715c2da81a5bcab7e4841a46e8f2560e6c0a8333cf4c0eb1bb4d046f13287fd6 | Triage

Sharing

General

Target

07d42c350fe34897fb93a74c3072d562
Size

168KB
Sample

231230-aah77acgdr
MD5

07d42c350fe34897fb93a74c3072d562
SHA1

2adcc81cef9762092e53ece9f3b77e045c85aec1
SHA256

715c2da81a5bcab7e4841a46e8f2560e6c0a8333cf4c0eb1bb4d046f13287fd6
SHA512

b65f2ade3ab0310e2fe6aae10ec5637adc56ee5c46332aba2d9654b183b1cacf5e4a7f93e95186c242196355f0eab0667a458f049d6cbdd306b42fe338a381c5
SSDEEP

3072:nb8lIJZDiY2snw8rTT66AjWp+hyAwoiZahrcPSwBwj1WiAf//t7DbNgXnHWn+mJz:nbEU6i+arR3PyjUVf//tLN0nq+mSM

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  07d42c350fe34897fb93a74c3072d562
- Size
  
  168KB
- MD5
  
  07d42c350fe34897fb93a74c3072d562
- SHA1
  
  2adcc81cef9762092e53ece9f3b77e045c85aec1
- SHA256
  
  715c2da81a5bcab7e4841a46e8f2560e6c0a8333cf4c0eb1bb4d046f13287fd6
- SHA512
  
  b65f2ade3ab0310e2fe6aae10ec5637adc56ee5c46332aba2d9654b183b1cacf5e4a7f93e95186c242196355f0eab0667a458f049d6cbdd306b42fe338a381c5
- SSDEEP
  
  3072:nb8lIJZDiY2snw8rTT66AjWp+hyAwoiZahrcPSwBwj1WiAf//t7DbNgXnHWn+mJz:nbEU6i+arR3PyjUVf//tLN0nq+mSM
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2