9959b01bd7ff2682cb03860c615b572916d1c8f6375cb7cf07b03e9c0b49e53f | Triage

Sharing

General

Target

7917D1EEEA34A2873895.8933.exe
Size

173KB
Sample

230325-gmrtesde8w
MD5

8305b0fabcd27917d1eeea34a2873895
SHA1

2b990b22eeee0a79df1845d82aff37edfcc03ee3
SHA256

9959b01bd7ff2682cb03860c615b572916d1c8f6375cb7cf07b03e9c0b49e53f
SHA512

9204895afb1113b3cb46c9e37af742fbc9cf5bd3a3bad98c8572c90fb6e3000e7d9118ea0e2bfab2dcf789f93caf37b984d0adb511beca66e74d48faebd27631
SSDEEP

3072:vUVTZogksgyiFFJkmJBYX/LoxcsxCijvzgS+a:vUV+JmmJBYX/Lo2sgi4S7

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  7917D1EEEA34A2873895.8933.exe
- Size
  
  173KB
- MD5
  
  8305b0fabcd27917d1eeea34a2873895
- SHA1
  
  2b990b22eeee0a79df1845d82aff37edfcc03ee3
- SHA256
  
  9959b01bd7ff2682cb03860c615b572916d1c8f6375cb7cf07b03e9c0b49e53f
- SHA512
  
  9204895afb1113b3cb46c9e37af742fbc9cf5bd3a3bad98c8572c90fb6e3000e7d9118ea0e2bfab2dcf789f93caf37b984d0adb511beca66e74d48faebd27631
- SSDEEP
  
  3072:vUVTZogksgyiFFJkmJBYX/LoxcsxCijvzgS+a:vUV+JmmJBYX/Lo2sgi4S7
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2