a57713167544beba96366aa041cf285f0f31b327ed78fc12c1094ef92ef0860d | Triage

Sharing

General

Target

a57713167544beba96366aa041cf285f0f31b327ed78fc12c1094ef92ef0860d
Size

63KB
Sample

221201-yv23ssff45
MD5

d965914d3cc05b2856505d806e6687ac
SHA1

2f93ff34bacc7f1a01fa9dd5073f18c351f102e5
SHA256

a57713167544beba96366aa041cf285f0f31b327ed78fc12c1094ef92ef0860d
SHA512

e23b612893e557a7e5acfa44ff9615ea65f701dda96ba1f9b69f5ff37d21c2e267144d754535c4f151237562a003ce8083e0f08ed99c4c631dc2355e05560fef
SSDEEP

768:C5axiWtDmPcPiScHnUgqjZhbRX1rs+Ryk1SADCApy5JBNkLQuO5yNQLPV:+8mWvvh1lrsUSaCAg5zNFu6e

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  a57713167544beba96366aa041cf285f0f31b327ed78fc12c1094ef92ef0860d
- Size
  
  63KB
- MD5
  
  d965914d3cc05b2856505d806e6687ac
- SHA1
  
  2f93ff34bacc7f1a01fa9dd5073f18c351f102e5
- SHA256
  
  a57713167544beba96366aa041cf285f0f31b327ed78fc12c1094ef92ef0860d
- SHA512
  
  e23b612893e557a7e5acfa44ff9615ea65f701dda96ba1f9b69f5ff37d21c2e267144d754535c4f151237562a003ce8083e0f08ed99c4c631dc2355e05560fef
- SSDEEP
  
  768:C5axiWtDmPcPiScHnUgqjZhbRX1rs+Ryk1SADCApy5JBNkLQuO5yNQLPV:+8mWvvh1lrsUSaCAg5zNFu6e
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Modifies WinLogon
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2