bdb752dd607e4c5ed46ad78e12c7017e0dd7a4f58d5fd2020a979bc947d8d0f4 | Triage

Sharing

General

Target

257047476e739747f711efa9d1c2de50N.exe
Size

211KB
Sample

240721-26fwgszbmg
MD5

257047476e739747f711efa9d1c2de50
SHA1

4391d70ee90107a544636613616f281707e79474
SHA256

bdb752dd607e4c5ed46ad78e12c7017e0dd7a4f58d5fd2020a979bc947d8d0f4
SHA512

d2b4f24d0d6f6f358592d3dbd828327d8ae09b2ebaceb16a0d10d78995c0d312eeb8470c2c61947bfc10ca4a7b2afbc9fa3fdea33fe4710b58ab2d89fb2d9ad1
SSDEEP

6144:kmKVGe1XIpQiU/ma3MB8hH2Tkp6bYnWcZVol0N5TzQ3:e71YpQiU/RcO1VQInVob

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  257047476e739747f711efa9d1c2de50N.exe
- Size
  
  211KB
- MD5
  
  257047476e739747f711efa9d1c2de50
- SHA1
  
  4391d70ee90107a544636613616f281707e79474
- SHA256
  
  bdb752dd607e4c5ed46ad78e12c7017e0dd7a4f58d5fd2020a979bc947d8d0f4
- SHA512
  
  d2b4f24d0d6f6f358592d3dbd828327d8ae09b2ebaceb16a0d10d78995c0d312eeb8470c2c61947bfc10ca4a7b2afbc9fa3fdea33fe4710b58ab2d89fb2d9ad1
- SSDEEP
  
  6144:kmKVGe1XIpQiU/ma3MB8hH2Tkp6bYnWcZVol0N5TzQ3:e71YpQiU/RcO1VQInVob
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies WinLogon
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2