General

  • Target

    zeus 1_1.3.3.5.vir

  • Size

    99KB

  • Sample

    200719-pkwk9q1sx2

  • MD5

    aaa6d44e7e6d45858e9c49a4b91bbdc2

  • SHA1

    cce574c7ec8b7137480e9540d364e43a26374540

  • SHA256

    d44bcd92b146cc8565b8b615b4f4447dba73677a7b7df9897736e8d84ff14b6e

  • SHA512

    7e37eb302a6d35e6a4d9e505e621eb82063b3544de91159db9a6a948fbcb585441f9944975c5ae0ff6ebe0cde4889343b7480ca5e05afeb231bb906a8628f326

Score
10/10

Malware Config

Targets

    • Target

      zeus 1_1.3.3.5.vir

    • Size

      99KB

    • MD5

      aaa6d44e7e6d45858e9c49a4b91bbdc2

    • SHA1

      cce574c7ec8b7137480e9540d364e43a26374540

    • SHA256

      d44bcd92b146cc8565b8b615b4f4447dba73677a7b7df9897736e8d84ff14b6e

    • SHA512

      7e37eb302a6d35e6a4d9e505e621eb82063b3544de91159db9a6a948fbcb585441f9944975c5ae0ff6ebe0cde4889343b7480ca5e05afeb231bb906a8628f326

    Score
    10/10
    • Modifies WinLogon for persistence

    • Drops file in System32 directory

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Winlogon Helper DLL

1
T1004

Defense Evasion

Modify Registry

1
T1112

Tasks