59aa4b5b4c1ae858742e14789e353ece58624dd9691bc8530d8e43dfa4b051ad | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16cb9a0ddc8a4ff5432260a3144d7c0f
Size

10KB
Sample

231230-m8tg2aeham
MD5

16cb9a0ddc8a4ff5432260a3144d7c0f
SHA1

9cc6db3f7497ef88223b20c7efdcb3b12fb543c0
SHA256

59aa4b5b4c1ae858742e14789e353ece58624dd9691bc8530d8e43dfa4b051ad
SHA512

1d340643581bddbc312920ecf470d27c5f30e8bab538efea5e8ef15ecfed75d35e81b625c25e861a959fe7f1912a7aef5aec8a2f2c4befb17199b9f7d05a9fe7
SSDEEP

192:0l5W+dYJTLAjeziTBAlSlY0El1qcfcgf+Q/3/vpoYowKja2:47d6HvziTBTlYJl1qFgDv6w0f

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  16cb9a0ddc8a4ff5432260a3144d7c0f
- Size
  
  10KB
- MD5
  
  16cb9a0ddc8a4ff5432260a3144d7c0f
- SHA1
  
  9cc6db3f7497ef88223b20c7efdcb3b12fb543c0
- SHA256
  
  59aa4b5b4c1ae858742e14789e353ece58624dd9691bc8530d8e43dfa4b051ad
- SHA512
  
  1d340643581bddbc312920ecf470d27c5f30e8bab538efea5e8ef15ecfed75d35e81b625c25e861a959fe7f1912a7aef5aec8a2f2c4befb17199b9f7d05a9fe7
- SSDEEP
  
  192:0l5W+dYJTLAjeziTBAlSlY0El1qcfcgf+Q/3/vpoYowKja2:47d6HvziTBTlYJl1qFgDv6w0f
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2