59ac75db7f677f4ecc3611ced3cd65ff83b996515e420db65093d591d3b383a2 | Triage

Sharing

General

Target

59ac75db7f677f4ecc3611ced3cd65ff83b996515e420db65093d591d3b383a2
Size

48KB
Sample

221121-l4w7paeb65
MD5

3ba46d1cda29558302b9afaee6a514d0
SHA1

b9997d6e5ab600048276ef48d1f534323908e98d
SHA256

59ac75db7f677f4ecc3611ced3cd65ff83b996515e420db65093d591d3b383a2
SHA512

10cba557d77793d47ef94c8a9a15de4dcd39811449393d2d83cb88ffa47224f95787e9ac782b7d12a8a95107ed7afe6364b49c31c5e75af2c48d875d84ea77a2
SSDEEP

768:/Un9rtYqrbA7sZenXKvcLrd3FiQGPL4vzZq2o9W7GsxBbPr:sFtYqrfZeXKvcLBFRGCq2iW7z

Score

6^/10

microsoft persistence phishing

Malware Config

Targets

- Target
  
  59ac75db7f677f4ecc3611ced3cd65ff83b996515e420db65093d591d3b383a2
- Size
  
  48KB
- MD5
  
  3ba46d1cda29558302b9afaee6a514d0
- SHA1
  
  b9997d6e5ab600048276ef48d1f534323908e98d
- SHA256
  
  59ac75db7f677f4ecc3611ced3cd65ff83b996515e420db65093d591d3b383a2
- SHA512
  
  10cba557d77793d47ef94c8a9a15de4dcd39811449393d2d83cb88ffa47224f95787e9ac782b7d12a8a95107ed7afe6364b49c31c5e75af2c48d875d84ea77a2
- SSDEEP
  
  768:/Un9rtYqrbA7sZenXKvcLrd3FiQGPL4vzZq2o9W7GsxBbPr:sFtYqrfZeXKvcLBFRGCq2iW7z
Score

6^/10

microsoft persistence phishing
- Adds Run key to start application
  persistence
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

microsoftpersistencephishing