318eb59f492c0dc7d51e1a656ce6be926416f756ba0ae1cb72b4dbc5570d1484 | Triage

Sharing

General

Target

318eb59f492c0dc7d51e1a656ce6be926416f756ba0ae1cb72b4dbc5570d1484
Size

68KB
Sample

221107-sae5mscee9
MD5

15667644ff0fc615f10f1bdb4aca1f50
SHA1

300c2d70aeaa96facd1bb89bc94dbeb9beaa3ea4
SHA256

318eb59f492c0dc7d51e1a656ce6be926416f756ba0ae1cb72b4dbc5570d1484
SHA512

60993f9505650ae8e3b22a4ce8843ae4d359aa7678b574c370c7244d9e0fb2f305bfc2d4ff89d3396ae2fbed19424f424802f974333d75623d62bf22c6744872
SSDEEP

1536:1waBijItsn6faH3kktheBdJsX29YXWvTBVmiaYtVb:Ka2Usn6fmmBdJ79YXWlVmiTT

Score

8^/10

Malware Config

Targets

- Target
  
  318eb59f492c0dc7d51e1a656ce6be926416f756ba0ae1cb72b4dbc5570d1484
- Size
  
  68KB
- MD5
  
  15667644ff0fc615f10f1bdb4aca1f50
- SHA1
  
  300c2d70aeaa96facd1bb89bc94dbeb9beaa3ea4
- SHA256
  
  318eb59f492c0dc7d51e1a656ce6be926416f756ba0ae1cb72b4dbc5570d1484
- SHA512
  
  60993f9505650ae8e3b22a4ce8843ae4d359aa7678b574c370c7244d9e0fb2f305bfc2d4ff89d3396ae2fbed19424f424802f974333d75623d62bf22c6744872
- SSDEEP
  
  1536:1waBijItsn6faH3kktheBdJsX29YXWvTBVmiaYtVb:Ka2Usn6fmmBdJ79YXWlVmiTT
Score

8^/10
- Executes dropped EXE
- Loads dropped DLL
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2