a12933ab47993f5b6d09bec935163c7f077576a8b7b8362e397fe4f1ce4e791c | Triage

Submit
Reports

Overview

overview

6

Static

static

typhoon.exe

windows7-x64

6

typhoon.exe

windows10-2004-x64

6

Sharing

General

Target

typhoon.exe
Size

2.3MB
Sample

221123-ljrfpsbe58
MD5

d1d84c844681fe3c672a713c1a3bf52c
SHA1

099ec412993603c50ec87fd27c2315bd87b6fe7e
SHA256

a12933ab47993f5b6d09bec935163c7f077576a8b7b8362e397fe4f1ce4e791c
SHA512

3ee33d27c03f4b1e9977ea8b8905ec070cfc74adf4327dbb81923c2fa2df412d5f9d08b1d7e49c54ccf6333728a8e3c2ae278b79a214bb662854f8019dee25d0
SSDEEP

49152:8UbowEOvygS7/1sHOqJ02nTPFdRPqxMai2TBmCs2Odw+W7SC:8Ucwti78OqJ7TPB2Tc2Ou

Score

6^/10

Static task

static1

Behavioral task

behavioral1

Sample

typhoon.exe

Resource

win7-20221111-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

typhoon.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  typhoon.exe
- Size
  
  2.3MB
- MD5
  
  d1d84c844681fe3c672a713c1a3bf52c
- SHA1
  
  099ec412993603c50ec87fd27c2315bd87b6fe7e
- SHA256
  
  a12933ab47993f5b6d09bec935163c7f077576a8b7b8362e397fe4f1ce4e791c
- SHA512
  
  3ee33d27c03f4b1e9977ea8b8905ec070cfc74adf4327dbb81923c2fa2df412d5f9d08b1d7e49c54ccf6333728a8e3c2ae278b79a214bb662854f8019dee25d0
- SSDEEP
  
  49152:8UbowEOvygS7/1sHOqJ02nTPFdRPqxMai2TBmCs2Odw+W7SC:8Ucwti78OqJ7TPB2Tc2Ou
Score

6^/10
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy