aea33a9c6bc81269f665ec8ae401499e10476fb60e28c7b4ff630c0927d85396 | Triage

Sharing

General

Target

aea33a9c6bc81269f665ec8ae401499e10476fb60e28c7b4ff630c0927d85396
Size

833KB
Sample

221204-v45y9sef31
MD5

5bd7516b0ac65e950bbd5713c1e7e7a7
SHA1

faf61e80377c31452909d246c5db82663fd9f0f2
SHA256

aea33a9c6bc81269f665ec8ae401499e10476fb60e28c7b4ff630c0927d85396
SHA512

c3ce1c0c2cf2866cb5acde9afc16da886dfd9a3e9f26a3739d3efcb677d11effb07e773c81e54c12fd40ff3acfafedad9d6e0d39dbff88ac68a9657724fd6d79
SSDEEP

24576:1nj+JT2PL+0JATynydmeuvr3Fln9Yd1V50/uvw:1n6Gb0d6TzQZ0gw

Score

8^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  aea33a9c6bc81269f665ec8ae401499e10476fb60e28c7b4ff630c0927d85396
- Size
  
  833KB
- MD5
  
  5bd7516b0ac65e950bbd5713c1e7e7a7
- SHA1
  
  faf61e80377c31452909d246c5db82663fd9f0f2
- SHA256
  
  aea33a9c6bc81269f665ec8ae401499e10476fb60e28c7b4ff630c0927d85396
- SHA512
  
  c3ce1c0c2cf2866cb5acde9afc16da886dfd9a3e9f26a3739d3efcb677d11effb07e773c81e54c12fd40ff3acfafedad9d6e0d39dbff88ac68a9657724fd6d79
- SSDEEP
  
  24576:1nj+JT2PL+0JATynydmeuvr3Fln9Yd1V50/uvw:1n6Gb0d6TzQZ0gw
Score

8^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

discoveryevasionpersistencetrojan