General

  • Target

    funny.exe

  • Size

    79.2MB

  • Sample

    240607-cp3lgshb36

  • MD5

    b6cb07076d9be8d440134557f3ccd3b8

  • SHA1

    9952c594b090974254a17ae62eba4f8329bdfd9b

  • SHA256

    7f9828212fd796522ff4e0a61a7d917c812e0260f5058d79ba6aa7ba29999a29

  • SHA512

    aea51f39d64b9007d43100be2bcb8407a2428bef1617e25401b4640cf97ae6d291e0b786c2783f96ffa9f7c811d35bc82485b924a84c9c8741ca30fbd80fe728

  • SSDEEP

    1572864:w9XG+DVNXukNqzb9CLmSCU/+dyOsJI7GjxyVxUtMIDkDdWwFow8tYUlj5FEa:OddukNqLSC++dyddVtFWpo5j5C

Score
7/10

Malware Config

Targets

    • Target

      funny.exe

    • Size

      79.2MB

    • MD5

      b6cb07076d9be8d440134557f3ccd3b8

    • SHA1

      9952c594b090974254a17ae62eba4f8329bdfd9b

    • SHA256

      7f9828212fd796522ff4e0a61a7d917c812e0260f5058d79ba6aa7ba29999a29

    • SHA512

      aea51f39d64b9007d43100be2bcb8407a2428bef1617e25401b4640cf97ae6d291e0b786c2783f96ffa9f7c811d35bc82485b924a84c9c8741ca30fbd80fe728

    • SSDEEP

      1572864:w9XG+DVNXukNqzb9CLmSCU/+dyOsJI7GjxyVxUtMIDkDdWwFow8tYUlj5FEa:OddukNqLSC++dyddVtFWpo5j5C

    Score
    7/10
    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Target

      funny.pyc

    • Size

      3KB

    • MD5

      ff13c50e44ca354475fae748585c74a6

    • SHA1

      6eea2cb09d5574c7ce557cd5101bcf8ed990f2a9

    • SHA256

      141a1d3bd7b89c66d6937254d953928c4e4f2b8bae624c8dc5a63c7ceab2a2e8

    • SHA512

      634dfb978322511203ac82471307dce0eb57f2705853a4af2cbe0a13b8157c478b30e179981d63287edd51833acd2083a3f88c4c55c76985294eec0dd88a702d

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks