General
-
Target
ef09b40d28c316b09eff30f2cba176a3d670f269f5bb7e11d7a213026c8b0bbb
-
Size
66KB
-
Sample
240609-n6npfaba44
-
MD5
a2aa2288f8c2d9f5f95cd115fec6f089
-
SHA1
e99677635e66efee2109db44050f99c4dbe4baaf
-
SHA256
ef09b40d28c316b09eff30f2cba176a3d670f269f5bb7e11d7a213026c8b0bbb
-
SHA512
7945901caa577308789b8ce29871cb3c5a118a5d1c4e496e3ac9790c49ff2e33e52e92c87d9852fd6eadcf05d8d848e8c884d5e9b16b56e75bd46aa375b43548
-
SSDEEP
1536:EHfetdklPp+07gDSrB8Xru2zGeJxgawTzpXzrDJrXiE:IeklMMYJhqezw/pXzH9iE
Malware Config
Targets
-
-
Target
ef09b40d28c316b09eff30f2cba176a3d670f269f5bb7e11d7a213026c8b0bbb
-
Size
66KB
-
MD5
a2aa2288f8c2d9f5f95cd115fec6f089
-
SHA1
e99677635e66efee2109db44050f99c4dbe4baaf
-
SHA256
ef09b40d28c316b09eff30f2cba176a3d670f269f5bb7e11d7a213026c8b0bbb
-
SHA512
7945901caa577308789b8ce29871cb3c5a118a5d1c4e496e3ac9790c49ff2e33e52e92c87d9852fd6eadcf05d8d848e8c884d5e9b16b56e75bd46aa375b43548
-
SSDEEP
1536:EHfetdklPp+07gDSrB8Xru2zGeJxgawTzpXzrDJrXiE:IeklMMYJhqezw/pXzH9iE
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1