General
-
Target
88dab02e4ffb1c4e314e41ef7683fa5f8d7c20ce6c8995e0c93c521af642465b
-
Size
65KB
-
Sample
240605-aezezaga3v
-
MD5
249ba99e1d6bcdf41cbdf4cdf399cc32
-
SHA1
bdbf762bfa0fa0c010cf213ff4b7d9dc15225007
-
SHA256
88dab02e4ffb1c4e314e41ef7683fa5f8d7c20ce6c8995e0c93c521af642465b
-
SHA512
f672eb869318f810adac40efab1701bfa8e4c92ff0c9a53c134dc85f6af49210233df9c14058cbda9234ff9d7f10ca95e47056d09e4778addedeccd075a50b9a
-
SSDEEP
1536:ECq3yRuqrI01eArdW/O7JnI2e13XiLij40MkTUVqa/OuYUUUUUUUUUUUUUUUUUUW:7WNqkOJWmo1HpM0MkTUmuD
Malware Config
Targets
-
-
Target
88dab02e4ffb1c4e314e41ef7683fa5f8d7c20ce6c8995e0c93c521af642465b
-
Size
65KB
-
MD5
249ba99e1d6bcdf41cbdf4cdf399cc32
-
SHA1
bdbf762bfa0fa0c010cf213ff4b7d9dc15225007
-
SHA256
88dab02e4ffb1c4e314e41ef7683fa5f8d7c20ce6c8995e0c93c521af642465b
-
SHA512
f672eb869318f810adac40efab1701bfa8e4c92ff0c9a53c134dc85f6af49210233df9c14058cbda9234ff9d7f10ca95e47056d09e4778addedeccd075a50b9a
-
SSDEEP
1536:ECq3yRuqrI01eArdW/O7JnI2e13XiLij40MkTUVqa/OuYUUUUUUUUUUUUUUUUUUW:7WNqkOJWmo1HpM0MkTUmuD
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1