General

  • Target

    5e6f43e6260ee03b35c010f90909108a0b2cba96615ac1174d5e373d09c02050

  • Size

    323KB

  • Sample

    220919-xt7ffsdee7

  • MD5

    0a646c7eddb377017672fd782a89c081

  • SHA1

    e39e1758fbb1a10b94e1e5dfdd2a6849fa66901e

  • SHA256

    5e6f43e6260ee03b35c010f90909108a0b2cba96615ac1174d5e373d09c02050

  • SHA512

    50dbe326b60716554615daf9cf68f82a189d67bb3f84739251d8aa85ca1ea282e8a2d017dd04d6b4edf907f415979589b19a0aa8fcfd72b1f34edb96628580b9

  • SSDEEP

    6144:Dqfawfwd99vxoYC7+Li9IBCiiortLeY9ZvLmE7JWAN:Wfaos9DodvorsYzCQJBN

Score
8/10

Malware Config

Targets

    • Target

      5e6f43e6260ee03b35c010f90909108a0b2cba96615ac1174d5e373d09c02050

    • Size

      323KB

    • MD5

      0a646c7eddb377017672fd782a89c081

    • SHA1

      e39e1758fbb1a10b94e1e5dfdd2a6849fa66901e

    • SHA256

      5e6f43e6260ee03b35c010f90909108a0b2cba96615ac1174d5e373d09c02050

    • SHA512

      50dbe326b60716554615daf9cf68f82a189d67bb3f84739251d8aa85ca1ea282e8a2d017dd04d6b4edf907f415979589b19a0aa8fcfd72b1f34edb96628580b9

    • SSDEEP

      6144:Dqfawfwd99vxoYC7+Li9IBCiiortLeY9ZvLmE7JWAN:Wfaos9DodvorsYzCQJBN

    Score
    8/10
    • Executes dropped EXE

    • Deletes itself

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Registry Run Keys / Startup Folder

1
T1060

Defense Evasion

Modify Registry

2
T1112

Tasks