94b13f65b1ae2c7f319535b83a11a20ee274c808f08d2c03ed85398603b95c7d | Triage

Sharing

General

Target

94b13f65b1ae2c7f319535b83a11a20ee274c808f08d2c03ed85398603b95c7d
Size

827KB
Sample

221124-n26z8aca25
MD5

f33f14aad81edf20a0bd32b7dbec5317
SHA1

1b884b02763957edcc5d9b3db704675263d9f5bd
SHA256

94b13f65b1ae2c7f319535b83a11a20ee274c808f08d2c03ed85398603b95c7d
SHA512

35830b96c967911e4bb23a3fed6b799111b56ad5d9ad83aca95bfd619bb2cfb5ae97d5307bcd08fed69d66cff642da1613cce7ab79aeabe9267b5f220d9baabc
SSDEEP

24576:d1uD0ZjVnPjyU4aBYhxVegiAOCU8x4FkM:GSPjyUKhxpiAP46M

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  94b13f65b1ae2c7f319535b83a11a20ee274c808f08d2c03ed85398603b95c7d
- Size
  
  827KB
- MD5
  
  f33f14aad81edf20a0bd32b7dbec5317
- SHA1
  
  1b884b02763957edcc5d9b3db704675263d9f5bd
- SHA256
  
  94b13f65b1ae2c7f319535b83a11a20ee274c808f08d2c03ed85398603b95c7d
- SHA512
  
  35830b96c967911e4bb23a3fed6b799111b56ad5d9ad83aca95bfd619bb2cfb5ae97d5307bcd08fed69d66cff642da1613cce7ab79aeabe9267b5f220d9baabc
- SSDEEP
  
  24576:d1uD0ZjVnPjyU4aBYhxVegiAOCU8x4FkM:GSPjyUKhxpiAP46M
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan