Trojanized file with anti-forensics capabilities
Tags
attack-pattern: Malicious File - T1204.002 Malware - T1587.001 Malware - T1588.001 Software - T1592.002 Connection Proxy - T1090
Show in Graph
Common Information
Type Value
UUID d48381f7-e8d0-40c5-9091-ac773c593c6c
Fingerprint 24002c131f722070
Analysis status DONE
Considered CTI value 0
Text language
Published Sept. 6, 2016, 3:14 p.m.
Added to db Jan. 18, 2023, 7:56 p.m.
Last updated Nov. 17, 2024, 6:49 p.m.
Headline Deriving Cyber Threat Intelligence and Driving Threat Hunting
Title Trojanized file with anti-forensics capabilities
Detected Hints/Tags/Attributes 27/1/7
Source URLs
Redirection Url
Details Source http://malwarenailed.blogspot.com/2016/09/trojanized-file-with-anti-forensics.html
URL Provider
Details Provider Source level domain
Details blogspot.com malwarenailed.blogspot.com
Attributes
Details Type #Events CTI Value
Details Domain 1 
www.evildomain.com
Details File 1260 
explorer.exe
Details File 9 
player.exe
Details File 10 
autorun.exe
Details File 1 
ams_launch.exe
Details File 1 
_proj.dat
Details File 56 
iexplorer.exe