80894bf1f9486d86fd4173114fa495392509e393c5c44621de2254c3e003560f | Triage

Sharing

General

Target

80894bf1f9486d86fd4173114fa495392509e393c5c44621de2254c3e003560f
Size

778KB
Sample

221004-dp1mkaadb8
MD5

345c94ea6582cf6e15bb297b3295bcd0
SHA1

f444535f9bbe44630917774c67e5fcc237dfb3ec
SHA256

80894bf1f9486d86fd4173114fa495392509e393c5c44621de2254c3e003560f
SHA512

e9acf6527388e4fdc34be32ff7e69ad3adfb8de183e4f41d16451d48bcbc4e923317ae3bbe2b03c15f74ee9965d7d3b5d5cecf077cf36e9d0512922e9fb3fc55
SSDEEP

24576:01bhtEWUGgbNdX5hHSew2hyBXfB3d5Ors1Tt08P:0fjgBZrycQT5Ora

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  80894bf1f9486d86fd4173114fa495392509e393c5c44621de2254c3e003560f
- Size
  
  778KB
- MD5
  
  345c94ea6582cf6e15bb297b3295bcd0
- SHA1
  
  f444535f9bbe44630917774c67e5fcc237dfb3ec
- SHA256
  
  80894bf1f9486d86fd4173114fa495392509e393c5c44621de2254c3e003560f
- SHA512
  
  e9acf6527388e4fdc34be32ff7e69ad3adfb8de183e4f41d16451d48bcbc4e923317ae3bbe2b03c15f74ee9965d7d3b5d5cecf077cf36e9d0512922e9fb3fc55
- SSDEEP
  
  24576:01bhtEWUGgbNdX5hHSew2hyBXfB3d5Ors1Tt08P:0fjgBZrycQT5Ora
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2