87a6082de6d05629eaec53df1c62d8a96c6b9911f2d5b812ce939506c55c5745 | Triage

Submit
Reports

Overview

overview

7

Static

static

87a6082de6...45.exe

windows7-x64

7

87a6082de6...45.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

87a6082de6d05629eaec53df1c62d8a96c6b9911f2d5b812ce939506c55c5745
Size

31KB
Sample

221201-b3abesgc7s
MD5

835fcf0ed46397ea7ca79877a9a66626
SHA1

6483662497042320ff253e9a45358b8523720899
SHA256

87a6082de6d05629eaec53df1c62d8a96c6b9911f2d5b812ce939506c55c5745
SHA512

e7e95fe4fe8315c3ea48a8c5d8a3d4e24b22762071b65957915b9fb1279ff449b4d8d35af631db5bd7d9f0968a7ad9b60669b668f89b92f22f448caadfea6b72
SSDEEP

768:f/+zEWhqWqVs/1qY5zV9T6vmBIYPTO5gDbZIPf:f/1xWasNbpT6CIquebZ

Score

7^/10

Static task

static1

Behavioral task

behavioral1

Sample

87a6082de6d05629eaec53df1c62d8a96c6b9911f2d5b812ce939506c55c5745.exe

Resource

win7-20220901-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

87a6082de6d05629eaec53df1c62d8a96c6b9911f2d5b812ce939506c55c5745.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  87a6082de6d05629eaec53df1c62d8a96c6b9911f2d5b812ce939506c55c5745
- Size
  
  31KB
- MD5
  
  835fcf0ed46397ea7ca79877a9a66626
- SHA1
  
  6483662497042320ff253e9a45358b8523720899
- SHA256
  
  87a6082de6d05629eaec53df1c62d8a96c6b9911f2d5b812ce939506c55c5745
- SHA512
  
  e7e95fe4fe8315c3ea48a8c5d8a3d4e24b22762071b65957915b9fb1279ff449b4d8d35af631db5bd7d9f0968a7ad9b60669b668f89b92f22f448caadfea6b72
- SSDEEP
  
  768:f/+zEWhqWqVs/1qY5zV9T6vmBIYPTO5gDbZIPf:f/1xWasNbpT6CIquebZ
Score

7^/10
- Deletes itself
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy