cbf6a7b54a6ad27d32a2ee384663f0cbd95940e0a6f61a1405ff4a0abc4786fb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cbf6a7b54a6ad27d32a2ee384663f0cbd95940e0a6f61a1405ff4a0abc4786fb
Size

66KB
Sample

221001-29r3xsbec5
MD5

4f063c98d9d09f5a86ccf9b3cc13c080
SHA1

95955dc18853a5038f67efc37173daa59cab6ceb
SHA256

cbf6a7b54a6ad27d32a2ee384663f0cbd95940e0a6f61a1405ff4a0abc4786fb
SHA512

1a26bac660aee8f4c3fe3c26cefa7e4aac9cd74837474036a28f06c2ddb34dd6fad31138c9aceacb456e91b9387d39e208f9388165b3b0561004071adf646fc0
SSDEEP

1536:3yd06f4RLO0bzTEVvYr5aV+z+YWV+jghk2tzT7S4hjwGYjzJA5:i8NO06Q9aV+SI2LhjwtjVG

Score

8^/10

Malware Config

Targets

- Target
  
  cbf6a7b54a6ad27d32a2ee384663f0cbd95940e0a6f61a1405ff4a0abc4786fb
- Size
  
  66KB
- MD5
  
  4f063c98d9d09f5a86ccf9b3cc13c080
- SHA1
  
  95955dc18853a5038f67efc37173daa59cab6ceb
- SHA256
  
  cbf6a7b54a6ad27d32a2ee384663f0cbd95940e0a6f61a1405ff4a0abc4786fb
- SHA512
  
  1a26bac660aee8f4c3fe3c26cefa7e4aac9cd74837474036a28f06c2ddb34dd6fad31138c9aceacb456e91b9387d39e208f9388165b3b0561004071adf646fc0
- SSDEEP
  
  1536:3yd06f4RLO0bzTEVvYr5aV+z+YWV+jghk2tzT7S4hjwGYjzJA5:i8NO06Q9aV+SI2LhjwtjVG
Score

8^/10
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2