40311bc5cca4ede38b75ec0e22b721212e45964985a3eece3ae60faef70fa67c | Triage

Sharing

General

Target

40311bc5cca4ede38b75ec0e22b721212e45964985a3eece3ae60faef70fa67c
Size

23KB
Sample

221029-a5gylseehp
MD5

000e84b3b4646294abf8bb8c64757cf4
SHA1

5b0c42ec39e551ea78417762b6e513d16641cabf
SHA256

40311bc5cca4ede38b75ec0e22b721212e45964985a3eece3ae60faef70fa67c
SHA512

aaf16c2750808fa2afe4b6a3afa9b3d31e7f1cbc8e5fe89aa43967ac4dfd73b9bdf0f47e68b2b9c70e701ac6d1d568c5e2cf0ae07cdda17f7a790fb361d5f439
SSDEEP

384:zzzeBf3/4rc+bK1dhxgSDDdd5AXYBKjuh9RMO0cUusU60wWwvXG9:KBfP4rHKngSfCS0A9RMFcfsUfnOXG9

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  40311bc5cca4ede38b75ec0e22b721212e45964985a3eece3ae60faef70fa67c
- Size
  
  23KB
- MD5
  
  000e84b3b4646294abf8bb8c64757cf4
- SHA1
  
  5b0c42ec39e551ea78417762b6e513d16641cabf
- SHA256
  
  40311bc5cca4ede38b75ec0e22b721212e45964985a3eece3ae60faef70fa67c
- SHA512
  
  aaf16c2750808fa2afe4b6a3afa9b3d31e7f1cbc8e5fe89aa43967ac4dfd73b9bdf0f47e68b2b9c70e701ac6d1d568c5e2cf0ae07cdda17f7a790fb361d5f439
- SSDEEP
  
  384:zzzeBf3/4rc+bK1dhxgSDDdd5AXYBKjuh9RMO0cUusU60wWwvXG9:KBfP4rHKngSfCS0A9RMFcfsUfnOXG9
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Adds Run key to start application
  persistence
- Drops desktop.ini file(s)
- Modifies WinLogon
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2