48057d6983c8ab0d2319ab97a87caa0a1ea6b5d68f5ae192658723d8ffd0941b | Triage

Sharing

General

Target

48057d6983c8ab0d2319ab97a87caa0a1ea6b5d68f5ae192658723d8ffd0941b
Size

873KB
Sample

221127-1je51aba27
MD5

e1789953636ae7b2abdb1f7a6d490c87
SHA1

521ec8cc835a6004200d85b34444a55cad6ac812
SHA256

48057d6983c8ab0d2319ab97a87caa0a1ea6b5d68f5ae192658723d8ffd0941b
SHA512

aac34c91ea46b132d377fdd7586a0ca483be6e4620e0588def933bf48942115f2ee5fc2f4109290ddacc58ac117fa4600d877baec03a6443207e3b1e0d596112
SSDEEP

24576:qW/K2hsnzzxCTy0NnozwbmN7BaJEG3JBqFj:3/K33xyTnRmNdaJhfOj

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  48057d6983c8ab0d2319ab97a87caa0a1ea6b5d68f5ae192658723d8ffd0941b
- Size
  
  873KB
- MD5
  
  e1789953636ae7b2abdb1f7a6d490c87
- SHA1
  
  521ec8cc835a6004200d85b34444a55cad6ac812
- SHA256
  
  48057d6983c8ab0d2319ab97a87caa0a1ea6b5d68f5ae192658723d8ffd0941b
- SHA512
  
  aac34c91ea46b132d377fdd7586a0ca483be6e4620e0588def933bf48942115f2ee5fc2f4109290ddacc58ac117fa4600d877baec03a6443207e3b1e0d596112
- SSDEEP
  
  24576:qW/K2hsnzzxCTy0NnozwbmN7BaJEG3JBqFj:3/K33xyTnRmNdaJhfOj
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2