a3172309e7b6b4ceae4e232a0a399b7cb2c28c4e6a671fe28e9a590ac8b1b972 | Triage

Sharing

General

Target

IPGN1OI1GZ
Size

859KB
Sample

241122-kcemwstlbn
MD5

2c5fbaa8e46bd733a271b2fd42fdedae
SHA1

4045f60a8440fb99913289781245c1ed1b7f7f2a
SHA256

a3172309e7b6b4ceae4e232a0a399b7cb2c28c4e6a671fe28e9a590ac8b1b972
SHA512

a87213f2c47a92aaf5a0026028042a408e2c8eeed5cfcdff4e6c67820f18720bde4ab94165dc31ade2ca1400a5abea315b7a74bfa3b6f23d410d0c3822397664
SSDEEP

24576:cUwL2BS6ledT9fdfG2JYDrGW00VZL/hZZxJJ3Qa:mhRUcW00VhhZzD

Score

10^/10

discovery evasion trojan upx

Malware Config

Targets

- Target
  
  KkKL23yz.exe
- Size
  
  475KB
- MD5
  
  ce0c97958ef707811df63fe93dba943a
- SHA1
  
  2aaa0f40c33a0eccd51a2a26d0a118c7e2797e41
- SHA256
  
  3cf3e4125f55986bd7bfc6d52890fbd40b2444397ebd798f72b90ba9ed597c57
- SHA512
  
  f9e1ed8c70b91d4029c78e810bb066f7e97c910909da230e44ece29d97b7c0842701875552af2b134d6689191e1254d6134c139b0e580eafa36c7088fa1443bf
- SSDEEP
  
  12288:gNrhTLpMP+R+QDCfA832AtBYmz6af0F7Z1QVjSOsJ/c:gthTiP+ffCfB5Lf0F7Z1EDsVc
Score

10^/10

discovery evasion trojan upx
- UAC bypass
  evasion trojan
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Abuse Elevation Control Mechanism

Bypass User Account Control

Defense Evasion

Abuse Elevation Control Mechanism

Bypass User Account Control

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojanupx

behavioral2

discoveryevasiontrojanupx