59412cf36e38106eb5f64f6ebae6bf4f05698bfd3b2f9ae007782c7a718d2ca9 | Triage

Sharing

General

Target

59412cf36e38106eb5f64f6ebae6bf4f05698bfd3b2f9ae007782c7a718d2ca9
Size

464KB
Sample

240326-y42hmaed31
MD5

76973f9f275155f6db78f47268262709
SHA1

f54f87497d15835e52dcbefca108a08df241d2bf
SHA256

59412cf36e38106eb5f64f6ebae6bf4f05698bfd3b2f9ae007782c7a718d2ca9
SHA512

6f9b02372c8b492a69e28752c31b3b0ed5ab4c714f41de8b60037ff2ce7ff684a8d12e8cf5b7864e146577c954000e5caaf2be874b4978c3750ae75c2d8fd53f
SSDEEP

12288:x+gah2kkkkK4kXkkkkkkkkl888888888888888888nusG:Igah2kkkkK4kXkkkkkkkkK

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  59412cf36e38106eb5f64f6ebae6bf4f05698bfd3b2f9ae007782c7a718d2ca9
- Size
  
  464KB
- MD5
  
  76973f9f275155f6db78f47268262709
- SHA1
  
  f54f87497d15835e52dcbefca108a08df241d2bf
- SHA256
  
  59412cf36e38106eb5f64f6ebae6bf4f05698bfd3b2f9ae007782c7a718d2ca9
- SHA512
  
  6f9b02372c8b492a69e28752c31b3b0ed5ab4c714f41de8b60037ff2ce7ff684a8d12e8cf5b7864e146577c954000e5caaf2be874b4978c3750ae75c2d8fd53f
- SSDEEP
  
  12288:x+gah2kkkkK4kXkkkkkkkkl888888888888888888nusG:Igah2kkkkK4kXkkkkkkkkK
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2