ac16bcb190ff547b1b2d57ea54565b976fcd6db0867f665eb81a11513b13fe3b | Triage

Sharing

General

Target

ac16bcb190ff547b1b2d57ea54565b976fcd6db0867f665eb81a11513b13fe3b
Size

875KB
Sample

221124-cslgdabc53
MD5

0980782bb1aa6f84bbb600ba717fb328
SHA1

2e8b60cb824a435dd85da98ddbf33cbc1eee3121
SHA256

ac16bcb190ff547b1b2d57ea54565b976fcd6db0867f665eb81a11513b13fe3b
SHA512

4baa747c74f2027ed780fc6c822c9d3fb5a228cadcdcc19990a378b4d23b795fcc56caeadd70dde829f387da0715cc408a4f783a887dbc6e878fa6330944ad82
SSDEEP

24576:dxsbt+4S6x8oRwR01zGNXiV9+D7Hr6miDH:dxsw4S6rRwaVOXifUumwH

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  ac16bcb190ff547b1b2d57ea54565b976fcd6db0867f665eb81a11513b13fe3b
- Size
  
  875KB
- MD5
  
  0980782bb1aa6f84bbb600ba717fb328
- SHA1
  
  2e8b60cb824a435dd85da98ddbf33cbc1eee3121
- SHA256
  
  ac16bcb190ff547b1b2d57ea54565b976fcd6db0867f665eb81a11513b13fe3b
- SHA512
  
  4baa747c74f2027ed780fc6c822c9d3fb5a228cadcdcc19990a378b4d23b795fcc56caeadd70dde829f387da0715cc408a4f783a887dbc6e878fa6330944ad82
- SSDEEP
  
  24576:dxsbt+4S6x8oRwR01zGNXiV9+D7Hr6miDH:dxsw4S6rRwaVOXifUumwH
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2