General

  • Target

    b3f1eff4a12203b58b5d6d1b68611970N.exe

  • Size

    204KB

  • Sample

    240817-heslessbqc

  • MD5

    b3f1eff4a12203b58b5d6d1b68611970

  • SHA1

    d219449dc354616027a87513cbbd88854dcc2959

  • SHA256

    bb2efb45eb3427a5be0d0b87eeea5648d18b9e6b514eb4dfc82b8f50f0719789

  • SHA512

    3c0455ff41734f21fe3f01999ba8c71c7300b1fdcf5554560afe3cfbb481f617d13683738b26a9967d997a03588b06bb9c396fc9e41ce19dc113add4228c6925

  • SSDEEP

    3072:6aSdR9c1/fuWL0AjMilpCOT+kICtApWFK1WHk25weLcKznxbQFFNj6QU:67oFuhAwM+kICeseWEEPznxbJ

Score
10/10

Malware Config

Targets

    • Target

      b3f1eff4a12203b58b5d6d1b68611970N.exe

    • Size

      204KB

    • MD5

      b3f1eff4a12203b58b5d6d1b68611970

    • SHA1

      d219449dc354616027a87513cbbd88854dcc2959

    • SHA256

      bb2efb45eb3427a5be0d0b87eeea5648d18b9e6b514eb4dfc82b8f50f0719789

    • SHA512

      3c0455ff41734f21fe3f01999ba8c71c7300b1fdcf5554560afe3cfbb481f617d13683738b26a9967d997a03588b06bb9c396fc9e41ce19dc113add4228c6925

    • SSDEEP

      3072:6aSdR9c1/fuWL0AjMilpCOT+kICtApWFK1WHk25weLcKznxbQFFNj6QU:67oFuhAwM+kICeseWEEPznxbJ

    Score
    10/10
    • Modifies WinLogon for persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies WinLogon

MITRE ATT&CK Enterprise v15

Tasks