9380345b3b69aecefa4b6d820de93909df7e9e0b854a6b601af8af39fb64874e | Triage

Sharing

General

Target

06b48db6f2ed243889c97452369ff8b0N.exe
Size

70KB
Sample

240819-redlya1hlq
MD5

06b48db6f2ed243889c97452369ff8b0
SHA1

f679ebd93e8c5ac5ccdca4e8b0b25301d83d8a5a
SHA256

9380345b3b69aecefa4b6d820de93909df7e9e0b854a6b601af8af39fb64874e
SHA512

86d9d6aa2eda71f4c67cf001d937dbb2e79074940291a216b6bd90303d1f882be62a40272d31cc93b5ce0bbae39d346b45a05eab3f681736c5e3b0a924cf136a
SSDEEP

1536:0MsUX/UHdGsEWYrmPaU/YmDHMHpu6+PjDPyZknsw1apKBW:tTXEGvRrGjrsu6WPZsf

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  06b48db6f2ed243889c97452369ff8b0N.exe
- Size
  
  70KB
- MD5
  
  06b48db6f2ed243889c97452369ff8b0
- SHA1
  
  f679ebd93e8c5ac5ccdca4e8b0b25301d83d8a5a
- SHA256
  
  9380345b3b69aecefa4b6d820de93909df7e9e0b854a6b601af8af39fb64874e
- SHA512
  
  86d9d6aa2eda71f4c67cf001d937dbb2e79074940291a216b6bd90303d1f882be62a40272d31cc93b5ce0bbae39d346b45a05eab3f681736c5e3b0a924cf136a
- SSDEEP
  
  1536:0MsUX/UHdGsEWYrmPaU/YmDHMHpu6+PjDPyZknsw1apKBW:tTXEGvRrGjrsu6WPZsf
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2