c93c196735929529ad571656a7d18d8435d0f5ad8646e7d82581a782617062d6 | Triage

Sharing

General

Target

c93c196735929529ad571656a7d18d8435d0f5ad8646e7d82581a782617062d6
Size

591KB
Sample

221123-vlfawshc95
MD5

37b60cf8b7bbcd562d9e3e06acf7c4a5
SHA1

0058e65c110fb0041be210e7cfc1e721f88ac866
SHA256

c93c196735929529ad571656a7d18d8435d0f5ad8646e7d82581a782617062d6
SHA512

5f5ff43e15b05187f430240b425851690d4ff9ae9b1ef7f0075c0d09d396ce99140de79fec8bb87feab3f482b9cdfc2f6f6e75bd3f665aa6b3b7e0127722c114
SSDEEP

6144:Z/0qTn9J4LmDuvayK1GqzhnOxyhIXbO9qsWCv0A5rcne/qXEX4KEeBSqElYt5:6qTn9umDuvavHhvsqXcwtX4KFgqElYt5

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c93c196735929529ad571656a7d18d8435d0f5ad8646e7d82581a782617062d6
- Size
  
  591KB
- MD5
  
  37b60cf8b7bbcd562d9e3e06acf7c4a5
- SHA1
  
  0058e65c110fb0041be210e7cfc1e721f88ac866
- SHA256
  
  c93c196735929529ad571656a7d18d8435d0f5ad8646e7d82581a782617062d6
- SHA512
  
  5f5ff43e15b05187f430240b425851690d4ff9ae9b1ef7f0075c0d09d396ce99140de79fec8bb87feab3f482b9cdfc2f6f6e75bd3f665aa6b3b7e0127722c114
- SSDEEP
  
  6144:Z/0qTn9J4LmDuvayK1GqzhnOxyhIXbO9qsWCv0A5rcne/qXEX4KEeBSqElYt5:6qTn9umDuvavHhvsqXcwtX4KFgqElYt5
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2