General

  • Target

    a2941a840666c728020baa0dd7b73cd750dc25d3401d6a29c0b6bb3d7aba1335

  • Size

    93KB

  • Sample

    221129-s39jysce86

  • MD5

    0bada76ae17a2ac27b4b31028038d0f3

  • SHA1

    03c6694d71539e22fc160b7d5439cbaefea663df

  • SHA256

    a2941a840666c728020baa0dd7b73cd750dc25d3401d6a29c0b6bb3d7aba1335

  • SHA512

    6ff7292d355ce7fa41d8e31a9aec877f79b41b47d0dfcf15b331b52505bf62fb1e6e04902277b50ca422b3695a65f062962ff604166142e3682b217a95b08868

  • SSDEEP

    1536:adddRYw4GPOWVbLwMEzQ7ITkR62l24cY7nJdFoOGIWWtwXKWqM2M/MLCp:HWVbkZzQ7ITk9Jpyas5kGp

Score
10/10

Malware Config

Targets

    • Target

      a2941a840666c728020baa0dd7b73cd750dc25d3401d6a29c0b6bb3d7aba1335

    • Size

      93KB

    • MD5

      0bada76ae17a2ac27b4b31028038d0f3

    • SHA1

      03c6694d71539e22fc160b7d5439cbaefea663df

    • SHA256

      a2941a840666c728020baa0dd7b73cd750dc25d3401d6a29c0b6bb3d7aba1335

    • SHA512

      6ff7292d355ce7fa41d8e31a9aec877f79b41b47d0dfcf15b331b52505bf62fb1e6e04902277b50ca422b3695a65f062962ff604166142e3682b217a95b08868

    • SSDEEP

      1536:adddRYw4GPOWVbLwMEzQ7ITkR62l24cY7nJdFoOGIWWtwXKWqM2M/MLCp:HWVbkZzQ7ITk9Jpyas5kGp

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Deletes itself

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Hidden Files and Directories

1
T1158

Defense Evasion

Modify Registry

1
T1112

Hidden Files and Directories

1
T1158

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Tasks