93048cf500f152c527cfbfcee489e41a74c54966286f81d40d4fa4b8317b4af7 | Triage

Sharing

General

Target

93048cf500f152c527cfbfcee489e41a74c54966286f81d40d4fa4b8317b4af7
Size

215KB
Sample

240522-dtg11saf4x
MD5

60c4d3f1b35d26f8af0fe44652ef5a13
SHA1

02beeb351e22b92b2b3f19c6854eea559bc0f0d8
SHA256

93048cf500f152c527cfbfcee489e41a74c54966286f81d40d4fa4b8317b4af7
SHA512

b0cc9fc4c62e4fa520084da617eeda06637c729de54ad7950c2724fc2c27b8348fb19290be086e6860b2a83941889b71bdf626dfc52eaa2a1d356491d7a490a1
SSDEEP

6144:iJcxlKhSGoqTecGy9+hAu7//QnSrMhcZEp:iS8hbTiyqA4QnSQhcZ8

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  93048cf500f152c527cfbfcee489e41a74c54966286f81d40d4fa4b8317b4af7
- Size
  
  215KB
- MD5
  
  60c4d3f1b35d26f8af0fe44652ef5a13
- SHA1
  
  02beeb351e22b92b2b3f19c6854eea559bc0f0d8
- SHA256
  
  93048cf500f152c527cfbfcee489e41a74c54966286f81d40d4fa4b8317b4af7
- SHA512
  
  b0cc9fc4c62e4fa520084da617eeda06637c729de54ad7950c2724fc2c27b8348fb19290be086e6860b2a83941889b71bdf626dfc52eaa2a1d356491d7a490a1
- SSDEEP
  
  6144:iJcxlKhSGoqTecGy9+hAu7//QnSrMhcZEp:iS8hbTiyqA4QnSQhcZ8
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies WinLogon
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2