466f0b01f6a2839c496c81da4b7a1a07573b46db204ff70b9cde950ac5e0d077 | Triage

Sharing

General

Target

466f0b01f6a2839c496c81da4b7a1a07573b46db204ff70b9cde950ac5e0d077
Size

856KB
Sample

221124-lvmxnaeh48
MD5

97112ee78ddfbc32534392f4261213ae
SHA1

42908b0106a2975d29c6ad555b120892db9abab9
SHA256

466f0b01f6a2839c496c81da4b7a1a07573b46db204ff70b9cde950ac5e0d077
SHA512

c2c60a254d6d005f5977a523b74320a20f4db087c4dfd7a64e59ed859a76dfa56af4851efd9076e53d8aa856041c543d8c971636c3a910dbc80a6ac5f3a07421
SSDEEP

24576:IxSnTcBHGmdgsGD1QkNBC59c1mbwpfv19hh7RGA/RKL8:SSnTcBpdgsoZBCbc119Tns8

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  466f0b01f6a2839c496c81da4b7a1a07573b46db204ff70b9cde950ac5e0d077
- Size
  
  856KB
- MD5
  
  97112ee78ddfbc32534392f4261213ae
- SHA1
  
  42908b0106a2975d29c6ad555b120892db9abab9
- SHA256
  
  466f0b01f6a2839c496c81da4b7a1a07573b46db204ff70b9cde950ac5e0d077
- SHA512
  
  c2c60a254d6d005f5977a523b74320a20f4db087c4dfd7a64e59ed859a76dfa56af4851efd9076e53d8aa856041c543d8c971636c3a910dbc80a6ac5f3a07421
- SSDEEP
  
  24576:IxSnTcBHGmdgsGD1QkNBC59c1mbwpfv19hh7RGA/RKL8:SSnTcBpdgsoZBCbc119Tns8
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan