868f6ee6628da565903a9d0893976f711df8900a0f482dd8eb4384f75480f945 | Triage

Sharing

General

Target

868f6ee6628da565903a9d0893976f711df8900a0f482dd8eb4384f75480f945
Size

35KB
Sample

221011-wn6fjagfa2
MD5

60b723ea5a411ca2bcf10278dc68c1a0
SHA1

0523cc70481b16957401b85c8806a1162379cb76
SHA256

868f6ee6628da565903a9d0893976f711df8900a0f482dd8eb4384f75480f945
SHA512

8beebf420db85217b15dcc273f9d624cf71d0e9561b23c394cae239e1e462fc606fbf125207bc359fa80fd1b13c216d5ac1ab514b478f65cc82fd36ae3445626
SSDEEP

384:f5sioLPdNf1Y7eZ7IwAzaDkizkc6WRqdsIa9gyb1OfFzLY7RIanmCX02+fste7JM:SLCcAzaaQqyRyyxGuCant+UOJs3Cnw

Score

8^/10

Malware Config

Targets

- Target
  
  868f6ee6628da565903a9d0893976f711df8900a0f482dd8eb4384f75480f945
- Size
  
  35KB
- MD5
  
  60b723ea5a411ca2bcf10278dc68c1a0
- SHA1
  
  0523cc70481b16957401b85c8806a1162379cb76
- SHA256
  
  868f6ee6628da565903a9d0893976f711df8900a0f482dd8eb4384f75480f945
- SHA512
  
  8beebf420db85217b15dcc273f9d624cf71d0e9561b23c394cae239e1e462fc606fbf125207bc359fa80fd1b13c216d5ac1ab514b478f65cc82fd36ae3445626
- SSDEEP
  
  384:f5sioLPdNf1Y7eZ7IwAzaDkizkc6WRqdsIa9gyb1OfFzLY7RIanmCX02+fste7JM:SLCcAzaaQqyRyyxGuCant+UOJs3Cnw
Score

8^/10
- Executes dropped EXE
- Loads dropped DLL
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2