Overview

overview

8

Static

static

fe46bc6cb0...a5.exe

windows7-x64

8

fe46bc6cb0...a5.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    fe46bc6cb0fb803fb71ce33c3a19a947e98428474340cb5dec98974494ea66a5

  • Size

    35KB

  • Sample

    221206-r66f2agc49

  • MD5

    35d170152b43e3c06c11ea6cb5cc0e20

  • SHA1

    c7ad23171215efc091948cfa790417001132a651

  • SHA256

    fe46bc6cb0fb803fb71ce33c3a19a947e98428474340cb5dec98974494ea66a5

  • SHA512

    9b4e3136054d0faaa7f0469be766acfa5b66ff02e22aaa097feda246588b09b7044c2d0e4ac058531783574cb3c3adff8683744f2f5184ec83bf2d0c55022256

  • SSDEEP

    384:x9RlQG13BLgexxxaR0O834rfmAT/5bcicoAVmaqsj7T0oY7cQ67oJk1Ziwf6hycF:TQGpmes+olciha/sw8cF6srxLwN97jb

Score
8/10

Malware Config

Targets

    • Target

      fe46bc6cb0fb803fb71ce33c3a19a947e98428474340cb5dec98974494ea66a5

    • Size

      35KB

    • MD5

      35d170152b43e3c06c11ea6cb5cc0e20

    • SHA1

      c7ad23171215efc091948cfa790417001132a651

    • SHA256

      fe46bc6cb0fb803fb71ce33c3a19a947e98428474340cb5dec98974494ea66a5

    • SHA512

      9b4e3136054d0faaa7f0469be766acfa5b66ff02e22aaa097feda246588b09b7044c2d0e4ac058531783574cb3c3adff8683744f2f5184ec83bf2d0c55022256

    • SSDEEP

      384:x9RlQG13BLgexxxaR0O834rfmAT/5bcicoAVmaqsj7T0oY7cQ67oJk1Ziwf6hycF:TQGpmes+olciha/sw8cF6srxLwN97jb

    Score
    8/10

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks