eea10eb66fd5c969f22f305f2b487028225b509fad1198ccd3f5b1d689b47cb5 | Triage

Sharing

General

Target

eea10eb66fd5c969f22f305f2b487028225b509fad1198ccd3f5b1d689b47cb5
Size

833KB
Sample

221125-qqgx3aba75
MD5

772b49345f884ab86a802f95d3e5991f
SHA1

a3515d508477287de42ab3fffa73241789ba29a4
SHA256

eea10eb66fd5c969f22f305f2b487028225b509fad1198ccd3f5b1d689b47cb5
SHA512

e6a94a11fedbec4a941ca7edd9c1ed76af2fbd41d9bc0341d3407aa744ea7cec1d59a024427538a4b982718e9883918b0a244e86d95ae9b0de7fae2c7dfc4946
SSDEEP

24576:tnjt8T29KtC8kuFNUrfa4VkhsRJAiAzpmFva/t:tn+wKZEbajmRjAzUFvGt

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  eea10eb66fd5c969f22f305f2b487028225b509fad1198ccd3f5b1d689b47cb5
- Size
  
  833KB
- MD5
  
  772b49345f884ab86a802f95d3e5991f
- SHA1
  
  a3515d508477287de42ab3fffa73241789ba29a4
- SHA256
  
  eea10eb66fd5c969f22f305f2b487028225b509fad1198ccd3f5b1d689b47cb5
- SHA512
  
  e6a94a11fedbec4a941ca7edd9c1ed76af2fbd41d9bc0341d3407aa744ea7cec1d59a024427538a4b982718e9883918b0a244e86d95ae9b0de7fae2c7dfc4946
- SSDEEP
  
  24576:tnjt8T29KtC8kuFNUrfa4VkhsRJAiAzpmFva/t:tn+wKZEbajmRjAzUFvGt
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan