99a040123078ad1b4b10aaeaa4ae562836d0344e1a7c0c60d632357f889681e1 | Triage

Sharing

General

Target

99a040123078ad1b4b10aaeaa4ae562836d0344e1a7c0c60d632357f889681e1
Size

63KB
Sample

201004-a8wjf7kdya
MD5

c48da412339a14337a3fc2bde400639d
SHA1

7aad8df0b971838a7fc9e6758779c1855123c6c5
SHA256

99a040123078ad1b4b10aaeaa4ae562836d0344e1a7c0c60d632357f889681e1
SHA512

54ccb28c2a763a0d02aaa20786b3989c4fd59467f86997ce2852cd46a52a88b378deea528e3f625b02f831c7a91f535395cba4a0ccf1e7e287c721f12a10d75b

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  99a040123078ad1b4b10aaeaa4ae562836d0344e1a7c0c60d632357f889681e1
- Size
  
  63KB
- MD5
  
  c48da412339a14337a3fc2bde400639d
- SHA1
  
  7aad8df0b971838a7fc9e6758779c1855123c6c5
- SHA256
  
  99a040123078ad1b4b10aaeaa4ae562836d0344e1a7c0c60d632357f889681e1
- SHA512
  
  54ccb28c2a763a0d02aaa20786b3989c4fd59467f86997ce2852cd46a52a88b378deea528e3f625b02f831c7a91f535395cba4a0ccf1e7e287c721f12a10d75b
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2