c45eb0f8bcad12ac47566c048e33ab36152b5f8e12f34a0d8b3f7a00d6180387 | Triage

Sharing

General

Target

c45eb0f8bcad12ac47566c048e33ab36152b5f8e12f34a0d8b3f7a00d6180387
Size

14KB
Sample

221201-wqj1baed49
MD5

41d37ea07c5237c87ef69336b1e530be
SHA1

1b7e9517327c5dd0d22a46f6728e81936c4a41fa
SHA256

c45eb0f8bcad12ac47566c048e33ab36152b5f8e12f34a0d8b3f7a00d6180387
SHA512

73390d5b51fc5f2f227c562c38c131ff10205b9c6df10cc8cf44375aa8a348a5140f94e5766c22dba556a2c2eac53d525af6deacf3a43e26a565454cfc1ac086
SSDEEP

384:CcfGqHxrz554Ep/oehlanftPzY1RkeZ+JC:C8GOxrX4E9llanfF01RkY+J

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  c45eb0f8bcad12ac47566c048e33ab36152b5f8e12f34a0d8b3f7a00d6180387
- Size
  
  14KB
- MD5
  
  41d37ea07c5237c87ef69336b1e530be
- SHA1
  
  1b7e9517327c5dd0d22a46f6728e81936c4a41fa
- SHA256
  
  c45eb0f8bcad12ac47566c048e33ab36152b5f8e12f34a0d8b3f7a00d6180387
- SHA512
  
  73390d5b51fc5f2f227c562c38c131ff10205b9c6df10cc8cf44375aa8a348a5140f94e5766c22dba556a2c2eac53d525af6deacf3a43e26a565454cfc1ac086
- SSDEEP
  
  384:CcfGqHxrz554Ep/oehlanftPzY1RkeZ+JC:C8GOxrX4E9llanfF01RkY+J
Score

7^/10

persistence
- Loads dropped DLL
- Modifies WinLogon
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2