General

  • Target

    Install.exe

  • Size

    14.2MB

  • Sample

    230617-z5rkgsda73

  • MD5

    73a1f15d1cecfe6fb44489dff1ef9197

  • SHA1

    efabd4ae36ab7c761e017e303f4f1444ecc0495b

  • SHA256

    75a968df945b91206eaf0931a9f4f589c27687be403e2e2373567561bdb6c4b8

  • SHA512

    16b2cead5ac6679c21dcb7e17845ef5edba48e1931f32b99ebed7756b24d93a42a80a09fb7a05107e73dfc43cadcff9e7d9aa131f02b676180ef348a2ae0167c

  • SSDEEP

    196608:NbcUG4raKu24YY7HVT4hV0AD6QgqKRgXabcUG4raKu24YY7HVT4hV0AD6QgqKRgX:vmKr4YYH+EUWpgXAmKr4YYH+EUWpgX

Score
7/10

Malware Config

Targets

    • Target

      Install.exe

    • Size

      14.2MB

    • MD5

      73a1f15d1cecfe6fb44489dff1ef9197

    • SHA1

      efabd4ae36ab7c761e017e303f4f1444ecc0495b

    • SHA256

      75a968df945b91206eaf0931a9f4f589c27687be403e2e2373567561bdb6c4b8

    • SHA512

      16b2cead5ac6679c21dcb7e17845ef5edba48e1931f32b99ebed7756b24d93a42a80a09fb7a05107e73dfc43cadcff9e7d9aa131f02b676180ef348a2ae0167c

    • SSDEEP

      196608:NbcUG4raKu24YY7HVT4hV0AD6QgqKRgXabcUG4raKu24YY7HVT4hV0AD6QgqKRgX:vmKr4YYH+EUWpgXAmKr4YYH+EUWpgX

    Score
    7/10
    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Matrix

Tasks