Overview

overview

8

Static

static

fcac97fb2c...2a.exe

windows7-x64

8

fcac97fb2c...2a.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fcac97fb2c5fe56b7d4c60e04d45d1310dd89620c400511ac78d959a446df22a

  • Size

    38KB

  • Sample

    221028-wl8swahdb5

  • MD5

    0c091213c1ba62c6650f36d4d69bc6fe

  • SHA1

    7eb8fb216c7075184ad915f60d2ef0831285c2d9

  • SHA256

    fcac97fb2c5fe56b7d4c60e04d45d1310dd89620c400511ac78d959a446df22a

  • SHA512

    d9ebf6071771e125c5345f995f1f26124c43e809827ebd6f9a0709234c323d4a16e8936da83f13fd883eb0f8e152b3e9271e2262180099d1fe74452f40eb3de0

  • SSDEEP

    768:gF75Qu6d+I5m5XzrJCIp3ptMDW5cxsNxUtJqlPi:4aUXQI9wDW5XN6t86

Score
8/10

Malware Config

Targets

    • Target

      fcac97fb2c5fe56b7d4c60e04d45d1310dd89620c400511ac78d959a446df22a

    • Size

      38KB

    • MD5

      0c091213c1ba62c6650f36d4d69bc6fe

    • SHA1

      7eb8fb216c7075184ad915f60d2ef0831285c2d9

    • SHA256

      fcac97fb2c5fe56b7d4c60e04d45d1310dd89620c400511ac78d959a446df22a

    • SHA512

      d9ebf6071771e125c5345f995f1f26124c43e809827ebd6f9a0709234c323d4a16e8936da83f13fd883eb0f8e152b3e9271e2262180099d1fe74452f40eb3de0

    • SSDEEP

      768:gF75Qu6d+I5m5XzrJCIp3ptMDW5cxsNxUtJqlPi:4aUXQI9wDW5XN6t86

    Score
    8/10

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks