75df0ad6ff68464ce99aae1755e3364985d6e306f73a446083966e057d66c805 | Triage

Sharing

General

Target

75df0ad6ff68464ce99aae1755e3364985d6e306f73a446083966e057d66c805
Size

936KB
Sample

221124-f2zxxaef4x
MD5

f7413e575d9283fd5f866c2d95bcbab1
SHA1

eabfdcffd9d92bd824ec7fd647fe919b2f62b415
SHA256

75df0ad6ff68464ce99aae1755e3364985d6e306f73a446083966e057d66c805
SHA512

3de65ddde509617060df43a1f7ed7985a9586f305a2ced1c585ef64704d31d228ed350babfb8b30f49ce6bb37b74c07a4796d77cba2d768241ed60faed648cf3
SSDEEP

24576:f4sSE9/ITDlSm0SgLo8/qC7u4Z4zRU+be8YNcxJD1OipwVi+:f8EJ6pSm0riIuI4FZbYNMDxwc+

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  75df0ad6ff68464ce99aae1755e3364985d6e306f73a446083966e057d66c805
- Size
  
  936KB
- MD5
  
  f7413e575d9283fd5f866c2d95bcbab1
- SHA1
  
  eabfdcffd9d92bd824ec7fd647fe919b2f62b415
- SHA256
  
  75df0ad6ff68464ce99aae1755e3364985d6e306f73a446083966e057d66c805
- SHA512
  
  3de65ddde509617060df43a1f7ed7985a9586f305a2ced1c585ef64704d31d228ed350babfb8b30f49ce6bb37b74c07a4796d77cba2d768241ed60faed648cf3
- SSDEEP
  
  24576:f4sSE9/ITDlSm0SgLo8/qC7u4Z4zRU+be8YNcxJD1OipwVi+:f8EJ6pSm0riIuI4FZbYNMDxwc+
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2