49a48e879f7480238d2fe17520ac19afe83685aac0b886719f9e1eac818b75cc | Triage

Resubmissions

03-12-2024 16:09

241203-tl83jaxrfr 7

03-12-2024 16:06

241203-tkhh7axqhj 8

Sharing

General

Target

AutoHotkey_1.1.37.02_setup.exe
Size

3.3MB
Sample

241203-tl83jaxrfr
MD5

c2e8062052bb2b25d4951b78ba9a5e73
SHA1

947dbf6343d632fc622cc2920d0ad303c32fcc80
SHA256

49a48e879f7480238d2fe17520ac19afe83685aac0b886719f9e1eac818b75cc
SHA512

c9a5ea57842f69223bd32a9b9e4aaad44d422f56e362469299f56d8b34b5e8bbf2b51d4e64d2bebe6c95d6d8545a8a88e6107b9b0a813e469f613e1353aad7a4
SSDEEP

98304:m7EROaI2yEbVidvdahm6QAxuE4iLqmzLdtte96g:m4FyMVq4og4iLqmNqMg

Score

7^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  AutoHotkey_1.1.37.02_setup.exe
- Size
  
  3.3MB
- MD5
  
  c2e8062052bb2b25d4951b78ba9a5e73
- SHA1
  
  947dbf6343d632fc622cc2920d0ad303c32fcc80
- SHA256
  
  49a48e879f7480238d2fe17520ac19afe83685aac0b886719f9e1eac818b75cc
- SHA512
  
  c9a5ea57842f69223bd32a9b9e4aaad44d422f56e362469299f56d8b34b5e8bbf2b51d4e64d2bebe6c95d6d8545a8a88e6107b9b0a813e469f613e1353aad7a4
- SSDEEP
  
  98304:m7EROaI2yEbVidvdahm6QAxuE4iLqmzLdtte96g:m4FyMVq4og4iLqmNqMg
Score

7^/10

discovery evasion trojan
- Executes dropped EXE
- Checks whether UAC is enabled
  evasion trojan
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojan