591e38954faed0a1d767e8d08d7ea15855e9da62107d14b787f282bf62413cc1 | Triage

Sharing

General

Target

591e38954faed0a1d767e8d08d7ea15855e9da62107d14b787f282bf62413cc1
Size

402KB
Sample

240510-1ke7dsbc3y
MD5

48bb7610cfc2f300602b8fd4d7f29907
SHA1

ac62c26a314aaa19d5b9905e9c0a33e74a3b5bbd
SHA256

591e38954faed0a1d767e8d08d7ea15855e9da62107d14b787f282bf62413cc1
SHA512

92d5ea2dd51750c36e700202e4c701ad6d82de0319939f4413486b416a735e2baa558d0f7e840dd9603aa7679f6c53eee024da5e79d02f823fc367bb39495fcf
SSDEEP

6144:hZBMgP/15YPvTpN0xHuwdkAj51VezfHZ3neNZpGkXo+TCCYOs5PHdC:ygP/AU

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  591e38954faed0a1d767e8d08d7ea15855e9da62107d14b787f282bf62413cc1
- Size
  
  402KB
- MD5
  
  48bb7610cfc2f300602b8fd4d7f29907
- SHA1
  
  ac62c26a314aaa19d5b9905e9c0a33e74a3b5bbd
- SHA256
  
  591e38954faed0a1d767e8d08d7ea15855e9da62107d14b787f282bf62413cc1
- SHA512
  
  92d5ea2dd51750c36e700202e4c701ad6d82de0319939f4413486b416a735e2baa558d0f7e840dd9603aa7679f6c53eee024da5e79d02f823fc367bb39495fcf
- SSDEEP
  
  6144:hZBMgP/15YPvTpN0xHuwdkAj51VezfHZ3neNZpGkXo+TCCYOs5PHdC:ygP/AU
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2