acdb5b19f60b98c3bea00c7a2e88765bdd1713a640473296802c85b158b78563 | Triage

Sharing

General

Target

acdb5b19f60b98c3bea00c7a2e88765bdd1713a640473296802c85b158b78563
Size

879KB
Sample

221128-jqj9vsga65
MD5

69a22183b5f150c7a415748e304dd917
SHA1

063bdfd168b03881849fe26a2268a41ef2786724
SHA256

acdb5b19f60b98c3bea00c7a2e88765bdd1713a640473296802c85b158b78563
SHA512

826cd82b1f598efd3631ddc4fb6fb646676ec252b80e868af6286e048ce97130108ffc1ad96376098945d1086bc90c1bdab656c0b3c24595cc2a4389d48811db
SSDEEP

24576:RcKNvzGJwEZSjAH0w9LswcjGxkk6mEuC3YaHABpU6p/Ab:RcK9aJwss6zPx3naHupcb

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  acdb5b19f60b98c3bea00c7a2e88765bdd1713a640473296802c85b158b78563
- Size
  
  879KB
- MD5
  
  69a22183b5f150c7a415748e304dd917
- SHA1
  
  063bdfd168b03881849fe26a2268a41ef2786724
- SHA256
  
  acdb5b19f60b98c3bea00c7a2e88765bdd1713a640473296802c85b158b78563
- SHA512
  
  826cd82b1f598efd3631ddc4fb6fb646676ec252b80e868af6286e048ce97130108ffc1ad96376098945d1086bc90c1bdab656c0b3c24595cc2a4389d48811db
- SSDEEP
  
  24576:RcKNvzGJwEZSjAH0w9LswcjGxkk6mEuC3YaHABpU6p/Ab:RcK9aJwss6zPx3naHupcb
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2