18284a4b2e77ff31b97ffdfa6ac59835269a5a277117c83d7e131d68aafaeada | Triage

Sharing

Copy URL Twitter E-mail

General

Target

18284a4b2e77ff31b97ffdfa6ac59835269a5a277117c83d7e131d68aafaeada
Size

913KB
Sample

221127-3et5gabh8w
MD5

d7caced902e22bcbc19f3800e5172b7c
SHA1

98ab02827044dfe05f6444f687b7032d8c040faf
SHA256

18284a4b2e77ff31b97ffdfa6ac59835269a5a277117c83d7e131d68aafaeada
SHA512

aa19a610b12a72c5ed93f08a2dd7056ba5800caf77fcd61bb7e2a3edebed596abdc08dcd7d5c7e7e9fe6826a2b011842cb7d2afc13857d91c11616ebce118a27
SSDEEP

24576:XoOPUIvdb/JuuX5clWMPNBzyr7GCEki5zS235++DVU:XPPJdbhzDr7UnpUiU

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  18284a4b2e77ff31b97ffdfa6ac59835269a5a277117c83d7e131d68aafaeada
- Size
  
  913KB
- MD5
  
  d7caced902e22bcbc19f3800e5172b7c
- SHA1
  
  98ab02827044dfe05f6444f687b7032d8c040faf
- SHA256
  
  18284a4b2e77ff31b97ffdfa6ac59835269a5a277117c83d7e131d68aafaeada
- SHA512
  
  aa19a610b12a72c5ed93f08a2dd7056ba5800caf77fcd61bb7e2a3edebed596abdc08dcd7d5c7e7e9fe6826a2b011842cb7d2afc13857d91c11616ebce118a27
- SSDEEP
  
  24576:XoOPUIvdb/JuuX5clWMPNBzyr7GCEki5zS235++DVU:XPPJdbhzDr7UnpUiU
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2