61a3cd98cd3e9d0de77c045396f4032e700b1b0ea0772f25ec365aee3c48042e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

easyMalicious2dc54ddbb9d3.exe
Size

1.1MB
Sample

230704-vjnjgshc71
MD5

36658557553f149c8d766cd689242029
SHA1

0c718f9edd862448fb126946164f8d56b67149f4
SHA256

61a3cd98cd3e9d0de77c045396f4032e700b1b0ea0772f25ec365aee3c48042e
SHA512

1b6f030642a2ca37e92b803ba998fecd68f53eee2364f5a144a0662df8b11af46576d36b5c7334d28902230e4b96021317cbfb4a4661b3838e840986f71b83cf
SSDEEP

24576:c1b30vFpkTEvqlrjgUIUqQ6qG2yZ3BUC43kKjEEcEf7hiU/gIGLL8RzFgZsEw:cXTEnU4Q6LL3BUCIkwE7Eh/4xLL8gZg

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  easyMalicious2dc54ddbb9d3.exe
- Size
  
  1.1MB
- MD5
  
  36658557553f149c8d766cd689242029
- SHA1
  
  0c718f9edd862448fb126946164f8d56b67149f4
- SHA256
  
  61a3cd98cd3e9d0de77c045396f4032e700b1b0ea0772f25ec365aee3c48042e
- SHA512
  
  1b6f030642a2ca37e92b803ba998fecd68f53eee2364f5a144a0662df8b11af46576d36b5c7334d28902230e4b96021317cbfb4a4661b3838e840986f71b83cf
- SSDEEP
  
  24576:c1b30vFpkTEvqlrjgUIUqQ6qG2yZ3BUC43kKjEEcEf7hiU/gIGLL8RzFgZsEw:cXTEnU4Q6LL3BUCIkwE7Eh/4xLL8gZg
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2