75fcc9a9f6d5d8cdffa34f17894ae22f7c035679098b5cb0a8dbbf00fda20296 | Triage

Sharing

General

Target

75fcc9a9f6d5d8cdffa34f17894ae22f7c035679098b5cb0a8dbbf00fda20296
Size

57KB
Sample

221128-e8wndsfa95
MD5

65dbfe4dd8eb7c9b94bdae5b6d46bb67
SHA1

86456512514d4f43ed930b6a8decad89b6639b3f
SHA256

75fcc9a9f6d5d8cdffa34f17894ae22f7c035679098b5cb0a8dbbf00fda20296
SHA512

a14dfcc62c470a1a269b855f262f6c6c377a994f8bcb1f4b597f158600ba3193653fe0bd4e70906d223097fa783bb73709b99346a1402567b6bbc0fce43624b9
SSDEEP

768:meNmfdOtRDlXaswgwIQnHwgsz87gmBwd29yAllpUa/HZpuLtd4ikI+byQeqd5x7L:meCd6RhXangwbImmd8yO3ZVvyQNGrvc

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  75fcc9a9f6d5d8cdffa34f17894ae22f7c035679098b5cb0a8dbbf00fda20296
- Size
  
  57KB
- MD5
  
  65dbfe4dd8eb7c9b94bdae5b6d46bb67
- SHA1
  
  86456512514d4f43ed930b6a8decad89b6639b3f
- SHA256
  
  75fcc9a9f6d5d8cdffa34f17894ae22f7c035679098b5cb0a8dbbf00fda20296
- SHA512
  
  a14dfcc62c470a1a269b855f262f6c6c377a994f8bcb1f4b597f158600ba3193653fe0bd4e70906d223097fa783bb73709b99346a1402567b6bbc0fce43624b9
- SSDEEP
  
  768:meNmfdOtRDlXaswgwIQnHwgsz87gmBwd29yAllpUa/HZpuLtd4ikI+byQeqd5x7L:meCd6RhXangwbImmd8yO3ZVvyQNGrvc
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2