07e41bc9c4fde6ac6f45aa31d6db37f3f5d986705bc4a7151480a2499ea009b5 | Triage

Sharing

General

Target

easyMalicious29514f1bd8b1.exe
Size

1008KB
Sample

230704-vd1lvsff42
MD5

d7255f32f27c09ac28d9fd6d024d09d0
SHA1

ba9bb70d0d5b9251a4e4cdca94e94419154ecc7a
SHA256

07e41bc9c4fde6ac6f45aa31d6db37f3f5d986705bc4a7151480a2499ea009b5
SHA512

0dda75f8bc3091e8fef5876cae1f94dce7c2900a8a5a28ed882a523417649b7b2044ee4cd9f379d0166fb7c045f1d5f84de5d47ee31cbc8e989f62b978ea6801
SSDEEP

24576:V1bVLgw5nR3zXtAUDncyvEIvmkNt2FvGLBEvgl8DEJveovknjuo:VswP3z9AUDncyvtBX2RGyoluovcz

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  easyMalicious29514f1bd8b1.exe
- Size
  
  1008KB
- MD5
  
  d7255f32f27c09ac28d9fd6d024d09d0
- SHA1
  
  ba9bb70d0d5b9251a4e4cdca94e94419154ecc7a
- SHA256
  
  07e41bc9c4fde6ac6f45aa31d6db37f3f5d986705bc4a7151480a2499ea009b5
- SHA512
  
  0dda75f8bc3091e8fef5876cae1f94dce7c2900a8a5a28ed882a523417649b7b2044ee4cd9f379d0166fb7c045f1d5f84de5d47ee31cbc8e989f62b978ea6801
- SSDEEP
  
  24576:V1bVLgw5nR3zXtAUDncyvEIvmkNt2FvGLBEvgl8DEJveovknjuo:VswP3z9AUDncyvtBX2RGyoluovcz
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2