917194aba115713f144d469cdcb71ffe4363df2bb0cda260c048d185a91619ec | Triage

Sharing

General

Target

490b7416a9b567976819b39ade1ed32f
Size

84KB
Sample

240107-p7ch8sfhaq
MD5

490b7416a9b567976819b39ade1ed32f
SHA1

154b6f33f12fcd74c54e3a3778ff1ad0bd5046d0
SHA256

917194aba115713f144d469cdcb71ffe4363df2bb0cda260c048d185a91619ec
SHA512

47a40830185f6a4af3d5bdfa65fd5f2becd498994a331785aac1c5e4f02cbcf491286f14c0713ad8c8a96078da3369cf36c5f67365d943484c240911fd7f80b1
SSDEEP

1536:UI2gT9JsQ6ZsM01g5iSwRJWEyq4DSruYtM4sOgCRloJR/0JoNlYsY1NHTZ5:ZRD9e1inWE/4D+XllZJWlYLNzZ

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  490b7416a9b567976819b39ade1ed32f
- Size
  
  84KB
- MD5
  
  490b7416a9b567976819b39ade1ed32f
- SHA1
  
  154b6f33f12fcd74c54e3a3778ff1ad0bd5046d0
- SHA256
  
  917194aba115713f144d469cdcb71ffe4363df2bb0cda260c048d185a91619ec
- SHA512
  
  47a40830185f6a4af3d5bdfa65fd5f2becd498994a331785aac1c5e4f02cbcf491286f14c0713ad8c8a96078da3369cf36c5f67365d943484c240911fd7f80b1
- SSDEEP
  
  1536:UI2gT9JsQ6ZsM01g5iSwRJWEyq4DSruYtM4sOgCRloJR/0JoNlYsY1NHTZ5:ZRD9e1inWE/4D+XllZJWlYLNzZ
Score

6^/10

persistence
- Modifies WinLogon
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2