59d0e0b8e446e74d957c0d776c9fd55d2e6e2f71821d3d22a6876e4d7715043b | Triage

Sharing

General

Target

59d0e0b8e446e74d957c0d776c9fd55d2e6e2f71821d3d22a6876e4d7715043b
Size

72KB
Sample

240912-2ssywszgjf
MD5

07c48f29085af41dce019c405494b347
SHA1

672ffa2ce7e2ccf54b9764a243d5fb57a2ed9105
SHA256

59d0e0b8e446e74d957c0d776c9fd55d2e6e2f71821d3d22a6876e4d7715043b
SHA512

97adf89efead412d9c9aaa490ec9d72019ed3a19534a64de539e878ee9c17adbf1553ab02e87f9668af3ac3ad0e648e83cb547930cb147c22dedfd865740906d
SSDEEP

1536:h3kT/NXnW6CneTAj/1DZgItVG0+zDPgUN3QivEtA:h3V69Aj/1DZgIwDPgU5QJA

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  59d0e0b8e446e74d957c0d776c9fd55d2e6e2f71821d3d22a6876e4d7715043b
- Size
  
  72KB
- MD5
  
  07c48f29085af41dce019c405494b347
- SHA1
  
  672ffa2ce7e2ccf54b9764a243d5fb57a2ed9105
- SHA256
  
  59d0e0b8e446e74d957c0d776c9fd55d2e6e2f71821d3d22a6876e4d7715043b
- SHA512
  
  97adf89efead412d9c9aaa490ec9d72019ed3a19534a64de539e878ee9c17adbf1553ab02e87f9668af3ac3ad0e648e83cb547930cb147c22dedfd865740906d
- SSDEEP
  
  1536:h3kT/NXnW6CneTAj/1DZgItVG0+zDPgUN3QivEtA:h3V69Aj/1DZgIwDPgU5QJA
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence