ab1fc15ef23ae7f77783c53ed7565d42124e0410346dfeed3941bd858d91a108 | Triage

Sharing

General

Target

ab1fc15ef23ae7f77783c53ed7565d42124e0410346dfeed3941bd858d91a108
Size

877KB
Sample

221107-pygrlaadhr
MD5

82c45039773f97f8c6e89863bb9aa6dd
SHA1

b54bd7692bf5c7f2a3d6371d91a7c68c83a6ea1e
SHA256

ab1fc15ef23ae7f77783c53ed7565d42124e0410346dfeed3941bd858d91a108
SHA512

41748e89dbc5089a2168e7c986fc9118ac6aeae8cbccab8abc26001781a4577b322058e87d9efd7b2aef459f252e11b2eeef261e4e1ef51cbcedb0feadb5fd24
SSDEEP

12288:u69uQWchE/nd4UT963SDDabs+WqxA0U4b5mftfSAsmF8e9GHRJiQgJJezjewv8Vw:uHX4UT/ysQA0R5A4HRRYgjeByk+tRX7

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  ab1fc15ef23ae7f77783c53ed7565d42124e0410346dfeed3941bd858d91a108
- Size
  
  877KB
- MD5
  
  82c45039773f97f8c6e89863bb9aa6dd
- SHA1
  
  b54bd7692bf5c7f2a3d6371d91a7c68c83a6ea1e
- SHA256
  
  ab1fc15ef23ae7f77783c53ed7565d42124e0410346dfeed3941bd858d91a108
- SHA512
  
  41748e89dbc5089a2168e7c986fc9118ac6aeae8cbccab8abc26001781a4577b322058e87d9efd7b2aef459f252e11b2eeef261e4e1ef51cbcedb0feadb5fd24
- SSDEEP
  
  12288:u69uQWchE/nd4UT963SDDabs+WqxA0U4b5mftfSAsmF8e9GHRJiQgJJezjewv8Vw:uHX4UT/ysQA0R5A4HRRYgjeByk+tRX7
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2