Overview

overview

7

Static

static

3

tuc5.exe

windows7-x64

7

tuc5.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    tuc5.exe

  • Size

    6.9MB

  • Sample

    231211-q65dasgcgr

  • MD5

    98742bf6c2eb3488c0201aca1c010bd9

  • SHA1

    acaef0ca4c6b7f0e12255ea5aade6cd8fc47bcf6

  • SHA256

    8e1a7b9a6c8b9c19163d5218996c243a699617e68bf1789a4e9a99bb3c3c38ec

  • SHA512

    10626fd90444d5ce9b9fad0e74b3ab44ebeccd3d3e959418818aede6c7e02846c3391644a144c59199d4e4cec4c8900f4f923cb53815e9dd96967d32ac192597

  • SSDEEP

    196608:pxOlhkHxfDumIwWJfU1IzKkGjAqiuGIqOg9zj:SjkHxfKTnJjzKkRtF9zj

Score
7/10
discovery

Malware Config

Targets

    • Target

      tuc5.exe

    • Size

      6.9MB

    • MD5

      98742bf6c2eb3488c0201aca1c010bd9

    • SHA1

      acaef0ca4c6b7f0e12255ea5aade6cd8fc47bcf6

    • SHA256

      8e1a7b9a6c8b9c19163d5218996c243a699617e68bf1789a4e9a99bb3c3c38ec

    • SHA512

      10626fd90444d5ce9b9fad0e74b3ab44ebeccd3d3e959418818aede6c7e02846c3391644a144c59199d4e4cec4c8900f4f923cb53815e9dd96967d32ac192597

    • SSDEEP

      196608:pxOlhkHxfDumIwWJfU1IzKkGjAqiuGIqOg9zj:SjkHxfKTnJjzKkRtF9zj

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks