c6e7333af3961c820b268cfb85950daaa30d2223e0530ac6d573f5774e70b348 | Triage

Sharing

General

Target

c6e7333af3961c820b268cfb85950daaa30d2223e0530ac6d573f5774e70b348
Size

875KB
Sample

221128-rw14kaeg2x
MD5

c96a22c71fd0d7b2a59ad3d3d8d6674d
SHA1

2d9aa5f99ae5be688f6363ea5165d057dbab1e02
SHA256

c6e7333af3961c820b268cfb85950daaa30d2223e0530ac6d573f5774e70b348
SHA512

4c75e18622d0d468bbe81c958430071ff647636109f84ff233b7fa8c0320dc3e4928fbac080bee55796c0fe440dbe1a2bb7cd0b99120b024b4999debfd4cfd99
SSDEEP

24576:UV1KD59J1hO9N9rdxLhqpnJpzMnIUnCNZ9Jp7fuPXqT:4KDbhkRdxLhgzz6tC39Jp7fI6T

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  c6e7333af3961c820b268cfb85950daaa30d2223e0530ac6d573f5774e70b348
- Size
  
  875KB
- MD5
  
  c96a22c71fd0d7b2a59ad3d3d8d6674d
- SHA1
  
  2d9aa5f99ae5be688f6363ea5165d057dbab1e02
- SHA256
  
  c6e7333af3961c820b268cfb85950daaa30d2223e0530ac6d573f5774e70b348
- SHA512
  
  4c75e18622d0d468bbe81c958430071ff647636109f84ff233b7fa8c0320dc3e4928fbac080bee55796c0fe440dbe1a2bb7cd0b99120b024b4999debfd4cfd99
- SSDEEP
  
  24576:UV1KD59J1hO9N9rdxLhqpnJpzMnIUnCNZ9Jp7fuPXqT:4KDbhkRdxLhgzz6tC39Jp7fI6T
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2