ac125cf6e39573b4e8416aba384e55a848c158c397b17d6765de6b7738a44373 | Triage

Sharing

General

Target

ac125cf6e39573b4e8416aba384e55a848c158c397b17d6765de6b7738a44373
Size

892KB
Sample

221124-czwkxsfa3x
MD5

224a4351f611c19c7e68e938f74974c6
SHA1

d3343de39c1d4bf909683605bc1b2889786da69f
SHA256

ac125cf6e39573b4e8416aba384e55a848c158c397b17d6765de6b7738a44373
SHA512

48cd4178305e403039959e6326ced3358cd2bac7f478419021f01bb39ba5361c488c724d433b34ac4ef67376757beb7e5c7e49ab36eaecc1437e29e66628041b
SSDEEP

24576:IQYdsDSwGC+nYVbTbMVN9MZwMZclC5W5gt7HrDPdvHxT:IQYuDS6KqwXCg58HRRT

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  ac125cf6e39573b4e8416aba384e55a848c158c397b17d6765de6b7738a44373
- Size
  
  892KB
- MD5
  
  224a4351f611c19c7e68e938f74974c6
- SHA1
  
  d3343de39c1d4bf909683605bc1b2889786da69f
- SHA256
  
  ac125cf6e39573b4e8416aba384e55a848c158c397b17d6765de6b7738a44373
- SHA512
  
  48cd4178305e403039959e6326ced3358cd2bac7f478419021f01bb39ba5361c488c724d433b34ac4ef67376757beb7e5c7e49ab36eaecc1437e29e66628041b
- SSDEEP
  
  24576:IQYdsDSwGC+nYVbTbMVN9MZwMZclC5W5gt7HrDPdvHxT:IQYuDS6KqwXCg58HRRT
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2