d2ed92241609057798353b8fd14046a9de0800bb3adbc114aad44b8d250372fa | Triage

Sharing

General

Target

d2ed92241609057798353b8fd14046a9de0800bb3adbc114aad44b8d250372fa
Size

923KB
Sample

221125-xha8waba6y
MD5

a48630abeb1e73135c83c45d6ada1a91
SHA1

d29514816cd325e6b90d394c984088ed425f3fc2
SHA256

d2ed92241609057798353b8fd14046a9de0800bb3adbc114aad44b8d250372fa
SHA512

edeff3aaf0d751dccc4de8c4a587035e9deae3a16296cca6990c4ef15bfdbb6bc74b74959d80015bc0aa27d01dbbe5c4d715e75cab5910e05030b29ea27eeff8
SSDEEP

24576:o9tx/u0OEWR0L7D3hpRuBPzrQHB8l6q9S+b6Efy+:Q/TO4L7DRpUPzrQh8Zz2Ea+

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  d2ed92241609057798353b8fd14046a9de0800bb3adbc114aad44b8d250372fa
- Size
  
  923KB
- MD5
  
  a48630abeb1e73135c83c45d6ada1a91
- SHA1
  
  d29514816cd325e6b90d394c984088ed425f3fc2
- SHA256
  
  d2ed92241609057798353b8fd14046a9de0800bb3adbc114aad44b8d250372fa
- SHA512
  
  edeff3aaf0d751dccc4de8c4a587035e9deae3a16296cca6990c4ef15bfdbb6bc74b74959d80015bc0aa27d01dbbe5c4d715e75cab5910e05030b29ea27eeff8
- SSDEEP
  
  24576:o9tx/u0OEWR0L7D3hpRuBPzrQHB8l6q9S+b6Efy+:Q/TO4L7DRpUPzrQh8Zz2Ea+
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2