e408757be36a336b3c1e0b022dab1506cc7d9e66e6cbbd19159048d22c5818e4 | Triage

Sharing

General

Target

e408757be36a336b3c1e0b022dab1506cc7d9e66e6cbbd19159048d22c5818e4
Size

842KB
Sample

221124-n5y4sacb69
MD5

07399b12dddd3949f47c3651a3d5111b
SHA1

c95e4ac4d9f54873f23b341e075c873f08ac8b22
SHA256

e408757be36a336b3c1e0b022dab1506cc7d9e66e6cbbd19159048d22c5818e4
SHA512

031930d02da0ba6d3fe26a54d94f74c1c730f23f6d15f63c6e8d58dd48e7c5eb090f9fd80373ee0a32acf02e8cbcb1faecb1d1d73ca183c6618f0072c1115709
SSDEEP

24576:7yDSwO7wvpRzJ9hhKFCS0SKOP/4c0iVQIygAopx:74S+gKOPxbVQIWCx

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  e408757be36a336b3c1e0b022dab1506cc7d9e66e6cbbd19159048d22c5818e4
- Size
  
  842KB
- MD5
  
  07399b12dddd3949f47c3651a3d5111b
- SHA1
  
  c95e4ac4d9f54873f23b341e075c873f08ac8b22
- SHA256
  
  e408757be36a336b3c1e0b022dab1506cc7d9e66e6cbbd19159048d22c5818e4
- SHA512
  
  031930d02da0ba6d3fe26a54d94f74c1c730f23f6d15f63c6e8d58dd48e7c5eb090f9fd80373ee0a32acf02e8cbcb1faecb1d1d73ca183c6618f0072c1115709
- SSDEEP
  
  24576:7yDSwO7wvpRzJ9hhKFCS0SKOP/4c0iVQIygAopx:74S+gKOPxbVQIWCx
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan