e59371118640b0007251d6ca428a1426a05cc4d9b5cb9b6b770ffb17c30ccff4 | Triage

Sharing

General

Target

e59371118640b0007251d6ca428a1426a05cc4d9b5cb9b6b770ffb17c30ccff4N
Size

56KB
Sample

241012-kz4wasxdpr
MD5

f5fb04abccbb1d421b789f459e952300
SHA1

0334cc73b48a37535c4edff82ad118d974d1dcb1
SHA256

e59371118640b0007251d6ca428a1426a05cc4d9b5cb9b6b770ffb17c30ccff4
SHA512

75d19628ecdd1cb7e4b9b760af442528436b02aa12a6b9940533ff9a9aa6a8cac4ca0db5965952ecc2ba35c6d3bb23d4e27f05b80635615f9d20aa00bb67c109
SSDEEP

1536:lvtX3FLM0+Ybm8+T+e198KWEx6HCbpjEt1XM:NR3FLMvYkaQYzYpIXM

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e59371118640b0007251d6ca428a1426a05cc4d9b5cb9b6b770ffb17c30ccff4N
- Size
  
  56KB
- MD5
  
  f5fb04abccbb1d421b789f459e952300
- SHA1
  
  0334cc73b48a37535c4edff82ad118d974d1dcb1
- SHA256
  
  e59371118640b0007251d6ca428a1426a05cc4d9b5cb9b6b770ffb17c30ccff4
- SHA512
  
  75d19628ecdd1cb7e4b9b760af442528436b02aa12a6b9940533ff9a9aa6a8cac4ca0db5965952ecc2ba35c6d3bb23d4e27f05b80635615f9d20aa00bb67c109
- SSDEEP
  
  1536:lvtX3FLM0+Ybm8+T+e198KWEx6HCbpjEt1XM:NR3FLMvYkaQYzYpIXM
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence