bdc89e6099cd0729c1bb1c3713869bfdbe584407de5d6f95ef1c4e16996b0d93 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bdc89e6099cd0729c1bb1c3713869bfdbe584407de5d6f95ef1c4e16996b0d93
Size

838KB
Sample

221123-2nmlbaad38
MD5

2b5a9f1da832481c2168f416dba54455
SHA1

ffd314a26b8e6210d1b6716cfec40c6bd5c897fd
SHA256

bdc89e6099cd0729c1bb1c3713869bfdbe584407de5d6f95ef1c4e16996b0d93
SHA512

5cbbda940ceb65e3d891f9717db2bf6676d3c538d55dab3fe783a05b4465e3473ca332b23b18c8f1f46b15fcecf1d42a753b0cd14f33899a763b961cc5d3d2a3
SSDEEP

24576:/kZzNcpurPoCugyQPNwE460Yql417ADBZ:/kZz6pQQCugP3yFZ

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  bdc89e6099cd0729c1bb1c3713869bfdbe584407de5d6f95ef1c4e16996b0d93
- Size
  
  838KB
- MD5
  
  2b5a9f1da832481c2168f416dba54455
- SHA1
  
  ffd314a26b8e6210d1b6716cfec40c6bd5c897fd
- SHA256
  
  bdc89e6099cd0729c1bb1c3713869bfdbe584407de5d6f95ef1c4e16996b0d93
- SHA512
  
  5cbbda940ceb65e3d891f9717db2bf6676d3c538d55dab3fe783a05b4465e3473ca332b23b18c8f1f46b15fcecf1d42a753b0cd14f33899a763b961cc5d3d2a3
- SSDEEP
  
  24576:/kZzNcpurPoCugyQPNwE460Yql417ADBZ:/kZz6pQQCugP3yFZ
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan