Overview

overview

7

Static

static

3

tuc5.exe

windows7-x64

7

tuc5.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    tuc5.exe

  • Size

    7.2MB

  • Sample

    231212-slrb2sfbfp

  • MD5

    bedcb52d0e7989294eed27e5a020864a

  • SHA1

    23f359ac38b020713c26691f6808769d02327ce6

  • SHA256

    83ebc0522cc0f2c4541c38c6924781b38c3ce0cb8564874e2c195e725927a8fe

  • SHA512

    67c2d5445019574d6a70dee6b3a58cdb32d94ddd8267199cb32ed1ab41d1836b923a6f78f058dc14e630e14a84eb8045ceb8f3c8bffd391ee208bbcda532229c

  • SSDEEP

    196608:6xm5MctdEEAJTpMEa66Ey+/xwAB04awWOAQwlCkzj:ccjEEAJWEh65C30GW9lCkzj

Score
7/10
discovery

Malware Config

Targets

    • Target

      tuc5.exe

    • Size

      7.2MB

    • MD5

      bedcb52d0e7989294eed27e5a020864a

    • SHA1

      23f359ac38b020713c26691f6808769d02327ce6

    • SHA256

      83ebc0522cc0f2c4541c38c6924781b38c3ce0cb8564874e2c195e725927a8fe

    • SHA512

      67c2d5445019574d6a70dee6b3a58cdb32d94ddd8267199cb32ed1ab41d1836b923a6f78f058dc14e630e14a84eb8045ceb8f3c8bffd391ee208bbcda532229c

    • SSDEEP

      196608:6xm5MctdEEAJTpMEa66Ey+/xwAB04awWOAQwlCkzj:ccjEEAJWEh65C30GW9lCkzj

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks