27afe37cb013c900290086ede843fcf48c0206d9a1ca92422808e258f0631f5e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ccbbc6cf68275fcfa21ae1fa29820cc0
Size

43KB
Sample

240316-bmrkrshh97
MD5

ccbbc6cf68275fcfa21ae1fa29820cc0
SHA1

7d6141d0cc7f6dd6fac392f274127833c2d5c4b0
SHA256

27afe37cb013c900290086ede843fcf48c0206d9a1ca92422808e258f0631f5e
SHA512

7154c4802bd349375144f33a4bf3497af0bec222c69b9811bd42f753ba04240ad10a50628f550cd22103521e549d8079b3ace0c23382e50c890355328e280f3e
SSDEEP

768:b8dfdpb0hyjOzabdwd+A4yk2wD5q25Wy3WMCzZ0zdWSqiQJ+cok:4dz0yDbd2+WWDB53GnacJ+7

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ccbbc6cf68275fcfa21ae1fa29820cc0
- Size
  
  43KB
- MD5
  
  ccbbc6cf68275fcfa21ae1fa29820cc0
- SHA1
  
  7d6141d0cc7f6dd6fac392f274127833c2d5c4b0
- SHA256
  
  27afe37cb013c900290086ede843fcf48c0206d9a1ca92422808e258f0631f5e
- SHA512
  
  7154c4802bd349375144f33a4bf3497af0bec222c69b9811bd42f753ba04240ad10a50628f550cd22103521e549d8079b3ace0c23382e50c890355328e280f3e
- SSDEEP
  
  768:b8dfdpb0hyjOzabdwd+A4yk2wD5q25Wy3WMCzZ0zdWSqiQJ+cok:4dz0yDbd2+WWDB53GnacJ+7
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2