59dc88b848960bf896cfc93ec2797703eb359c7b8253746cc6720c92ac1ba9d0 | Triage

Sharing

General

Target

59dc88b848960bf896cfc93ec2797703eb359c7b8253746cc6720c92ac1ba9d0
Size

108KB
Sample

240311-1rhwvshe36
MD5

eb81a39e834f2f43b60d7099afe2b56c
SHA1

a518f37637bdffa0dfb0ead91980a94fd241a224
SHA256

59dc88b848960bf896cfc93ec2797703eb359c7b8253746cc6720c92ac1ba9d0
SHA512

a404cd88115e6cebe4335e79ccccc36fb2ce26f6d89359f4f590063024331f1241df5319df33584170dd631525bc6e6aaa8af9332f0067df6c8c5753a550a153
SSDEEP

3072:dxi2remjbqU6pZ2IyZ3QNSLkFcFmKcUsvKwF:dxNr6DkLgUs

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  59dc88b848960bf896cfc93ec2797703eb359c7b8253746cc6720c92ac1ba9d0
- Size
  
  108KB
- MD5
  
  eb81a39e834f2f43b60d7099afe2b56c
- SHA1
  
  a518f37637bdffa0dfb0ead91980a94fd241a224
- SHA256
  
  59dc88b848960bf896cfc93ec2797703eb359c7b8253746cc6720c92ac1ba9d0
- SHA512
  
  a404cd88115e6cebe4335e79ccccc36fb2ce26f6d89359f4f590063024331f1241df5319df33584170dd631525bc6e6aaa8af9332f0067df6c8c5753a550a153
- SSDEEP
  
  3072:dxi2remjbqU6pZ2IyZ3QNSLkFcFmKcUsvKwF:dxNr6DkLgUs
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2