Overview

overview

7

Static

static

3

tuc7.exe

windows7-x64

7

tuc7.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    tuc7.exe

  • Size

    6.9MB

  • Sample

    231211-rmtm5aadc5

  • MD5

    5dc8e4987e20ff679306669eddd6675b

  • SHA1

    a770c5d60a08098e49f9b5f786d5e4c813e8cb50

  • SHA256

    ff6b06fd3a32b3f514d0c25b2976e23091eada9851c32752b5fbd316625cd0e4

  • SHA512

    105edcdf295b6dff29f3daf4b00938ac53f6e611c56e1181700df7e3cbab1f151ed589a3584347a2033313374b2973df86e0706a2cf6ace094740b4528beb044

  • SSDEEP

    196608:EeusL5Sg97UrK5EvfjuiKsrGugWn7juD9k3Ozj:/Vsg95KnxLrGufn765k+zj

Score
7/10
discovery

Malware Config

Targets

    • Target

      tuc7.exe

    • Size

      6.9MB

    • MD5

      5dc8e4987e20ff679306669eddd6675b

    • SHA1

      a770c5d60a08098e49f9b5f786d5e4c813e8cb50

    • SHA256

      ff6b06fd3a32b3f514d0c25b2976e23091eada9851c32752b5fbd316625cd0e4

    • SHA512

      105edcdf295b6dff29f3daf4b00938ac53f6e611c56e1181700df7e3cbab1f151ed589a3584347a2033313374b2973df86e0706a2cf6ace094740b4528beb044

    • SSDEEP

      196608:EeusL5Sg97UrK5EvfjuiKsrGugWn7juD9k3Ozj:/Vsg95KnxLrGufn765k+zj

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks