Overview

overview

7

Static

static

3

winprofile

windows7-x64

7

winprofile

windows10-1703-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    351338889baa1620cee36d05ae9e25230dfcd590091e16c957368c3465f42602

  • Size

    6.6MB

  • Sample

    231224-2bgvaseca2

  • MD5

    5939088c8e431305b3ebbf019b72225f

  • SHA1

    a9f5c9e14480072de7820939697825d8bfe27002

  • SHA256

    351338889baa1620cee36d05ae9e25230dfcd590091e16c957368c3465f42602

  • SHA512

    c76e9a534ac7478e4ae2c58a048e6d7e4d2b19f12e2ca3010a6181981b716dabe5bc9c262aa5fb567f8a4524b87c9db9d2e875802eb04b68c189b6703331089d

  • SSDEEP

    196608:Y4A5G8dozifNTVPNccQ0baUytnZ0pppiDg/g6kWO5IcPPWF:Y4UG8Wz0vPTTFyt2b91Uk

Score
7/10
discovery

Malware Config

Targets

    • Target

      351338889baa1620cee36d05ae9e25230dfcd590091e16c957368c3465f42602

    • Size

      6.6MB

    • MD5

      5939088c8e431305b3ebbf019b72225f

    • SHA1

      a9f5c9e14480072de7820939697825d8bfe27002

    • SHA256

      351338889baa1620cee36d05ae9e25230dfcd590091e16c957368c3465f42602

    • SHA512

      c76e9a534ac7478e4ae2c58a048e6d7e4d2b19f12e2ca3010a6181981b716dabe5bc9c262aa5fb567f8a4524b87c9db9d2e875802eb04b68c189b6703331089d

    • SSDEEP

      196608:Y4A5G8dozifNTVPNccQ0baUytnZ0pppiDg/g6kWO5IcPPWF:Y4UG8Wz0vPTTFyt2b91Uk

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks