General
-
Target
1720f8426f21f5de168038a0820a39a0
-
Size
206KB
-
Sample
231225-mg7wcafdd4
-
MD5
1720f8426f21f5de168038a0820a39a0
-
SHA1
e54bc419c5293e422a0eae8054a081a3c4e56c8c
-
SHA256
48c073b15ba2d0c496b5e663ebf4c11f87d0dd7952eeea7fc11cf90f6f7df8fd
-
SHA512
5a5510862ccb3965c67d8ecc8056d2a0e504b4059bcffad4960fe0031b0d82abf70e6ff0d7b2157a9e4fe81e4d0e5abff9aef7ca1b90fd2759ed2713c36baf2e
-
SSDEEP
6144:zvEN2U+T6i5LirrllHy4HUcMQY6oSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSE:zENN+T5xYrllrU7QY6oSSSSSSSSSSSS9
Malware Config
Targets
-
-
Target
1720f8426f21f5de168038a0820a39a0
-
Size
206KB
-
MD5
1720f8426f21f5de168038a0820a39a0
-
SHA1
e54bc419c5293e422a0eae8054a081a3c4e56c8c
-
SHA256
48c073b15ba2d0c496b5e663ebf4c11f87d0dd7952eeea7fc11cf90f6f7df8fd
-
SHA512
5a5510862ccb3965c67d8ecc8056d2a0e504b4059bcffad4960fe0031b0d82abf70e6ff0d7b2157a9e4fe81e4d0e5abff9aef7ca1b90fd2759ed2713c36baf2e
-
SSDEEP
6144:zvEN2U+T6i5LirrllHy4HUcMQY6oSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSE:zENN+T5xYrllrU7QY6oSSSSSSSSSSSS9
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1