General

  • Target

    SecuriteInfo.com.Heur.1024.10269

  • Size

    171KB

  • Sample

    210422-lbzaq95ckx

  • MD5

    77a37ee41877d3af8afd7d09cca969c9

  • SHA1

    7885d0c3730add0d2693b148312c5e66bcf0279b

  • SHA256

    a2369537aad92d9febb1353752bf07d7f85e5592071a6f417c9ba24a3d36aba8

  • SHA512

    0a45f4cde0378f07225efbc0e12bda16b7bd8dfbbbae8baeb218ce565d513c3e8b67a7c670f7e4a3bd4e4c3289450c60e774386d5ab33d49f2e964ce9d0a52f4

Score
10/10

Malware Config

Targets

    • Target

      SecuriteInfo.com.Heur.1024.10269

    • Size

      171KB

    • MD5

      77a37ee41877d3af8afd7d09cca969c9

    • SHA1

      7885d0c3730add0d2693b148312c5e66bcf0279b

    • SHA256

      a2369537aad92d9febb1353752bf07d7f85e5592071a6f417c9ba24a3d36aba8

    • SHA512

      0a45f4cde0378f07225efbc0e12bda16b7bd8dfbbbae8baeb218ce565d513c3e8b67a7c670f7e4a3bd4e4c3289450c60e774386d5ab33d49f2e964ce9d0a52f4

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Downloads MZ/PE file

MITRE ATT&CK Matrix ATT&CK v6

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Tasks