Overview

overview

8

Static

static

93681b42fa...32.exe

windows7-x64

8

93681b42fa...32.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    93681b42faaeb9a31d361f0418baf55d1d82cb3558b6372636f7c019b1a52532

  • Size

    37KB

  • Sample

    221207-cdp61sgh4v

  • MD5

    22a281f1c23eb74591976617390f5923

  • SHA1

    96866120bafb296fc604f3915157841be8e96189

  • SHA256

    93681b42faaeb9a31d361f0418baf55d1d82cb3558b6372636f7c019b1a52532

  • SHA512

    34f4329e48d19d89d9cc91df58021f61fad3628e0e7155314342d7cad5f11c8a655b0aea5864a0c73f6ac3827ecf20e418339b5e093a099d0c5af587e8de9efa

  • SSDEEP

    768:XgQkYItDn0dXfeGXHizJq4sZN18pXvnemTrIavNrLg87sBJN:w/RVnSX2GCJqtDeeOIah98N

Score
8/10

Malware Config

Targets

    • Target

      93681b42faaeb9a31d361f0418baf55d1d82cb3558b6372636f7c019b1a52532

    • Size

      37KB

    • MD5

      22a281f1c23eb74591976617390f5923

    • SHA1

      96866120bafb296fc604f3915157841be8e96189

    • SHA256

      93681b42faaeb9a31d361f0418baf55d1d82cb3558b6372636f7c019b1a52532

    • SHA512

      34f4329e48d19d89d9cc91df58021f61fad3628e0e7155314342d7cad5f11c8a655b0aea5864a0c73f6ac3827ecf20e418339b5e093a099d0c5af587e8de9efa

    • SSDEEP

      768:XgQkYItDn0dXfeGXHizJq4sZN18pXvnemTrIavNrLg87sBJN:w/RVnSX2GCJqtDeeOIah98N

    Score
    8/10

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks