ece5906bcd1a3e89217439cefab0a026a092ab31a1c2368b302394477b7fdf3f | Triage

Sharing

General

Target

ece5906bcd1a3e89217439cefab0a026a092ab31a1c2368b302394477b7fdf3f
Size

810KB
Sample

221124-jx6rfaad54
MD5

7b84f21ece5a088b8dec6cb70bb75b67
SHA1

6a57404715c0ae6f93cc64a32be03569f590161a
SHA256

ece5906bcd1a3e89217439cefab0a026a092ab31a1c2368b302394477b7fdf3f
SHA512

21b56e29b600aa3d680b12d1b8ce50b2541ce4a4b73d4d7c766c34b34f2e119286744c51d9f95a0cc3129fe76232ff747c37950b0099b998c6eb683a0fe1742c
SSDEEP

24576:817GsWFnZLlAo1Bvv12XV7cI7p1k4vPFk3tPFiiA:2UnBl/UXVIkjPFk3ZA

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  ece5906bcd1a3e89217439cefab0a026a092ab31a1c2368b302394477b7fdf3f
- Size
  
  810KB
- MD5
  
  7b84f21ece5a088b8dec6cb70bb75b67
- SHA1
  
  6a57404715c0ae6f93cc64a32be03569f590161a
- SHA256
  
  ece5906bcd1a3e89217439cefab0a026a092ab31a1c2368b302394477b7fdf3f
- SHA512
  
  21b56e29b600aa3d680b12d1b8ce50b2541ce4a4b73d4d7c766c34b34f2e119286744c51d9f95a0cc3129fe76232ff747c37950b0099b998c6eb683a0fe1742c
- SSDEEP
  
  24576:817GsWFnZLlAo1Bvv12XV7cI7p1k4vPFk3tPFiiA:2UnBl/UXVIkjPFk3ZA
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan