General

  • Target

    Adobe.exe

  • Size

    8.5MB

  • Sample

    211006-k8nwfaahd6

  • MD5

    f246340ac7099b305bc56b03c317e6fb

  • SHA1

    6f6223bbfac0b87e03cdbc0eb3e7c71f9ca92c28

  • SHA256

    e18efb7cff387e8b7ab7e7882841d21e5d6c3e9bddaa289a30315a54352bc39a

  • SHA512

    bc3fcfe4b4138c03b86746aa0bc92afe141cf524abe96117a216b7e9d695e4d1b6f3fba97486cfa3116bf80593586d1b4b8033bdae17a25e891484ed5c617323

Malware Config

Targets

    • Target

      Adobe.exe

    • Size

      8.5MB

    • MD5

      f246340ac7099b305bc56b03c317e6fb

    • SHA1

      6f6223bbfac0b87e03cdbc0eb3e7c71f9ca92c28

    • SHA256

      e18efb7cff387e8b7ab7e7882841d21e5d6c3e9bddaa289a30315a54352bc39a

    • SHA512

      bc3fcfe4b4138c03b86746aa0bc92afe141cf524abe96117a216b7e9d695e4d1b6f3fba97486cfa3116bf80593586d1b4b8033bdae17a25e891484ed5c617323

    Score
    7/10
    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Registry Run Keys / Startup Folder

1
T1060

Defense Evasion

Modify Registry

2
T1112

Tasks