e010738373d6fa1832f5227678c375950c95ae9a9cd92f8afa0b5dd3d77e796d | Triage

Sharing

General

Target

e010738373d6fa1832f5227678c375950c95ae9a9cd92f8afa0b5dd3d77e796d
Size

558KB
Sample

201004-e1mwvv3rgs
MD5

c132f3aec5547aa6e27b84d86a149355
SHA1

6063e072aacdf4fa903eaee62a33a95a4b4db4d1
SHA256

e010738373d6fa1832f5227678c375950c95ae9a9cd92f8afa0b5dd3d77e796d
SHA512

04200c41848e3e58980489c38f61e3fe3b41cca30d35e9aed48c30d7f4239b6989c6bb6962a9bd91424b2e2c6aac9cc2977de6f7a86f376b046f923ea4caf8af

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e010738373d6fa1832f5227678c375950c95ae9a9cd92f8afa0b5dd3d77e796d
- Size
  
  558KB
- MD5
  
  c132f3aec5547aa6e27b84d86a149355
- SHA1
  
  6063e072aacdf4fa903eaee62a33a95a4b4db4d1
- SHA256
  
  e010738373d6fa1832f5227678c375950c95ae9a9cd92f8afa0b5dd3d77e796d
- SHA512
  
  04200c41848e3e58980489c38f61e3fe3b41cca30d35e9aed48c30d7f4239b6989c6bb6962a9bd91424b2e2c6aac9cc2977de6f7a86f376b046f923ea4caf8af
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2