321c11c2402e6731f42633720164c58ac608442ea7dc58587d469ab6bcad2989 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

easy_Malicious_32fa60f0388042d84bd2e09adaf4eeaa9ccafee04ba78cd6f79c097486869760.exe
Size

209KB
Sample

230704-sr14fagc6x
MD5

3366514c8ba009e3141cf13ea8f84830
SHA1

fd09d0746465ef33e2074f26f45607e19bd48f9b
SHA256

321c11c2402e6731f42633720164c58ac608442ea7dc58587d469ab6bcad2989
SHA512

276474ac29a0f07ac3018c45783249b8e5a1079485a2e813021b73a316bec9269a68dd4c7a2d8fb13b10a0e3f9cdc7e4aa94610c57411c4aa59478fd293bde44
SSDEEP

6144:5731bdBaBsHr8xUYmi8TH3dYdBic4vMno:51bVHrHxpTHqiTvp

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  easy_Malicious_32fa60f0388042d84bd2e09adaf4eeaa9ccafee04ba78cd6f79c097486869760.exe
- Size
  
  209KB
- MD5
  
  3366514c8ba009e3141cf13ea8f84830
- SHA1
  
  fd09d0746465ef33e2074f26f45607e19bd48f9b
- SHA256
  
  321c11c2402e6731f42633720164c58ac608442ea7dc58587d469ab6bcad2989
- SHA512
  
  276474ac29a0f07ac3018c45783249b8e5a1079485a2e813021b73a316bec9269a68dd4c7a2d8fb13b10a0e3f9cdc7e4aa94610c57411c4aa59478fd293bde44
- SSDEEP
  
  6144:5731bdBaBsHr8xUYmi8TH3dYdBic4vMno:51bVHrHxpTHqiTvp
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2