3f89e36ce77be3151eae0bfd137f7797a591950cf270165b5d5efcdacf4b763f | Triage

Sharing

General

Target

1e53b7ee69436ae0d4e4811f36c2c540N.exe
Size

97KB
Sample

240907-hr1ska1bnn
MD5

1e53b7ee69436ae0d4e4811f36c2c540
SHA1

24887e25edcb4703cd499b3a6f3993a005369208
SHA256

3f89e36ce77be3151eae0bfd137f7797a591950cf270165b5d5efcdacf4b763f
SHA512

81961daa2f54f8863c26b5ea7c5be38945c28fab0cc18c9d03682b6bcb3d419784460f72cae275fc21074429b83ce60e2ef5c5d1cc55555fd9759fb83954fe81
SSDEEP

1536:0MybiksPWaKVqY3k8qD3uFbzzO8C4Y9c+sJUZy/K/s9b84C6:ty+3WaKVGD3uFHC8C4jWiv

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  1e53b7ee69436ae0d4e4811f36c2c540N.exe
- Size
  
  97KB
- MD5
  
  1e53b7ee69436ae0d4e4811f36c2c540
- SHA1
  
  24887e25edcb4703cd499b3a6f3993a005369208
- SHA256
  
  3f89e36ce77be3151eae0bfd137f7797a591950cf270165b5d5efcdacf4b763f
- SHA512
  
  81961daa2f54f8863c26b5ea7c5be38945c28fab0cc18c9d03682b6bcb3d419784460f72cae275fc21074429b83ce60e2ef5c5d1cc55555fd9759fb83954fe81
- SSDEEP
  
  1536:0MybiksPWaKVqY3k8qD3uFbzzO8C4Y9c+sJUZy/K/s9b84C6:ty+3WaKVGD3uFHC8C4jWiv
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2