General
-
Target
d24d5d94b19213123b488fdc26a8ca69648805118d728447b564750946757e1d
-
Size
65KB
-
Sample
240614-eyqdmavdqg
-
MD5
a6a5271f406d11e393d777cb2b084fde
-
SHA1
83bcf166a8244d3d08fc2f74fbd5e2c80a41c85e
-
SHA256
d24d5d94b19213123b488fdc26a8ca69648805118d728447b564750946757e1d
-
SHA512
6b5949c46c193755b85d1945b8db908031a8259e4ccb998832ee1569e0553f5c769a5e0b82892be7baf12fe73bd81e1e83dc37067f4e3ab89ed778c2195b898e
-
SSDEEP
1536:ECq3yRuqrI01eArdW/O7JnI2e13XiLij40MkTUVqa/Ouk:7WNqkOJWmo1HpM0MkTUmuk
Static task
static1
Behavioral task
behavioral1
Sample
d24d5d94b19213123b488fdc26a8ca69648805118d728447b564750946757e1d.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
d24d5d94b19213123b488fdc26a8ca69648805118d728447b564750946757e1d.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
d24d5d94b19213123b488fdc26a8ca69648805118d728447b564750946757e1d
-
Size
65KB
-
MD5
a6a5271f406d11e393d777cb2b084fde
-
SHA1
83bcf166a8244d3d08fc2f74fbd5e2c80a41c85e
-
SHA256
d24d5d94b19213123b488fdc26a8ca69648805118d728447b564750946757e1d
-
SHA512
6b5949c46c193755b85d1945b8db908031a8259e4ccb998832ee1569e0553f5c769a5e0b82892be7baf12fe73bd81e1e83dc37067f4e3ab89ed778c2195b898e
-
SSDEEP
1536:ECq3yRuqrI01eArdW/O7JnI2e13XiLij40MkTUVqa/Ouk:7WNqkOJWmo1HpM0MkTUmuk
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1