a094388c0bfc74ec8625025a8d2056a6722253da9d61bb04f9e2e066e5473cec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07eb5cc54fad7ee45451f230f3c29be1
Size

373KB
Sample

231230-acac3adceq
MD5

07eb5cc54fad7ee45451f230f3c29be1
SHA1

8c3c874ea7c0b4ca7fc8308f382435a4e169308b
SHA256

a094388c0bfc74ec8625025a8d2056a6722253da9d61bb04f9e2e066e5473cec
SHA512

60e9f557f9e3fd78c01f2b0ee9c29f3c6ab08a7fdef83b65a696eafedde60e9897f830292505795775c174c08a9991c7208b9bfb070ebcf3be6485734fb59aa4
SSDEEP

6144:ZC+KB5z0fxm86TbgagVemTSE7nxfmbPn9hvSfRYAXqoieM/KBvHLPur/z:qOxm86Tb/o7DBM/KBvHQ/z

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  07eb5cc54fad7ee45451f230f3c29be1
- Size
  
  373KB
- MD5
  
  07eb5cc54fad7ee45451f230f3c29be1
- SHA1
  
  8c3c874ea7c0b4ca7fc8308f382435a4e169308b
- SHA256
  
  a094388c0bfc74ec8625025a8d2056a6722253da9d61bb04f9e2e066e5473cec
- SHA512
  
  60e9f557f9e3fd78c01f2b0ee9c29f3c6ab08a7fdef83b65a696eafedde60e9897f830292505795775c174c08a9991c7208b9bfb070ebcf3be6485734fb59aa4
- SSDEEP
  
  6144:ZC+KB5z0fxm86TbgagVemTSE7nxfmbPn9hvSfRYAXqoieM/KBvHLPur/z:qOxm86Tb/o7DBM/KBvHQ/z
Score

6^/10

persistence
- Modifies WinLogon
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2