Overview

overview

7

Static

static

3

tuc7.exe

windows7-x64

7

tuc7.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    tuc7.exe

  • Size

    6.9MB

  • Sample

    231211-r2bqvshefn

  • MD5

    7495befc9ec31d79a55bb8582ec54403

  • SHA1

    38d4657d2501b00f1b9bdcaa1812a3d2d328028f

  • SHA256

    c38221adf4aab708f4ee6414da49475ebfab95d4f12f296d5676426d5dcd395a

  • SHA512

    d68a7399f75877d468588bc82074e597c8c367d79252a11ce31fdae5366fb7e230116d391fdafa4ce4eb9cc155482c5da2c01eb3ee1f4633284b22870845d940

  • SSDEEP

    196608:8eusL5Sg97UrK5EvfjuiKsrGugWn7juD9k3Ozj:XVsg95KnxLrGufn765k+zj

Score
7/10
discovery

Malware Config

Targets

    • Target

      tuc7.exe

    • Size

      6.9MB

    • MD5

      7495befc9ec31d79a55bb8582ec54403

    • SHA1

      38d4657d2501b00f1b9bdcaa1812a3d2d328028f

    • SHA256

      c38221adf4aab708f4ee6414da49475ebfab95d4f12f296d5676426d5dcd395a

    • SHA512

      d68a7399f75877d468588bc82074e597c8c367d79252a11ce31fdae5366fb7e230116d391fdafa4ce4eb9cc155482c5da2c01eb3ee1f4633284b22870845d940

    • SSDEEP

      196608:8eusL5Sg97UrK5EvfjuiKsrGugWn7juD9k3Ozj:XVsg95KnxLrGufn765k+zj

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks