5cdce2d6eec92ebff2c1158db97c2f7771c672ece0959c964331addb2de01194 | Triage

Sharing

General

Target

135b1191a955b924d07f53c5ce2a31ad
Size

298KB
Sample

231224-1h1qbafhdk
MD5

135b1191a955b924d07f53c5ce2a31ad
SHA1

8eeec6db1304062d8d5675af423187168306869c
SHA256

5cdce2d6eec92ebff2c1158db97c2f7771c672ece0959c964331addb2de01194
SHA512

89b33aaeba35d38fdfc59be64a6c998e4079ce6251d52cd460872301c1fec5d0b12f788a2b23cc6013a83c0a89a2ae5b7fc8056645563ae93bd6fee3ef67afd7
SSDEEP

6144:W6QcDGsSQMsYHDQAnwOYS2BiVqx394VpMolap/jyH6/:HrGscxHDQNtSHC9WDg

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  135b1191a955b924d07f53c5ce2a31ad
- Size
  
  298KB
- MD5
  
  135b1191a955b924d07f53c5ce2a31ad
- SHA1
  
  8eeec6db1304062d8d5675af423187168306869c
- SHA256
  
  5cdce2d6eec92ebff2c1158db97c2f7771c672ece0959c964331addb2de01194
- SHA512
  
  89b33aaeba35d38fdfc59be64a6c998e4079ce6251d52cd460872301c1fec5d0b12f788a2b23cc6013a83c0a89a2ae5b7fc8056645563ae93bd6fee3ef67afd7
- SSDEEP
  
  6144:W6QcDGsSQMsYHDQAnwOYS2BiVqx394VpMolap/jyH6/:HrGscxHDQNtSHC9WDg
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Adds Run key to start application
  persistence
- Modifies WinLogon
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2