General

  • Target

    7647a4851d0da7acd79c9390756cf60b3d014b4251aaa98eaf534a3b867d3b02

  • Size

    304KB

  • Sample

    220201-l4k5esdbf6

  • MD5

    f8afd45b4df1a177f4a0f145b6dd7385

  • SHA1

    e91a13243e4da3e847c9084eee156dd3fc066994

  • SHA256

    7647a4851d0da7acd79c9390756cf60b3d014b4251aaa98eaf534a3b867d3b02

  • SHA512

    182755e58076f7bfc27abbfde78626e680973266fc9c0a874f303e8f228accea8bfdc21a376b364ab9eb43a144e2207398d04f76fcb7038bdcc7e63df3b7337c

Malware Config

Targets

    • Target

      7647a4851d0da7acd79c9390756cf60b3d014b4251aaa98eaf534a3b867d3b02

    • Size

      304KB

    • MD5

      f8afd45b4df1a177f4a0f145b6dd7385

    • SHA1

      e91a13243e4da3e847c9084eee156dd3fc066994

    • SHA256

      7647a4851d0da7acd79c9390756cf60b3d014b4251aaa98eaf534a3b867d3b02

    • SHA512

      182755e58076f7bfc27abbfde78626e680973266fc9c0a874f303e8f228accea8bfdc21a376b364ab9eb43a144e2207398d04f76fcb7038bdcc7e63df3b7337c

    • Valak

      Valak is a JavaScript loader, a link in a chain of distribution of other malware families.

    • Valak JavaScript Loader

    • Blocklisted process makes network request

    • Sets service image path in registry

MITRE ATT&CK Enterprise v6

Tasks