Overview

overview

7

Static

static

3

TextureInstaller.exe

windows10-1703-x64

7

main.pyc

windows10-1703-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    TextureInstaller.exe

  • Size

    84.9MB

  • Sample

    231105-wdkq3shf6w

  • MD5

    e3494c95225f72c0db6c7031ae000992

  • SHA1

    3b5527556fa2431a88217cee0128fd15fcbfe5d6

  • SHA256

    964dcc637cc612e725b55443b0b929b247ae5e4fa788429ff2b4942e8be6288e

  • SHA512

    70e6ee69e2ac368f11dbf8f020ebba31a3665f7859d60e55ffab81a038080dd013f105926f21f5790bc1e6b86f566737bdf5b209525082ee040081d01bb0e5bd

  • SSDEEP

    1572864:42MXiJDePU1e4iamkhLDyPl4QiZqPz7/tQE88nZGjSYukZg7HXvE7fVzZNGt9Whc:4ZXj4e4iadhLDy943Ub7/tQonZODzZgy

Score
7/10
pyinstallerupx

Malware Config

Targets

    • Target

      TextureInstaller.exe

    • Size

      84.9MB

    • MD5

      e3494c95225f72c0db6c7031ae000992

    • SHA1

      3b5527556fa2431a88217cee0128fd15fcbfe5d6

    • SHA256

      964dcc637cc612e725b55443b0b929b247ae5e4fa788429ff2b4942e8be6288e

    • SHA512

      70e6ee69e2ac368f11dbf8f020ebba31a3665f7859d60e55ffab81a038080dd013f105926f21f5790bc1e6b86f566737bdf5b209525082ee040081d01bb0e5bd

    • SSDEEP

      1572864:42MXiJDePU1e4iamkhLDyPl4QiZqPz7/tQE88nZGjSYukZg7HXvE7fVzZNGt9Whc:4ZXj4e4iadhLDy943Ub7/tQonZODzZgy

    Score
    7/10
    upx

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1

    • Target

      main.pyc

    • Size

      23KB

    • MD5

      01baf28f71f673457315e67f0b390595

    • SHA1

      89008addd9ac9fa8a3c422d4587a231b7fd8c207

    • SHA256

      beb5ebc0b4dec8b627189c44e90910922a4232d507cea5c898869373b92d0ce9

    • SHA512

      bc6f0e60424a6cbe022b0ba76bbea738cf59cf539024d4ce1166d11fb058796eda44bf32622c9368345567f339820e3eaa6fd8272af73bf5d61855f80029fa43

    • SSDEEP

      384:wnrkx/E6s15EIvpaaGsyrXA96VCG1el0SXM6g9:UQx/Ex5laaG77J4hO6g9

    Score
    3/10
    behavioral2

MITRE ATT&CK Enterprise v15

Tasks