59f910b87a1b4deeb23f02d36632c0c0783f66a86d9f9553c896a4e078c5ae2a | Triage

Sharing

General

Target

59f910b87a1b4deeb23f02d36632c0c0783f66a86d9f9553c896a4e078c5ae2aN
Size

89KB
Sample

241014-k7zxbasgpa
MD5

ff85df8cf4b7ae68c40a567b4caf5ce0
SHA1

e6bfa5d683b1f158eacde1680b0a7134569972e9
SHA256

59f910b87a1b4deeb23f02d36632c0c0783f66a86d9f9553c896a4e078c5ae2a
SHA512

4c0aef95deddb50947511b04d93dfb6f69a26d0201cc02bc693c900dd6afa44043d550180b3e973caae1f8e8649c71500943b3c5b7e3d12281672d23f2d251fc
SSDEEP

1536:e/50Y2UiIKo3xvIGRCizDqn1QRFPKurNZup8SIcBlExkg8Fk:e/apJIKohvPBXquRFCKN1SIcBlakgwk

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  59f910b87a1b4deeb23f02d36632c0c0783f66a86d9f9553c896a4e078c5ae2aN
- Size
  
  89KB
- MD5
  
  ff85df8cf4b7ae68c40a567b4caf5ce0
- SHA1
  
  e6bfa5d683b1f158eacde1680b0a7134569972e9
- SHA256
  
  59f910b87a1b4deeb23f02d36632c0c0783f66a86d9f9553c896a4e078c5ae2a
- SHA512
  
  4c0aef95deddb50947511b04d93dfb6f69a26d0201cc02bc693c900dd6afa44043d550180b3e973caae1f8e8649c71500943b3c5b7e3d12281672d23f2d251fc
- SSDEEP
  
  1536:e/50Y2UiIKo3xvIGRCizDqn1QRFPKurNZup8SIcBlExkg8Fk:e/apJIKohvPBXquRFCKN1SIcBlakgwk
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence