ac14cc06a4a72763d40ed419c358d76c82970a31b69907ed2cea945a38f32330 | Triage

Sharing

General

Target

ac14cc06a4a72763d40ed419c358d76c82970a31b69907ed2cea945a38f32330
Size

761KB
Sample

221124-cwczeaef8x
MD5

42cd7159676540563dc4819af9a5d469
SHA1

eef5f90f80a3d3fa7a364a2dd579c52d31ad7fd3
SHA256

ac14cc06a4a72763d40ed419c358d76c82970a31b69907ed2cea945a38f32330
SHA512

9011943d29313be6588ee322472f13b1f7dc5191030d67c1914dd043e217770ab9cfa39ee9297193a9c114af8dfd7334c2b6182303414e93d3a05e7777e1e0ee
SSDEEP

12288:XM/EOQlIUj5cBTr+B6MCqCqHcM/OU5wY3E9qrEFr3PueZX+jUp5bbWnfsaF0RJNc:XM/06HMz1/p5U9qrExf3VQOX0fH0LNAB

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  ac14cc06a4a72763d40ed419c358d76c82970a31b69907ed2cea945a38f32330
- Size
  
  761KB
- MD5
  
  42cd7159676540563dc4819af9a5d469
- SHA1
  
  eef5f90f80a3d3fa7a364a2dd579c52d31ad7fd3
- SHA256
  
  ac14cc06a4a72763d40ed419c358d76c82970a31b69907ed2cea945a38f32330
- SHA512
  
  9011943d29313be6588ee322472f13b1f7dc5191030d67c1914dd043e217770ab9cfa39ee9297193a9c114af8dfd7334c2b6182303414e93d3a05e7777e1e0ee
- SSDEEP
  
  12288:XM/EOQlIUj5cBTr+B6MCqCqHcM/OU5wY3E9qrEFr3PueZX+jUp5bbWnfsaF0RJNc:XM/06HMz1/p5U9qrExf3VQOX0fH0LNAB
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2