c0b04a20f391cbef76aaec658b03da3de014d582054691f74c36641906cfc2e6 | Triage

Sharing

General

Target

zeus 1_1.3.0.23.vir
Size

956KB
Sample

200719-pbwc6dz19j
MD5

15229b5debbb1d6d189abac9d71d7868
SHA1

e0babb378ae8b61520ef99f667913adafc882e63
SHA256

c0b04a20f391cbef76aaec658b03da3de014d582054691f74c36641906cfc2e6
SHA512

9771e63684283eac6c29334efc365d1179163610ab8a538f4902b77adef3d072cd53aa920cae570db40f082b90156dad612c0837896be06539d3bbc6f85a8d9d

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  zeus 1_1.3.0.23.vir
- Size
  
  956KB
- MD5
  
  15229b5debbb1d6d189abac9d71d7868
- SHA1
  
  e0babb378ae8b61520ef99f667913adafc882e63
- SHA256
  
  c0b04a20f391cbef76aaec658b03da3de014d582054691f74c36641906cfc2e6
- SHA512
  
  9771e63684283eac6c29334efc365d1179163610ab8a538f4902b77adef3d072cd53aa920cae570db40f082b90156dad612c0837896be06539d3bbc6f85a8d9d
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2