58e5808c9f8412d1eb5e3d490717d2385c548ec24357a65c9a3cad2c497747de | Triage

Sharing

General

Target

58e5808c9f8412d1eb5e3d490717d2385c548ec24357a65c9a3cad2c497747de
Size

89KB
Sample

221002-m429daccb9
MD5

6c3dbcda1eab2c5417b6b0005273123b
SHA1

386a20cf5dcfd342547e0982aadbc130379727ae
SHA256

58e5808c9f8412d1eb5e3d490717d2385c548ec24357a65c9a3cad2c497747de
SHA512

187e592256a96100b13b3a4ad279f9383932b23b036516e5467057e02eba09e8c6bab7d1d9f5b5393aa05986762a012cbeb2747f2aa782c054220fdca186e9ea
SSDEEP

1536:8A1dJ8GizQfkCyx+gZLJMmXeBz+Z5aj0B9Id0qoGpFlWpstl:8TGizFLfLhuBz+2jk80ElWpkl

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  58e5808c9f8412d1eb5e3d490717d2385c548ec24357a65c9a3cad2c497747de
- Size
  
  89KB
- MD5
  
  6c3dbcda1eab2c5417b6b0005273123b
- SHA1
  
  386a20cf5dcfd342547e0982aadbc130379727ae
- SHA256
  
  58e5808c9f8412d1eb5e3d490717d2385c548ec24357a65c9a3cad2c497747de
- SHA512
  
  187e592256a96100b13b3a4ad279f9383932b23b036516e5467057e02eba09e8c6bab7d1d9f5b5393aa05986762a012cbeb2747f2aa782c054220fdca186e9ea
- SSDEEP
  
  1536:8A1dJ8GizQfkCyx+gZLJMmXeBz+Z5aj0B9Id0qoGpFlWpstl:8TGizFLfLhuBz+2jk80ElWpkl
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2