591c03d4e862f9eabccb877b180924721f5a3cac8ecf078df45a99ee2580f92b | Triage

Sharing

General

Target

591c03d4e862f9eabccb877b180924721f5a3cac8ecf078df45a99ee2580f92b
Size

64KB
Sample

240319-y891kafd9v
MD5

c7c688d9c7a8a6e02846273c635da2b9
SHA1

29319a18fc800b8edd76029599f9e236326e0c8d
SHA256

591c03d4e862f9eabccb877b180924721f5a3cac8ecf078df45a99ee2580f92b
SHA512

c3a8f60fd122d7ee04505e85de04a6302e7498bfff48ebfc74c7f935253e1d4969ef74dece5617eff4d504dac6da6d14ad55e09dff3ff3ba99b79754a5efeb93
SSDEEP

768:j8OH3B5S5u8gYSzHwaJMA44LT3q5ZNZ2GI+ImRLLU7at8TGqMqf/1H5X/XdnhKJx:jF3BUpBaSJVj1I+ImV+tTpvlfYE8Rm0Z

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  591c03d4e862f9eabccb877b180924721f5a3cac8ecf078df45a99ee2580f92b
- Size
  
  64KB
- MD5
  
  c7c688d9c7a8a6e02846273c635da2b9
- SHA1
  
  29319a18fc800b8edd76029599f9e236326e0c8d
- SHA256
  
  591c03d4e862f9eabccb877b180924721f5a3cac8ecf078df45a99ee2580f92b
- SHA512
  
  c3a8f60fd122d7ee04505e85de04a6302e7498bfff48ebfc74c7f935253e1d4969ef74dece5617eff4d504dac6da6d14ad55e09dff3ff3ba99b79754a5efeb93
- SSDEEP
  
  768:j8OH3B5S5u8gYSzHwaJMA44LT3q5ZNZ2GI+ImRLLU7at8TGqMqf/1H5X/XdnhKJx:jF3BUpBaSJVj1I+ImV+tTpvlfYE8Rm0Z
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2