Overview

overview

8

Static

static

SecuriteIn...82.exe

windows7_x64

8

SecuriteIn...82.exe

windows10_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SecuriteInfo.com.Crypt9.KSH.23004.12082

  • Size

    500KB

  • Sample

    201109-1c7bbz3esa

  • MD5

    4849ab316b3dcde68a2a23c22dee2d98

  • SHA1

    48827786029e0575687ee5f0707f7ebfc4ca2515

  • SHA256

    428558fcf4133715cf08d2fdf904b35f3c5e47dadbb5128b43785648688abfa1

  • SHA512

    002c83033bb390c55e4b28d75eda1c4c0793d83ac8cd5af81b421ea688d4d55f3828ec37fd7c4bece762c78ac301891775dd7f8be2690ea88b7f6b62ad1ed888

Score
8/10

Malware Config

Targets

    • Target

      SecuriteInfo.com.Crypt9.KSH.23004.12082

    • Size

      500KB

    • MD5

      4849ab316b3dcde68a2a23c22dee2d98

    • SHA1

      48827786029e0575687ee5f0707f7ebfc4ca2515

    • SHA256

      428558fcf4133715cf08d2fdf904b35f3c5e47dadbb5128b43785648688abfa1

    • SHA512

      002c83033bb390c55e4b28d75eda1c4c0793d83ac8cd5af81b421ea688d4d55f3828ec37fd7c4bece762c78ac301891775dd7f8be2690ea88b7f6b62ad1ed888

    Score
    8/10

    • Executes dropped EXE

    • Loads dropped DLL

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks