General

  • Target

    600c74a40d14a00d0ea59d8e3db8288d19204b8c3fbe53c897a15750e25433c4

  • Size

    874KB

  • Sample

    220201-mbktmadcg9

  • MD5

    474bab7f04f0275c90e9ce9d3fdfecd9

  • SHA1

    765e0dbe5deabef011c8bbb3db1d3e8abdd2ea9a

  • SHA256

    600c74a40d14a00d0ea59d8e3db8288d19204b8c3fbe53c897a15750e25433c4

  • SHA512

    6a1cc6dcffab643c23945dde02c5c26d24cd00fa3522ac6c1cbd615b8de13605b24b40a2a6240c3f8dfaee8a72464872977ceecabc4035a5662564ec84af43a6

Malware Config

Targets

    • Target

      600c74a40d14a00d0ea59d8e3db8288d19204b8c3fbe53c897a15750e25433c4

    • Size

      874KB

    • MD5

      474bab7f04f0275c90e9ce9d3fdfecd9

    • SHA1

      765e0dbe5deabef011c8bbb3db1d3e8abdd2ea9a

    • SHA256

      600c74a40d14a00d0ea59d8e3db8288d19204b8c3fbe53c897a15750e25433c4

    • SHA512

      6a1cc6dcffab643c23945dde02c5c26d24cd00fa3522ac6c1cbd615b8de13605b24b40a2a6240c3f8dfaee8a72464872977ceecabc4035a5662564ec84af43a6

    • Valak

      Valak is a JavaScript loader, a link in a chain of distribution of other malware families.

    • Valak JavaScript Loader

    • Blocklisted process makes network request

    • Sets service image path in registry

MITRE ATT&CK Enterprise v6

Tasks