610622aa5921b183e00f499414c68cfd48bef0ed48b69ab8cb296922725be733 | Triage

Sharing

General

Target

cc013a3392e4442214c76d0615491520N
Size

88KB
Sample

240912-dh8dtsxhnq
MD5

cc013a3392e4442214c76d0615491520
SHA1

c993633f59150d534ccee414a49bb9a7462b715f
SHA256

610622aa5921b183e00f499414c68cfd48bef0ed48b69ab8cb296922725be733
SHA512

433740e1b019bf01f775abe334cbbca2d38a41452e0e156a1003dc75577548750fc40f686dc5f258399dc509d5ac837741d4e97d6775d551435789f22c9f2a83
SSDEEP

1536:GdWvtNFN+F+EchVsM/Vycyq1h6MtVYTjipvF2wI/KR11JdNqNY4X9D6:IW1NWcyq1hnbYvQd26xU/m

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  cc013a3392e4442214c76d0615491520N
- Size
  
  88KB
- MD5
  
  cc013a3392e4442214c76d0615491520
- SHA1
  
  c993633f59150d534ccee414a49bb9a7462b715f
- SHA256
  
  610622aa5921b183e00f499414c68cfd48bef0ed48b69ab8cb296922725be733
- SHA512
  
  433740e1b019bf01f775abe334cbbca2d38a41452e0e156a1003dc75577548750fc40f686dc5f258399dc509d5ac837741d4e97d6775d551435789f22c9f2a83
- SSDEEP
  
  1536:GdWvtNFN+F+EchVsM/Vycyq1h6MtVYTjipvF2wI/KR11JdNqNY4X9D6:IW1NWcyq1hnbYvQd26xU/m
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2