e6cd6a79d538953f2013afde40f69734f62bd97a1a846dcfef578c9d601fd026 | Triage

Sharing

General

Target

1d5ad87b7708fdd13a19eca24f5fb538
Size

38KB
Sample

231225-axztfsddf6
MD5

1d5ad87b7708fdd13a19eca24f5fb538
SHA1

7660c85ef9358d31e337fb9d9f5096f9c3bcea7d
SHA256

e6cd6a79d538953f2013afde40f69734f62bd97a1a846dcfef578c9d601fd026
SHA512

6a3659134e1e4b27d9f353cdce3557fdb9ac92ec38f83e3af20b8569043063f708582468f7f21042eaec8e2de6b50aae8ae830542414fd93115d2053616822de
SSDEEP

768:HCEqMQmO8mNK3D7kQdkgcwAtXI6J+Lmx9aTgd0OPA6uX1:iEqMQ3Ez7ktgjKIOamPQgd0OYbF

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1d5ad87b7708fdd13a19eca24f5fb538
- Size
  
  38KB
- MD5
  
  1d5ad87b7708fdd13a19eca24f5fb538
- SHA1
  
  7660c85ef9358d31e337fb9d9f5096f9c3bcea7d
- SHA256
  
  e6cd6a79d538953f2013afde40f69734f62bd97a1a846dcfef578c9d601fd026
- SHA512
  
  6a3659134e1e4b27d9f353cdce3557fdb9ac92ec38f83e3af20b8569043063f708582468f7f21042eaec8e2de6b50aae8ae830542414fd93115d2053616822de
- SSDEEP
  
  768:HCEqMQmO8mNK3D7kQdkgcwAtXI6J+Lmx9aTgd0OPA6uX1:iEqMQ3Ez7ktgjKIOamPQgd0OYbF
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Deletes itself
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2