7ba8960d4b9612151db042650176d44285c06de14d58d75f94d8d49bd0a8094e | Triage

Sharing

General

Target

7ba8960d4b9612151db042650176d44285c06de14d58d75f94d8d49bd0a8094e
Size

827KB
Sample

221124-n113ksfa4v
MD5

e38e73738bcf0462532ec2f718256631
SHA1

c0176d07fd03e6af63aada3799a1a82980e6e32b
SHA256

7ba8960d4b9612151db042650176d44285c06de14d58d75f94d8d49bd0a8094e
SHA512

4e61c7096467ea74b2bcb2702a3ba9c39a14bb9dba9c073bb89b720c9c4019a9894ffd2a65fe45e67d0697cbf7fae8c7f29c6ca765500069afe66da702146590
SSDEEP

24576:zjC9p8pG5eJL1op6gQnC/xXk9mXZgtbPY:3+pw1ogg9UMJEY

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  7ba8960d4b9612151db042650176d44285c06de14d58d75f94d8d49bd0a8094e
- Size
  
  827KB
- MD5
  
  e38e73738bcf0462532ec2f718256631
- SHA1
  
  c0176d07fd03e6af63aada3799a1a82980e6e32b
- SHA256
  
  7ba8960d4b9612151db042650176d44285c06de14d58d75f94d8d49bd0a8094e
- SHA512
  
  4e61c7096467ea74b2bcb2702a3ba9c39a14bb9dba9c073bb89b720c9c4019a9894ffd2a65fe45e67d0697cbf7fae8c7f29c6ca765500069afe66da702146590
- SSDEEP
  
  24576:zjC9p8pG5eJL1op6gQnC/xXk9mXZgtbPY:3+pw1ogg9UMJEY
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan