Overview

overview

7

Static

static

3

tuc7.exe

windows7-x64

7

tuc7.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    tuc7.exe

  • Size

    6.9MB

  • Sample

    231211-rsclssaee8

  • MD5

    b1b0c65437027a62cd14f749cabb55b6

  • SHA1

    245fefb45739227305a13b3853a8fb0428150ef0

  • SHA256

    2ccfc4f3d7c8029be2c882ab947c644beda92e72047e2642777c1df016f84f09

  • SHA512

    fcaee2281d4bb1d91deb747f97fc53f2c1e8b341f62f9e0845dc8a4ea7b072c08fcc5b81810de6fb6c9a534d33807bb3253ff15871191e348ab7e6d483148d0d

  • SSDEEP

    196608:3eusL5Sg97UrK5EvfjuiKsrGugWn7juD9k3Ozj:OVsg95KnxLrGufn765k+zj

Score
7/10
discovery

Malware Config

Targets

    • Target

      tuc7.exe

    • Size

      6.9MB

    • MD5

      b1b0c65437027a62cd14f749cabb55b6

    • SHA1

      245fefb45739227305a13b3853a8fb0428150ef0

    • SHA256

      2ccfc4f3d7c8029be2c882ab947c644beda92e72047e2642777c1df016f84f09

    • SHA512

      fcaee2281d4bb1d91deb747f97fc53f2c1e8b341f62f9e0845dc8a4ea7b072c08fcc5b81810de6fb6c9a534d33807bb3253ff15871191e348ab7e6d483148d0d

    • SSDEEP

      196608:3eusL5Sg97UrK5EvfjuiKsrGugWn7juD9k3Ozj:OVsg95KnxLrGufn765k+zj

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks