b2f32c46194b7b8bec6256eafc4ec226515aadc5363c6b938209343e49e393f4 | Triage

Sharing

General

Target

easy_Malicious_1662cd2e5ba0a697252c297dc6e1b1bcfb6b563b72d3ae0418ee4c4b8deed9e9.exe
Size

223KB
Sample

230704-srrvrsgc5x
MD5

2fe5b2b4cbcc2e5b0a84e865d0c30656
SHA1

3f08647f5310e3814c5ab102adc6853613d817f0
SHA256

b2f32c46194b7b8bec6256eafc4ec226515aadc5363c6b938209343e49e393f4
SHA512

b0777b214b21fd568a2814cdd444dd327f9ea8aa818744569974fd5e5b5907e305a41a357d26483ddc67a328cfb4a4dff9ee46f5bfe0ff79ec357eda2a915f06
SSDEEP

6144:X731bdBaBfViDWOy6yx8ojJpAzvsRzrrEM:b1bSYDWOy6g8oQzvOv1

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  easy_Malicious_1662cd2e5ba0a697252c297dc6e1b1bcfb6b563b72d3ae0418ee4c4b8deed9e9.exe
- Size
  
  223KB
- MD5
  
  2fe5b2b4cbcc2e5b0a84e865d0c30656
- SHA1
  
  3f08647f5310e3814c5ab102adc6853613d817f0
- SHA256
  
  b2f32c46194b7b8bec6256eafc4ec226515aadc5363c6b938209343e49e393f4
- SHA512
  
  b0777b214b21fd568a2814cdd444dd327f9ea8aa818744569974fd5e5b5907e305a41a357d26483ddc67a328cfb4a4dff9ee46f5bfe0ff79ec357eda2a915f06
- SSDEEP
  
  6144:X731bdBaBfViDWOy6yx8ojJpAzvsRzrrEM:b1bSYDWOy6g8oQzvOv1
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2