a9eb0d9c1f4a773f640ee1f444c231e9e1f831a322b5d0ec44456c5f6e89cf0e | Triage

Sharing

General

Target

a9eb0d9c1f4a773f640ee1f444c231e9e1f831a322b5d0ec44456c5f6e89cf0e
Size

1.1MB
Sample

221124-ka4h8sbc55
MD5

2358253fc8171d8e2c18f55839832c5c
SHA1

6458d6b91d3a1cce5437f6c768df3c62131dc419
SHA256

a9eb0d9c1f4a773f640ee1f444c231e9e1f831a322b5d0ec44456c5f6e89cf0e
SHA512

7339ff79fefc62a99bda48b22b365d62fbe73deb2c0b375b39e2dedea9fd82284a24a84f3d993015533ccf6549487e92fb3fb4f9941044bffd2f6d668547ce63
SSDEEP

24576:srsobGrgTM2VPxgv1X7tPLpEj5mWxZNtBig4pNNwTP2q36JxQB9quFR:srsb8TM0ZgvFtP9g5m+Z3SwL23JxQz

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a9eb0d9c1f4a773f640ee1f444c231e9e1f831a322b5d0ec44456c5f6e89cf0e
- Size
  
  1.1MB
- MD5
  
  2358253fc8171d8e2c18f55839832c5c
- SHA1
  
  6458d6b91d3a1cce5437f6c768df3c62131dc419
- SHA256
  
  a9eb0d9c1f4a773f640ee1f444c231e9e1f831a322b5d0ec44456c5f6e89cf0e
- SHA512
  
  7339ff79fefc62a99bda48b22b365d62fbe73deb2c0b375b39e2dedea9fd82284a24a84f3d993015533ccf6549487e92fb3fb4f9941044bffd2f6d668547ce63
- SSDEEP
  
  24576:srsobGrgTM2VPxgv1X7tPLpEj5mWxZNtBig4pNNwTP2q36JxQB9quFR:srsb8TM0ZgvFtP9g5m+Z3SwL23JxQz
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2