b6636e8a6a1a718597eda5002b4f561ba205d0a305541b19ba25d3eca9f47852 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45dd9e70492048634459ce2d313068c0
Size

632KB
Sample

240106-latvgacdfj
MD5

45dd9e70492048634459ce2d313068c0
SHA1

6e569cf00494a9fe87ce3d401271450b71eaa4ea
SHA256

b6636e8a6a1a718597eda5002b4f561ba205d0a305541b19ba25d3eca9f47852
SHA512

69dc0f9a622164d48679acc6566ffa9a21f8a6456ee7c74fd7806321ad32ea35dc3d471dd68fbbaa6f9cf85b9d074d27ccb6b650d17463ce7309caef4a2d30a7
SSDEEP

12288:qAfhZVd6g5nRJdysVQfJcaj95ijsRyZzSmCJic/P+Iq+rnX8kEj:qS3TnHbVSNj981uV5eItrnX8v

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  45dd9e70492048634459ce2d313068c0
- Size
  
  632KB
- MD5
  
  45dd9e70492048634459ce2d313068c0
- SHA1
  
  6e569cf00494a9fe87ce3d401271450b71eaa4ea
- SHA256
  
  b6636e8a6a1a718597eda5002b4f561ba205d0a305541b19ba25d3eca9f47852
- SHA512
  
  69dc0f9a622164d48679acc6566ffa9a21f8a6456ee7c74fd7806321ad32ea35dc3d471dd68fbbaa6f9cf85b9d074d27ccb6b650d17463ce7309caef4a2d30a7
- SSDEEP
  
  12288:qAfhZVd6g5nRJdysVQfJcaj95ijsRyZzSmCJic/P+Iq+rnX8kEj:qS3TnHbVSNj981uV5eItrnX8v
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2