General

  • Target

    c86d195aeb3f2f7de79daf05c492e37b.bin

  • Size

    76.3MB

  • Sample

    231104-ddk3qsca7w

  • MD5

    c86d195aeb3f2f7de79daf05c492e37b

  • SHA1

    d6154aea86af6cc4db3513fb5cc02b2262a3ce92

  • SHA256

    c52f9f7fa0e14b8a7bf3a45c9c570557b855309fe69db05758ae121c732a98b0

  • SHA512

    81fe153fdc568d7ac532fd2cffe4ccc4685c5eeb45da2e8fcee212db2930ef6624255492fac5af503f2078fabfcd4740308d5a4c1799a1e7d7284731a222a254

  • SSDEEP

    1572864:w2MTiQYHJiQkSk8IpG7V+VPhqoHZE7D5kHp5tWWlXxTa9k4VTWZaUiBPQYgl:wZTixpTkSkB05awoHKCJjl3Ty9VTMaUH

Malware Config

Targets

    • Target

      c86d195aeb3f2f7de79daf05c492e37b.bin

    • Size

      76.3MB

    • MD5

      c86d195aeb3f2f7de79daf05c492e37b

    • SHA1

      d6154aea86af6cc4db3513fb5cc02b2262a3ce92

    • SHA256

      c52f9f7fa0e14b8a7bf3a45c9c570557b855309fe69db05758ae121c732a98b0

    • SHA512

      81fe153fdc568d7ac532fd2cffe4ccc4685c5eeb45da2e8fcee212db2930ef6624255492fac5af503f2078fabfcd4740308d5a4c1799a1e7d7284731a222a254

    • SSDEEP

      1572864:w2MTiQYHJiQkSk8IpG7V+VPhqoHZE7D5kHp5tWWlXxTa9k4VTWZaUiBPQYgl:wZTixpTkSkB05awoHKCJjl3Ty9VTMaUH

    Score
    9/10
    • Enumerates VirtualBox DLL files

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks