Overview

overview

10

Static

static

3

5b0194787f...34.exe

windows7-x64

3

5b0194787f...34.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    5b0194787fa77a8891cc01950e98d834

  • Size

    268KB

  • Sample

    240114-mj79wshdc7

  • MD5

    5b0194787fa77a8891cc01950e98d834

  • SHA1

    1a6ec28ed508c21db1db5618943df5880fa99715

  • SHA256

    7ca9de4ebe734e747f107446ca23150d54bd161d2dd0a62040dd8490ba9ba7ad

  • SHA512

    290da41b6b04700a226ca9f9714cc94c9c0e1f9eab99f8174c88dc59e120aa2d679034decab1e166e1e08a927bf679f612b3f76e98c28f4285f7d6ed3c8ba5cf

  • SSDEEP

    3072:1yq4hbct7idvtWD3m8L/JhH0aWpcFLxZ7c8p3/n56nIGGZvr0oiMk88zXsVTvC6y:AyYvta3/jJFI8lbvr0oiNzXsc6qTcC

Score
10/10
persistence

Malware Config

Targets

    • Target

      5b0194787fa77a8891cc01950e98d834

    • Size

      268KB

    • MD5

      5b0194787fa77a8891cc01950e98d834

    • SHA1

      1a6ec28ed508c21db1db5618943df5880fa99715

    • SHA256

      7ca9de4ebe734e747f107446ca23150d54bd161d2dd0a62040dd8490ba9ba7ad

    • SHA512

      290da41b6b04700a226ca9f9714cc94c9c0e1f9eab99f8174c88dc59e120aa2d679034decab1e166e1e08a927bf679f612b3f76e98c28f4285f7d6ed3c8ba5cf

    • SSDEEP

      3072:1yq4hbct7idvtWD3m8L/JhH0aWpcFLxZ7c8p3/n56nIGGZvr0oiMk88zXsVTvC6y:AyYvta3/jJFI8lbvr0oiNzXsc6qTcC

    Score
    10/10
    persistence

    • Modifies WinLogon for persistence

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks