General

  • Target

    4590cf370ce0f92252f7bed7174715d7

  • Size

    95KB

  • Sample

    230131-v57t9ahc92

  • MD5

    4590cf370ce0f92252f7bed7174715d7

  • SHA1

    08bd23f2c0dec73ad0c4b73f7a79b7fac607af83

  • SHA256

    61b1dcf1421055070d7008f46e50b49b8875ce74497bf0da99e64575660c1887

  • SHA512

    a6073af124c10a87c5e5ab940c51cea4a041f87592b59c0a8dcb7b2eda34205022407d60b6f9edaf8e23a0d1134c514bbe54c95770386651d4a46dcd9590cf5c

  • SSDEEP

    1536:wuuuoHPa4Rz/Sbj13z/vHfQse0Z95rt3rYMPaw2jcc0lbxOvTgEfoRt/WwF16Qm:vt3iw2jcc0lbxOrxGphm

Score
10/10

Malware Config

Targets

    • Target

      4590cf370ce0f92252f7bed7174715d7

    • Size

      95KB

    • MD5

      4590cf370ce0f92252f7bed7174715d7

    • SHA1

      08bd23f2c0dec73ad0c4b73f7a79b7fac607af83

    • SHA256

      61b1dcf1421055070d7008f46e50b49b8875ce74497bf0da99e64575660c1887

    • SHA512

      a6073af124c10a87c5e5ab940c51cea4a041f87592b59c0a8dcb7b2eda34205022407d60b6f9edaf8e23a0d1134c514bbe54c95770386651d4a46dcd9590cf5c

    • SSDEEP

      1536:wuuuoHPa4Rz/Sbj13z/vHfQse0Z95rt3rYMPaw2jcc0lbxOvTgEfoRt/WwF16Qm:vt3iw2jcc0lbxOrxGphm

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Deletes itself

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Hidden Files and Directories

1
T1158

Defense Evasion

Modify Registry

1
T1112

Hidden Files and Directories

1
T1158

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Tasks