7bf46b795e8c7a2578f8e5170abc39a74c7b65b458333667c17563d4baf0071f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7bf46b795e8c7a2578f8e5170abc39a74c7b65b458333667c17563d4baf0071f
Size

268KB
Sample

221201-dc7v4sgh72
MD5

48055df1904ecad43baa0df5702a6706
SHA1

2a55ac1a6eb79a09c751617587cb2e03b25d070c
SHA256

7bf46b795e8c7a2578f8e5170abc39a74c7b65b458333667c17563d4baf0071f
SHA512

151d8647477da945552a2872e85132bd66b150bd24f446d245299c997a568463d9716c81cd8daebbd8e5365fd5bb83315535d26a2ab7aee89fff636aeb183cba
SSDEEP

6144:3Rkn+alqMqDoV0L29KQWFte1RfUuSDe+ArH:3Rg+allJ0LcKNyR3SM

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  7bf46b795e8c7a2578f8e5170abc39a74c7b65b458333667c17563d4baf0071f
- Size
  
  268KB
- MD5
  
  48055df1904ecad43baa0df5702a6706
- SHA1
  
  2a55ac1a6eb79a09c751617587cb2e03b25d070c
- SHA256
  
  7bf46b795e8c7a2578f8e5170abc39a74c7b65b458333667c17563d4baf0071f
- SHA512
  
  151d8647477da945552a2872e85132bd66b150bd24f446d245299c997a568463d9716c81cd8daebbd8e5365fd5bb83315535d26a2ab7aee89fff636aeb183cba
- SSDEEP
  
  6144:3Rkn+alqMqDoV0L29KQWFte1RfUuSDe+ArH:3Rg+allJ0LcKNyR3SM
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Adds Run key to start application
  persistence
- Modifies WinLogon
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2