ace3481a720b8bbabde689e74c1b01f473f714907e5e394397b1c819ebf55e22 | Triage

Sharing

General

Target

ace3481a720b8bbabde689e74c1b01f473f714907e5e394397b1c819ebf55e22
Size

866KB
Sample

221128-jdtb1abd8y
MD5

3c34a41f3e327b567bb4aa25e4400cab
SHA1

dcf6536b141d23b4b64cfb8e8c4839c016a047de
SHA256

ace3481a720b8bbabde689e74c1b01f473f714907e5e394397b1c819ebf55e22
SHA512

208688f45f375bcbd0be1515ed99ebd0dc074b0fad9aa97d032571a434b6c611a08f8cab67678da4a32140093719c91a3d0412e2e2fa575ecf6b218218695c2f
SSDEEP

24576:uQuwJeIgi4nmPMTWV0NXzB0NQLK7y6CPiJTNuno8gg:uQu4jf4nmPMW+dB0iQCPiJTUnvgg

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  ace3481a720b8bbabde689e74c1b01f473f714907e5e394397b1c819ebf55e22
- Size
  
  866KB
- MD5
  
  3c34a41f3e327b567bb4aa25e4400cab
- SHA1
  
  dcf6536b141d23b4b64cfb8e8c4839c016a047de
- SHA256
  
  ace3481a720b8bbabde689e74c1b01f473f714907e5e394397b1c819ebf55e22
- SHA512
  
  208688f45f375bcbd0be1515ed99ebd0dc074b0fad9aa97d032571a434b6c611a08f8cab67678da4a32140093719c91a3d0412e2e2fa575ecf6b218218695c2f
- SSDEEP
  
  24576:uQuwJeIgi4nmPMTWV0NXzB0NQLK7y6CPiJTNuno8gg:uQu4jf4nmPMW+dB0iQCPiJTUnvgg
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2