General

  • Target

    zeus 1_1.2.4.6.vir

  • Size

    453KB

  • Sample

    200719-lxgpf1llq2

  • MD5

    7f2fce14eb6d5c9070cd3615b561ca02

  • SHA1

    59e16a57d5127047b456f287c03ecd393d5e4576

  • SHA256

    a1eb61bb63c4917ba4cea4d4be810cbae6395a75670b1b91d5e480d1bc6adae1

  • SHA512

    1a8357c77717604ccf7159697b98de60e452a70eac8bc3e274dc55940c7bd4ebd92dff042d344267148c3dbc16711edf583533184c9ce758845063c66cc381b2

Score
10/10

Malware Config

Targets

    • Target

      zeus 1_1.2.4.6.vir

    • Size

      453KB

    • MD5

      7f2fce14eb6d5c9070cd3615b561ca02

    • SHA1

      59e16a57d5127047b456f287c03ecd393d5e4576

    • SHA256

      a1eb61bb63c4917ba4cea4d4be810cbae6395a75670b1b91d5e480d1bc6adae1

    • SHA512

      1a8357c77717604ccf7159697b98de60e452a70eac8bc3e274dc55940c7bd4ebd92dff042d344267148c3dbc16711edf583533184c9ce758845063c66cc381b2

    Score
    10/10
    • Modifies WinLogon for persistence

    • Drops file in System32 directory

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Winlogon Helper DLL

1
T1004

Defense Evasion

Modify Registry

1
T1112

Tasks