fefc18cba7caa22a66ce92950035fcc74c6d65aee30175497677e353da91652b | Triage

Sharing

General

Target

fefc18cba7caa22a66ce92950035fcc74c6d65aee30175497677e353da91652b
Size

891KB
Sample

221127-3m1bfsce8z
MD5

62f14114e5bd7c0053601c05d3528325
SHA1

2e6fd8c150075927b75cba36022c800c1866fc16
SHA256

fefc18cba7caa22a66ce92950035fcc74c6d65aee30175497677e353da91652b
SHA512

64f94d39f8b6e6ab3287421359f497bbdc0439cd97121c967c8173a74acc2e391dc3d837dc041ccbc23ca12bd5c3a49a50fa52ea033522da3ad61186991a2669
SSDEEP

24576:zbUK7SWgok+dWlc0ZQwfVf8nuTWn46iHeoQxOjY:zYKZk0YQMVfsIeVx0Y

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  fefc18cba7caa22a66ce92950035fcc74c6d65aee30175497677e353da91652b
- Size
  
  891KB
- MD5
  
  62f14114e5bd7c0053601c05d3528325
- SHA1
  
  2e6fd8c150075927b75cba36022c800c1866fc16
- SHA256
  
  fefc18cba7caa22a66ce92950035fcc74c6d65aee30175497677e353da91652b
- SHA512
  
  64f94d39f8b6e6ab3287421359f497bbdc0439cd97121c967c8173a74acc2e391dc3d837dc041ccbc23ca12bd5c3a49a50fa52ea033522da3ad61186991a2669
- SSDEEP
  
  24576:zbUK7SWgok+dWlc0ZQwfVf8nuTWn46iHeoQxOjY:zYKZk0YQMVfsIeVx0Y
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2