688062778e5cf0387a3a6ff59a41acf93f858b7861a69c6421a039c74fa99017 | Triage

Sharing

General

Target

688062778e5cf0387a3a6ff59a41acf93f858b7861a69c6421a039c74fa99017
Size

923KB
Sample

221128-r2xckabb55
MD5

cc1ff2f4d2740232cb25dbc02e89bdde
SHA1

4afcea936bc5ab0ab3b5e47c269176028aa391a9
SHA256

688062778e5cf0387a3a6ff59a41acf93f858b7861a69c6421a039c74fa99017
SHA512

96cb05f640c6e42f6306e898f5767eee32bb06b06379ed5e423c99995269f8a8052e9c61bfb93ab66cfb4bd5b25396de32c2174c191e51a3b2d3edf8523dabca
SSDEEP

24576:4FNx/uxuWzKc8oauTC2dq3BP7oqaFAoDD2BQYQLwNfcwfV:Y/+ugKCsP7/a6mDOQ3kBV

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  688062778e5cf0387a3a6ff59a41acf93f858b7861a69c6421a039c74fa99017
- Size
  
  923KB
- MD5
  
  cc1ff2f4d2740232cb25dbc02e89bdde
- SHA1
  
  4afcea936bc5ab0ab3b5e47c269176028aa391a9
- SHA256
  
  688062778e5cf0387a3a6ff59a41acf93f858b7861a69c6421a039c74fa99017
- SHA512
  
  96cb05f640c6e42f6306e898f5767eee32bb06b06379ed5e423c99995269f8a8052e9c61bfb93ab66cfb4bd5b25396de32c2174c191e51a3b2d3edf8523dabca
- SSDEEP
  
  24576:4FNx/uxuWzKc8oauTC2dq3BP7oqaFAoDD2BQYQLwNfcwfV:Y/+ugKCsP7/a6mDOQ3kBV
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2