General
-
Target
tuc7.exe
-
Size
7.5MB
-
Sample
231211-ya8d3shae6
-
MD5
8e96d59384948402186251bcabeeb8db
-
SHA1
ba4aa6929ba351e8c58bbef20782c3fc59bca170
-
SHA256
878c9833b56a0232389cb7c4053aca40a9e45ee123bbbe5b8d1c7b58f47db3a2
-
SHA512
352d524940f182326b5236b05c456013076393b55a2e305ade952e989c7a6e8ba268985d5aecf112eb3d49efd8b5e6e7ff9eec0a7dd9d9a2613dd4c3c6ab90f0
-
SSDEEP
196608:mWc5A2XV/1qTZGgnkphp0rAwZYGespRHDfY5cdV4qCzj:WDFyOTpBsLp1c5SV4qCzj
Malware Config
Targets
-
-
Target
tuc7.exe
-
Size
7.5MB
-
MD5
8e96d59384948402186251bcabeeb8db
-
SHA1
ba4aa6929ba351e8c58bbef20782c3fc59bca170
-
SHA256
878c9833b56a0232389cb7c4053aca40a9e45ee123bbbe5b8d1c7b58f47db3a2
-
SHA512
352d524940f182326b5236b05c456013076393b55a2e305ade952e989c7a6e8ba268985d5aecf112eb3d49efd8b5e6e7ff9eec0a7dd9d9a2613dd4c3c6ab90f0
-
SSDEEP
196608:mWc5A2XV/1qTZGgnkphp0rAwZYGespRHDfY5cdV4qCzj:WDFyOTpBsLp1c5SV4qCzj
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-