Overview

overview

7

Static

static

3

tuc5.exe

windows7-x64

7

tuc5.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    tuc5.exe

  • Size

    7.5MB

  • Sample

    231211-x6nh4sghd8

  • MD5

    4ff98de7f4588ba3982da01cda5c3b47

  • SHA1

    f358ef4f0e48fd77ce4dda5f2b37ff1d66ef6549

  • SHA256

    b76f2fd1a7bdc43e534405a5fb4c70d0eedaaa33feb7e734990f7c7fa342de1e

  • SHA512

    7ec4574c9401a968a7849c2334f90990550df03f7a7be40de65ee1bdc1b0a5e0ff51e9f308d59016758a1f33bf5a63606e26ee40b2dcfe5843f905ac18cb6279

  • SSDEEP

    196608:xO78pimeIjZMmsj7bXzjl3iT1A9SG7ul2xdVNWiYmJE6RI6zj:078pimNjMDzjl3dQAdVN1YyRPzj

Score
7/10
discovery

Malware Config

Targets

    • Target

      tuc5.exe

    • Size

      7.5MB

    • MD5

      4ff98de7f4588ba3982da01cda5c3b47

    • SHA1

      f358ef4f0e48fd77ce4dda5f2b37ff1d66ef6549

    • SHA256

      b76f2fd1a7bdc43e534405a5fb4c70d0eedaaa33feb7e734990f7c7fa342de1e

    • SHA512

      7ec4574c9401a968a7849c2334f90990550df03f7a7be40de65ee1bdc1b0a5e0ff51e9f308d59016758a1f33bf5a63606e26ee40b2dcfe5843f905ac18cb6279

    • SSDEEP

      196608:xO78pimeIjZMmsj7bXzjl3iT1A9SG7ul2xdVNWiYmJE6RI6zj:078pimNjMDzjl3dQAdVN1YyRPzj

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks