Overview

overview

10

Static

static

10

2024-06-29...fo.exe

windows7-x64

1

2024-06-29...fo.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-06-29_eab796dee2fcd215968e3a6bb8474228_avoslocker_metamorfo

  • Size

    4.8MB

  • Sample

    240629-z8c69szejl

  • MD5

    eab796dee2fcd215968e3a6bb8474228

  • SHA1

    366db82b081395feb0f89f878ffbfd10e335d28f

  • SHA256

    5ef10f2a09e654c78bca1365f819112ece3ca9e16125b4c8e25c0fea659a9d91

  • SHA512

    46d2deef42f206113d6c4101380eb3200d108c9854bb68e56d70f9620114d676999bc4531a918b95933f646c7b49674bba84a518028ba128a378aed4fed01c66

  • SSDEEP

    98304:BtiuhluhmF1OgPptZDElaxQ3PCTDsRnLPYSz7FyxZ:rqktIa6n3FyxZ

Score
10/10
riseproevasiontrojan

Malware Config

Targets

    • Target

      2024-06-29_eab796dee2fcd215968e3a6bb8474228_avoslocker_metamorfo

    • Size

      4.8MB

    • MD5

      eab796dee2fcd215968e3a6bb8474228

    • SHA1

      366db82b081395feb0f89f878ffbfd10e335d28f

    • SHA256

      5ef10f2a09e654c78bca1365f819112ece3ca9e16125b4c8e25c0fea659a9d91

    • SHA512

      46d2deef42f206113d6c4101380eb3200d108c9854bb68e56d70f9620114d676999bc4531a918b95933f646c7b49674bba84a518028ba128a378aed4fed01c66

    • SSDEEP

      98304:BtiuhluhmF1OgPptZDElaxQ3PCTDsRnLPYSz7FyxZ:rqktIa6n3FyxZ

    Score
    6/10
    evasiontrojan

    • Checks whether UAC is enabled

      evasiontrojan

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

5
T1082

Query Registry

3
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks