56aabaff4d70d50801234095c0edaacf1bae1129d12082b3188d6b677dd21928 | Triage

Sharing

General

Target

56aabaff4d70d50801234095c0edaacf1bae1129d12082b3188d6b677dd21928
Size

877KB
Sample

221128-r3kedsbb95
MD5

c22c8d24eb40752262ff3d122be75e98
SHA1

da9b942169287abe5bf5d5987b35d3f3a546a227
SHA256

56aabaff4d70d50801234095c0edaacf1bae1129d12082b3188d6b677dd21928
SHA512

e3a11296aa74aaa342de2bfdae511d678f9a50300073e80817368189b2b5463c88031e9166bef9a76cd7e8566d1ab3f2385e9083cf5db0ebf69dd9d73c2c445f
SSDEEP

24576:+k0asIuRR/YTTcDBea24bVv3EcOHYqZpyzD:+k0asN/8cD0a1BPO7IzD

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  56aabaff4d70d50801234095c0edaacf1bae1129d12082b3188d6b677dd21928
- Size
  
  877KB
- MD5
  
  c22c8d24eb40752262ff3d122be75e98
- SHA1
  
  da9b942169287abe5bf5d5987b35d3f3a546a227
- SHA256
  
  56aabaff4d70d50801234095c0edaacf1bae1129d12082b3188d6b677dd21928
- SHA512
  
  e3a11296aa74aaa342de2bfdae511d678f9a50300073e80817368189b2b5463c88031e9166bef9a76cd7e8566d1ab3f2385e9083cf5db0ebf69dd9d73c2c445f
- SSDEEP
  
  24576:+k0asIuRR/YTTcDBea24bVv3EcOHYqZpyzD:+k0asN/8cD0a1BPO7IzD
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2