General

  • Target

    Silicone_Builder.exe

  • Size

    80.4MB

  • Sample

    230919-x2xafsdf93

  • MD5

    d729b55870b78fa097083a7f3d462bba

  • SHA1

    dfbace909a5738bb64349b4d344d2702683bee64

  • SHA256

    94b6363119bc21be8c03fef56fc5b49570d1ec4191d76557bd94bb06c08d0aae

  • SHA512

    aefe7cfe853f24025d14021ce0d4f5a8d7bedf71e7ca5e8f0fea9fc9e1e19b7e6f293cd94db835708729ad082b315e8bd5d265f17033cf8f8a122bf4321b77ef

  • SSDEEP

    1572864:6jQNuiEjtgWGfihtWWc2Mp6SbBirAH8+1osuTCSxOB6xMbWJVt7DWHzrU:6jX3yWGfiLlc2gnbBS6xjKcBaO6Vt/WU

Malware Config

Targets

    • Target

      Silicone_Builder.exe

    • Size

      80.4MB

    • MD5

      d729b55870b78fa097083a7f3d462bba

    • SHA1

      dfbace909a5738bb64349b4d344d2702683bee64

    • SHA256

      94b6363119bc21be8c03fef56fc5b49570d1ec4191d76557bd94bb06c08d0aae

    • SHA512

      aefe7cfe853f24025d14021ce0d4f5a8d7bedf71e7ca5e8f0fea9fc9e1e19b7e6f293cd94db835708729ad082b315e8bd5d265f17033cf8f8a122bf4321b77ef

    • SSDEEP

      1572864:6jQNuiEjtgWGfihtWWc2Mp6SbBirAH8+1osuTCSxOB6xMbWJVt7DWHzrU:6jX3yWGfiLlc2gnbBS6xjKcBaO6Vt/WU

    Score
    9/10
    • Enumerates VirtualBox DLL files

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks