6e77add00f2bbb3062fbb7580a631a4d7930adc313c972942dab08edb478969c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

351650ddc6c955b5360582f26bc8aad0N.exe
Size

338KB
Sample

240719-bmn5mswbrj
MD5

351650ddc6c955b5360582f26bc8aad0
SHA1

162e801b30f9a4253152ec92863280cbc70998c7
SHA256

6e77add00f2bbb3062fbb7580a631a4d7930adc313c972942dab08edb478969c
SHA512

e8e58403c1d78e7f1e8632946056b9a12f2c73d6981f71275dde6e6ea3b2278b4098ac4b4d152ddb93dd9fa176a32247be66926e183751d8b8fccc3266d085c6
SSDEEP

6144:MExz45lS77IQi8Dq+9fXphN2LfjEcYzaWqr57Q7Xwxc4SQjWvvf:mlS71Dq+pcYWWqtfxvSQj2f

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  351650ddc6c955b5360582f26bc8aad0N.exe
- Size
  
  338KB
- MD5
  
  351650ddc6c955b5360582f26bc8aad0
- SHA1
  
  162e801b30f9a4253152ec92863280cbc70998c7
- SHA256
  
  6e77add00f2bbb3062fbb7580a631a4d7930adc313c972942dab08edb478969c
- SHA512
  
  e8e58403c1d78e7f1e8632946056b9a12f2c73d6981f71275dde6e6ea3b2278b4098ac4b4d152ddb93dd9fa176a32247be66926e183751d8b8fccc3266d085c6
- SSDEEP
  
  6144:MExz45lS77IQi8Dq+9fXphN2LfjEcYzaWqr57Q7Xwxc4SQjWvvf:mlS71Dq+pcYWWqtfxvSQj2f
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies WinLogon
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2