ffb71b2750c2858c64401ce62df76c83f6301b4cf9bd5f1719c9e57b1c1242d2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ffb71b2750c2858c64401ce62df76c83f6301b4cf9bd5f1719c9e57b1c1242d2
Size

26KB
Sample

221204-mpdbpsbb64
MD5

ff880ac27625117d5cb2c815763293d8
SHA1

920af0cd24e5024d22536fd69dff61c8818b6394
SHA256

ffb71b2750c2858c64401ce62df76c83f6301b4cf9bd5f1719c9e57b1c1242d2
SHA512

c78928bae9d862fcd42bcd7cc0b083f8fd12fab18af2cd40841ca15392902b6afae27677e6b46bc222c898870fa875c217296522c701c94ab97983a07ade5521
SSDEEP

768:vUUOGRR/txe7xzbiz/SLqn386KQHJnGMd5zUZG:QG7e75iRnM6VNGMbzn

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  ffb71b2750c2858c64401ce62df76c83f6301b4cf9bd5f1719c9e57b1c1242d2
- Size
  
  26KB
- MD5
  
  ff880ac27625117d5cb2c815763293d8
- SHA1
  
  920af0cd24e5024d22536fd69dff61c8818b6394
- SHA256
  
  ffb71b2750c2858c64401ce62df76c83f6301b4cf9bd5f1719c9e57b1c1242d2
- SHA512
  
  c78928bae9d862fcd42bcd7cc0b083f8fd12fab18af2cd40841ca15392902b6afae27677e6b46bc222c898870fa875c217296522c701c94ab97983a07ade5521
- SSDEEP
  
  768:vUUOGRR/txe7xzbiz/SLqn386KQHJnGMd5zUZG:QG7e75iRnM6VNGMbzn
Score

7^/10

persistence
- Deletes itself
- Modifies WinLogon
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2