8e204074d806c6da637d7d379671b994199b98eed212f2ae208511cbd8723541 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8e204074d806c6da637d7d379671b994199b98eed212f2ae208511cbd8723541
Size

74KB
Sample

221201-z67m4acc68
MD5

d7c973ed7c8bde0487f2b39af05a1e45
SHA1

35efcbf95d405244dfd366dd53e09f7bd098e11f
SHA256

8e204074d806c6da637d7d379671b994199b98eed212f2ae208511cbd8723541
SHA512

6baa2bd1c16a2a902d17c93c67dad26c88895489493ca6bd1a0d0540438e98a433da05e933de15ba654f5ee9734a68d063633a7f98685bb50e1494a83a6d8aa5
SSDEEP

1536:0FSgpCI1XKaoGtBW4hucdop4DobAZ1OyiIPirnX9:fmEaoOhucefyi2ijX

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  8e204074d806c6da637d7d379671b994199b98eed212f2ae208511cbd8723541
- Size
  
  74KB
- MD5
  
  d7c973ed7c8bde0487f2b39af05a1e45
- SHA1
  
  35efcbf95d405244dfd366dd53e09f7bd098e11f
- SHA256
  
  8e204074d806c6da637d7d379671b994199b98eed212f2ae208511cbd8723541
- SHA512
  
  6baa2bd1c16a2a902d17c93c67dad26c88895489493ca6bd1a0d0540438e98a433da05e933de15ba654f5ee9734a68d063633a7f98685bb50e1494a83a6d8aa5
- SSDEEP
  
  1536:0FSgpCI1XKaoGtBW4hucdop4DobAZ1OyiIPirnX9:fmEaoOhucefyi2ijX
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2