Overview

overview

7

Static

static

3

tuc6.exe

windows7-x64

7

tuc6.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    tuc6.exe

  • Size

    7.5MB

  • Sample

    231211-yspdxsgccj

  • MD5

    d71575b503b43b38ff89e0451cdf3472

  • SHA1

    4b8638b6fa8fa1bbb1089c966a492eff44f52254

  • SHA256

    f54f55d8d9134c39650acc897c98988672b1b46eeda37dbdd32cebac0b50fe41

  • SHA512

    b765b929470221cede1d09ec794984a7d6fb63765e24df19f3e615a8e4450f04cebd8edd4b037cbef137c66f0a5bcd1308fca344c45cafbe6fea4d98abfd4dd1

  • SSDEEP

    196608:Mq/iLRC0OLkYNew6tjCtD2RQVsBp4UAzj:MHC9Lkuew6t2oCO9Azj

Score
7/10
discovery

Malware Config

Targets

    • Target

      tuc6.exe

    • Size

      7.5MB

    • MD5

      d71575b503b43b38ff89e0451cdf3472

    • SHA1

      4b8638b6fa8fa1bbb1089c966a492eff44f52254

    • SHA256

      f54f55d8d9134c39650acc897c98988672b1b46eeda37dbdd32cebac0b50fe41

    • SHA512

      b765b929470221cede1d09ec794984a7d6fb63765e24df19f3e615a8e4450f04cebd8edd4b037cbef137c66f0a5bcd1308fca344c45cafbe6fea4d98abfd4dd1

    • SSDEEP

      196608:Mq/iLRC0OLkYNew6tjCtD2RQVsBp4UAzj:MHC9Lkuew6t2oCO9Azj

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks