General

  • Target

    b13ca74b39894bd5dca71ae6f9156181a9b4761cf192cdc030a204c1f928ecd9.exe

  • Size

    237KB

  • Sample

    241112-pc8cessele

  • MD5

    41559eb9e557f034fb2d450d931386ae

  • SHA1

    cebd1dec688dd47095235721941ba1ea4e293bbe

  • SHA256

    b13ca74b39894bd5dca71ae6f9156181a9b4761cf192cdc030a204c1f928ecd9

  • SHA512

    6cf7f8e109997f740b922c704f9484636e570e50cd82d41e60e4f7fe407eec6b4c0cd606388ff0a2e8f2c8b210d86e8337e501c57fee2e95437b6a361ff75f7a

  • SSDEEP

    6144:HD8okEvTyoZVOgd2QZiw5NLclL5orfQHF:jsjCF2QZiOU+4F

Score
10/10

Malware Config

Targets

    • Target

      b13ca74b39894bd5dca71ae6f9156181a9b4761cf192cdc030a204c1f928ecd9.exe

    • Size

      237KB

    • MD5

      41559eb9e557f034fb2d450d931386ae

    • SHA1

      cebd1dec688dd47095235721941ba1ea4e293bbe

    • SHA256

      b13ca74b39894bd5dca71ae6f9156181a9b4761cf192cdc030a204c1f928ecd9

    • SHA512

      6cf7f8e109997f740b922c704f9484636e570e50cd82d41e60e4f7fe407eec6b4c0cd606388ff0a2e8f2c8b210d86e8337e501c57fee2e95437b6a361ff75f7a

    • SSDEEP

      6144:HD8okEvTyoZVOgd2QZiw5NLclL5orfQHF:jsjCF2QZiOU+4F

    Score
    10/10
    • Modifies WinLogon for persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies WinLogon

MITRE ATT&CK Enterprise v15

Tasks