General
-
Target
e66b315f89c1d8450739ec9d9123ccc3919cc0e3e93d984d60535843f37dbaa8
-
Size
92KB
-
Sample
241130-fq357aykfj
-
MD5
b68939b3180672fc885489ced335b2b9
-
SHA1
a86beca3af3688ccfa106a361b3eced560e4c402
-
SHA256
e66b315f89c1d8450739ec9d9123ccc3919cc0e3e93d984d60535843f37dbaa8
-
SHA512
22346ba8366fb7ef57d86dfad54e93053ec6ffbaa4d894db57d3d5a73d87454f5d9c4637ac268c163837afb62934468da50c6a798536af2f031695ae85df9a67
-
SSDEEP
768:4zW4wnebSdDlmkok6lRGXu+jKZAOWjpiRHVAGr4PzpyRAJ7IwnDoSd1:41bC4Bk6lMTOWw4PkRAPoU
Malware Config
Targets
-
-
Target
e66b315f89c1d8450739ec9d9123ccc3919cc0e3e93d984d60535843f37dbaa8
-
Size
92KB
-
MD5
b68939b3180672fc885489ced335b2b9
-
SHA1
a86beca3af3688ccfa106a361b3eced560e4c402
-
SHA256
e66b315f89c1d8450739ec9d9123ccc3919cc0e3e93d984d60535843f37dbaa8
-
SHA512
22346ba8366fb7ef57d86dfad54e93053ec6ffbaa4d894db57d3d5a73d87454f5d9c4637ac268c163837afb62934468da50c6a798536af2f031695ae85df9a67
-
SSDEEP
768:4zW4wnebSdDlmkok6lRGXu+jKZAOWjpiRHVAGr4PzpyRAJ7IwnDoSd1:41bC4Bk6lMTOWw4PkRAPoU
Score10/10-
Modifies WinLogon for persistence
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Winlogon Helper DLL
1Event Triggered Execution
1Change Default File Association
1