Overview

overview

7

Static

static

3

1e7c478f3a...9d.exe

windows7-x64

7

1e7c478f3a...9d.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    1e7c478f3a26addf78fed6d77dd4759d

  • Size

    37KB

  • Sample

    231225-a9qrbafdb8

  • MD5

    1e7c478f3a26addf78fed6d77dd4759d

  • SHA1

    8543aaa1257c0af30bd797ee324018fafe2809f1

  • SHA256

    48dd895fb56fb5f4d5732b7c5ffa847a5339c6e0e832e24d6fd564b2cddb230c

  • SHA512

    3cbbefcc2b07ca3df006413a00c7530e5572aff88a21b719d30c0458d4966ee267cfd801f9f6c0b2d185fcb78d41076a6bd03bdf18ca2cd4f121c65dbe30b588

  • SSDEEP

    768:edIZ/alwuAknNWuCMQpb0ruFm1YqTrmHwbLyMyC:edILlknNU4rOobbLynC

Score
7/10

Malware Config

Targets

    • Target

      1e7c478f3a26addf78fed6d77dd4759d

    • Size

      37KB

    • MD5

      1e7c478f3a26addf78fed6d77dd4759d

    • SHA1

      8543aaa1257c0af30bd797ee324018fafe2809f1

    • SHA256

      48dd895fb56fb5f4d5732b7c5ffa847a5339c6e0e832e24d6fd564b2cddb230c

    • SHA512

      3cbbefcc2b07ca3df006413a00c7530e5572aff88a21b719d30c0458d4966ee267cfd801f9f6c0b2d185fcb78d41076a6bd03bdf18ca2cd4f121c65dbe30b588

    • SSDEEP

      768:edIZ/alwuAknNWuCMQpb0ruFm1YqTrmHwbLyMyC:edILlknNU4rOobbLynC

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks