59d2b568b9c69661c37762a9c6a9968cabfd47167f659df070f6a6c29d892288 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

v1.exe
Size

468KB
Sample

240312-gh31wshh51
MD5

dc5962e1fbd5b5c9e6046e150d0cc928
SHA1

3b30871d1474c6c60e964b343734de2f0b7abeb1
SHA256

59d2b568b9c69661c37762a9c6a9968cabfd47167f659df070f6a6c29d892288
SHA512

056fdbb07ceb866fc1b9f7b7f4e8e999d5f5c3141be96979139af6618937d1fffd6ebb7baabea822b3fd3fe5f58bb1b0747292afde37f11ddbcc62e0e2137add
SSDEEP

6144:GJD+RwqoQptRT0bo2n50vDT7TO1ngbmnVDWGuJQXCzbYzB5xNFv0YQ1HJnY6dDtm:GJ0n0bngTenaUzBE1HJnYH1sU

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  v1.exe
- Size
  
  468KB
- MD5
  
  dc5962e1fbd5b5c9e6046e150d0cc928
- SHA1
  
  3b30871d1474c6c60e964b343734de2f0b7abeb1
- SHA256
  
  59d2b568b9c69661c37762a9c6a9968cabfd47167f659df070f6a6c29d892288
- SHA512
  
  056fdbb07ceb866fc1b9f7b7f4e8e999d5f5c3141be96979139af6618937d1fffd6ebb7baabea822b3fd3fe5f58bb1b0747292afde37f11ddbcc62e0e2137add
- SSDEEP
  
  6144:GJD+RwqoQptRT0bo2n50vDT7TO1ngbmnVDWGuJQXCzbYzB5xNFv0YQ1HJnY6dDtm:GJ0n0bngTenaUzBE1HJnYH1sU
Score

8^/10

persistence
- Downloads MZ/PE file
- Sets service image path in registry
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2