9ff69c5c42a3a05987258f2caee61b3ee1a62ab96ae5fc9da08878fea902cc7d | Triage

Submit
Reports

Overview

overview

8

Static

static

9ff69c5c42...7d.exe

windows7-x64

8

9ff69c5c42...7d.exe

windows10-2004-x64

8

Sharing

General

Target

9ff69c5c42a3a05987258f2caee61b3ee1a62ab96ae5fc9da08878fea902cc7d
Size

64KB
Sample

221003-a85h3shff5
MD5

51884c7b5279e86aa9aea329d87c30b0
SHA1

c1039ad900847c6ddaa7bde4a5832ccd4ebd9292
SHA256

9ff69c5c42a3a05987258f2caee61b3ee1a62ab96ae5fc9da08878fea902cc7d
SHA512

5622315807d2f1133cfd975dc37cb957bc624ba9db99cea32eae21232fda2da33c8cffbd0adea776f33a3ab2ef149a9e3676119d1edb0fbd7956d430e4ff9171
SSDEEP

1536:m2QZPC8h+7Y33Pz/Y+MIYEfFdexywag44objP:m2QZ6aLY+wENdexywag44obj

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

9ff69c5c42a3a05987258f2caee61b3ee1a62ab96ae5fc9da08878fea902cc7d.exe

Resource

win7-20220812-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

9ff69c5c42a3a05987258f2caee61b3ee1a62ab96ae5fc9da08878fea902cc7d.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  9ff69c5c42a3a05987258f2caee61b3ee1a62ab96ae5fc9da08878fea902cc7d
- Size
  
  64KB
- MD5
  
  51884c7b5279e86aa9aea329d87c30b0
- SHA1
  
  c1039ad900847c6ddaa7bde4a5832ccd4ebd9292
- SHA256
  
  9ff69c5c42a3a05987258f2caee61b3ee1a62ab96ae5fc9da08878fea902cc7d
- SHA512
  
  5622315807d2f1133cfd975dc37cb957bc624ba9db99cea32eae21232fda2da33c8cffbd0adea776f33a3ab2ef149a9e3676119d1edb0fbd7956d430e4ff9171
- SSDEEP
  
  1536:m2QZPC8h+7Y33Pz/Y+MIYEfFdexywag44objP:m2QZ6aLY+wENdexywag44obj
Score

8^/10
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy