0c0024e453dd5783a7f4c6e7a520daf6cb147088ba94255602f86ecbecd9f6d3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0c0024e453dd5783a7f4c6e7a520daf6cb147088ba94255602f86ecbecd9f6d3
Size

874KB
Sample

221127-jpye4aah67
MD5

d97d8e1966f33c57931571067f263535
SHA1

dcd94126fd5cbf766cab5a8ba0d9119fc3c10b2a
SHA256

0c0024e453dd5783a7f4c6e7a520daf6cb147088ba94255602f86ecbecd9f6d3
SHA512

8cf8c731eb6964ec2ab330b8f1b1385cbd8752950a3a0c4477a35c76e0859cbb15dc679f45f9b2b58cf79884dbc46b0b9acaccccf55caab1f0f813262e5e60ea
SSDEEP

24576:8Q1t/yy3VvH+KxS+DooH0+HIGtElTQIRnTIZ:8Q1tR/+KI+DoQjoG2WZ

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  0c0024e453dd5783a7f4c6e7a520daf6cb147088ba94255602f86ecbecd9f6d3
- Size
  
  874KB
- MD5
  
  d97d8e1966f33c57931571067f263535
- SHA1
  
  dcd94126fd5cbf766cab5a8ba0d9119fc3c10b2a
- SHA256
  
  0c0024e453dd5783a7f4c6e7a520daf6cb147088ba94255602f86ecbecd9f6d3
- SHA512
  
  8cf8c731eb6964ec2ab330b8f1b1385cbd8752950a3a0c4477a35c76e0859cbb15dc679f45f9b2b58cf79884dbc46b0b9acaccccf55caab1f0f813262e5e60ea
- SSDEEP
  
  24576:8Q1t/yy3VvH+KxS+DooH0+HIGtElTQIRnTIZ:8Q1tR/+KI+DoQjoG2WZ
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2