dbc2ba9337bded7aefa076acd3d2eacfb0b5adc5337c3f675ba7949f7946a9f0 | Triage

Sharing

General

Target

dbc2ba9337bded7aefa076acd3d2eacfb0b5adc5337c3f675ba7949f7946a9f0
Size

827KB
Sample

221124-l3ax3afd58
MD5

921c64db4344dbead047d42340bfd991
SHA1

06533f20d43478bba3f188d3097d3f8e7618f0b3
SHA256

dbc2ba9337bded7aefa076acd3d2eacfb0b5adc5337c3f675ba7949f7946a9f0
SHA512

19a8cb48260d017be44bce9425be2bad92bb89cf86ac683b42813d646888a2d3c5577efd365bee56b2151053a0a05dd6594b22783e1823c241e098ea9004ae6a
SSDEEP

12288:EUo9LDBdHGpRcJxev2NG8W3KEEkbE7WdmCoMUbIYsihagQ/HUbQRKanXwk/29X7O:b/v2NG8W6mdlJoh8kQRnXfe9XqgZ8

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  dbc2ba9337bded7aefa076acd3d2eacfb0b5adc5337c3f675ba7949f7946a9f0
- Size
  
  827KB
- MD5
  
  921c64db4344dbead047d42340bfd991
- SHA1
  
  06533f20d43478bba3f188d3097d3f8e7618f0b3
- SHA256
  
  dbc2ba9337bded7aefa076acd3d2eacfb0b5adc5337c3f675ba7949f7946a9f0
- SHA512
  
  19a8cb48260d017be44bce9425be2bad92bb89cf86ac683b42813d646888a2d3c5577efd365bee56b2151053a0a05dd6594b22783e1823c241e098ea9004ae6a
- SSDEEP
  
  12288:EUo9LDBdHGpRcJxev2NG8W3KEEkbE7WdmCoMUbIYsihagQ/HUbQRKanXwk/29X7O:b/v2NG8W6mdlJoh8kQRnXfe9XqgZ8
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan