b73e75c347eadcd7348f05d7e5ea9db2374e1771a70776978ddc1c12e3cfc187 | Triage

Sharing

General

Target

48a1d0cfaa4f9fc9c909cf32bd3945c0
Size

543KB
Sample

231226-bnhdgsbce2
MD5

48a1d0cfaa4f9fc9c909cf32bd3945c0
SHA1

85ce8cb70984d41c9ddbab47bd0f8bd5a65f3371
SHA256

b73e75c347eadcd7348f05d7e5ea9db2374e1771a70776978ddc1c12e3cfc187
SHA512

d59aa8205ba10edc53779982e26ec39df15a62c53425e7180a8b679416eeb34652fac9cf5120211090937f2db84238a4d096f9b7fe6afa71c9988322cba657a0
SSDEEP

12288:Audzm9sLvvFbCUj4K+0w2QlbN31Ot6/f3IymUGR/8S01c:AubvvN3w/6t6/FGR/uc

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  48a1d0cfaa4f9fc9c909cf32bd3945c0
- Size
  
  543KB
- MD5
  
  48a1d0cfaa4f9fc9c909cf32bd3945c0
- SHA1
  
  85ce8cb70984d41c9ddbab47bd0f8bd5a65f3371
- SHA256
  
  b73e75c347eadcd7348f05d7e5ea9db2374e1771a70776978ddc1c12e3cfc187
- SHA512
  
  d59aa8205ba10edc53779982e26ec39df15a62c53425e7180a8b679416eeb34652fac9cf5120211090937f2db84238a4d096f9b7fe6afa71c9988322cba657a0
- SSDEEP
  
  12288:Audzm9sLvvFbCUj4K+0w2QlbN31Ot6/f3IymUGR/8S01c:AubvvN3w/6t6/FGR/uc
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2