General
-
Target
tuc6.exe
-
Size
6.9MB
-
Sample
231211-tdztwscfg4
-
MD5
347aedaf7e529be49229d7e0a7760d20
-
SHA1
be0a01f958a0c31380b9fc35675f4c8cd6d2516f
-
SHA256
ebb79e30dabce5f6e76dc1ce26ff1795a561276d9142582245e870f0ea326e91
-
SHA512
caeb515dca8da1927718e659dfad7f003eda7ffab28befa0d010e74499755e87c67d928ecd471b9d737f84f8a703fdb7f767a23ef68571901aeb374e22d93122
-
SSDEEP
196608:Bbw61woT7mRIc+DaTblZEZTXuNkrAk8TQNY0pzj:Bbw61woTCR9+OTbl0Zo/Gzj
Malware Config
Targets
-
-
Target
tuc6.exe
-
Size
6.9MB
-
MD5
347aedaf7e529be49229d7e0a7760d20
-
SHA1
be0a01f958a0c31380b9fc35675f4c8cd6d2516f
-
SHA256
ebb79e30dabce5f6e76dc1ce26ff1795a561276d9142582245e870f0ea326e91
-
SHA512
caeb515dca8da1927718e659dfad7f003eda7ffab28befa0d010e74499755e87c67d928ecd471b9d737f84f8a703fdb7f767a23ef68571901aeb374e22d93122
-
SSDEEP
196608:Bbw61woT7mRIc+DaTblZEZTXuNkrAk8TQNY0pzj:Bbw61woTCR9+OTbl0Zo/Gzj
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-