General

  • Target

    4c4dfd862696a77d4bb13e2b4d2748d3

  • Size

    95KB

  • Sample

    230131-v59zlsbc2z

  • MD5

    4c4dfd862696a77d4bb13e2b4d2748d3

  • SHA1

    7ac7b3e22f0307f6a5fe682f9a92c1c09d5421f9

  • SHA256

    0c5dbda05771b14e69b7fa41e788ad7322a27ab47309470232f6d2f69c5cfeef

  • SHA512

    58945def5df7e78f2683d03f89b6b9bb3aea32876ae94281f3b583439fea0a3ce22e7a17dea9d84464075dbf1e8c7d61421b183ff5a846b249f6079f7d1d9ab7

  • SSDEEP

    1536:euuuoHPa4Rz/Sbj13z/vHfQse0Z95rt3rYMPaw2jcc0lbxOvTgEfoRt/WwF16Qm:Rt3iw2jcc0lbxOrxGphm

Score
10/10

Malware Config

Targets

    • Target

      4c4dfd862696a77d4bb13e2b4d2748d3

    • Size

      95KB

    • MD5

      4c4dfd862696a77d4bb13e2b4d2748d3

    • SHA1

      7ac7b3e22f0307f6a5fe682f9a92c1c09d5421f9

    • SHA256

      0c5dbda05771b14e69b7fa41e788ad7322a27ab47309470232f6d2f69c5cfeef

    • SHA512

      58945def5df7e78f2683d03f89b6b9bb3aea32876ae94281f3b583439fea0a3ce22e7a17dea9d84464075dbf1e8c7d61421b183ff5a846b249f6079f7d1d9ab7

    • SSDEEP

      1536:euuuoHPa4Rz/Sbj13z/vHfQse0Z95rt3rYMPaw2jcc0lbxOvTgEfoRt/WwF16Qm:Rt3iw2jcc0lbxOrxGphm

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Deletes itself

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Hidden Files and Directories

1
T1158

Defense Evasion

Modify Registry

1
T1112

Hidden Files and Directories

1
T1158

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Tasks