b5d154a34c5fd98043e464b80ad5e137a688ab030e8fa01c3ca2f2fdc9bf7d59 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b5d154a34c5fd98043e464b80ad5e137a688ab030e8fa01c3ca2f2fdc9bf7d59
Size

182KB
Sample

240819-a4fzxsvblc
MD5

32bde2a8d8842eaa32d2ff5a1d46ff74
SHA1

67ef6440ca1fe4ee4a675975a6445e4f15d422f2
SHA256

b5d154a34c5fd98043e464b80ad5e137a688ab030e8fa01c3ca2f2fdc9bf7d59
SHA512

0b80cb83adc095032b259b7117f367f5ce7068a6cd182b116682169d8b72154224e1debcc44f89283f622c43675427adb103e2f08273cd71cbec30b82b8972ca
SSDEEP

3072:TfKPw/6Nb8ldtYpDzo83H6JrgboTlyMvXOqms0itTBf28Vn/:bKP9NCdt8zErgsTlXvXBmJitTBe8V/

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b5d154a34c5fd98043e464b80ad5e137a688ab030e8fa01c3ca2f2fdc9bf7d59
- Size
  
  182KB
- MD5
  
  32bde2a8d8842eaa32d2ff5a1d46ff74
- SHA1
  
  67ef6440ca1fe4ee4a675975a6445e4f15d422f2
- SHA256
  
  b5d154a34c5fd98043e464b80ad5e137a688ab030e8fa01c3ca2f2fdc9bf7d59
- SHA512
  
  0b80cb83adc095032b259b7117f367f5ce7068a6cd182b116682169d8b72154224e1debcc44f89283f622c43675427adb103e2f08273cd71cbec30b82b8972ca
- SSDEEP
  
  3072:TfKPw/6Nb8ldtYpDzo83H6JrgboTlyMvXOqms0itTBf28Vn/:bKP9NCdt8zErgsTlXvXBmJitTBe8V/
Score

7^/10

discovery
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2