e40113b6c21a2b6592c0b9794e6488035e4a6914afb90905446aac003da26b7a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

easy_Malicious_0d237030b5ea4ca1f6318357f3f0b4a7eaabb475baca27f297fe40b6eea437f7.exe
Size

1007KB
Sample

230704-sffy5aec65
MD5

d0088c67444868f95555a7e3b0dd9e2f
SHA1

52d610ac5eee53d556332d7d2ca740bee9d842f0
SHA256

e40113b6c21a2b6592c0b9794e6488035e4a6914afb90905446aac003da26b7a
SHA512

bb2fd229e6fd946802240c0ec8a966dcf4085853cc02a279c1f2d7abbd57f3b843de2b3fa9162ffded365f21dddc53d9e661fa74d21e829b4c3e720405e62952
SSDEEP

24576:V1b3pKEscHK8ZbGaEUMUEwBgKJaK3Dt53Vt:V7wcq8HMUEIgqagt

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  easy_Malicious_0d237030b5ea4ca1f6318357f3f0b4a7eaabb475baca27f297fe40b6eea437f7.exe
- Size
  
  1007KB
- MD5
  
  d0088c67444868f95555a7e3b0dd9e2f
- SHA1
  
  52d610ac5eee53d556332d7d2ca740bee9d842f0
- SHA256
  
  e40113b6c21a2b6592c0b9794e6488035e4a6914afb90905446aac003da26b7a
- SHA512
  
  bb2fd229e6fd946802240c0ec8a966dcf4085853cc02a279c1f2d7abbd57f3b843de2b3fa9162ffded365f21dddc53d9e661fa74d21e829b4c3e720405e62952
- SSDEEP
  
  24576:V1b3pKEscHK8ZbGaEUMUEwBgKJaK3Dt53Vt:V7wcq8HMUEIgqagt
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2