2781ac1ddbdf9fba40864f4fd5403044453425b611ae630cd11e6994e931cd9e | Triage

Sharing

General

Target

2781ac1ddbdf9fba40864f4fd5403044453425b611ae630cd11e6994e931cd9e
Size

795KB
Sample

221124-gjbb9sff9w
MD5

ecb47906dfe5618926d0ec7e3fea362d
SHA1

82ad057614d4c5ba145cd04c10b35cfb915dc3fd
SHA256

2781ac1ddbdf9fba40864f4fd5403044453425b611ae630cd11e6994e931cd9e
SHA512

3a6b1940599e54be4edcbd345ce67e38edc4dbc1c75bdbc1f2205ed8b90f11a3694ca50311cdf9c3cd04fb841d70d5fd429843e8d0fdc10aa2b2cf24d08ceaec
SSDEEP

24576:93SuETH/8ekCuqLtcWkHf9AzmIird9i/f4ZE0:93bGfnkCjxkHVQMbMfd0

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  2781ac1ddbdf9fba40864f4fd5403044453425b611ae630cd11e6994e931cd9e
- Size
  
  795KB
- MD5
  
  ecb47906dfe5618926d0ec7e3fea362d
- SHA1
  
  82ad057614d4c5ba145cd04c10b35cfb915dc3fd
- SHA256
  
  2781ac1ddbdf9fba40864f4fd5403044453425b611ae630cd11e6994e931cd9e
- SHA512
  
  3a6b1940599e54be4edcbd345ce67e38edc4dbc1c75bdbc1f2205ed8b90f11a3694ca50311cdf9c3cd04fb841d70d5fd429843e8d0fdc10aa2b2cf24d08ceaec
- SSDEEP
  
  24576:93SuETH/8ekCuqLtcWkHf9AzmIird9i/f4ZE0:93bGfnkCjxkHVQMbMfd0
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan