General

  • Target

    4976a43ba0af6e817cfcad4e7b530f52.exe

  • Size

    80KB

  • Sample

    240107-x12hsaccdn

  • MD5

    4976a43ba0af6e817cfcad4e7b530f52

  • SHA1

    f73c23b35c7fb1fda379297a6dc00153431c1087

  • SHA256

    0fd861c2493fcbc519087d9501d26a9d4305f5779846f34a91be3a7b89b53cec

  • SHA512

    894f9177bca9d03a55b5164e5d560d75cb7f6550b8a94d8c257c07c7d4e54b5eae08408a953df383f2d8be946e22b8cb0535412aaddcf4a83d3cbc0e9dd99d20

  • SSDEEP

    1536:RpiL2qmMRRlfgEyS3BdVV7nJu+QHgaRhdsRJIj:Dqm8gEXxdf7nJTQHgajiIj

Score
10/10

Malware Config

Targets

    • Target

      4976a43ba0af6e817cfcad4e7b530f52.exe

    • Size

      80KB

    • MD5

      4976a43ba0af6e817cfcad4e7b530f52

    • SHA1

      f73c23b35c7fb1fda379297a6dc00153431c1087

    • SHA256

      0fd861c2493fcbc519087d9501d26a9d4305f5779846f34a91be3a7b89b53cec

    • SHA512

      894f9177bca9d03a55b5164e5d560d75cb7f6550b8a94d8c257c07c7d4e54b5eae08408a953df383f2d8be946e22b8cb0535412aaddcf4a83d3cbc0e9dd99d20

    • SSDEEP

      1536:RpiL2qmMRRlfgEyS3BdVV7nJu+QHgaRhdsRJIj:Dqm8gEXxdf7nJTQHgajiIj

    Score
    10/10
    • Modifies WinLogon for persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks