General

  • Target

    51d7bfbd71a523aae118c877c773c3ae8342074e58967723bcca6a3e7b0e73c0

  • Size

    274KB

  • Sample

    231206-jaez7scf35

  • MD5

    13ca3cad1a72022f1ef608737dd20a6f

  • SHA1

    6e7c4735fa6bb265c6276e3d03e6931892545a67

  • SHA256

    51d7bfbd71a523aae118c877c773c3ae8342074e58967723bcca6a3e7b0e73c0

  • SHA512

    a1ff84c4d52027e75ce55aebcd0d98522cb37cd159eacc518d39b3b8cefdb8d1f487a363b26cad20bb4da7a2e1e52dce19a1ab2770b6dd93433a175d5772b905

  • SSDEEP

    6144:ebTirrfykiiUjh6QH/cEOkCybEaQRXr9HNdvOa:ePcrfR6ZnOkx2LIa

Score
8/10

Malware Config

Targets

    • Target

      51d7bfbd71a523aae118c877c773c3ae8342074e58967723bcca6a3e7b0e73c0

    • Size

      274KB

    • MD5

      13ca3cad1a72022f1ef608737dd20a6f

    • SHA1

      6e7c4735fa6bb265c6276e3d03e6931892545a67

    • SHA256

      51d7bfbd71a523aae118c877c773c3ae8342074e58967723bcca6a3e7b0e73c0

    • SHA512

      a1ff84c4d52027e75ce55aebcd0d98522cb37cd159eacc518d39b3b8cefdb8d1f487a363b26cad20bb4da7a2e1e52dce19a1ab2770b6dd93433a175d5772b905

    • SSDEEP

      6144:ebTirrfykiiUjh6QH/cEOkCybEaQRXr9HNdvOa:ePcrfR6ZnOkx2LIa

    Score
    8/10
    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks