5a492954ca50259a8e05d1f754632e5a0901fc5c9d6be317c926c01ea11e8f57 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

easy_Malicious_0344165466d46a4583b2c40ee409b09188642e124003da62125afac7c92c7ae0.exe
Size

1007KB
Sample

230704-se8mrafh4v
MD5

a737cf58e688f1238830bc6f01d2d17d
SHA1

7cd9dc685e368a67ce512aa50c995eb2728b96d1
SHA256

5a492954ca50259a8e05d1f754632e5a0901fc5c9d6be317c926c01ea11e8f57
SHA512

16d5879fb55ab67a4ea303b397cc0fab3398114e2c8442ca8faf206b9862cd32796ad23f8eca6fee47ffb7d37df1cc7db8126ef9137aa711f8da966d5b1c26e4
SSDEEP

24576:51bGI8/2+ehcTuWYorVuuQ61xLREIs2RFfRJK9IJwTvGPd:5cx/2+FYorcSxlnJyIya

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  easy_Malicious_0344165466d46a4583b2c40ee409b09188642e124003da62125afac7c92c7ae0.exe
- Size
  
  1007KB
- MD5
  
  a737cf58e688f1238830bc6f01d2d17d
- SHA1
  
  7cd9dc685e368a67ce512aa50c995eb2728b96d1
- SHA256
  
  5a492954ca50259a8e05d1f754632e5a0901fc5c9d6be317c926c01ea11e8f57
- SHA512
  
  16d5879fb55ab67a4ea303b397cc0fab3398114e2c8442ca8faf206b9862cd32796ad23f8eca6fee47ffb7d37df1cc7db8126ef9137aa711f8da966d5b1c26e4
- SSDEEP
  
  24576:51bGI8/2+ehcTuWYorVuuQ61xLREIs2RFfRJK9IJwTvGPd:5cx/2+FYorcSxlnJyIya
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2