General
-
Target
03fc378fda93e09cd79df29bfb5d8742b54ba611fe62d86e21d3d8558b1894db
-
Size
65KB
-
Sample
240610-wvyz2awclp
-
MD5
09ffc68c3f917612f3c32b9bb6dfa13c
-
SHA1
e836ad3fa96bcc9bda97a50d0f671d894706e733
-
SHA256
03fc378fda93e09cd79df29bfb5d8742b54ba611fe62d86e21d3d8558b1894db
-
SHA512
b77f7ec6b0866cbc7ba8054022a247ab5d59e67d8ca1eae68850cc03ea17bb33b55c774ca290f12de9b8e8d8fdf66a6b2dfa1df9059cc85857b7475f14fe4857
-
SSDEEP
1536:ECq3yRuqrI01eArdW/O7JnI2e13XiLij40MkTUVqa/OumZZZZZZZZZZZZZZZZZZL:7WNqkOJWmo1HpM0MkTUmuy
Malware Config
Targets
-
-
Target
03fc378fda93e09cd79df29bfb5d8742b54ba611fe62d86e21d3d8558b1894db
-
Size
65KB
-
MD5
09ffc68c3f917612f3c32b9bb6dfa13c
-
SHA1
e836ad3fa96bcc9bda97a50d0f671d894706e733
-
SHA256
03fc378fda93e09cd79df29bfb5d8742b54ba611fe62d86e21d3d8558b1894db
-
SHA512
b77f7ec6b0866cbc7ba8054022a247ab5d59e67d8ca1eae68850cc03ea17bb33b55c774ca290f12de9b8e8d8fdf66a6b2dfa1df9059cc85857b7475f14fe4857
-
SSDEEP
1536:ECq3yRuqrI01eArdW/O7JnI2e13XiLij40MkTUVqa/OumZZZZZZZZZZZZZZZZZZL:7WNqkOJWmo1HpM0MkTUmuy
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1