c73f6938015c5fe905cdb4ff07d4a562f660ba8b9535ae91a9dbd80aa658ca78 | Triage

Sharing

General

Target

c73f6938015c5fe905cdb4ff07d4a562f660ba8b9535ae91a9dbd80aa658ca78
Size

140KB
Sample

221204-l47neshd79
MD5

04b3cdae5875af50bbf83002d8ae8e55
SHA1

b74c3308cdb71b9082d60280aa20f0cecb0a40f1
SHA256

c73f6938015c5fe905cdb4ff07d4a562f660ba8b9535ae91a9dbd80aa658ca78
SHA512

4a020c3c833b27ca4f2e1bb2bf52d75a6e14f206680c91374b990850bbf810a7d4afc551c437436881b890e2bda4adfaeb1132b3f95f3182cc3f79e145ab0221
SSDEEP

3072:CGHFnzn7ZSBYfkVoFdRrqo0aRaA/HF673+UWHIfr:pRNkVsuaRaU6mHG

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c73f6938015c5fe905cdb4ff07d4a562f660ba8b9535ae91a9dbd80aa658ca78
- Size
  
  140KB
- MD5
  
  04b3cdae5875af50bbf83002d8ae8e55
- SHA1
  
  b74c3308cdb71b9082d60280aa20f0cecb0a40f1
- SHA256
  
  c73f6938015c5fe905cdb4ff07d4a562f660ba8b9535ae91a9dbd80aa658ca78
- SHA512
  
  4a020c3c833b27ca4f2e1bb2bf52d75a6e14f206680c91374b990850bbf810a7d4afc551c437436881b890e2bda4adfaeb1132b3f95f3182cc3f79e145ab0221
- SSDEEP
  
  3072:CGHFnzn7ZSBYfkVoFdRrqo0aRaA/HF673+UWHIfr:pRNkVsuaRaU6mHG
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2