General

  • Target

    tasks_73.vir

  • Size

    512KB

  • Sample

    200719-3gj1rx3jwa

  • MD5

    b98b125562e662e536fc10e131f3d745

  • SHA1

    569ee466aedf0fbb9b51bd22fe63682f13d80b7f

  • SHA256

    fdfd3c886808dd1758966dc487e2fe13dc37796ef5dbda2f7a5112217e2a4dc0

  • SHA512

    2aae4a30c6fc70f55082286552ffa841588a32d0779662cbed95cba3fd93715fdcac118cb67c924bc40820c384949c3ae2abe1abd5c8ac1394111eb71fbf7a4b

Score
8/10

Malware Config

Targets

    • Target

      tasks_73.vir

    • Size

      512KB

    • MD5

      b98b125562e662e536fc10e131f3d745

    • SHA1

      569ee466aedf0fbb9b51bd22fe63682f13d80b7f

    • SHA256

      fdfd3c886808dd1758966dc487e2fe13dc37796ef5dbda2f7a5112217e2a4dc0

    • SHA512

      2aae4a30c6fc70f55082286552ffa841588a32d0779662cbed95cba3fd93715fdcac118cb67c924bc40820c384949c3ae2abe1abd5c8ac1394111eb71fbf7a4b

    Score
    8/10
    • Executes dropped EXE

    • Deletes itself

    • Loads dropped DLL

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Registry Run Keys / Startup Folder

1
T1060

Defense Evasion

Modify Registry

2
T1112

Tasks