7ace77fbd2da11d0226e0102bb0459403c72130dfc587b090cdba360c92e3177 | Triage

Sharing

General

Target

3c48c6671a3992c9b55638780800e82f
Size

260KB
Sample

240101-jk11esecbp
MD5

3c48c6671a3992c9b55638780800e82f
SHA1

16745ef4d3cf600d846810d9a9d961f0fceca871
SHA256

7ace77fbd2da11d0226e0102bb0459403c72130dfc587b090cdba360c92e3177
SHA512

c3c5a6e398353d2fb026a58fae361aebc460ed23f5b77a26ec7d2ccd8cfdb1d7827f151a79c9572cde93828d1712ee6d4ae9c513d4701122ce2e1e634fbed482
SSDEEP

6144:rjuc4Q8Shv4Xbjw8y4AWE/XY3RMxOoA78qyAUqtYckVoSY:/Lf8Sx4rjnyH3o3SuSY

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3c48c6671a3992c9b55638780800e82f
- Size
  
  260KB
- MD5
  
  3c48c6671a3992c9b55638780800e82f
- SHA1
  
  16745ef4d3cf600d846810d9a9d961f0fceca871
- SHA256
  
  7ace77fbd2da11d0226e0102bb0459403c72130dfc587b090cdba360c92e3177
- SHA512
  
  c3c5a6e398353d2fb026a58fae361aebc460ed23f5b77a26ec7d2ccd8cfdb1d7827f151a79c9572cde93828d1712ee6d4ae9c513d4701122ce2e1e634fbed482
- SSDEEP
  
  6144:rjuc4Q8Shv4Xbjw8y4AWE/XY3RMxOoA78qyAUqtYckVoSY:/Lf8Sx4rjnyH3o3SuSY
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2