General

  • Target

    AORadar.exe

  • Size

    70.8MB

  • Sample

    231231-2gqdmahhg2

  • MD5

    66e499e66e2a896cc03546d776366747

  • SHA1

    ed7d7ffb4dfe350d2e46d7d58ec99e2f6ca7d637

  • SHA256

    0d3c3a7459799a9670b7b97c2e871a7364f0a742d825a8cc7ca6d34c4b3c0a51

  • SHA512

    c05ea551fc359c1272d72bc5f4ade50b823b9bc054c57ab33c073472df3d49f8d80a2979570641098115b2bee5864df18760798f38d241e71035e932a38ec3c5

  • SSDEEP

    1572864:o4/4rzOchPwHjwPORgkQVkh8w61pdvQNU4wYA2Yb7:LkqcdwDZ2PkGwazxpD2Yb7

Score
7/10

Malware Config

Targets

    • Target

      AORadar.exe

    • Size

      70.8MB

    • MD5

      66e499e66e2a896cc03546d776366747

    • SHA1

      ed7d7ffb4dfe350d2e46d7d58ec99e2f6ca7d637

    • SHA256

      0d3c3a7459799a9670b7b97c2e871a7364f0a742d825a8cc7ca6d34c4b3c0a51

    • SHA512

      c05ea551fc359c1272d72bc5f4ade50b823b9bc054c57ab33c073472df3d49f8d80a2979570641098115b2bee5864df18760798f38d241e71035e932a38ec3c5

    • SSDEEP

      1572864:o4/4rzOchPwHjwPORgkQVkh8w61pdvQNU4wYA2Yb7:LkqcdwDZ2PkGwazxpD2Yb7

    Score
    7/10
    • Loads dropped DLL

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks