d24c468dd320f4be33f4ccf13839955b4100208c40628135335aabd8491a9249 | Triage

Sharing

General

Target

d24c468dd320f4be33f4ccf13839955b4100208c40628135335aabd8491a9249
Size

259KB
Sample

221029-acp4hscgh9
MD5

0124d024d73f2757a8ed6d7ff60e1c60
SHA1

9485d27c7c4ae77c1fb234bc852cdecfffb1bcc5
SHA256

d24c468dd320f4be33f4ccf13839955b4100208c40628135335aabd8491a9249
SHA512

c8e211ab803a467e2152c4e1e6a2dc65ba6af93d45d7be288c278a8eb886aa45cbfd4d14362ae2f4bbcfd3239eadc07a986104b4edc48a56df2914cefa1ceb57
SSDEEP

6144:QyK4+vW9EnkxPWu9oYUkZYeLoerbZP4sdA9hmEPpW5rpH:3K99kPWqBU0LDrNgsdA9hFPW9

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d24c468dd320f4be33f4ccf13839955b4100208c40628135335aabd8491a9249
- Size
  
  259KB
- MD5
  
  0124d024d73f2757a8ed6d7ff60e1c60
- SHA1
  
  9485d27c7c4ae77c1fb234bc852cdecfffb1bcc5
- SHA256
  
  d24c468dd320f4be33f4ccf13839955b4100208c40628135335aabd8491a9249
- SHA512
  
  c8e211ab803a467e2152c4e1e6a2dc65ba6af93d45d7be288c278a8eb886aa45cbfd4d14362ae2f4bbcfd3239eadc07a986104b4edc48a56df2914cefa1ceb57
- SSDEEP
  
  6144:QyK4+vW9EnkxPWu9oYUkZYeLoerbZP4sdA9hmEPpW5rpH:3K99kPWqBU0LDrNgsdA9hFPW9
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Adds Run key to start application
  persistence
- Modifies WinLogon
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2