7ed06e0d234b0d98c2f3a070777acc9791bba331df648f343d29c3d8b8330514 | Triage

Sharing

General

Target

7ed06e0d234b0d98c2f3a070777acc9791bba331df648f343d29c3d8b8330514
Size

838KB
Sample

221124-ptxbgsdf86
MD5

f1307549ab4ae8f65b5e3b9c8e064ae3
SHA1

fe0b899d1a5a7ca241cb083585a2e0650afe2266
SHA256

7ed06e0d234b0d98c2f3a070777acc9791bba331df648f343d29c3d8b8330514
SHA512

6748ccb6ba00b0caff996c2f0d38768fbfbca77f3cfdb9230d3d2c9b39b73d1908adb8624f4d9052462aae7a96b7a6b15ecc405c7e155464ccad1c1c7d1ab933
SSDEEP

24576:z6siQ533pwBmHLpNfipMzWvXgsR5sbpIahfM:z6sTrpNfipMzNA+buaBM

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  7ed06e0d234b0d98c2f3a070777acc9791bba331df648f343d29c3d8b8330514
- Size
  
  838KB
- MD5
  
  f1307549ab4ae8f65b5e3b9c8e064ae3
- SHA1
  
  fe0b899d1a5a7ca241cb083585a2e0650afe2266
- SHA256
  
  7ed06e0d234b0d98c2f3a070777acc9791bba331df648f343d29c3d8b8330514
- SHA512
  
  6748ccb6ba00b0caff996c2f0d38768fbfbca77f3cfdb9230d3d2c9b39b73d1908adb8624f4d9052462aae7a96b7a6b15ecc405c7e155464ccad1c1c7d1ab933
- SSDEEP
  
  24576:z6siQ533pwBmHLpNfipMzWvXgsR5sbpIahfM:z6sTrpNfipMzNA+buaBM
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan