651d1aa2941c4d2d4b6c2fa5ff1df15c45e18110018a6e066f7264fe7e664abb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

651d1aa2941c4d2d4b6c2fa5ff1df15c45e18110018a6e066f7264fe7e664abb
Size

340KB
Sample

221201-evpypagg5t
MD5

410ae196b389ac09828a02a828970d27
SHA1

5ac88ba36c94806ef03c6ebadd0e0a538967ebff
SHA256

651d1aa2941c4d2d4b6c2fa5ff1df15c45e18110018a6e066f7264fe7e664abb
SHA512

e51a32d3c4191232637726b12bf15d6a48321e2eb7b10c1954ad96465cc6d06ca94f0257a5be3826f251b3dca5b7042bdbe5757a91c94d6f50b868b0581dea1b
SSDEEP

6144:8V1+TpcWiZUg3Zh96/VTNKdCGhUK/bZekg6FMT0O7r0OTP2vb14:8V1OpcWiZUg3T8qtUwlKpwvy

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  651d1aa2941c4d2d4b6c2fa5ff1df15c45e18110018a6e066f7264fe7e664abb
- Size
  
  340KB
- MD5
  
  410ae196b389ac09828a02a828970d27
- SHA1
  
  5ac88ba36c94806ef03c6ebadd0e0a538967ebff
- SHA256
  
  651d1aa2941c4d2d4b6c2fa5ff1df15c45e18110018a6e066f7264fe7e664abb
- SHA512
  
  e51a32d3c4191232637726b12bf15d6a48321e2eb7b10c1954ad96465cc6d06ca94f0257a5be3826f251b3dca5b7042bdbe5757a91c94d6f50b868b0581dea1b
- SSDEEP
  
  6144:8V1+TpcWiZUg3Zh96/VTNKdCGhUK/bZekg6FMT0O7r0OTP2vb14:8V1OpcWiZUg3T8qtUwlKpwvy
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2