General

  • Target

    eff57af5e4ad9d7938a84528c2cd4cce436be7d78573e081b7439b95a92dc7fd

  • Size

    274KB

  • Sample

    231204-jb34eshf5w

  • MD5

    7376c04a3abaf97cece4266bc8f6f0fe

  • SHA1

    7a4dc4c3ff38c292e933b6799475a4ed2fdddd02

  • SHA256

    eff57af5e4ad9d7938a84528c2cd4cce436be7d78573e081b7439b95a92dc7fd

  • SHA512

    ea8718e5d6d49c71f44d41fd19e1224f1d0040e8a1ee862e1e6af3f7ccd3d3e9b44aeea1b5c499628a9e926f0a32f12975c6540ed71aaea40f80b31d4b5705f5

  • SSDEEP

    6144:3bTirrfykiiUjh6QH/cEOkCybEaQRXr9HNdvOa:3PcrfR6ZnOkx2LIa

Score
8/10

Malware Config

Targets

    • Target

      eff57af5e4ad9d7938a84528c2cd4cce436be7d78573e081b7439b95a92dc7fd

    • Size

      274KB

    • MD5

      7376c04a3abaf97cece4266bc8f6f0fe

    • SHA1

      7a4dc4c3ff38c292e933b6799475a4ed2fdddd02

    • SHA256

      eff57af5e4ad9d7938a84528c2cd4cce436be7d78573e081b7439b95a92dc7fd

    • SHA512

      ea8718e5d6d49c71f44d41fd19e1224f1d0040e8a1ee862e1e6af3f7ccd3d3e9b44aeea1b5c499628a9e926f0a32f12975c6540ed71aaea40f80b31d4b5705f5

    • SSDEEP

      6144:3bTirrfykiiUjh6QH/cEOkCybEaQRXr9HNdvOa:3PcrfR6ZnOkx2LIa

    Score
    8/10
    • Drops file in Drivers directory

    • Deletes itself

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks