General
-
Target
0cf6a4cb3c46a417ab92e334f09379853567ca44307a508b1908fb0045ee687cN.exe
-
Size
92KB
-
Sample
241122-jdzh1swpgt
-
MD5
8341d75812d2fcee2076c6f682debb40
-
SHA1
ff5b92df98020469a7bd71bb8baa6ffb67d0334f
-
SHA256
0cf6a4cb3c46a417ab92e334f09379853567ca44307a508b1908fb0045ee687c
-
SHA512
c97a73d9ff3315b78312636cfa23938872bcb8fcd5b8464a3b944d291a69b5436250435ddb52457895dcb0d50efa1f377e003c4678a7218169c519ab0389f8b5
-
SSDEEP
768:4zW4wnebSdDlmkok6lRGXu+jKZAOWjpiRHVAGr4PzpyRAJ7IwnDoSdA:41bC4Bk6lMTOWw4PkRAPoh
Malware Config
Targets
-
-
Target
0cf6a4cb3c46a417ab92e334f09379853567ca44307a508b1908fb0045ee687cN.exe
-
Size
92KB
-
MD5
8341d75812d2fcee2076c6f682debb40
-
SHA1
ff5b92df98020469a7bd71bb8baa6ffb67d0334f
-
SHA256
0cf6a4cb3c46a417ab92e334f09379853567ca44307a508b1908fb0045ee687c
-
SHA512
c97a73d9ff3315b78312636cfa23938872bcb8fcd5b8464a3b944d291a69b5436250435ddb52457895dcb0d50efa1f377e003c4678a7218169c519ab0389f8b5
-
SSDEEP
768:4zW4wnebSdDlmkok6lRGXu+jKZAOWjpiRHVAGr4PzpyRAJ7IwnDoSdA:41bC4Bk6lMTOWw4PkRAPoh
Score10/10-
Modifies WinLogon for persistence
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Winlogon Helper DLL
1Event Triggered Execution
1Change Default File Association
1