General

  • Target

    0ce2dde36e59c10d620714365f8537ecdf931cd1228195e075bc9033cc99e9c2

  • Size

    879KB

  • Sample

    250516-fnrpdaxvd1

  • MD5

    786c4ffd4f22f59413d424bcba229366

  • SHA1

    30fc06fdf6023b1274490c3922897d6844d454a4

  • SHA256

    0ce2dde36e59c10d620714365f8537ecdf931cd1228195e075bc9033cc99e9c2

  • SHA512

    58547cb9d6b7aed9340002a1969d3543b402414c4e2876c125122da23bc4121ae7d6e918031940aa898d916ed0e5e11b3727f91c1d486b7823cedc15a0fe9c10

  • SSDEEP

    12288:2+RiKQHkSWRyJ9R6uGbz8ar8UoFgK0xaWgtDprqXni31olgqgvLHFSOhpyooMcIC:LiX8wp6hIfND0AxrqSbqe5SOhpy9HIzW

Score
10/10

Malware Config

Targets

    • Target

      Enquiry.... AISI 410-13cr , AISI 420-13cr.exe

    • Size

      931KB

    • MD5

      31af0de64c935256bee98bf15d30e0f1

    • SHA1

      dedfd40bc98234052a1f6cf4c9edaedb9d97d098

    • SHA256

      bd9d4a2d5627b27b2e43afd37b07ce6c6b2d64a7017def2020c2c1434eae1a2a

    • SHA512

      e0cb0916081f96d6b291a39dcde0b3a32b16ccd335034185e899efd74276029ceffdfc2a640f526ff5da6ebd2c9c56ff4dec4dd7cdf9872a0e59dc4d89815c3e

    • SSDEEP

      24576:QbnGASXscW+TSlT0UJdqSjL5befSiH43:knNSXQ+mF0iqasfSH3

    Score
    10/10
    • Detects Mofksys worm

    • Mofksys

      Mofksys is a worm written in VisualBasic.

    • Mofksys family

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v16

Tasks