Overview

overview

8

Static

static

f02a398bdb...aa.exe

windows7-x64

8

f02a398bdb...aa.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f02a398bdbcaa0339158daf18d7104006fb25090fadf3d56f387a85723f902aa

  • Size

    144KB

  • Sample

    221204-gprw7sgc4z

  • MD5

    761cd905a105ac82309b786901e0a019

  • SHA1

    2db7b0a846968a4c29f61b20167c443819c2c2c8

  • SHA256

    f02a398bdbcaa0339158daf18d7104006fb25090fadf3d56f387a85723f902aa

  • SHA512

    9a543092e7549867aa489d3abd7cdb504bc56eb9b55dd5b444b81810d7c16e8df077ed3d72463132ffdf0bdec704f48d7ce8af171dbea58b8a05e7b1e051650d

  • SSDEEP

    1536:qiUQf1OdalnaYJy8PNigFfaGZp78lbcuZ/+J0g:qiUmOEdvTNVfaGZp78lwuUWg

Score
8/10

Malware Config

Targets

    • Target

      f02a398bdbcaa0339158daf18d7104006fb25090fadf3d56f387a85723f902aa

    • Size

      144KB

    • MD5

      761cd905a105ac82309b786901e0a019

    • SHA1

      2db7b0a846968a4c29f61b20167c443819c2c2c8

    • SHA256

      f02a398bdbcaa0339158daf18d7104006fb25090fadf3d56f387a85723f902aa

    • SHA512

      9a543092e7549867aa489d3abd7cdb504bc56eb9b55dd5b444b81810d7c16e8df077ed3d72463132ffdf0bdec704f48d7ce8af171dbea58b8a05e7b1e051650d

    • SSDEEP

      1536:qiUQf1OdalnaYJy8PNigFfaGZp78lbcuZ/+J0g:qiUmOEdvTNVfaGZp78lwuUWg

    Score
    8/10

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks