1e4989818f1133a6d53239794aaa430f330e45267a4e945cbf763407f395c9d4 | Triage

Sharing

General

Target

easyMalicious25407104b4a2.exe
Size

910KB
Sample

230704-vbgqzafe89
MD5

30fd4240090d515f518e0443208ec163
SHA1

8a10efc0f69488c8667739349bfb3c440d728949
SHA256

1e4989818f1133a6d53239794aaa430f330e45267a4e945cbf763407f395c9d4
SHA512

eca0fa4bf044562471ff0249cd8602920161e840f87e475663834da1db262f68783b0a242aaa56f62039d05ca527904b99092e11405521fe2c4d04f51b6ae6a1
SSDEEP

24576:91bYqL6Curm0DeOHQmRru3VznoL+3pHeWs:9ec6hmge4R8dHH8

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  easyMalicious25407104b4a2.exe
- Size
  
  910KB
- MD5
  
  30fd4240090d515f518e0443208ec163
- SHA1
  
  8a10efc0f69488c8667739349bfb3c440d728949
- SHA256
  
  1e4989818f1133a6d53239794aaa430f330e45267a4e945cbf763407f395c9d4
- SHA512
  
  eca0fa4bf044562471ff0249cd8602920161e840f87e475663834da1db262f68783b0a242aaa56f62039d05ca527904b99092e11405521fe2c4d04f51b6ae6a1
- SSDEEP
  
  24576:91bYqL6Curm0DeOHQmRru3VznoL+3pHeWs:9ec6hmge4R8dHH8
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2