7c2bb3ea4e24ccc06b3ee0dbfae509caeb1f9db26f7dcb838dbe1213986b05e0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7c2bb3ea4e24ccc06b3ee0dbfae509caeb1f9db26f7dcb838dbe1213986b05e0
Size

875KB
Sample

221029-hw4p1sfba6
MD5

e2d6637c3005ae77a076a25e47931d6b
SHA1

f939c3166bde895674da2f67bc4e555d36979241
SHA256

7c2bb3ea4e24ccc06b3ee0dbfae509caeb1f9db26f7dcb838dbe1213986b05e0
SHA512

f009893e5ee31c4263811146a2fd18304d4af81031462ecd654a80529b358616f18bffef49947ba0adff5b4cb78d4a179e18d415b7c19a246b52039c1755d57c
SSDEEP

24576:SKumrYGGDQunCotw2HqfRbjJEg6bgsZ/e/bC:SKumhcJCotw2KfRbjJEg3sZQbC

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  7c2bb3ea4e24ccc06b3ee0dbfae509caeb1f9db26f7dcb838dbe1213986b05e0
- Size
  
  875KB
- MD5
  
  e2d6637c3005ae77a076a25e47931d6b
- SHA1
  
  f939c3166bde895674da2f67bc4e555d36979241
- SHA256
  
  7c2bb3ea4e24ccc06b3ee0dbfae509caeb1f9db26f7dcb838dbe1213986b05e0
- SHA512
  
  f009893e5ee31c4263811146a2fd18304d4af81031462ecd654a80529b358616f18bffef49947ba0adff5b4cb78d4a179e18d415b7c19a246b52039c1755d57c
- SSDEEP
  
  24576:SKumrYGGDQunCotw2HqfRbjJEg6bgsZ/e/bC:SKumhcJCotw2KfRbjJEg3sZQbC
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2