bec81bcd8a5f9f00f481fa566e9c05e474bef8c93f078b8766fb2199174becdb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

easy_Malicious_1de6af35b6a09b8194964e0a095b1523b5b48e853c8cc0d389b34c3156d774b3.exe
Size

1.1MB
Sample

230704-scjkvaeb94
MD5

07a2da33ffdc26207181ae7dda643663
SHA1

8fc2d3f9bb348f9213d108d0940f302953198e64
SHA256

bec81bcd8a5f9f00f481fa566e9c05e474bef8c93f078b8766fb2199174becdb
SHA512

a85739fd9a76d2db77d4b2b98eb635196c02f66306f221b0b859213264ae816990d8b2d546b93d8fb4b00cc30b4c9428d71d5fe887594d3cc42204a3208f1881
SSDEEP

24576:51b8gbsMomO56u59CCvoS9I9/XdTK/EOQsxBDxR0jwxInW6gt4ekzQw3:5GgbsMo9ky91vo99/XdTGEQxBD30jvLh

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  easy_Malicious_1de6af35b6a09b8194964e0a095b1523b5b48e853c8cc0d389b34c3156d774b3.exe
- Size
  
  1.1MB
- MD5
  
  07a2da33ffdc26207181ae7dda643663
- SHA1
  
  8fc2d3f9bb348f9213d108d0940f302953198e64
- SHA256
  
  bec81bcd8a5f9f00f481fa566e9c05e474bef8c93f078b8766fb2199174becdb
- SHA512
  
  a85739fd9a76d2db77d4b2b98eb635196c02f66306f221b0b859213264ae816990d8b2d546b93d8fb4b00cc30b4c9428d71d5fe887594d3cc42204a3208f1881
- SSDEEP
  
  24576:51b8gbsMomO56u59CCvoS9I9/XdTK/EOQsxBDxR0jwxInW6gt4ekzQw3:5GgbsMo9ky91vo99/XdTGEQxBD30jvLh
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2