General
-
Target
a7ddd3ebc44f74cc51ece5889cf7a5c780fffed84db64c549ba862b0a8be9e50
-
Size
92KB
-
Sample
241122-dedeaasrgs
-
MD5
c2a10544e7e0aad240d1fd44e2f5af91
-
SHA1
744e1bf3913de19871047d70d91df08082e39c18
-
SHA256
a7ddd3ebc44f74cc51ece5889cf7a5c780fffed84db64c549ba862b0a8be9e50
-
SHA512
5832749bccadc5cb47f5cc888de90ffcba4e5bdace84de885e195bbb7b871972971a45e40d1490216695347dc9bd2f444f01484eb2a2ebe7b9191232dd92d7e9
-
SSDEEP
768:4zW4wnebSdDlmkok6lRGXu+jKZAOWjpiRHVAGr4PzpyRAJ7IwnDoSdq:41bC4Bk6lMTOWw4PkRAPo7
Malware Config
Targets
-
-
Target
a7ddd3ebc44f74cc51ece5889cf7a5c780fffed84db64c549ba862b0a8be9e50
-
Size
92KB
-
MD5
c2a10544e7e0aad240d1fd44e2f5af91
-
SHA1
744e1bf3913de19871047d70d91df08082e39c18
-
SHA256
a7ddd3ebc44f74cc51ece5889cf7a5c780fffed84db64c549ba862b0a8be9e50
-
SHA512
5832749bccadc5cb47f5cc888de90ffcba4e5bdace84de885e195bbb7b871972971a45e40d1490216695347dc9bd2f444f01484eb2a2ebe7b9191232dd92d7e9
-
SSDEEP
768:4zW4wnebSdDlmkok6lRGXu+jKZAOWjpiRHVAGr4PzpyRAJ7IwnDoSdq:41bC4Bk6lMTOWw4PkRAPo7
Score10/10-
Modifies WinLogon for persistence
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Winlogon Helper DLL
1Event Triggered Execution
1Change Default File Association
1