a433647ac84c583fce6d0a2f7164996801a9d42c271de0d9a71e5a6b0e8851f6 | Triage

Sharing

General

Target

1234789dc119daef7ee5e9da8012ff70.exe
Size

62KB
Sample

240705-2qt36sxhqk
MD5

1234789dc119daef7ee5e9da8012ff70
SHA1

1bdf026a6dfa1cb50cb1a782c767b816b9b4a8ec
SHA256

a433647ac84c583fce6d0a2f7164996801a9d42c271de0d9a71e5a6b0e8851f6
SHA512

88029d17f2c71e28922136d16c1499ec7f14decd5c41b5cebbddf87d23e74ecd50ee592e82bc70711eaa629728d67f0fc375d8df97150dbf9a21870ac3deea9c
SSDEEP

768:zfuSjFkS+Y1HD1mQwh5I6O5yXX2+57cySpzyRuqL77DG++SO4uPVGyMSaCbJmg0g:VxnhvmXm+tSpzy42b+S5uPYyMSaMo31y

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1234789dc119daef7ee5e9da8012ff70.exe
- Size
  
  62KB
- MD5
  
  1234789dc119daef7ee5e9da8012ff70
- SHA1
  
  1bdf026a6dfa1cb50cb1a782c767b816b9b4a8ec
- SHA256
  
  a433647ac84c583fce6d0a2f7164996801a9d42c271de0d9a71e5a6b0e8851f6
- SHA512
  
  88029d17f2c71e28922136d16c1499ec7f14decd5c41b5cebbddf87d23e74ecd50ee592e82bc70711eaa629728d67f0fc375d8df97150dbf9a21870ac3deea9c
- SSDEEP
  
  768:zfuSjFkS+Y1HD1mQwh5I6O5yXX2+57cySpzyRuqL77DG++SO4uPVGyMSaCbJmg0g:VxnhvmXm+tSpzy42b+S5uPYyMSaMo31y
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2