abe21f18597d335bb7b21b99877b2f0ccc034c1f0a14d4673ff8a854d1e3ac2c | Triage

Sharing

General

Target

abe21f18597d335bb7b21b99877b2f0ccc034c1f0a14d4673ff8a854d1e3ac2c
Size

872KB
Sample

221124-e2plhacc3w
MD5

76dbfc35ecd1104d4038f38df33cc080
SHA1

4e29ef73c7eb15a2b6bed2e447607c0fc0495120
SHA256

abe21f18597d335bb7b21b99877b2f0ccc034c1f0a14d4673ff8a854d1e3ac2c
SHA512

820f0f57d0149dc7c1e00d92e9affc26f55bab4aab619456ba9a701ab5160e8d68c171426d41db97dabd8b28852b1dda84ef8623a60052eb53da0f6681bc8879
SSDEEP

24576:GxluLbMn7l6MnC3Lz9I0Q6/jJ678nO/l1mtv:Gfok/aLz9n/UgnO/lkv

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  abe21f18597d335bb7b21b99877b2f0ccc034c1f0a14d4673ff8a854d1e3ac2c
- Size
  
  872KB
- MD5
  
  76dbfc35ecd1104d4038f38df33cc080
- SHA1
  
  4e29ef73c7eb15a2b6bed2e447607c0fc0495120
- SHA256
  
  abe21f18597d335bb7b21b99877b2f0ccc034c1f0a14d4673ff8a854d1e3ac2c
- SHA512
  
  820f0f57d0149dc7c1e00d92e9affc26f55bab4aab619456ba9a701ab5160e8d68c171426d41db97dabd8b28852b1dda84ef8623a60052eb53da0f6681bc8879
- SSDEEP
  
  24576:GxluLbMn7l6MnC3Lz9I0Q6/jJ678nO/l1mtv:Gfok/aLz9n/UgnO/lkv
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2