General

  • Target

    6cf719856050ce634dddf4783d13b2fe

  • Size

    4.2MB

  • Sample

    201214-vj4cx345a6

  • MD5

    6cf719856050ce634dddf4783d13b2fe

  • SHA1

    f5ea18492faeaf80489d51a3395f2c146ceadb6d

  • SHA256

    238f372b620f6249a698d69853855590dd5d50add55adfa3be58518aa0a18e4e

  • SHA512

    01cddbd49377dc5a867836adff4fd241945074f8c5cabeadc44d11dbf428dea3dad5580b07911a082237f29f9d1a2e0ab83c48c38f5448cb627e838ed7dadd4e

Malware Config

Targets

    • Target

      6cf719856050ce634dddf4783d13b2fe

    • Size

      4.2MB

    • MD5

      6cf719856050ce634dddf4783d13b2fe

    • SHA1

      f5ea18492faeaf80489d51a3395f2c146ceadb6d

    • SHA256

      238f372b620f6249a698d69853855590dd5d50add55adfa3be58518aa0a18e4e

    • SHA512

      01cddbd49377dc5a867836adff4fd241945074f8c5cabeadc44d11dbf428dea3dad5580b07911a082237f29f9d1a2e0ab83c48c38f5448cb627e838ed7dadd4e

    • FakeAV, RogueAntivirus

      FakeAV or Rogue AntiVirus is a class of malware that displays false alert messages.

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks