ce49d0789bccdbc87b99445da2ae39af5969155f7d3ceb3d7aa835fe6d93d726 | Triage

Sharing

General

Target

ce49d0789bccdbc87b99445da2ae39af5969155f7d3ceb3d7aa835fe6d93d726
Size

806KB
Sample

221125-q1rj9aeh9t
MD5

628ea623ff7776c252f64373f1ae9e85
SHA1

1aba08f69970eb3d3aaace04c52d70a101303043
SHA256

ce49d0789bccdbc87b99445da2ae39af5969155f7d3ceb3d7aa835fe6d93d726
SHA512

8b90e18e13a9123d1d14f8c443ac5a687c709f5175ec6a078cf8c30c5548c674e958fc3d959b93bdb353a1008d1528904ce90bea0d11bd723a40012b30913af1
SSDEEP

24576:kg7m5XIp4vHg4bt36K0kAL8EVyVTELslBGrVt:kg7GpHgQ8KhWLVyTE4lct

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  ce49d0789bccdbc87b99445da2ae39af5969155f7d3ceb3d7aa835fe6d93d726
- Size
  
  806KB
- MD5
  
  628ea623ff7776c252f64373f1ae9e85
- SHA1
  
  1aba08f69970eb3d3aaace04c52d70a101303043
- SHA256
  
  ce49d0789bccdbc87b99445da2ae39af5969155f7d3ceb3d7aa835fe6d93d726
- SHA512
  
  8b90e18e13a9123d1d14f8c443ac5a687c709f5175ec6a078cf8c30c5548c674e958fc3d959b93bdb353a1008d1528904ce90bea0d11bd723a40012b30913af1
- SSDEEP
  
  24576:kg7m5XIp4vHg4bt36K0kAL8EVyVTELslBGrVt:kg7GpHgQ8KhWLVyTE4lct
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan