General

  • Target

    648110f889f797de6b19d60914aaf090_exe64.exe

  • Size

    8.1MB

  • Sample

    231015-yk7wasbc49

  • MD5

    648110f889f797de6b19d60914aaf090

  • SHA1

    b191a5a2ce9eb63789f25123b52c04169755b127

  • SHA256

    806b6d0d7a8baef1547376a3e60103eeb2b8f485f071f7fc62c7f1c7367ebd7f

  • SHA512

    aaa1b56acfb2075762b3246b8ca37511bb85a77ea8a41c61d63808063c18a5d0e28449a2d4d45cf450a9d09ee308b84353a3d0f08b962425bc5721e74292cfcb

  • SSDEEP

    98304:aJTXWQdfdDwG1eFsr7/AgecPlcGxH0Ig17E3AAy5tx5KD/SW47TvSop5JTSPz9lS:avFDwGcsAgectcGfcY3gtArbKSPz1

Malware Config

Targets

    • Target

      648110f889f797de6b19d60914aaf090_exe64.exe

    • Size

      8.1MB

    • MD5

      648110f889f797de6b19d60914aaf090

    • SHA1

      b191a5a2ce9eb63789f25123b52c04169755b127

    • SHA256

      806b6d0d7a8baef1547376a3e60103eeb2b8f485f071f7fc62c7f1c7367ebd7f

    • SHA512

      aaa1b56acfb2075762b3246b8ca37511bb85a77ea8a41c61d63808063c18a5d0e28449a2d4d45cf450a9d09ee308b84353a3d0f08b962425bc5721e74292cfcb

    • SSDEEP

      98304:aJTXWQdfdDwG1eFsr7/AgecPlcGxH0Ig17E3AAy5tx5KD/SW47TvSop5JTSPz9lS:avFDwGcsAgectcGfcY3gtArbKSPz1

    Score
    7/10
    • Loads dropped DLL

    • Adds Run key to start application

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks