General

  • Target

    1dbc079b2a8bf6ecf926d62e71ffbf8a591d901b34f5ed4b89d30979719b2c73

  • Size

    3.7MB

  • Sample

    220523-zwketabegn

  • MD5

    99341f426f442f0cc846cdbd47515904

  • SHA1

    47bcc0a95f0dbf8a764d646a9f2ab4595944280e

  • SHA256

    1dbc079b2a8bf6ecf926d62e71ffbf8a591d901b34f5ed4b89d30979719b2c73

  • SHA512

    847a4f5aa7f7eec98f72502f1a6ded7d9ca7ae6f3c55913e990327dd650cbf0ed9b2caee0bd41dc6739b4792838b49ad3b2481bc1d19793bcc50601c53479380

Malware Config

Targets

    • Target

      1dbc079b2a8bf6ecf926d62e71ffbf8a591d901b34f5ed4b89d30979719b2c73

    • Size

      3.7MB

    • MD5

      99341f426f442f0cc846cdbd47515904

    • SHA1

      47bcc0a95f0dbf8a764d646a9f2ab4595944280e

    • SHA256

      1dbc079b2a8bf6ecf926d62e71ffbf8a591d901b34f5ed4b89d30979719b2c73

    • SHA512

      847a4f5aa7f7eec98f72502f1a6ded7d9ca7ae6f3c55913e990327dd650cbf0ed9b2caee0bd41dc6739b4792838b49ad3b2481bc1d19793bcc50601c53479380

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Modify Existing Service

1
T1031

Registry Run Keys / Startup Folder

1
T1060

Defense Evasion

Disabling Security Tools

2
T1089

Modify Registry

3
T1112

Tasks