ac0fad59147c94ca5da8446b7c62034a232d1cd530796987d457c5388f370192 | Triage

Sharing

General

Target

ac0fad59147c94ca5da8446b7c62034a232d1cd530796987d457c5388f370192
Size

852KB
Sample

221124-c3npgsfb8x
MD5

2d4edca0059d276afb80912728c1fcdb
SHA1

1aee59778ccea95d79b4131f995cb919e3297698
SHA256

ac0fad59147c94ca5da8446b7c62034a232d1cd530796987d457c5388f370192
SHA512

8395bb42f80bb4d09408fd28ccd9918e70e68ac2a365be38e02b9fccc5317dceff56ac0967fbc56ba225f167acfd316357575c97c96c1fa9aed532251938ef1c
SSDEEP

24576:2JVL09+Ey2lZYRqHAE07x3x7iXlO0rwK+c3:2Jl09+ydHbWtQO0r53

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  ac0fad59147c94ca5da8446b7c62034a232d1cd530796987d457c5388f370192
- Size
  
  852KB
- MD5
  
  2d4edca0059d276afb80912728c1fcdb
- SHA1
  
  1aee59778ccea95d79b4131f995cb919e3297698
- SHA256
  
  ac0fad59147c94ca5da8446b7c62034a232d1cd530796987d457c5388f370192
- SHA512
  
  8395bb42f80bb4d09408fd28ccd9918e70e68ac2a365be38e02b9fccc5317dceff56ac0967fbc56ba225f167acfd316357575c97c96c1fa9aed532251938ef1c
- SSDEEP
  
  24576:2JVL09+Ey2lZYRqHAE07x3x7iXlO0rwK+c3:2Jl09+ydHbWtQO0r53
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

evasionpersistencetrojan