181e720b324fa575d684667577b4835c1ed150a3162b7e267e000a314fafb4a6 | Triage

Submit
Reports

Overview

overview

8

Static

static

winprofile

windows7-x64

6

winprofile

windows10-1703-x64

8

Resubmissions

22-12-2022 05:26

221222-f5bdqahb3y 8

21-12-2022 22:17

221221-17d8lsde38 8

Sharing

General

Target

181e720b324fa575d684667577b4835c1ed150a3162b7e267e000a314fafb4a6
Size

375KB
Sample

221221-17d8lsde38
MD5

80467982424807b6091c2084b0497e3b
SHA1

e9e2ddf35e07e6b07d598e46c4a24809b9718be5
SHA256

181e720b324fa575d684667577b4835c1ed150a3162b7e267e000a314fafb4a6
SHA512

cf09dedec0d8fabbc805c196079775972f56897151de47131e5a7034bbb179871fc79def43e5b61c2d83f0d6708e898ce00af4bba34448b0fc1f013501dd219c
SSDEEP

6144:BhNqzl7HM+jznopbKBUoHm+BdkgGf/U2O8ib8:BhCs+/yik8S9/M8

Score

8^/10

discovery evasion persistence trojan

Static task

static1

Behavioral task

behavioral1

Sample

181e720b324fa575d684667577b4835c1ed150a3162b7e267e000a314fafb4a6.exe

Resource

win7-20220812-en

windows7-x64

5 signatures

300 seconds

Behavioral task

behavioral2

Sample

181e720b324fa575d684667577b4835c1ed150a3162b7e267e000a314fafb4a6.exe

Resource

win10-20220812-en

discovery evasion persistence trojan

windows10-1703-x64

13 signatures

300 seconds

Malware Config

Targets

- Target
  
  181e720b324fa575d684667577b4835c1ed150a3162b7e267e000a314fafb4a6
- Size
  
  375KB
- MD5
  
  80467982424807b6091c2084b0497e3b
- SHA1
  
  e9e2ddf35e07e6b07d598e46c4a24809b9718be5
- SHA256
  
  181e720b324fa575d684667577b4835c1ed150a3162b7e267e000a314fafb4a6
- SHA512
  
  cf09dedec0d8fabbc805c196079775972f56897151de47131e5a7034bbb179871fc79def43e5b61c2d83f0d6708e898ce00af4bba34448b0fc1f013501dd219c
- SSDEEP
  
  6144:BhNqzl7HM+jznopbKBUoHm+BdkgGf/U2O8ib8:BhCs+/yik8S9/M8
Score

8^/10

persistence discovery evasion trojan
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasionpersistencetrojan

© 2018-2025

Terms | Privacy