dd25384c03364b0d932907212add7baed36ef13cac80c2a184820cb11ab2c14a | Triage

Sharing

General

Target

easy_Malicious_2e28c0b40334e75ec1b7b44108076c5d8864da8f0e82813d8f1612ddd33e5960.exe
Size

719KB
Sample

230704-sjbhtaga21
MD5

7a1a7f8e585735b8e1f29d1d97d74d4e
SHA1

15350473c1fcb978e304c146483987541185e0ad
SHA256

dd25384c03364b0d932907212add7baed36ef13cac80c2a184820cb11ab2c14a
SHA512

3baf0cf4919b1f2f40c0c320036268ecc8131f4fc82e19bcb1782c0313e2c4e47d4c73509ab279ed6e8401dc178c18d2de658360af8e0714bbff757c9395d7ab
SSDEEP

12288:91bgEuBXEDkAjC82IGvvNqUUTIDAijaDLv2vDSknp/uR+DC5J6m1BzMTLSK:91bgZB0DkAjC82IG9fUTS+e3npFDC5UV

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  easy_Malicious_2e28c0b40334e75ec1b7b44108076c5d8864da8f0e82813d8f1612ddd33e5960.exe
- Size
  
  719KB
- MD5
  
  7a1a7f8e585735b8e1f29d1d97d74d4e
- SHA1
  
  15350473c1fcb978e304c146483987541185e0ad
- SHA256
  
  dd25384c03364b0d932907212add7baed36ef13cac80c2a184820cb11ab2c14a
- SHA512
  
  3baf0cf4919b1f2f40c0c320036268ecc8131f4fc82e19bcb1782c0313e2c4e47d4c73509ab279ed6e8401dc178c18d2de658360af8e0714bbff757c9395d7ab
- SSDEEP
  
  12288:91bgEuBXEDkAjC82IGvvNqUUTIDAijaDLv2vDSknp/uR+DC5J6m1BzMTLSK:91bgZB0DkAjC82IG9fUTS+e3npFDC5UV
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2