Overview

overview

8

Static

static

8b69d4fedd...65.exe

windows7-x64

8

8b69d4fedd...65.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8b69d4feddf89f1647344f21327026dc0bc116102850b8d715acb6e0c7d08465

  • Size

    45KB

  • Sample

    221129-ghtr8aee2z

  • MD5

    f31b02dd58c8b1b90d1d201e554f78dc

  • SHA1

    a77f3c8d90497c4d430070615802434580dc1fdc

  • SHA256

    8b69d4feddf89f1647344f21327026dc0bc116102850b8d715acb6e0c7d08465

  • SHA512

    101ce037eaf395dbcbd3590a3b06540e485ed19da8909744e3d791e0bd21b28269d11c8c8d26857c23d31d63dfeb701ba22958d0be19636f7635d81cc1c39444

  • SSDEEP

    768:X323i/5MqKWo+CBe0dyvumWGpgIZ/jjPFjwUMaJiApGHNb6mB4:Ii/5MtWo+C80UcGpR/jjPpaSiApGtWs4

Score
8/10

Malware Config

Targets

    • Target

      8b69d4feddf89f1647344f21327026dc0bc116102850b8d715acb6e0c7d08465

    • Size

      45KB

    • MD5

      f31b02dd58c8b1b90d1d201e554f78dc

    • SHA1

      a77f3c8d90497c4d430070615802434580dc1fdc

    • SHA256

      8b69d4feddf89f1647344f21327026dc0bc116102850b8d715acb6e0c7d08465

    • SHA512

      101ce037eaf395dbcbd3590a3b06540e485ed19da8909744e3d791e0bd21b28269d11c8c8d26857c23d31d63dfeb701ba22958d0be19636f7635d81cc1c39444

    • SSDEEP

      768:X323i/5MqKWo+CBe0dyvumWGpgIZ/jjPFjwUMaJiApGHNb6mB4:Ii/5MtWo+C80UcGpR/jjPpaSiApGtWs4

    Score
    8/10

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks