Overview

overview

7

Static

static

3

SecuriteIn...95.exe

windows7-x64

7

SecuriteIn...95.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SecuriteInfo.com.Trojan.Siggen22.14345.14195.15363

  • Size

    2.9MB

  • Sample

    231124-f21jfagh4v

  • MD5

    000a852284beae5109a5da319a84ab21

  • SHA1

    c4482e31c8196a18f76ef4506d1d96898e00de77

  • SHA256

    369888d461380a61d73d7c8dc5e12c134cd8964950f36df98751b30e1863371e

  • SHA512

    243bb244c2b41dac8db431fc44b98786a2ce62453fbac60a3539ce2eb59d2e020aea4592a6e8702ce3aad7a831bc80bd0be29a5307c5e4c6c9b913e33e8fb0bd

  • SSDEEP

    49152:l2dKgqFC/iTqHv7bb9NfQSvzZxPQUlsMuiRPzGjNBi+tsvDcRY0E:AARFpTIXhJ51xlax/7TtsvIlE

Score
7/10
discovery

Malware Config

Targets

    • Target

      SecuriteInfo.com.Trojan.Siggen22.14345.14195.15363

    • Size

      2.9MB

    • MD5

      000a852284beae5109a5da319a84ab21

    • SHA1

      c4482e31c8196a18f76ef4506d1d96898e00de77

    • SHA256

      369888d461380a61d73d7c8dc5e12c134cd8964950f36df98751b30e1863371e

    • SHA512

      243bb244c2b41dac8db431fc44b98786a2ce62453fbac60a3539ce2eb59d2e020aea4592a6e8702ce3aad7a831bc80bd0be29a5307c5e4c6c9b913e33e8fb0bd

    • SSDEEP

      49152:l2dKgqFC/iTqHv7bb9NfQSvzZxPQUlsMuiRPzGjNBi+tsvDcRY0E:AARFpTIXhJ51xlax/7TtsvIlE

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks