e2eb111cb66d5c6ecaae532a841138e60eb25ae0392464634f14ebfd2c383cbd | Triage

Sharing

General

Target

233824f841bf6a47547bf0d741fc458a
Size

90KB
Sample

231231-b5tg3sgbfj
MD5

233824f841bf6a47547bf0d741fc458a
SHA1

fcbf05e0f648bd1a10e91890c3284dc653a00b13
SHA256

e2eb111cb66d5c6ecaae532a841138e60eb25ae0392464634f14ebfd2c383cbd
SHA512

074f52b361c1f6680a5a1330cc9cd191697ccdb4e30c1cffe233106eab1d108ae74afb910c347d0b91a0aa92b67b6132e9d4f3a343cd3e8138c125d1bb4f9074
SSDEEP

1536:OYl5SI4ZL+inPsQ5CZggsnbFdTILy/wSUOTIKWZg4TxSZJjx6YGroB8q:OYl5SI4ZLBaVgbnELyNIfZ2N6b0B8q

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  233824f841bf6a47547bf0d741fc458a
- Size
  
  90KB
- MD5
  
  233824f841bf6a47547bf0d741fc458a
- SHA1
  
  fcbf05e0f648bd1a10e91890c3284dc653a00b13
- SHA256
  
  e2eb111cb66d5c6ecaae532a841138e60eb25ae0392464634f14ebfd2c383cbd
- SHA512
  
  074f52b361c1f6680a5a1330cc9cd191697ccdb4e30c1cffe233106eab1d108ae74afb910c347d0b91a0aa92b67b6132e9d4f3a343cd3e8138c125d1bb4f9074
- SSDEEP
  
  1536:OYl5SI4ZL+inPsQ5CZggsnbFdTILy/wSUOTIKWZg4TxSZJjx6YGroB8q:OYl5SI4ZLBaVgbnELyNIfZ2N6b0B8q
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Deletes itself
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2