59bef7fc1c37b890d1449b8ea4464c659db50108658db50bf19c025f9c1b6164 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

59bef7fc1c37b890d1449b8ea4464c659db50108658db50bf19c025f9c1b6164
Size

74KB
Sample

240425-ttkpxacd6w
MD5

ae2d3362563891f9dede793bf78c9c76
SHA1

b640249fe24bb568d09f88514a9408abe8e5d194
SHA256

59bef7fc1c37b890d1449b8ea4464c659db50108658db50bf19c025f9c1b6164
SHA512

4536bd15e8fc74f486152f799585024ac883988bcc74b9bc3ce934aeeef44d3edc6171ce8e645878487a4fe15645b277d48fea654624fa0c8c67db208aabe326
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO4dqR+:GhfxHNIreQm+Hi1

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  59bef7fc1c37b890d1449b8ea4464c659db50108658db50bf19c025f9c1b6164
- Size
  
  74KB
- MD5
  
  ae2d3362563891f9dede793bf78c9c76
- SHA1
  
  b640249fe24bb568d09f88514a9408abe8e5d194
- SHA256
  
  59bef7fc1c37b890d1449b8ea4464c659db50108658db50bf19c025f9c1b6164
- SHA512
  
  4536bd15e8fc74f486152f799585024ac883988bcc74b9bc3ce934aeeef44d3edc6171ce8e645878487a4fe15645b277d48fea654624fa0c8c67db208aabe326
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO4dqR+:GhfxHNIreQm+Hi1
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2