c0fc282cb977b371cbeb76c13c2bfb390df8e1270025197bd67d683450f2e1f3 | Triage

Sharing

General

Target

c0fc282cb977b371cbeb76c13c2bfb390df8e1270025197bd67d683450f2e1f3
Size

825KB
Sample

221124-n4qq1sfb9x
MD5

8e791e279ebf6bd6231c2c0c0072febc
SHA1

4d06d5ce9e9969c179792458d7cc4cfa0b96c769
SHA256

c0fc282cb977b371cbeb76c13c2bfb390df8e1270025197bd67d683450f2e1f3
SHA512

42847fb81a8577405310a00a0d7ccca0ae19b16f30dc8c587ccf455bc02c1213f41ad0a500c4337e8781e0c6d88ec74e9a41534d6e91355a2cc1536cc8d230c3
SSDEEP

24576:ei3mMnHX2FjJ8PpttpkTiFWzyMXNrSPDEdZDNm:e632QsmFnwNrFThm

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  c0fc282cb977b371cbeb76c13c2bfb390df8e1270025197bd67d683450f2e1f3
- Size
  
  825KB
- MD5
  
  8e791e279ebf6bd6231c2c0c0072febc
- SHA1
  
  4d06d5ce9e9969c179792458d7cc4cfa0b96c769
- SHA256
  
  c0fc282cb977b371cbeb76c13c2bfb390df8e1270025197bd67d683450f2e1f3
- SHA512
  
  42847fb81a8577405310a00a0d7ccca0ae19b16f30dc8c587ccf455bc02c1213f41ad0a500c4337e8781e0c6d88ec74e9a41534d6e91355a2cc1536cc8d230c3
- SSDEEP
  
  24576:ei3mMnHX2FjJ8PpttpkTiFWzyMXNrSPDEdZDNm:e632QsmFnwNrFThm
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2