General

  • Target

    i686

  • Size

    41KB

  • Sample

    240606-sn5mfsgg89

  • MD5

    9e32f5d28e59415c8476b46faf5b6858

  • SHA1

    da0fdb1d33551867b430107ea982dfd4166aff5d

  • SHA256

    18e239f03fb2bc48d50442e21fbfcb4762fb51eb7accca1b5595dc4588547ad4

  • SHA512

    dcb1b90292a43dec3a30825bbcbbee7c7093770c08cf0e358efbfc991cc16be48f157751e17108cd277cca6a56ba3c9f80d304ebb330661c62f66bcef9fb16eb

  • SSDEEP

    768:WSxrgSVRwq7rAmEApk6Q3rOq8WWh9t+OHVzF/9f5XkGnMeE1pAds:/KSVSq7JEApk6QSvt9EiD9Zpnt2n

Score
9/10

Malware Config

Targets

    • Target

      i686

    • Size

      41KB

    • MD5

      9e32f5d28e59415c8476b46faf5b6858

    • SHA1

      da0fdb1d33551867b430107ea982dfd4166aff5d

    • SHA256

      18e239f03fb2bc48d50442e21fbfcb4762fb51eb7accca1b5595dc4588547ad4

    • SHA512

      dcb1b90292a43dec3a30825bbcbbee7c7093770c08cf0e358efbfc991cc16be48f157751e17108cd277cca6a56ba3c9f80d304ebb330661c62f66bcef9fb16eb

    • SSDEEP

      768:WSxrgSVRwq7rAmEApk6Q3rOq8WWh9t+OHVzF/9f5XkGnMeE1pAds:/KSVSq7JEApk6QSvt9EiD9Zpnt2n

    Score
    9/10
    • Contacts a large (286398) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

MITRE ATT&CK Enterprise v15

Tasks