General
-
Target
Dronetry2.exe
-
Size
10.8MB
-
Sample
221002-zcb94ahga5
-
MD5
75ee24004eaed53c623605c31857e0dd
-
SHA1
78d478f20d0821338f552bfa77858a27c738dfc3
-
SHA256
ce7c4e0367ea8ae98e6b4d7c2c659d4e72b9bd87df95e09e48cd9f2ed340fb2d
-
SHA512
28c4a1d6dc87cd86e614245910b33dcbe7b9adfd5b40eeba520b2b88aafdd8204012fe4791f5c1d202cc5e4e72ea10c173043e29c9e5f50a297ad8fe1da72ebe
-
SSDEEP
196608:gpDUpbDO6DjzpLRUZtO0oAinb0Jf0W8/LainU77SRs5FpjxX9DVCJy:Npb3dCEb0JcW8DU7GWPp53o
Behavioral task
behavioral1
Sample
Dronetry2.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
Dronetry2.exe
-
Size
10.8MB
-
MD5
75ee24004eaed53c623605c31857e0dd
-
SHA1
78d478f20d0821338f552bfa77858a27c738dfc3
-
SHA256
ce7c4e0367ea8ae98e6b4d7c2c659d4e72b9bd87df95e09e48cd9f2ed340fb2d
-
SHA512
28c4a1d6dc87cd86e614245910b33dcbe7b9adfd5b40eeba520b2b88aafdd8204012fe4791f5c1d202cc5e4e72ea10c173043e29c9e5f50a297ad8fe1da72ebe
-
SSDEEP
196608:gpDUpbDO6DjzpLRUZtO0oAinb0Jf0W8/LainU77SRs5FpjxX9DVCJy:Npb3dCEb0JcW8DU7GWPp53o
Score8/10-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-