ac2a25c6e96cfe6e80b5be868b322a2df040bfe9b6bd291f5cc3e8d1bc42567a | Triage

Sharing

General

Target

ac2a25c6e96cfe6e80b5be868b322a2df040bfe9b6bd291f5cc3e8d1bc42567a
Size

814KB
Sample

221128-rvb32sef2t
MD5

4266bc2bb4c1a46584be7bbd6da180a6
SHA1

8948a36dc115b8bf6cecdda6a502ff318fe79744
SHA256

ac2a25c6e96cfe6e80b5be868b322a2df040bfe9b6bd291f5cc3e8d1bc42567a
SHA512

7102a29df864031036abc6b4eba70cf6909b354ab577c7469010ff1ef3a6df07a0cf013ad81df5ece67177b5b425bef8ed23e5fa9393f590e8e4e9dd143e2804
SSDEEP

24576:Hpqk3BS3ikxA2JeSzNG7F4tbQqLEI4Glmvs0J/LesBW:Z03ixEe2bQqLEIWNJiwW

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  ac2a25c6e96cfe6e80b5be868b322a2df040bfe9b6bd291f5cc3e8d1bc42567a
- Size
  
  814KB
- MD5
  
  4266bc2bb4c1a46584be7bbd6da180a6
- SHA1
  
  8948a36dc115b8bf6cecdda6a502ff318fe79744
- SHA256
  
  ac2a25c6e96cfe6e80b5be868b322a2df040bfe9b6bd291f5cc3e8d1bc42567a
- SHA512
  
  7102a29df864031036abc6b4eba70cf6909b354ab577c7469010ff1ef3a6df07a0cf013ad81df5ece67177b5b425bef8ed23e5fa9393f590e8e4e9dd143e2804
- SSDEEP
  
  24576:Hpqk3BS3ikxA2JeSzNG7F4tbQqLEI4Glmvs0J/LesBW:Z03ixEe2bQqLEIWNJiwW
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan