73fe62064443e7402e9adf66cb2ba0224f7380b636700e6c2e9084310afc62f6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

73fe62064443e7402e9adf66cb2ba0224f7380b636700e6c2e9084310afc62f6
Size

41KB
Sample

220919-w4lq3acdg9
MD5

7e4bdfb83b4abcc321504de09f998140
SHA1

30f47e44df8502c96b3685ae211d70991e0868a5
SHA256

73fe62064443e7402e9adf66cb2ba0224f7380b636700e6c2e9084310afc62f6
SHA512

2da312fbcd6a683393d46c2868b092e789e07e18af2282c75fe0f25f5d1344eb1430d56cbc91621e04830663ebea52101d78917d2f87d5d655e2937f6952fec1
SSDEEP

768:MFwOBpeTOvDmmDQCfxYegZekQZCaRZOTjCjdi612sxBQ:laeuDmmDl3giCEZOTejcg2D

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  73fe62064443e7402e9adf66cb2ba0224f7380b636700e6c2e9084310afc62f6
- Size
  
  41KB
- MD5
  
  7e4bdfb83b4abcc321504de09f998140
- SHA1
  
  30f47e44df8502c96b3685ae211d70991e0868a5
- SHA256
  
  73fe62064443e7402e9adf66cb2ba0224f7380b636700e6c2e9084310afc62f6
- SHA512
  
  2da312fbcd6a683393d46c2868b092e789e07e18af2282c75fe0f25f5d1344eb1430d56cbc91621e04830663ebea52101d78917d2f87d5d655e2937f6952fec1
- SSDEEP
  
  768:MFwOBpeTOvDmmDQCfxYegZekQZCaRZOTjCjdi612sxBQ:laeuDmmDl3giCEZOTejcg2D
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2