248ecff90346c947fda3ab80b686cdb4a3ea72ce5641a17e72b3cd48262d0b69 | Triage

Submit
Reports

Overview

overview

Static

static

chthonic_2...ir.exe

windows7_x64

chthonic_2...ir.exe

windows10_x64

1

Sharing

General

Target

chthonic_2.23.15.15.vir
Size

138KB
Sample

200719-3fzdj3z1dj
MD5

58e7485d3b615edfaa1be2dc05dff4f6
SHA1

b47548e82ceec9e930b7a21651023fd0c7e83426
SHA256

248ecff90346c947fda3ab80b686cdb4a3ea72ce5641a17e72b3cd48262d0b69
SHA512

fd1ce644248bc33188b9939cfdc26950ce907536121d56ac250be76edc9b9cb65ae98db9f3de7ede4fbd2590f83c304e22bfed62c64f988fc5ac30b9fb9d397c

Score

10^/10

evasion persistence trojan

Static task

static1

Behavioral task

behavioral1

Sample

chthonic_2.23.15.15.vir.exe

Resource

win7v200430

evasion persistence trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

chthonic_2.23.15.15.vir.exe

Resource

win10

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  chthonic_2.23.15.15.vir
- Size
  
  138KB
- MD5
  
  58e7485d3b615edfaa1be2dc05dff4f6
- SHA1
  
  b47548e82ceec9e930b7a21651023fd0c7e83426
- SHA256
  
  248ecff90346c947fda3ab80b686cdb4a3ea72ce5641a17e72b3cd48262d0b69
- SHA512
  
  fd1ce644248bc33188b9939cfdc26950ce907536121d56ac250be76edc9b9cb65ae98db9f3de7ede4fbd2590f83c304e22bfed62c64f988fc5ac30b9fb9d397c
Score

10^/10

evasion persistence trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Disables taskbar notifications via registry modification
  evasion
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Checks for any installed AV software in registry
- Checks whether UAC is enabled
  evasion trojan
- Modifies service
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Disabling Security Tools

Credential Access

Discovery

Security Software Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

evasionpersistencetrojan

behavioral2

© 2018-2024

Terms | Privacy