046ead6576bcdc2f9cf5793e8b7b9f43ebe0674aaf27800d7e533c8470b93dbc | Triage

Sharing

General

Target

046ead6576bcdc2f9cf5793e8b7b9f43ebe0674aaf27800d7e533c8470b93dbc
Size

871KB
Sample

240310-vzjkgaha99
MD5

9cd07514de4120c1dde1cd5b47213cc8
SHA1

f0ddfc545a3c26e1debf4ddcafa9b2896e43a067
SHA256

046ead6576bcdc2f9cf5793e8b7b9f43ebe0674aaf27800d7e533c8470b93dbc
SHA512

9bfc9af2c9be8048c0969e209da9548133667ebbd66d674ae91c4ab8bc3cbd7d17aac8e01734ce2b9c637e8d23059cf30ebf10eb70e6c3821d86f7e811583f70
SSDEEP

24576:07m1XC+B76Syjhi4pBh0BrhzReG1RlVQDqZU8LEfY:07OXC+YSydieBePtl/y8gfY

Score

7^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  046ead6576bcdc2f9cf5793e8b7b9f43ebe0674aaf27800d7e533c8470b93dbc
- Size
  
  871KB
- MD5
  
  9cd07514de4120c1dde1cd5b47213cc8
- SHA1
  
  f0ddfc545a3c26e1debf4ddcafa9b2896e43a067
- SHA256
  
  046ead6576bcdc2f9cf5793e8b7b9f43ebe0674aaf27800d7e533c8470b93dbc
- SHA512
  
  9bfc9af2c9be8048c0969e209da9548133667ebbd66d674ae91c4ab8bc3cbd7d17aac8e01734ce2b9c637e8d23059cf30ebf10eb70e6c3821d86f7e811583f70
- SSDEEP
  
  24576:07m1XC+B76Syjhi4pBh0BrhzReG1RlVQDqZU8LEfY:07OXC+YSydieBePtl/y8gfY
Score

7^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2