dd052876fd4f95aad11593cef76a97baf04afeeb63e419b4e9cba1806ab8fe63 | Triage

Sharing

General

Target

dd052876fd4f95aad11593cef76a97baf04afeeb63e419b4e9cba1806ab8fe63
Size

810KB
Sample

221123-2fq9jahg65
MD5

dd1d387b7edc06a168acc6ca6cbabf47
SHA1

d9b383dd1c409eb3d8e5e413a4d234c595925f58
SHA256

dd052876fd4f95aad11593cef76a97baf04afeeb63e419b4e9cba1806ab8fe63
SHA512

99992de3d8e9211c421966b416ae9ed5fc4abdf84559d8753a406fe8c11c90c07ecaa12dc4a717c947899e141e62c3425b2307f59e35ae25bc813ee53a284ef9
SSDEEP

24576:ttOSLE/lijS+aneH9qFGYUbFh7KCWVTyk0:tQ0onA4QjbF56b0

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  dd052876fd4f95aad11593cef76a97baf04afeeb63e419b4e9cba1806ab8fe63
- Size
  
  810KB
- MD5
  
  dd1d387b7edc06a168acc6ca6cbabf47
- SHA1
  
  d9b383dd1c409eb3d8e5e413a4d234c595925f58
- SHA256
  
  dd052876fd4f95aad11593cef76a97baf04afeeb63e419b4e9cba1806ab8fe63
- SHA512
  
  99992de3d8e9211c421966b416ae9ed5fc4abdf84559d8753a406fe8c11c90c07ecaa12dc4a717c947899e141e62c3425b2307f59e35ae25bc813ee53a284ef9
- SSDEEP
  
  24576:ttOSLE/lijS+aneH9qFGYUbFh7KCWVTyk0:tQ0onA4QjbF56b0
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan