General

  • Target

    build.exe

  • Size

    7.0MB

  • Sample

    240628-3qnrtsycpr

  • MD5

    038b36ac8099edb4ec3cc5ba1a31cad3

  • SHA1

    a232abece623188a1a662c1194a461fab7a22e90

  • SHA256

    06d27e2612ef70af430695a7def5bb7df17a37e22c638b0222ce69aa9e705ab6

  • SHA512

    533c315219eb7bbaac9e557bbfa75bd2242b33581e397813689ecfcb5236cbd577bb7720eebdd2e564969149b799424d313079e8fc04bd4456c7fbe25f9a7723

  • SSDEEP

    196608:ysuC9pPL2V76+DXLZy7YM30LzajwrpuvJ:79xL2V76m70Gzajwr0

Score
7/10

Malware Config

Targets

    • Target

      build.exe

    • Size

      7.0MB

    • MD5

      038b36ac8099edb4ec3cc5ba1a31cad3

    • SHA1

      a232abece623188a1a662c1194a461fab7a22e90

    • SHA256

      06d27e2612ef70af430695a7def5bb7df17a37e22c638b0222ce69aa9e705ab6

    • SHA512

      533c315219eb7bbaac9e557bbfa75bd2242b33581e397813689ecfcb5236cbd577bb7720eebdd2e564969149b799424d313079e8fc04bd4456c7fbe25f9a7723

    • SSDEEP

      196608:ysuC9pPL2V76+DXLZy7YM30LzajwrpuvJ:79xL2V76m70Gzajwr0

    Score
    7/10
    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks