89f882f09f6a46018e1fcb10cf6e5391057631f08dd01aa67cda903be62fd28d | Triage

Sharing

General

Target

89f882f09f6a46018e1fcb10cf6e5391057631f08dd01aa67cda903be62fd28d
Size

365KB
Sample

221205-gdxcjseh7v
MD5

07678fdb8258a8a02f87f76503db8900
SHA1

15ea65863389312a39ae9c282a2554597d29c394
SHA256

89f882f09f6a46018e1fcb10cf6e5391057631f08dd01aa67cda903be62fd28d
SHA512

3fa7c0d311e70cb046992c9cb9c9113cba9334b2577bb3dc4eb97f920e17a1abfb342f8239168de802a4953f3e2306859a28401139f033941c313f292cb6d558
SSDEEP

6144:5731bdBaBUylz6Xey9ehQ+CNqEc43B3P/EEuY18AQMFoARFQsiwGtHaEr/1wO:51bDylWeZQ+CkfEJXE/ULrtMsiwGtHJF

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  89f882f09f6a46018e1fcb10cf6e5391057631f08dd01aa67cda903be62fd28d
- Size
  
  365KB
- MD5
  
  07678fdb8258a8a02f87f76503db8900
- SHA1
  
  15ea65863389312a39ae9c282a2554597d29c394
- SHA256
  
  89f882f09f6a46018e1fcb10cf6e5391057631f08dd01aa67cda903be62fd28d
- SHA512
  
  3fa7c0d311e70cb046992c9cb9c9113cba9334b2577bb3dc4eb97f920e17a1abfb342f8239168de802a4953f3e2306859a28401139f033941c313f292cb6d558
- SSDEEP
  
  6144:5731bdBaBUylz6Xey9ehQ+CNqEc43B3P/EEuY18AQMFoARFQsiwGtHaEr/1wO:51bDylWeZQ+CkfEJXE/ULrtMsiwGtHJF
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2