General
-
Target
4cb59426bfb50083d86c4bc33245d9bff2d39427f822698cb27a6ca9b7f853edN.exe
-
Size
36KB
-
Sample
241117-kzf48svrew
-
MD5
0b11fdc88a892fa5ccc1f58e55d025f0
-
SHA1
9ae33af2368fd9ab575eacd2930893f1af5ec788
-
SHA256
4cb59426bfb50083d86c4bc33245d9bff2d39427f822698cb27a6ca9b7f853ed
-
SHA512
38979069c6e9d714a28b10b9b1ac76fe58039d4d9084a42b0e5e241d14b6071070fb663097022502cf5daf0a0699e2b20458a16fc217c8b71e8c463e4a77e68b
-
SSDEEP
768:sIUdWLhl/xnmbXThNN0EE2Im+GJMzwzPIN6vBaenE4Cue3uD:seL7xnmXN0jPbUzQ95TreD
Static task
static1
Behavioral task
behavioral1
Sample
4cb59426bfb50083d86c4bc33245d9bff2d39427f822698cb27a6ca9b7f853edN.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
4cb59426bfb50083d86c4bc33245d9bff2d39427f822698cb27a6ca9b7f853edN.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
4cb59426bfb50083d86c4bc33245d9bff2d39427f822698cb27a6ca9b7f853edN.exe
-
Size
36KB
-
MD5
0b11fdc88a892fa5ccc1f58e55d025f0
-
SHA1
9ae33af2368fd9ab575eacd2930893f1af5ec788
-
SHA256
4cb59426bfb50083d86c4bc33245d9bff2d39427f822698cb27a6ca9b7f853ed
-
SHA512
38979069c6e9d714a28b10b9b1ac76fe58039d4d9084a42b0e5e241d14b6071070fb663097022502cf5daf0a0699e2b20458a16fc217c8b71e8c463e4a77e68b
-
SSDEEP
768:sIUdWLhl/xnmbXThNN0EE2Im+GJMzwzPIN6vBaenE4Cue3uD:seL7xnmXN0jPbUzQ95TreD
-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Event Triggered Execution: Image File Execution Options Injection
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies WinLogon
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Active Setup
1Winlogon Helper DLL
1Event Triggered Execution
1Image File Execution Options Injection
1Privilege Escalation
Boot or Logon Autostart Execution
2Active Setup
1Winlogon Helper DLL
1Event Triggered Execution
1Image File Execution Options Injection
1