ec1af06eec091e7ee9fca6997932adedbb8baff8a812391adf0585debfcb368e | Triage

Sharing

General

Target

ec1af06eec091e7ee9fca6997932adedbb8baff8a812391adf0585debfcb368e
Size

833KB
Sample

221127-zd1dbaga87
MD5

3fe9bb503c09c8a53d59cd45adf9b321
SHA1

9dea6cd9f98b5b61385cbddab35437bc88ce57b9
SHA256

ec1af06eec091e7ee9fca6997932adedbb8baff8a812391adf0585debfcb368e
SHA512

f92613896eaac073ba09d429274ffff456ef948fc07deb637a2f1e843f7a9e4da18ce1e3f41b4ad298d00c9fd6005559eb7259a8ab55e0c5ff06c4a18fddda6c
SSDEEP

24576:mnjNaT2X+UqqDIGISl6ywwtGQCvF7q6c9W1q:mnMLGIG3QymFW9gq

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  ec1af06eec091e7ee9fca6997932adedbb8baff8a812391adf0585debfcb368e
- Size
  
  833KB
- MD5
  
  3fe9bb503c09c8a53d59cd45adf9b321
- SHA1
  
  9dea6cd9f98b5b61385cbddab35437bc88ce57b9
- SHA256
  
  ec1af06eec091e7ee9fca6997932adedbb8baff8a812391adf0585debfcb368e
- SHA512
  
  f92613896eaac073ba09d429274ffff456ef948fc07deb637a2f1e843f7a9e4da18ce1e3f41b4ad298d00c9fd6005559eb7259a8ab55e0c5ff06c4a18fddda6c
- SSDEEP
  
  24576:mnjNaT2X+UqqDIGISl6ywwtGQCvF7q6c9W1q:mnMLGIG3QymFW9gq
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan