Overview

overview

7

Static

static

7

mcut-wd.exe

ubuntu-18.04-amd64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    mcut-wd.exe

  • Size

    1009KB

  • Sample

    240522-nv6e4sdh3v

  • MD5

    703394a9d440846e1a6d11cd2dce0f94

  • SHA1

    414a0335583dc15f853d115f057e912301809fd2

  • SHA256

    1bf0be20e23a9fac7d3f289262dcdb93f01229cc2a7bba27adccc122c6867ade

  • SHA512

    6ca1ee6fb113dbbb7e5e728e924a6dd84ebb23fd811053b420576b4d4296a233925c812f8b5d5776492b311fa0c265b862c401eabe0ccaae688713c02c4ce65b

  • SSDEEP

    24576:hFU527FUnEsWVFywiaesHXPEdoE54jYYl9e2W:E5trWVkwJ3+e8Yly

Score
7/10
antivmevasionlinuxupx

Malware Config

Targets

    • Target

      mcut-wd.exe

    • Size

      1009KB

    • MD5

      703394a9d440846e1a6d11cd2dce0f94

    • SHA1

      414a0335583dc15f853d115f057e912301809fd2

    • SHA256

      1bf0be20e23a9fac7d3f289262dcdb93f01229cc2a7bba27adccc122c6867ade

    • SHA512

      6ca1ee6fb113dbbb7e5e728e924a6dd84ebb23fd811053b420576b4d4296a233925c812f8b5d5776492b311fa0c265b862c401eabe0ccaae688713c02c4ce65b

    • SSDEEP

      24576:hFU527FUnEsWVFywiaesHXPEdoE54jYYl9e2W:E5trWVkwJ3+e8Yly

    Score
    6/10
    antivmevasion

    • Reads MAC address of network interface

      Fetches the MAC address of active network interfaces. May be used to detect known values for hypervisors.

      evasion
    behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

1
T1497

Credential Access

Discovery

System Network Configuration Discovery

1
T1016

System Network Connections Discovery

1
T1049

Virtualization/Sandbox Evasion

1
T1497

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks