d52223415f311aa74fc0c4ac53e348d64d9f68fdaec89a2681dd27dd99b8aca6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

66666666.exe
Size

285KB
Sample

240422-y5nyxsfg9w
MD5

d336be0a90bc624ead56f319730fb490
SHA1

24b1e7f75c4a1adcc6a3e056eba35371a7916f22
SHA256

d52223415f311aa74fc0c4ac53e348d64d9f68fdaec89a2681dd27dd99b8aca6
SHA512

1dc5caee7dcf520cc739244ef5f31ab9bc8541353465fb6d2d40757fdef9b9a9e0ae9ec3e86219243afb1aa168d3a4896b2e36224ac2e886895a5107437cfe69
SSDEEP

3072:8INisHfBp7VgHsJct7ZsNeN3w/jhlhE1Z8Nig9eZigR97PRtdejbrk20nyPq+CN:8YiiBp87Nwe6VlWT8b9oigR9jXib2ez

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  66666666.exe
- Size
  
  285KB
- MD5
  
  d336be0a90bc624ead56f319730fb490
- SHA1
  
  24b1e7f75c4a1adcc6a3e056eba35371a7916f22
- SHA256
  
  d52223415f311aa74fc0c4ac53e348d64d9f68fdaec89a2681dd27dd99b8aca6
- SHA512
  
  1dc5caee7dcf520cc739244ef5f31ab9bc8541353465fb6d2d40757fdef9b9a9e0ae9ec3e86219243afb1aa168d3a4896b2e36224ac2e886895a5107437cfe69
- SSDEEP
  
  3072:8INisHfBp7VgHsJct7ZsNeN3w/jhlhE1Z8Nig9eZigR97PRtdejbrk20nyPq+CN:8YiiBp87Nwe6VlWT8b9oigR9jXib2ez
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Modifies AppInit DLL entries
  persistence
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Winlogon Helper DLL

Scheduled Task/Job

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Winlogon Helper DLL

Scheduled Task/Job

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1