5c6fefb150aaee157c196228c2c07b27610e7fea00f4760a4f70b3521e401eb4 | Triage

Sharing

General

Target

5c6fefb150aaee157c196228c2c07b27610e7fea00f4760a4f70b3521e401eb4
Size

810KB
Sample

221125-rz5wxsec36
MD5

b2b9c21ea54abbcfa8c0742b403697c0
SHA1

67830934af916b8eecfbaab1357b5c11456f0aa5
SHA256

5c6fefb150aaee157c196228c2c07b27610e7fea00f4760a4f70b3521e401eb4
SHA512

7a65253ccd2a1655f6d93aed495c6915cf5a6451d2423b266748df97719b0bd0e1bdba11a7aba1511b6df77876cefed93cc3babed3ac0a98e93dfc0b809d0019
SSDEEP

24576:XRXhWDvio2Q2Mgw1sLkSlJ6YgOjs3e7Y55xSN:BsDb29qw1b6gjSeUrkN

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  5c6fefb150aaee157c196228c2c07b27610e7fea00f4760a4f70b3521e401eb4
- Size
  
  810KB
- MD5
  
  b2b9c21ea54abbcfa8c0742b403697c0
- SHA1
  
  67830934af916b8eecfbaab1357b5c11456f0aa5
- SHA256
  
  5c6fefb150aaee157c196228c2c07b27610e7fea00f4760a4f70b3521e401eb4
- SHA512
  
  7a65253ccd2a1655f6d93aed495c6915cf5a6451d2423b266748df97719b0bd0e1bdba11a7aba1511b6df77876cefed93cc3babed3ac0a98e93dfc0b809d0019
- SSDEEP
  
  24576:XRXhWDvio2Q2Mgw1sLkSlJ6YgOjs3e7Y55xSN:BsDb29qw1b6gjSeUrkN
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan