4ad15dacb7efa41354bed63e742f98804eba7c886b6aad5f5709d32c84bfc5b5 | Triage

Sharing

General

Target

802265850cd5616f53ecbf59222ff973
Size

31KB
Sample

240129-sen84sdhdr
MD5

802265850cd5616f53ecbf59222ff973
SHA1

1316bdeaf01791c65cd304ee9c1eb04ecef7daa3
SHA256

4ad15dacb7efa41354bed63e742f98804eba7c886b6aad5f5709d32c84bfc5b5
SHA512

d4566586b30526442821bb42cda6dfc0f9d21503799fabcfa3365052e6429bb6d2f80863c25b79324bdae47f6d83d8fde091ac5e76dcfe83dfac4d97a64a3b67
SSDEEP

768:bU6wHpNgNDldoV46qTahK+5ROHf+5orZStqJg12rstlAH:bU6wJNgNH6mF+5RAfK6ItqIxtl6

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  802265850cd5616f53ecbf59222ff973
- Size
  
  31KB
- MD5
  
  802265850cd5616f53ecbf59222ff973
- SHA1
  
  1316bdeaf01791c65cd304ee9c1eb04ecef7daa3
- SHA256
  
  4ad15dacb7efa41354bed63e742f98804eba7c886b6aad5f5709d32c84bfc5b5
- SHA512
  
  d4566586b30526442821bb42cda6dfc0f9d21503799fabcfa3365052e6429bb6d2f80863c25b79324bdae47f6d83d8fde091ac5e76dcfe83dfac4d97a64a3b67
- SSDEEP
  
  768:bU6wHpNgNDldoV46qTahK+5ROHf+5orZStqJg12rstlAH:bU6wJNgNH6mF+5RAfK6ItqIxtl6
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies WinLogon
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2