b3fc638f4248cfb72c623af8e3a2cffb0876bcd34a3d43ac65ea28852cb1a074 | Triage

Submit
Reports

Overview

overview

Static

static

b3fc638f42...74.exe

windows7-x64

b3fc638f42...74.exe

windows10-2004-x64

Sharing

General

Target

b3fc638f4248cfb72c623af8e3a2cffb0876bcd34a3d43ac65ea28852cb1a074
Size

68KB
Sample

220725-b5vp5shgfn
MD5

56c6c8bbd5bb84959c51333f25f61de3
SHA1

0520650a6f9971efc411ce98cb3c4076642ddbf0
SHA256

b3fc638f4248cfb72c623af8e3a2cffb0876bcd34a3d43ac65ea28852cb1a074
SHA512

f2f6ad74c19beb033a027e7ff9b71925ac4b906408959ad60c963f00b84861785749299494aaf45cbfab05cc3924b6b73a011cd4d609d29c8d147ccdf84e8b84

Score

10^/10

suricata

Static task

static1

Behavioral task

behavioral1

Sample

b3fc638f4248cfb72c623af8e3a2cffb0876bcd34a3d43ac65ea28852cb1a074.exe

Resource

win7-20220715-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

b3fc638f4248cfb72c623af8e3a2cffb0876bcd34a3d43ac65ea28852cb1a074.exe

Resource

win10v2004-20220721-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  b3fc638f4248cfb72c623af8e3a2cffb0876bcd34a3d43ac65ea28852cb1a074
- Size
  
  68KB
- MD5
  
  56c6c8bbd5bb84959c51333f25f61de3
- SHA1
  
  0520650a6f9971efc411ce98cb3c4076642ddbf0
- SHA256
  
  b3fc638f4248cfb72c623af8e3a2cffb0876bcd34a3d43ac65ea28852cb1a074
- SHA512
  
  f2f6ad74c19beb033a027e7ff9b71925ac4b906408959ad60c963f00b84861785749299494aaf45cbfab05cc3924b6b73a011cd4d609d29c8d147ccdf84e8b84
Score

10^/10

suricata
- suricata: ET MALWARE Common Upatre Header Structure 2
  suricata: ET MALWARE Common Upatre Header Structure 2
  suricata
- Executes dropped EXE
- Loads dropped DLL
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy