d10a9c0ac55739884a8301a18c7fd53dad4d3954c2c0a7d8a8e130c26f239851 | Triage

Sharing

General

Target

d10a9c0ac55739884a8301a18c7fd53dad4d3954c2c0a7d8a8e130c26f239851
Size

312KB
Sample

221130-3mrz3sfa22
MD5

92cf46dfa06b1f44d55dc3de7756f83a
SHA1

3c60dccc8a9ebd0cf01c87246606b3d6b91ece67
SHA256

d10a9c0ac55739884a8301a18c7fd53dad4d3954c2c0a7d8a8e130c26f239851
SHA512

1d1f7930623b5b97825272ad6b6fcf2431b0e4c84949842b82b5b558d1a4a13673d6557aaadf5c2b99baced411016711a588cb28b1b871c16c2a082f72e99954
SSDEEP

6144:qlKLVO7MEOSu+HCh8g7bSmgrcNAcQLVk8To7yy6cNj+aQURvXBsrdR:uIV2mvn8cNA5TEylcljxxqdR

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d10a9c0ac55739884a8301a18c7fd53dad4d3954c2c0a7d8a8e130c26f239851
- Size
  
  312KB
- MD5
  
  92cf46dfa06b1f44d55dc3de7756f83a
- SHA1
  
  3c60dccc8a9ebd0cf01c87246606b3d6b91ece67
- SHA256
  
  d10a9c0ac55739884a8301a18c7fd53dad4d3954c2c0a7d8a8e130c26f239851
- SHA512
  
  1d1f7930623b5b97825272ad6b6fcf2431b0e4c84949842b82b5b558d1a4a13673d6557aaadf5c2b99baced411016711a588cb28b1b871c16c2a082f72e99954
- SSDEEP
  
  6144:qlKLVO7MEOSu+HCh8g7bSmgrcNAcQLVk8To7yy6cNj+aQURvXBsrdR:uIV2mvn8cNA5TEylcljxxqdR
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Adds Run key to start application
  persistence
- Modifies WinLogon
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2