a3c0ddb483162497f9fb4e28a1ba2e05767ffd0501a20ae6055ed1a9ee82fa4b | Triage

Sharing

General

Target

a3c0ddb483162497f9fb4e28a1ba2e05767ffd0501a20ae6055ed1a9ee82fa4b
Size

891KB
Sample

221127-tl8f1aec5y
MD5

c4d57801c8d63903a5fc2c0ce33c6559
SHA1

78adb5992ee821b4af4c183e30cb6b5a29608356
SHA256

a3c0ddb483162497f9fb4e28a1ba2e05767ffd0501a20ae6055ed1a9ee82fa4b
SHA512

9462b3a7f54049dc3d3345291dc99b5424668c36648e0f9d669e1a212089a1e64f3940ab2322c76c3360128f0e158e41a63914028b1c6d9c4bacc058b60c2abe
SSDEEP

12288:mbrfWD2GI3nIl/R/lnDxdIHu3jLGtv95Sn4hecaOIqZc8dotOwlfB5dX5hKJLO:mbr+JlLkHunG95Sn40cUt3l5zJMJLO

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  a3c0ddb483162497f9fb4e28a1ba2e05767ffd0501a20ae6055ed1a9ee82fa4b
- Size
  
  891KB
- MD5
  
  c4d57801c8d63903a5fc2c0ce33c6559
- SHA1
  
  78adb5992ee821b4af4c183e30cb6b5a29608356
- SHA256
  
  a3c0ddb483162497f9fb4e28a1ba2e05767ffd0501a20ae6055ed1a9ee82fa4b
- SHA512
  
  9462b3a7f54049dc3d3345291dc99b5424668c36648e0f9d669e1a212089a1e64f3940ab2322c76c3360128f0e158e41a63914028b1c6d9c4bacc058b60c2abe
- SSDEEP
  
  12288:mbrfWD2GI3nIl/R/lnDxdIHu3jLGtv95Sn4hecaOIqZc8dotOwlfB5dX5hKJLO:mbr+JlLkHunG95Sn40cUt3l5zJMJLO
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2