ac0e062a450a1053d5399b3b7a08a6ad97684649a0aa9933fc177e752166af46 | Triage

Sharing

General

Target

ac0e062a450a1053d5399b3b7a08a6ad97684649a0aa9933fc177e752166af46
Size

799KB
Sample

221124-c5l9fafd21
MD5

3d67453c564440fdacabab461a81b557
SHA1

1efe179cb727325b005bdb6872bda1bf26ea0b02
SHA256

ac0e062a450a1053d5399b3b7a08a6ad97684649a0aa9933fc177e752166af46
SHA512

caec2ec517509079914bbabd122f5263b79bc70e6742fb2dcf3c9ab56e5d5d8d033f3d4729cd1bdb5f0e37b22be8bf15af81739e82d58eba307b200f7985f77e
SSDEEP

12288:7gdmM6b8D896RpWnPzWjVpZBtx7wprTn94O+CJsVoYYqXqy4DF2nMjK5XNBHZ:8M6s6RpWnPzWZ3KP4OU0qXqy4U/HZ

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  ac0e062a450a1053d5399b3b7a08a6ad97684649a0aa9933fc177e752166af46
- Size
  
  799KB
- MD5
  
  3d67453c564440fdacabab461a81b557
- SHA1
  
  1efe179cb727325b005bdb6872bda1bf26ea0b02
- SHA256
  
  ac0e062a450a1053d5399b3b7a08a6ad97684649a0aa9933fc177e752166af46
- SHA512
  
  caec2ec517509079914bbabd122f5263b79bc70e6742fb2dcf3c9ab56e5d5d8d033f3d4729cd1bdb5f0e37b22be8bf15af81739e82d58eba307b200f7985f77e
- SSDEEP
  
  12288:7gdmM6b8D896RpWnPzWjVpZBtx7wprTn94O+CJsVoYYqXqy4DF2nMjK5XNBHZ:8M6s6RpWnPzWZ3KP4OU0qXqy4U/HZ
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan