General

  • Target

    zloader_2.0.0.0.vir

  • Size

    383KB

  • Sample

    200719-1ft6sh2vqe

  • MD5

    b1094a923b3d8b0f656150e958683ce6

  • SHA1

    1ee072c1103d0b1b2750284f4c9eb1686d86802c

  • SHA256

    9d6bc6e4160de2b643944978e6417707742e0d289dbf967bac789d79b67c920c

  • SHA512

    73146d13efcc3f1050941f735477e49bfd90bb0f333acdd8364321b577bbe44f5eea1d795bece63102ae69f81a61cc4f61c3c0a8934d423500b4d54a143a5f16

Score
7/10

Malware Config

Targets

    • Target

      zloader_2.0.0.0.vir

    • Size

      383KB

    • MD5

      b1094a923b3d8b0f656150e958683ce6

    • SHA1

      1ee072c1103d0b1b2750284f4c9eb1686d86802c

    • SHA256

      9d6bc6e4160de2b643944978e6417707742e0d289dbf967bac789d79b67c920c

    • SHA512

      73146d13efcc3f1050941f735477e49bfd90bb0f333acdd8364321b577bbe44f5eea1d795bece63102ae69f81a61cc4f61c3c0a8934d423500b4d54a143a5f16

    Score
    7/10
    • Deletes itself

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Registry Run Keys / Startup Folder

1
T1060

Defense Evasion

Modify Registry

1
T1112

Tasks