4e678520
-
SSDEEP
6144:Gx2QdiglMFGfzIBeZO8Wf2cMROCO/xZqqDLuz+4pQoL27aR9:GAQsgScEydOCJqnuq4z2mR9
Score7/10-
Credentials from Password Stores: Windows Credential Manager
Suspicious access to Credentials History.
-
Drops startup file
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops desktop.ini file(s)
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
2Credentials from Web Browsers
1Windows Credential Manager
1Unsecured Credentials
1Credentials In Files
1