7ea0f123fdf5f4856cfb01a04a4a5ca05dd556884fbedefee84174c782b4b94e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

easy_Malicious_04ff1b051eceda9219e1e6dce62a2ed9e9a8782e1acf851aef66fe6a5e573861.exe
Size

86KB
Sample

230704-svcj9aeg63
MD5

97687265e5bfae2cb6e96f59b807ce41
SHA1

03e2f687bf976344915b446230933a13c1b01a50
SHA256

7ea0f123fdf5f4856cfb01a04a4a5ca05dd556884fbedefee84174c782b4b94e
SHA512

ebdfc4595876e98fe3c3cf0bcf0750408400ac22b8f6aabf8cbbfcf176ecfaf381bdabc5be4d1f93fbab354a9082b5e75e16f8bdcc21526b97e79ba7c8ad581d
SSDEEP

1536:kaiqH1s+kCtrA2UMT0mTFibDKa1XFgRuA8QcP8+Mk/G/8Te3en:t1B31bdBob2QX2nCp/E93en

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  easy_Malicious_04ff1b051eceda9219e1e6dce62a2ed9e9a8782e1acf851aef66fe6a5e573861.exe
- Size
  
  86KB
- MD5
  
  97687265e5bfae2cb6e96f59b807ce41
- SHA1
  
  03e2f687bf976344915b446230933a13c1b01a50
- SHA256
  
  7ea0f123fdf5f4856cfb01a04a4a5ca05dd556884fbedefee84174c782b4b94e
- SHA512
  
  ebdfc4595876e98fe3c3cf0bcf0750408400ac22b8f6aabf8cbbfcf176ecfaf381bdabc5be4d1f93fbab354a9082b5e75e16f8bdcc21526b97e79ba7c8ad581d
- SSDEEP
  
  1536:kaiqH1s+kCtrA2UMT0mTFibDKa1XFgRuA8QcP8+Mk/G/8Te3en:t1B31bdBob2QX2nCp/E93en
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2