General

  • Target

    flokibot_0.0.0.13.vir

  • Size

    239KB

  • Sample

    200719-gzfwpk5gba

  • MD5

    a11b982bde341475e28d3a2fa96f982a

  • SHA1

    181fe69fa5f931251771814d2afc7bcd85c6468a

  • SHA256

    e43ee2ab62f9dbeb6c3c43c91778308b450f5192c0abb0242bfddb8a65ab883a

  • SHA512

    3a7dc19f2f04cd7dc3bf53cc9132da246a18b4b51092757238c18a51cf874e4f7ebda5d11fdd10ebe58558c207144f0824127f25f4af73defee420930b4334d0

Score
7/10

Malware Config

Targets

    • Target

      flokibot_0.0.0.13.vir

    • Size

      239KB

    • MD5

      a11b982bde341475e28d3a2fa96f982a

    • SHA1

      181fe69fa5f931251771814d2afc7bcd85c6468a

    • SHA256

      e43ee2ab62f9dbeb6c3c43c91778308b450f5192c0abb0242bfddb8a65ab883a

    • SHA512

      3a7dc19f2f04cd7dc3bf53cc9132da246a18b4b51092757238c18a51cf874e4f7ebda5d11fdd10ebe58558c207144f0824127f25f4af73defee420930b4334d0

    Score
    7/10
    • Deletes itself

    • Drops startup file

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks