Overview

overview

8

Static

static

bbee32736d...30.exe

windows7-x64

8

bbee32736d...30.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bbee32736d4e92febb0219e452e3d351366bf72821b8766576a9e4a4882f0930

  • Size

    98KB

  • Sample

    221206-qlz8vaeg2v

  • MD5

    1b7e24e3e1c10083f90bc9948d11611d

  • SHA1

    438911aa61ebbc78e992ba5ddf1f96adea3ac3f8

  • SHA256

    bbee32736d4e92febb0219e452e3d351366bf72821b8766576a9e4a4882f0930

  • SHA512

    f212f16e578426f3ca9e8c528c5557bc88ef89d2eec820ae2aac91e6ba9cff0ac665b9b05c45e293a25d77d351ff1c64d4c6fb28eca0d8efd7fab000dfc14131

  • SSDEEP

    3072:46V87r/x8BZ/rWLfSo15FteivzoAkQpyTphpnf:46er/c6eo1HteMoS4fpnf

Score
8/10

Malware Config

Targets

    • Target

      bbee32736d4e92febb0219e452e3d351366bf72821b8766576a9e4a4882f0930

    • Size

      98KB

    • MD5

      1b7e24e3e1c10083f90bc9948d11611d

    • SHA1

      438911aa61ebbc78e992ba5ddf1f96adea3ac3f8

    • SHA256

      bbee32736d4e92febb0219e452e3d351366bf72821b8766576a9e4a4882f0930

    • SHA512

      f212f16e578426f3ca9e8c528c5557bc88ef89d2eec820ae2aac91e6ba9cff0ac665b9b05c45e293a25d77d351ff1c64d4c6fb28eca0d8efd7fab000dfc14131

    • SSDEEP

      3072:46V87r/x8BZ/rWLfSo15FteivzoAkQpyTphpnf:46er/c6eo1HteMoS4fpnf

    Score
    8/10

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks