aaa2ccb9979682011aa853003f6e20043d3b62a6d4e0b73e60b3af28a8f3db0a | Triage

Sharing

General

Target

easy_Malicious_03ab1034ce8eec3ea49beb00efe57cc04553c5aa9cd46ce06738c542b3a00d07.exe
Size

1.5MB
Sample

230704-r9lk2aeb49
MD5

36cdb15b4ee67b33b89f32bab00126f7
SHA1

16c5b2fe85aab0e797b3ee2dc8a83ff81a410253
SHA256

aaa2ccb9979682011aa853003f6e20043d3b62a6d4e0b73e60b3af28a8f3db0a
SHA512

1672ac8514a14f29a9a7f9106b6a41c2aa818fd8b4ea362353451bbe8968744f578c809d0d08748a16ad748e5e43f6ffdf1cf6e4404327e7ed7aba37fa5eb0a3
SSDEEP

24576:91bAHc8nu/8RzK641napFmggxLcX/8VNuK1tboq2jH+g2iz0iwFWioErrqXODJ0f:9+HcoKl1noPGwK1e9Yiyj/r31k

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  easy_Malicious_03ab1034ce8eec3ea49beb00efe57cc04553c5aa9cd46ce06738c542b3a00d07.exe
- Size
  
  1.5MB
- MD5
  
  36cdb15b4ee67b33b89f32bab00126f7
- SHA1
  
  16c5b2fe85aab0e797b3ee2dc8a83ff81a410253
- SHA256
  
  aaa2ccb9979682011aa853003f6e20043d3b62a6d4e0b73e60b3af28a8f3db0a
- SHA512
  
  1672ac8514a14f29a9a7f9106b6a41c2aa818fd8b4ea362353451bbe8968744f578c809d0d08748a16ad748e5e43f6ffdf1cf6e4404327e7ed7aba37fa5eb0a3
- SSDEEP
  
  24576:91bAHc8nu/8RzK641napFmggxLcX/8VNuK1tboq2jH+g2iz0iwFWioErrqXODJ0f:9+HcoKl1noPGwK1e9Yiyj/r31k
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2