e971e46da1e1545cff1224bed3661188ec4e637957608148892214488c965c08 | Triage

Sharing

General

Target

e971e46da1e1545cff1224bed3661188ec4e637957608148892214488c965c08
Size

227KB
Sample

221011-k3ka3afdc6
MD5

741b88435e00aeaabd07db3eea02241f
SHA1

b06bf92fc54e2725218d21b11b43d0baf708cba2
SHA256

e971e46da1e1545cff1224bed3661188ec4e637957608148892214488c965c08
SHA512

200ded88563763431e4677bb0b1807803bf99c56425bdb3fefd59acaa31be2417ffe299159ba6a6a84db2a3b9f25774facae24fe00afeb1b1e619b05597b028a
SSDEEP

6144:DgGdKtGiFdcPv1d2W6Jk+YGRPGSD4mnfOdxL/spE2W:USi39Jk+5RPHnOLsK2W

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  e971e46da1e1545cff1224bed3661188ec4e637957608148892214488c965c08
- Size
  
  227KB
- MD5
  
  741b88435e00aeaabd07db3eea02241f
- SHA1
  
  b06bf92fc54e2725218d21b11b43d0baf708cba2
- SHA256
  
  e971e46da1e1545cff1224bed3661188ec4e637957608148892214488c965c08
- SHA512
  
  200ded88563763431e4677bb0b1807803bf99c56425bdb3fefd59acaa31be2417ffe299159ba6a6a84db2a3b9f25774facae24fe00afeb1b1e619b05597b028a
- SSDEEP
  
  6144:DgGdKtGiFdcPv1d2W6Jk+YGRPGSD4mnfOdxL/spE2W:USi39Jk+5RPHnOLsK2W
Score

7^/10

persistence
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Modifies WinLogon
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2