ad53557279950cffba406b24bdded3e44e6a07e4f439aacb43335dcd8405ed89 | Triage

Sharing

General

Target

ad53557279950cffba406b24bdded3e44e6a07e4f439aacb43335dcd8405ed89
Size

812KB
Sample

221128-d5kw2sbh76
MD5

72cfa73444a3789fb64056afe23e5e98
SHA1

0b3604e713aad8f3eab3b369e62888736a622ecd
SHA256

ad53557279950cffba406b24bdded3e44e6a07e4f439aacb43335dcd8405ed89
SHA512

2f3dc2a84b4c7b0cf24e275fbde73416c5c5ab642887aaf99122ce27d79ff6b78087d9e1cf0caf085ccc60459e1f70fef2975f9169e6b662b9907c5a360db231
SSDEEP

12288:34kfC/E1RoqDsEdaXEhYQAyuFRxUjnje2HonM6DGgNMmbeyXrO69F770e2ExG:3bOXgjApFRxUvrHXyXqy7oExG

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  ad53557279950cffba406b24bdded3e44e6a07e4f439aacb43335dcd8405ed89
- Size
  
  812KB
- MD5
  
  72cfa73444a3789fb64056afe23e5e98
- SHA1
  
  0b3604e713aad8f3eab3b369e62888736a622ecd
- SHA256
  
  ad53557279950cffba406b24bdded3e44e6a07e4f439aacb43335dcd8405ed89
- SHA512
  
  2f3dc2a84b4c7b0cf24e275fbde73416c5c5ab642887aaf99122ce27d79ff6b78087d9e1cf0caf085ccc60459e1f70fef2975f9169e6b662b9907c5a360db231
- SSDEEP
  
  12288:34kfC/E1RoqDsEdaXEhYQAyuFRxUjnje2HonM6DGgNMmbeyXrO69F770e2ExG:3bOXgjApFRxUvrHXyXqy7oExG
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan