General

  • Target

    uncategorized_2.1.1.2.vir

  • Size

    162KB

  • Sample

    200719-krkad15d1e

  • MD5

    749cc8984f142b082ab14fe4c86ee396

  • SHA1

    fa83af3da50c64241bfaa31b91c735e6f9a43b2d

  • SHA256

    e4cd3a3bbf851aea2645ff32eeb8fbe177b79bf8149737c52acb413b2ff13eb6

  • SHA512

    c23b36f3dfe682fd04427a63c0fecfb486bb5c7e03706fbbe81487dd9a3f302fff9aa8076d45eecf3bfedd32b38b05fb76e23e8b2ef298d70dae059ce307a0f5

Score
8/10

Malware Config

Targets

    • Target

      uncategorized_2.1.1.2.vir

    • Size

      162KB

    • MD5

      749cc8984f142b082ab14fe4c86ee396

    • SHA1

      fa83af3da50c64241bfaa31b91c735e6f9a43b2d

    • SHA256

      e4cd3a3bbf851aea2645ff32eeb8fbe177b79bf8149737c52acb413b2ff13eb6

    • SHA512

      c23b36f3dfe682fd04427a63c0fecfb486bb5c7e03706fbbe81487dd9a3f302fff9aa8076d45eecf3bfedd32b38b05fb76e23e8b2ef298d70dae059ce307a0f5

    Score
    8/10
    • Executes dropped EXE

    • Deletes itself

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Registry Run Keys / Startup Folder

1
T1060

Defense Evasion

Modify Registry

2
T1112

Tasks