General

  • Target

    af517559f18e7d59b1b0f278c1f57ce4.bin

  • Size

    72.2MB

  • Sample

    231109-c1dfqsgd79

  • MD5

    af517559f18e7d59b1b0f278c1f57ce4

  • SHA1

    16743ad6e74b6656a09fccfb31a146de981307bb

  • SHA256

    eb79b912d2543c08160f2a2146a697e5d714bd28af429c01df0b95958e7af312

  • SHA512

    fe49a5f784cc6e42f92c8d3c68c4ef01e58ce3e344a44f9a6191a9e9e9bf9ca205d15579d598d382c36b21f8b012c45fcb45ec5512408fe92c9b91d3381a539d

  • SSDEEP

    1572864:v2MQqQxHExFSk8IpG7V+VPhq73E7EgY5WHUZW8J7TwGb94VLWQZGZfla:vZQq6kxFSkB05aw7wqW0IqEGCtHM

Malware Config

Targets

    • Target

      af517559f18e7d59b1b0f278c1f57ce4.bin

    • Size

      72.2MB

    • MD5

      af517559f18e7d59b1b0f278c1f57ce4

    • SHA1

      16743ad6e74b6656a09fccfb31a146de981307bb

    • SHA256

      eb79b912d2543c08160f2a2146a697e5d714bd28af429c01df0b95958e7af312

    • SHA512

      fe49a5f784cc6e42f92c8d3c68c4ef01e58ce3e344a44f9a6191a9e9e9bf9ca205d15579d598d382c36b21f8b012c45fcb45ec5512408fe92c9b91d3381a539d

    • SSDEEP

      1572864:v2MQqQxHExFSk8IpG7V+VPhq73E7EgY5WHUZW8J7TwGb94VLWQZGZfla:vZQq6kxFSkB05aw7wqW0IqEGCtHM

    Score
    9/10
    • Enumerates VirtualBox DLL files

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks