55b1ffd536756f4c2e5dc89517f11af9b725ce6ae67fd65b0067c95e4932ad5a | Triage

Submit
Reports

Overview

overview

8

Static

static

55b1ffd536...5a.exe

windows7-x64

8

55b1ffd536...5a.exe

windows10-2004-x64

8

Sharing

General

Target

55b1ffd536756f4c2e5dc89517f11af9b725ce6ae67fd65b0067c95e4932ad5a
Size

825KB
Sample

221003-zjjyhsehbq
MD5

69dc56d1db563e28af52c104b585d120
SHA1

fccd9204bdb1347c95c66dbabc80cc6426e5b30f
SHA256

55b1ffd536756f4c2e5dc89517f11af9b725ce6ae67fd65b0067c95e4932ad5a
SHA512

2e7674d2c51e58489c7ef6fb8541fa8f6a290099233834b5d25dae42879de209b86cbd265fbeb7ce1d5ad1a49f8889ab7872985f3af91b3f9598ed224aa6b9cd
SSDEEP

12288:zkjBmh9B0dFrGy9OLvPM77rSHJNCMMu/v3HNqsgbSx5vC9pCLbSLzVi7LNYDok:QVAqdwHLUa8MMuXQbwLo0io

Score

8^/10

discovery evasion persistence trojan

Static task

static1

Behavioral task

behavioral1

Sample

55b1ffd536756f4c2e5dc89517f11af9b725ce6ae67fd65b0067c95e4932ad5a.exe

Resource

win7-20220812-en

discovery evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

55b1ffd536756f4c2e5dc89517f11af9b725ce6ae67fd65b0067c95e4932ad5a.exe

Resource

win10v2004-20220812-en

discovery evasion persistence trojan

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  55b1ffd536756f4c2e5dc89517f11af9b725ce6ae67fd65b0067c95e4932ad5a
- Size
  
  825KB
- MD5
  
  69dc56d1db563e28af52c104b585d120
- SHA1
  
  fccd9204bdb1347c95c66dbabc80cc6426e5b30f
- SHA256
  
  55b1ffd536756f4c2e5dc89517f11af9b725ce6ae67fd65b0067c95e4932ad5a
- SHA512
  
  2e7674d2c51e58489c7ef6fb8541fa8f6a290099233834b5d25dae42879de209b86cbd265fbeb7ce1d5ad1a49f8889ab7872985f3af91b3f9598ed224aa6b9cd
- SSDEEP
  
  12288:zkjBmh9B0dFrGy9OLvPM77rSHJNCMMu/v3HNqsgbSx5vC9pCLbSLzVi7LNYDok:QVAqdwHLUa8MMuXQbwLo0io
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Drops startup file
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan

© 2018-2025

Terms | Privacy