ee0e0807d5a84f43fcdcb7776f9b681e0fcde338b23dd793b8ce76c95ee32ffa | Triage

Sharing

General

Target

ee0e0807d5a84f43fcdcb7776f9b681e0fcde338b23dd793b8ce76c95ee32ffa
Size

345KB
Sample

221206-w9e6gach45
MD5

6f403a69d4af7163d86761e4a167b712
SHA1

3550bd0a2494386b0899c8ef3c6a40ebceae5b1b
SHA256

ee0e0807d5a84f43fcdcb7776f9b681e0fcde338b23dd793b8ce76c95ee32ffa
SHA512

dc557de56b27f6aa5afb4227d76120eee62024d0392fd87365c5d565a6e060499b8217e3e00c87a2d0a6b84084a294ae2fccaa8cb7ef278a14439dfc9c3e0e23
SSDEEP

6144:84SSBD8a4i6HooXX7Kt4mrhnK+vhGxKAcqKQHHj0YEL9msxpxY:84SSByHVXnYK+vCcOgYDWXY

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ee0e0807d5a84f43fcdcb7776f9b681e0fcde338b23dd793b8ce76c95ee32ffa
- Size
  
  345KB
- MD5
  
  6f403a69d4af7163d86761e4a167b712
- SHA1
  
  3550bd0a2494386b0899c8ef3c6a40ebceae5b1b
- SHA256
  
  ee0e0807d5a84f43fcdcb7776f9b681e0fcde338b23dd793b8ce76c95ee32ffa
- SHA512
  
  dc557de56b27f6aa5afb4227d76120eee62024d0392fd87365c5d565a6e060499b8217e3e00c87a2d0a6b84084a294ae2fccaa8cb7ef278a14439dfc9c3e0e23
- SSDEEP
  
  6144:84SSBD8a4i6HooXX7Kt4mrhnK+vhGxKAcqKQHHj0YEL9msxpxY:84SSByHVXnYK+vCcOgYDWXY
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2