Overview

overview

8

Static

static

41a500a38d...bb.exe

windows7-x64

8

41a500a38d...bb.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    41a500a38d69f5b59c35297a46f27afe2ebc5302a6dd6eee45f7d62dd877d8bb

  • Size

    37KB

  • Sample

    221123-ztgwxadg45

  • MD5

    3ad45d6d98d3310c03b28cfc5572471b

  • SHA1

    9f1530371a3bc084b1e5405d2e4f534d2d874cca

  • SHA256

    41a500a38d69f5b59c35297a46f27afe2ebc5302a6dd6eee45f7d62dd877d8bb

  • SHA512

    3c3388ff4acddd42bc3a561ea8abe76776262dd244b2b3e7fd2accdb7fb21004633c720931d9ae902a3c7516f09adca6b5c5c1f7a6b1e04292ee1ff2518ad097

  • SSDEEP

    768:jpuxbbb93pfzxWt7QYQ8IgDidhHPjAJYvHF0lwY437avXKrnru:j0Rbb5WRQYt9ir/2wra9

Score
8/10

Malware Config

Targets

    • Target

      41a500a38d69f5b59c35297a46f27afe2ebc5302a6dd6eee45f7d62dd877d8bb

    • Size

      37KB

    • MD5

      3ad45d6d98d3310c03b28cfc5572471b

    • SHA1

      9f1530371a3bc084b1e5405d2e4f534d2d874cca

    • SHA256

      41a500a38d69f5b59c35297a46f27afe2ebc5302a6dd6eee45f7d62dd877d8bb

    • SHA512

      3c3388ff4acddd42bc3a561ea8abe76776262dd244b2b3e7fd2accdb7fb21004633c720931d9ae902a3c7516f09adca6b5c5c1f7a6b1e04292ee1ff2518ad097

    • SSDEEP

      768:jpuxbbb93pfzxWt7QYQ8IgDidhHPjAJYvHF0lwY437avXKrnru:j0Rbb5WRQYt9ir/2wra9

    Score
    8/10

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks