Resubmissions

17-06-2024 13:15

240617-qhd67swfnq 1

17-06-2024 13:08

240617-qc774awekl 1

16-06-2024 16:06

240616-tj8nzstenm 1

16-06-2024 15:43

240616-s5yv8syfpg 6

General

  • Target

  • Size

    63B

  • Sample

    240616-s5yv8syfpg

  • MD5

    e2ddd6255938ecbfa936089f3c10bf8e

  • SHA1

    7fa7561ddac8accc6c8518dcd35717d07d5e14d1

  • SHA256

    816b3695c85a99b291e7e687ce62139191815af187cdd116a0c80f2b3c1a4ea8

  • SHA512

    613b38d008c3c91ac1df72d1c9e4f6f333667ed4cd56c38e92e3faf77d27584c85bb818a02ebf71f8015157157e04d30b0af01b4397d585b9f9c882ef7d5bbe2

Score
6/10

Malware Config

Targets

    • Target

    • Size

      63B

    • MD5

      e2ddd6255938ecbfa936089f3c10bf8e

    • SHA1

      7fa7561ddac8accc6c8518dcd35717d07d5e14d1

    • SHA256

      816b3695c85a99b291e7e687ce62139191815af187cdd116a0c80f2b3c1a4ea8

    • SHA512

      613b38d008c3c91ac1df72d1c9e4f6f333667ed4cd56c38e92e3faf77d27584c85bb818a02ebf71f8015157157e04d30b0af01b4397d585b9f9c882ef7d5bbe2

    Score
    6/10
    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Detected potential entity reuse from brand microsoft.

MITRE ATT&CK Matrix ATT&CK v13

Discovery

Query Registry

2
T1012

System Information Discovery

1
T1082

Tasks