026fd0d6222bdc69a9e122070503c54ccedb41e5cb2ed25f1c322ce2089b69bd | Triage

Sharing

General

Target

53410845688ea45527967c26844ffcbd
Size

51KB
Sample

240111-mcmplsdhhj
MD5

53410845688ea45527967c26844ffcbd
SHA1

45c834d651d7acf80eb44296efeb738de0edf63d
SHA256

026fd0d6222bdc69a9e122070503c54ccedb41e5cb2ed25f1c322ce2089b69bd
SHA512

ed499521deb3b941a37f694bcdf1fa685bb0167367b039823a5f546bf7902cea9d3e16d4b0a85508cd234a2b54e336599034fbeabb9760c59644366cae4c4d5c
SSDEEP

1536:Rda/y/g+qZqrWlhpe8XwHb8zOKch+0uJ6Jug:+oglYrWnkOI8yhru9g

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  53410845688ea45527967c26844ffcbd
- Size
  
  51KB
- MD5
  
  53410845688ea45527967c26844ffcbd
- SHA1
  
  45c834d651d7acf80eb44296efeb738de0edf63d
- SHA256
  
  026fd0d6222bdc69a9e122070503c54ccedb41e5cb2ed25f1c322ce2089b69bd
- SHA512
  
  ed499521deb3b941a37f694bcdf1fa685bb0167367b039823a5f546bf7902cea9d3e16d4b0a85508cd234a2b54e336599034fbeabb9760c59644366cae4c4d5c
- SSDEEP
  
  1536:Rda/y/g+qZqrWlhpe8XwHb8zOKch+0uJ6Jug:+oglYrWnkOI8yhru9g
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2