General

  • Target

    冠状病毒.exe.bin

  • Size

    16KB

  • Sample

    200319-t54fdgmkke

  • MD5

    674805b536e872a7b6412711699ee44f

  • SHA1

    8926009b3d9c76ec9f30a42ac149621b5a722a2a

  • SHA256

    adde95e8813ca27d88923bd091ca2166553a7b904173ef7a2c04bb3ddf8b14a9

  • SHA512

    f35c0c365c12a4cd1a7a4c78f0b85dee278f256322f1be87d998db24b9f985ca7cba44ef4c4c2846c0fac0cba293b39d62996ea2e088c770d3ce70dabd18f40b

Malware Config

Targets

    • Target

      冠状病毒.exe.bin

    • Size

      16KB

    • MD5

      674805b536e872a7b6412711699ee44f

    • SHA1

      8926009b3d9c76ec9f30a42ac149621b5a722a2a

    • SHA256

      adde95e8813ca27d88923bd091ca2166553a7b904173ef7a2c04bb3ddf8b14a9

    • SHA512

      f35c0c365c12a4cd1a7a4c78f0b85dee278f256322f1be87d998db24b9f985ca7cba44ef4c4c2846c0fac0cba293b39d62996ea2e088c770d3ce70dabd18f40b

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Replication Through Removable Media

1
T1091

Persistence

Modify Existing Service

2
T1031

Change Default File Association

1
T1042

Registry Run Keys / Startup Folder

4
T1060

Winlogon Helper DLL

1
T1004

Defense Evasion

Modify Registry

13
T1112

Disabling Security Tools

2
T1089

Install Root Certificate

1
T1130

Lateral Movement

Replication Through Removable Media

1
T1091

Tasks