Overview

overview

7

Static

static

3

SecuriteIn...36.exe

windows7-x64

7

SecuriteIn...36.exe

windows10-1703-x64

7

SecuriteIn...36.exe

windows10-2004-x64

7

SecuriteIn...36.exe

windows11-21h2-x64

7

Resubmissions

28-07-2024 17:32

240728-v397layfmg 7

28-07-2024 17:11

240728-vqcqkayakd 7

11-07-2024 10:44

240711-mstg4avhlf 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SecuriteInfo.com.Trojan-Dropper.Win64.Agentb.aa.4220.26436.exe

  • Size

    71.7MB

  • Sample

    240728-vqcqkayakd

  • MD5

    9e6ba754b50c865d54a69075a65620ae

  • SHA1

    03f37194ead49ac842139e4a1c108bfc7663e6d7

  • SHA256

    46e1f4257b5fbfbfbdcdb11eeafa0b91893385cf28972eb672ffc9fe906175ab

  • SHA512

    23ce5afccb68f8b19e33f71ffa15bc62ee74d456bea6362a9a18bed5222225ea668ff929a7bb4625801432b76b3f8fef0c29eff940b4ab81f3a3dd9889e43651

  • SSDEEP

    1572864:Sjdd8sMGv6fdWfu7QcQx4wFnrUY2asfgEdjrFQcIubVxqGZ6c7:O8sHSFiquBFwL9gujRQcFTL6c7

Score
7/10
discoveryexecution

Malware Config

Targets

    • Target

      SecuriteInfo.com.Trojan-Dropper.Win64.Agentb.aa.4220.26436.exe

    • Size

      71.7MB

    • MD5

      9e6ba754b50c865d54a69075a65620ae

    • SHA1

      03f37194ead49ac842139e4a1c108bfc7663e6d7

    • SHA256

      46e1f4257b5fbfbfbdcdb11eeafa0b91893385cf28972eb672ffc9fe906175ab

    • SHA512

      23ce5afccb68f8b19e33f71ffa15bc62ee74d456bea6362a9a18bed5222225ea668ff929a7bb4625801432b76b3f8fef0c29eff940b4ab81f3a3dd9889e43651

    • SSDEEP

      1572864:Sjdd8sMGv6fdWfu7QcQx4wFnrUY2asfgEdjrFQcIubVxqGZ6c7:O8sHSFiquBFwL9gujRQcFTL6c7

    Score
    7/10
    discoveryexecution

    • Executes dropped EXE

    • Loads dropped DLL

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks