General

  • Target

    zeus 1_1.2.7.8.vir

  • Size

    161KB

  • Sample

    200719-9f4m5v3jdn

  • MD5

    9c782133fc740af82359cea11c311cac

  • SHA1

    6858b35fb3f5a6d49beab09c93bdc5bf189ba142

  • SHA256

    01917eb065381a2bd3e0a037b40b488c47f7abf9158db5fd829fd5738bba8595

  • SHA512

    0ca00091c0aeb25b0321db8321f57c395cb39483ad25f940005fa32f486257def1405920918bb9f2454f1b4500dd25de129db9aae1aa713afa166051a188d6f9

Score
10/10

Malware Config

Targets

    • Target

      zeus 1_1.2.7.8.vir

    • Size

      161KB

    • MD5

      9c782133fc740af82359cea11c311cac

    • SHA1

      6858b35fb3f5a6d49beab09c93bdc5bf189ba142

    • SHA256

      01917eb065381a2bd3e0a037b40b488c47f7abf9158db5fd829fd5738bba8595

    • SHA512

      0ca00091c0aeb25b0321db8321f57c395cb39483ad25f940005fa32f486257def1405920918bb9f2454f1b4500dd25de129db9aae1aa713afa166051a188d6f9

    Score
    10/10
    • Modifies WinLogon for persistence

    • Drops file in System32 directory

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Winlogon Helper DLL

1
T1004

Defense Evasion

Modify Registry

1
T1112

Tasks