Overview

overview

7

Static

static

3

thunder1 (4).zip

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    thunder1 (4).zip

  • Size

    10.2MB

  • Sample

    231208-a9faksgd54

  • MD5

    37bd3907725b17d98aa8f7cd140f11dc

  • SHA1

    f188bfe2905c92db02d6d7880285fccffa70be8e

  • SHA256

    380dd3e02170e5f569d155c22c2dabc4622dcfb018fa1239d493d55448c439a1

  • SHA512

    041879afea8050b2876529475d60917377a4296c36096a462abb2323a544146d07c160824a916fa5de41008debeede784f5f7a3e7ba59eaee118a65abe8eff33

  • SSDEEP

    196608:YiQMcrB1b4n8jMMb1nW4ieBTrbjqwPHso3Ub+EdwpmV7WnwPh0kWu:YhMc6eU4d9tvsjh6DwPh0kWu

Score
7/10

Malware Config

Targets

    • Target

      thunder1 (4).zip

    • Size

      10.2MB

    • MD5

      37bd3907725b17d98aa8f7cd140f11dc

    • SHA1

      f188bfe2905c92db02d6d7880285fccffa70be8e

    • SHA256

      380dd3e02170e5f569d155c22c2dabc4622dcfb018fa1239d493d55448c439a1

    • SHA512

      041879afea8050b2876529475d60917377a4296c36096a462abb2323a544146d07c160824a916fa5de41008debeede784f5f7a3e7ba59eaee118a65abe8eff33

    • SSDEEP

      196608:YiQMcrB1b4n8jMMb1nW4ieBTrbjqwPHso3Ub+EdwpmV7WnwPh0kWu:YhMc6eU4d9tvsjh6DwPh0kWu

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks