General
-
Target
11946e09bb85703d3e6e7f78d3f123f0e68f03759f005d118886478ad14aa9dfN.exe
-
Size
92KB
-
Sample
241122-rq5jssslfy
-
MD5
dba8a2006346a918cbad67519ec6a0b0
-
SHA1
ea0834d0326119e0739be23cfe81f562a354a698
-
SHA256
11946e09bb85703d3e6e7f78d3f123f0e68f03759f005d118886478ad14aa9df
-
SHA512
103d81b4b4069c44baf1053f9f66d2b5d371195cee749f183faa3b2cc294bead5476f6348cd52c1e8fdb85c73add998615977c565a520915cd89ce44f036c663
-
SSDEEP
768:4zW4wnebSdDlmkok6lRGXu+jKZAOWjpiRHVAGr4PzpyRAJ7IwnDoSdQ:41bC4Bk6lMTOWw4PkRAPo9
Malware Config
Targets
-
-
Target
11946e09bb85703d3e6e7f78d3f123f0e68f03759f005d118886478ad14aa9dfN.exe
-
Size
92KB
-
MD5
dba8a2006346a918cbad67519ec6a0b0
-
SHA1
ea0834d0326119e0739be23cfe81f562a354a698
-
SHA256
11946e09bb85703d3e6e7f78d3f123f0e68f03759f005d118886478ad14aa9df
-
SHA512
103d81b4b4069c44baf1053f9f66d2b5d371195cee749f183faa3b2cc294bead5476f6348cd52c1e8fdb85c73add998615977c565a520915cd89ce44f036c663
-
SSDEEP
768:4zW4wnebSdDlmkok6lRGXu+jKZAOWjpiRHVAGr4PzpyRAJ7IwnDoSdQ:41bC4Bk6lMTOWw4PkRAPo9
Score10/10-
Modifies WinLogon for persistence
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Winlogon Helper DLL
1Event Triggered Execution
1Change Default File Association
1