General
-
Target
fb38566ff0e82ff0fdbabcd5f6aef20d5e7c21380aa7ca953673d24717b69713
-
Size
92KB
-
Sample
241121-qmjmgsxjck
-
MD5
ea62b15bc78c0e6099e81c16b0e07942
-
SHA1
67d41021ab6ca1c267313e3c290d7dcf5c45b7d4
-
SHA256
fb38566ff0e82ff0fdbabcd5f6aef20d5e7c21380aa7ca953673d24717b69713
-
SHA512
639206f229535f4c3fb182e26386daabac64b2c1824b326c652cca3317d3844e0b3970e3a3950229217304259d5b761a5077c280125834467426a3f7719b6704
-
SSDEEP
768:4zW4wnebSdDlmkok6lRGXu+jKZAOWjpiRHVAGr4PzpyRAJ7IwnDoSdh:41bC4Bk6lMTOWw4PkRAPoA
Malware Config
Targets
-
-
Target
fb38566ff0e82ff0fdbabcd5f6aef20d5e7c21380aa7ca953673d24717b69713
-
Size
92KB
-
MD5
ea62b15bc78c0e6099e81c16b0e07942
-
SHA1
67d41021ab6ca1c267313e3c290d7dcf5c45b7d4
-
SHA256
fb38566ff0e82ff0fdbabcd5f6aef20d5e7c21380aa7ca953673d24717b69713
-
SHA512
639206f229535f4c3fb182e26386daabac64b2c1824b326c652cca3317d3844e0b3970e3a3950229217304259d5b761a5077c280125834467426a3f7719b6704
-
SSDEEP
768:4zW4wnebSdDlmkok6lRGXu+jKZAOWjpiRHVAGr4PzpyRAJ7IwnDoSdh:41bC4Bk6lMTOWw4PkRAPoA
Score10/10-
Modifies WinLogon for persistence
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Winlogon Helper DLL
1Event Triggered Execution
1Change Default File Association
1