General
-
Target
2023_10_07_---d-e-m-i-s-e----22027008.png
-
Size
7KB
-
Sample
231013-qf89kabh66
-
MD5
7b8f43ec23b277ee7df22bf1af0065c1
-
SHA1
5e1ba84de06b4d762f248b5b4b2cdd1d936fbf0a
-
SHA256
f62d6801e6e3c987f2483d74921644197bd385a23834ba18276112a3a1b27687
-
SHA512
8c436cdde9092cd15740f88990a8ee5e9cd6363538e33305649f7d3df3f5e14f6d54f9703c1427573aef2a2af36ed13866cb2deac7a4f0db7a2a601e7d5b12d1
-
SSDEEP
192:o65RZ+GRAXhwUyU0CD6o/IsijwLTE6Pw3Ptv0Rpredq6KmTwUQ:n5v2xwjUoo/BijeHPwVvUidq6mz
Static task
static1
Behavioral task
behavioral1
Sample
2023_10_07_---d-e-m-i-s-e----22027008.png
Resource
win10-20230915-en
Malware Config
Targets
-
-
Target
2023_10_07_---d-e-m-i-s-e----22027008.png
-
Size
7KB
-
MD5
7b8f43ec23b277ee7df22bf1af0065c1
-
SHA1
5e1ba84de06b4d762f248b5b4b2cdd1d936fbf0a
-
SHA256
f62d6801e6e3c987f2483d74921644197bd385a23834ba18276112a3a1b27687
-
SHA512
8c436cdde9092cd15740f88990a8ee5e9cd6363538e33305649f7d3df3f5e14f6d54f9703c1427573aef2a2af36ed13866cb2deac7a4f0db7a2a601e7d5b12d1
-
SSDEEP
192:o65RZ+GRAXhwUyU0CD6o/IsijwLTE6Pw3Ptv0Rpredq6KmTwUQ:n5v2xwjUoo/BijeHPwVvUidq6mz
Score10/10-
Modifies WinLogon for persistence
-
Disables RegEdit via registry modification
-
Legitimate hosting services abused for malware hosting/C2
-
Sets desktop wallpaper using registry
-
MITRE ATT&CK Matrix ATT&CK v13
Privilege Escalation
Boot or Logon Autostart Execution
1Winlogon Helper DLL
1Abuse Elevation Control Mechanism
1Bypass User Account Control
1