59b75341e2603f2c4c1c18aa3f7ea182691afcd4866de135389ee23957f1ccbc | Triage

Sharing

General

Target

59b75341e2603f2c4c1c18aa3f7ea182691afcd4866de135389ee23957f1ccbc
Size

843KB
Sample

221127-1exjgsag29
MD5

b15a3a769f62280f306ec4654121f6f3
SHA1

0f0a5c849b510d9b1c7548f4a0e15bcb73fa293b
SHA256

59b75341e2603f2c4c1c18aa3f7ea182691afcd4866de135389ee23957f1ccbc
SHA512

fef3d4fc13e997ca9142b7ebf64a9a5f835440cb1af6d66f5d7de21ea604f35b66d9381cfdf48af060964ac3cce13dcf3e377523e82c572fcb39523933e3ecb9
SSDEEP

24576:7njI1T2ZDOZ1OY2lsSGh0bJfCumuvy3AnUivd6:7ncVZcYSGubZCvil6

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  59b75341e2603f2c4c1c18aa3f7ea182691afcd4866de135389ee23957f1ccbc
- Size
  
  843KB
- MD5
  
  b15a3a769f62280f306ec4654121f6f3
- SHA1
  
  0f0a5c849b510d9b1c7548f4a0e15bcb73fa293b
- SHA256
  
  59b75341e2603f2c4c1c18aa3f7ea182691afcd4866de135389ee23957f1ccbc
- SHA512
  
  fef3d4fc13e997ca9142b7ebf64a9a5f835440cb1af6d66f5d7de21ea604f35b66d9381cfdf48af060964ac3cce13dcf3e377523e82c572fcb39523933e3ecb9
- SSDEEP
  
  24576:7njI1T2ZDOZ1OY2lsSGh0bJfCumuvy3AnUivd6:7ncVZcYSGubZCvil6
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan