dc643ea6caa300d8defa2b2cec6389935fd555ed3defc5cdc5027e602683c57b | Triage

Sharing

General

Target

5339f5be6ae57bc451025ab68665af06
Size

510KB
Sample

240111-l43pgadger
MD5

5339f5be6ae57bc451025ab68665af06
SHA1

7588ebeb8c37470e69263c5dc7c31da9b217cad0
SHA256

dc643ea6caa300d8defa2b2cec6389935fd555ed3defc5cdc5027e602683c57b
SHA512

e8ae1310fcbbb85d118e0a67eb7d1be09fe1e607a898e4b8dce31839bad5875feec606e13806358ff53db39dd1032442165809a9a62de458850f7e6c34dc70f5
SSDEEP

12288:nA0Aebf4T2yUa1gW9y7PoIodyAdf7nAwm7R:APcfFyU6rSq15Awc

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5339f5be6ae57bc451025ab68665af06
- Size
  
  510KB
- MD5
  
  5339f5be6ae57bc451025ab68665af06
- SHA1
  
  7588ebeb8c37470e69263c5dc7c31da9b217cad0
- SHA256
  
  dc643ea6caa300d8defa2b2cec6389935fd555ed3defc5cdc5027e602683c57b
- SHA512
  
  e8ae1310fcbbb85d118e0a67eb7d1be09fe1e607a898e4b8dce31839bad5875feec606e13806358ff53db39dd1032442165809a9a62de458850f7e6c34dc70f5
- SSDEEP
  
  12288:nA0Aebf4T2yUa1gW9y7PoIodyAdf7nAwm7R:APcfFyU6rSq15Awc
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2