Overview

overview

7

Static

static

3

tuc7.exe

windows7-x64

7

tuc7.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    tuc7.exe

  • Size

    6.9MB

  • Sample

    231211-r8bdnshgem

  • MD5

    10a43644f9ee9a7a2ba6cfe9ced5f4d0

  • SHA1

    3a5eca7b4df1a8f5b489065f1b3ca884165b17e9

  • SHA256

    715313647a5d5487f8ea33eb4b2eea1dd097e0602a6904ac6ab08a36de2a2787

  • SHA512

    8727014c27445c8c442f609fc1089034d4d83fa05ac4bed1d92c1fb29491c1752c759c0cf3cc1b45b7a85abd59590969c4ec5cc0c4830602f574643108cba3ae

  • SSDEEP

    196608:NeusL5Sg97UrK5EvfjuiKsrGugWn7juD9k3Ozj:oVsg95KnxLrGufn765k+zj

Score
7/10
discovery

Malware Config

Targets

    • Target

      tuc7.exe

    • Size

      6.9MB

    • MD5

      10a43644f9ee9a7a2ba6cfe9ced5f4d0

    • SHA1

      3a5eca7b4df1a8f5b489065f1b3ca884165b17e9

    • SHA256

      715313647a5d5487f8ea33eb4b2eea1dd097e0602a6904ac6ab08a36de2a2787

    • SHA512

      8727014c27445c8c442f609fc1089034d4d83fa05ac4bed1d92c1fb29491c1752c759c0cf3cc1b45b7a85abd59590969c4ec5cc0c4830602f574643108cba3ae

    • SSDEEP

      196608:NeusL5Sg97UrK5EvfjuiKsrGugWn7juD9k3Ozj:oVsg95KnxLrGufn765k+zj

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks