a5666de35d8333c1a91281efffa6eab92820850336566bb3de258ce9814d3891 | Triage

Sharing

General

Target

1ce476f82cee74231401b37a99650d40N.exe
Size

211KB
Sample

240706-2ag4nsvbml
MD5

1ce476f82cee74231401b37a99650d40
SHA1

1208512288024ca2661eecd11f83ad171eca1588
SHA256

a5666de35d8333c1a91281efffa6eab92820850336566bb3de258ce9814d3891
SHA512

0b770f9e5e05fb9ee47cd7dada684736c8c074a2b55f64a1f174db11082e1370a94fa63f884c7aaa83537c100c01e0a901ac5ed635e54dcbca7e46b1ecd92470
SSDEEP

6144:gmKVGe1XIpQiU/ma3MB8hH2Tkp6bYnWcZVol0N5TzQ3:q71YpQiU/RcO1VQInVob

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  1ce476f82cee74231401b37a99650d40N.exe
- Size
  
  211KB
- MD5
  
  1ce476f82cee74231401b37a99650d40
- SHA1
  
  1208512288024ca2661eecd11f83ad171eca1588
- SHA256
  
  a5666de35d8333c1a91281efffa6eab92820850336566bb3de258ce9814d3891
- SHA512
  
  0b770f9e5e05fb9ee47cd7dada684736c8c074a2b55f64a1f174db11082e1370a94fa63f884c7aaa83537c100c01e0a901ac5ed635e54dcbca7e46b1ecd92470
- SSDEEP
  
  6144:gmKVGe1XIpQiU/ma3MB8hH2Tkp6bYnWcZVol0N5TzQ3:q71YpQiU/RcO1VQInVob
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies WinLogon
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2