47a23873f6e88d48160cbaa738c0dcf0eb83b910beac17d716a773ed1a31a94d | Triage

Sharing

General

Target

NEAS.7fe9c8d26917cca3ab674f3b726147b0.exe
Size

212KB
Sample

231115-fpmf2sce65
MD5

7fe9c8d26917cca3ab674f3b726147b0
SHA1

5583509fb9ccc0786042d58335b5e428d6749a4e
SHA256

47a23873f6e88d48160cbaa738c0dcf0eb83b910beac17d716a773ed1a31a94d
SHA512

cd8ff61fa843a289e3e724a1f67d4f31ff08d49b943f245e28f91eee36fe532717c8151a0826450bf3491216b94a966bb02c48e3ef6f0694fed71f8ac36d428e
SSDEEP

6144:SxNqLW6opBZMU/y/JEGjg+op2BSNCCr7/jU:MA6NBT/yEGjWwa7vU

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.7fe9c8d26917cca3ab674f3b726147b0.exe
- Size
  
  212KB
- MD5
  
  7fe9c8d26917cca3ab674f3b726147b0
- SHA1
  
  5583509fb9ccc0786042d58335b5e428d6749a4e
- SHA256
  
  47a23873f6e88d48160cbaa738c0dcf0eb83b910beac17d716a773ed1a31a94d
- SHA512
  
  cd8ff61fa843a289e3e724a1f67d4f31ff08d49b943f245e28f91eee36fe532717c8151a0826450bf3491216b94a966bb02c48e3ef6f0694fed71f8ac36d428e
- SSDEEP
  
  6144:SxNqLW6opBZMU/y/JEGjg+op2BSNCCr7/jU:MA6NBT/yEGjWwa7vU
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies WinLogon
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2