bca7e01448919541cb01e8c0ab2a7d60840f89be1da7aa297bc5609ffcbe8dee | Triage

Sharing

General

Target

bca7e01448919541cb01e8c0ab2a7d60840f89be1da7aa297bc5609ffcbe8dee
Size

424KB
Sample

201108-623na6w4va
MD5

9f0e36f04c0365f9fcd5c840a8ba7ea2
SHA1

e9a9229358744196d18e6dd8e2b323a59df56a9b
SHA256

bca7e01448919541cb01e8c0ab2a7d60840f89be1da7aa297bc5609ffcbe8dee
SHA512

dcbecd0f9c631e45a906a3ffab20c44bf849a26becfe2906811425de59d64301e477dd2cc8d47cb4b9a985810f6f5e4eb58cbde1f8fda5c0ec3aebff987a8695

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  bca7e01448919541cb01e8c0ab2a7d60840f89be1da7aa297bc5609ffcbe8dee
- Size
  
  424KB
- MD5
  
  9f0e36f04c0365f9fcd5c840a8ba7ea2
- SHA1
  
  e9a9229358744196d18e6dd8e2b323a59df56a9b
- SHA256
  
  bca7e01448919541cb01e8c0ab2a7d60840f89be1da7aa297bc5609ffcbe8dee
- SHA512
  
  dcbecd0f9c631e45a906a3ffab20c44bf849a26becfe2906811425de59d64301e477dd2cc8d47cb4b9a985810f6f5e4eb58cbde1f8fda5c0ec3aebff987a8695
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2