General

  • Target

    Install.exe

  • Size

    14.2MB

  • Sample

    230617-zzs65ada58

  • MD5

    d7a332325226a2edf0dfc64d6fc0c07b

  • SHA1

    7edc5a2b7f1a03ec95026a9a4c123d6599c785df

  • SHA256

    5337a54c97cc00c5fc9a9ee3f2209545302908746217a82633db2729114a122c

  • SHA512

    ed29a97da914b7ec71b0ac152f3bb6c597a0cf2a4163e43d069798dc622a06b8e1ef30888fc0ef0a69a519ffd2e3f0587660741a38565760e9c2a03f4ada4013

  • SSDEEP

    196608:ubcUG4raKu24YY7HVT4hV0AD6QgqKRgXabcUG4raKu24YY7HVT4hV0AD6QgqKRgX:cmKr4YYH+EUWpgXAmKr4YYH+EUWpgX

Score
7/10

Malware Config

Targets

    • Target

      Install.exe

    • Size

      14.2MB

    • MD5

      d7a332325226a2edf0dfc64d6fc0c07b

    • SHA1

      7edc5a2b7f1a03ec95026a9a4c123d6599c785df

    • SHA256

      5337a54c97cc00c5fc9a9ee3f2209545302908746217a82633db2729114a122c

    • SHA512

      ed29a97da914b7ec71b0ac152f3bb6c597a0cf2a4163e43d069798dc622a06b8e1ef30888fc0ef0a69a519ffd2e3f0587660741a38565760e9c2a03f4ada4013

    • SSDEEP

      196608:ubcUG4raKu24YY7HVT4hV0AD6QgqKRgXabcUG4raKu24YY7HVT4hV0AD6QgqKRgX:cmKr4YYH+EUWpgXAmKr4YYH+EUWpgX

    Score
    7/10
    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Matrix

Tasks