Overview

overview

7

Static

static

3

c9a0d07eda...59.exe

windows7-x64

7

c9a0d07eda...59.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c9a0d07eda1830b462b964c40cf55200025b0132c3df74fd810e5d072d2d6b59

  • Size

    2.7MB

  • Sample

    231127-cj3z3adf99

  • MD5

    a3359ca2375604a9632b4a9b9ec8bd63

  • SHA1

    9ae24fe0613b90037450d4d0dfd7462dcd871d82

  • SHA256

    cd7dcad6cbdfa1f32efb6c2a9370a3ffaad22c545462b3c8a8b5461662e3cd85

  • SHA512

    ed6efae7fe280643106f66b1b95afb3791dbd7ef5cc9020d84a3be305376391b020c147ef15a03d2a91cea37998aa3ad606d2fab48f33af81b397939edcc8967

  • SSDEEP

    49152:cZJksvgvK12y6/HatyXtSEUtQo6Er+h93wuF7vHj/xk0D:+tiU6/5OQxEr+jNFrHj/RD

Score
7/10
discovery

Malware Config

Targets

    • Target

      c9a0d07eda1830b462b964c40cf55200025b0132c3df74fd810e5d072d2d6b59

    • Size

      2.7MB

    • MD5

      37fd6c17d24a1ccb6165ee55082b2afd

    • SHA1

      8d6f9159a57c5d176f8ab659e80ccaffd2ba72a2

    • SHA256

      c9a0d07eda1830b462b964c40cf55200025b0132c3df74fd810e5d072d2d6b59

    • SHA512

      f6819e562514ac99e7fd57a77a7792121e2b88a0a0d309039af5b19566aaa1979f361fc82695841c9bb587b4e3472d6654e540e64ce8d9bf1590a7cd1ec70099

    • SSDEEP

      49152:D2lZdEspqVE1S0OdJoDYhxQmUJQusk745zZC6FzHDPfRY0E:qjV04OdjMQrk74jXFzDPflE

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks