8d9ec772918c5ee501d18852d93c32767053fbfe7e34a9c11886c1687c290ce8 | Triage

Sharing

General

Target

easyMalicious14a7c34c086f.exe
Size

297KB
Sample

230704-tyqrqaha5t
MD5

71ece9badf3ec7eab617d495bb94097f
SHA1

14286bf3ec114c5d254e0f2a1f4a68759a4da312
SHA256

8d9ec772918c5ee501d18852d93c32767053fbfe7e34a9c11886c1687c290ce8
SHA512

21ec5d71d3e5f2563f28968431e131c43a941e39df75675823d8111699b814daf15a6412578d32b472d00b674f155f3d526ce7520d7fe8c4ea5719c6cd12cd98
SSDEEP

6144:W731bdBaBHVzdddKaWA2Kj4DrzZ49rFTUd8UyvYznzXVpjU:c1bAGaWZKj0zZyrFT08vCj3jU

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  easyMalicious14a7c34c086f.exe
- Size
  
  297KB
- MD5
  
  71ece9badf3ec7eab617d495bb94097f
- SHA1
  
  14286bf3ec114c5d254e0f2a1f4a68759a4da312
- SHA256
  
  8d9ec772918c5ee501d18852d93c32767053fbfe7e34a9c11886c1687c290ce8
- SHA512
  
  21ec5d71d3e5f2563f28968431e131c43a941e39df75675823d8111699b814daf15a6412578d32b472d00b674f155f3d526ce7520d7fe8c4ea5719c6cd12cd98
- SSDEEP
  
  6144:W731bdBaBHVzdddKaWA2Kj4DrzZ49rFTUd8UyvYznzXVpjU:c1bAGaWZKj0zZyrFT08vCj3jU
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2