General
-
Target
151943288a689ed0ed49c715efd9df77c7e4c7f838e56bed0573de3b62a1f639N.exe
-
Size
346KB
-
Sample
241122-jmy9lsspgp
-
MD5
fb9c21a9cc24889784f8f943dd558f70
-
SHA1
836f910db289475f0e1404bad3461c6bc1e3c3b7
-
SHA256
151943288a689ed0ed49c715efd9df77c7e4c7f838e56bed0573de3b62a1f639
-
SHA512
ac2dbb3ef927d8ba6e13102c9c193156cd3e19b53d797ef009eb0ccdad74313cd76e0f4ece13096cc4d075962e1bdc6db4a1b90c10d4d09c520c1e018a2ef8e1
-
SSDEEP
6144:+CjwZuxYoa6PTe6VlWT8b9MM2MNuTDbNSRuW:EZuXPTPVle8KM2TlSR
Malware Config
Targets
-
-
Target
151943288a689ed0ed49c715efd9df77c7e4c7f838e56bed0573de3b62a1f639N.exe
-
Size
346KB
-
MD5
fb9c21a9cc24889784f8f943dd558f70
-
SHA1
836f910db289475f0e1404bad3461c6bc1e3c3b7
-
SHA256
151943288a689ed0ed49c715efd9df77c7e4c7f838e56bed0573de3b62a1f639
-
SHA512
ac2dbb3ef927d8ba6e13102c9c193156cd3e19b53d797ef009eb0ccdad74313cd76e0f4ece13096cc4d075962e1bdc6db4a1b90c10d4d09c520c1e018a2ef8e1
-
SSDEEP
6144:+CjwZuxYoa6PTe6VlWT8b9MM2MNuTDbNSRuW:EZuXPTPVle8KM2TlSR
Score10/10-
Modifies WinLogon for persistence
-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
Loads dropped DLL
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Winlogon Helper DLL
1Event Triggered Execution
1AppInit DLLs
1Scheduled Task/Job
1Scheduled Task
1