abc672de4317be4b68a3ae921d344133e01749a1c368b9ae9f68ec0e115689b9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abc672de4317be4b68a3ae921d344133e01749a1c368b9ae9f68ec0e115689b9
Size

917KB
Sample

221107-hdblhscec8
MD5

4a5a6e1a844d46d3fe486e589d5ae536
SHA1

fd0438122b0c5bf0779a2006468dacbfc21a99e3
SHA256

abc672de4317be4b68a3ae921d344133e01749a1c368b9ae9f68ec0e115689b9
SHA512

c57efef5fe8558073f5159dd1a89ce297d60c8efb206715215568806a50116b62da033d3960341eb4c926d65854a01483110e98857f69cdf4c9889a01bec6f49
SSDEEP

24576:Ulurn9ckbdrSU0MJcKEr4KOuIY7+WpsSKU0xGGEtAlYD:UluD9cWJSU7aJOucVU0FEtAqD

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  abc672de4317be4b68a3ae921d344133e01749a1c368b9ae9f68ec0e115689b9
- Size
  
  917KB
- MD5
  
  4a5a6e1a844d46d3fe486e589d5ae536
- SHA1
  
  fd0438122b0c5bf0779a2006468dacbfc21a99e3
- SHA256
  
  abc672de4317be4b68a3ae921d344133e01749a1c368b9ae9f68ec0e115689b9
- SHA512
  
  c57efef5fe8558073f5159dd1a89ce297d60c8efb206715215568806a50116b62da033d3960341eb4c926d65854a01483110e98857f69cdf4c9889a01bec6f49
- SSDEEP
  
  24576:Ulurn9ckbdrSU0MJcKEr4KOuIY7+WpsSKU0xGGEtAlYD:UluD9cWJSU7aJOucVU0FEtAqD
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2