General
-
Target
98660b6ac500858378cefe41233b5d6730d2f0412a4c6c7b94f5e317a8056b8f
-
Size
206KB
-
Sample
240603-bpf7tafd59
-
MD5
eb744c43e70494b3b39ddb20661b1f3a
-
SHA1
97f878a9ddfcd16513cb0bdd947354e1b4ccc815
-
SHA256
98660b6ac500858378cefe41233b5d6730d2f0412a4c6c7b94f5e317a8056b8f
-
SHA512
333d4851a38b9925b346df32630fd692ecbcdbc62af58fbb8dbe6065dc8160120a286045ff5773e8b9fc2e63596a91314a6d2ca350fe19829b97c71581a7ec21
-
SSDEEP
3072:5vEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6unL+:5vEN2U+T6i5LirrllHy4HUcMQY6K+
Malware Config
Targets
-
-
Target
98660b6ac500858378cefe41233b5d6730d2f0412a4c6c7b94f5e317a8056b8f
-
Size
206KB
-
MD5
eb744c43e70494b3b39ddb20661b1f3a
-
SHA1
97f878a9ddfcd16513cb0bdd947354e1b4ccc815
-
SHA256
98660b6ac500858378cefe41233b5d6730d2f0412a4c6c7b94f5e317a8056b8f
-
SHA512
333d4851a38b9925b346df32630fd692ecbcdbc62af58fbb8dbe6065dc8160120a286045ff5773e8b9fc2e63596a91314a6d2ca350fe19829b97c71581a7ec21
-
SSDEEP
3072:5vEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6unL+:5vEN2U+T6i5LirrllHy4HUcMQY6K+
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1