ab7f87468290201176301bd22fa96c0e971af7bf90cd1efa6630c0803803c130 | Triage

Sharing

General

Target

ab7f87468290201176301bd22fa96c0e971af7bf90cd1efa6630c0803803c130
Size

813KB
Sample

221107-k5qkvshbh8
MD5

01dd8c89acb54fbdfbe80e4e91ded366
SHA1

4b2c7629441aadd1c2cb85aff9d1803c939c5ac1
SHA256

ab7f87468290201176301bd22fa96c0e971af7bf90cd1efa6630c0803803c130
SHA512

76c7ed254e6fc6b454adf269284a5892d9cb9439a1073c523dd44925a8981526b8d6f89eac3426e96d630a4e01ec02ce4dd9f0a1b8bfcc4d0104f89c6af025c9
SSDEEP

12288:RePqLwRv4RyZ0SDFHchujqmv8Zn1T8PF2iRnKODYe7/bXC8ULpz+:2hHchujNMn1u21YJy8ULpz+

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  ab7f87468290201176301bd22fa96c0e971af7bf90cd1efa6630c0803803c130
- Size
  
  813KB
- MD5
  
  01dd8c89acb54fbdfbe80e4e91ded366
- SHA1
  
  4b2c7629441aadd1c2cb85aff9d1803c939c5ac1
- SHA256
  
  ab7f87468290201176301bd22fa96c0e971af7bf90cd1efa6630c0803803c130
- SHA512
  
  76c7ed254e6fc6b454adf269284a5892d9cb9439a1073c523dd44925a8981526b8d6f89eac3426e96d630a4e01ec02ce4dd9f0a1b8bfcc4d0104f89c6af025c9
- SSDEEP
  
  12288:RePqLwRv4RyZ0SDFHchujqmv8Zn1T8PF2iRnKODYe7/bXC8ULpz+:2hHchujNMn1u21YJy8ULpz+
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan