General

  • Target

    06a0b2c3fc763506f6340dc4f582f7980378f7ededfb807541afeeca0499d8cd

  • Size

    138KB

  • Sample

    210207-7ne7xnglza

  • MD5

    09580ec10df3398ce68c176121fbba66

  • SHA1

    d86cc8b0439b75ffecf6df985161c81f028a6fe2

  • SHA256

    06a0b2c3fc763506f6340dc4f582f7980378f7ededfb807541afeeca0499d8cd

  • SHA512

    f5c48d2393ed7663016c09dc0f4549cddc1f9fe9f243db74e89de7f14f745ab836657e2f224ac4d70c0c23587a736c508a43c16f4cb4a394d6722844bf047330

Score
8/10

Malware Config

Targets

    • Target

      06a0b2c3fc763506f6340dc4f582f7980378f7ededfb807541afeeca0499d8cd

    • Size

      138KB

    • MD5

      09580ec10df3398ce68c176121fbba66

    • SHA1

      d86cc8b0439b75ffecf6df985161c81f028a6fe2

    • SHA256

      06a0b2c3fc763506f6340dc4f582f7980378f7ededfb807541afeeca0499d8cd

    • SHA512

      f5c48d2393ed7663016c09dc0f4549cddc1f9fe9f243db74e89de7f14f745ab836657e2f224ac4d70c0c23587a736c508a43c16f4cb4a394d6722844bf047330

    Score
    8/10
    • Executes dropped EXE

    • Deletes itself

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Registry Run Keys / Startup Folder

1
T1060

Defense Evasion

Modify Registry

2
T1112

Tasks