Overview

overview

7

Static

static

5

394b6250be...1e.exe

windows7-x64

7

394b6250be...1e.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    394b6250bed230a694dd6476d54a43518f34861a0b72bad7e97683fbd2b5531e

  • Size

    3.2MB

  • Sample

    240925-p38qwawelr

  • MD5

    da2dcec29fec43a538f77313f10d967e

  • SHA1

    0dbcd0dbc7877ed53c7d8e26d103267384d26b34

  • SHA256

    394b6250bed230a694dd6476d54a43518f34861a0b72bad7e97683fbd2b5531e

  • SHA512

    8e09adcd1397cbc41c9e57e6922406164dcfc7a5fa72e8c88059a36b92d5201d644d401699a11d7c727f66f6aa8e07a238b10274676beefbfe623e4b882a8b9f

  • SSDEEP

    24576:ajHPOSOkx2LFjltee8AcUQPxuZ98Es8k3OH3C0rQ6+8pKJJFo3Q+qdCOKIbAn:aTGkQlR5QZuTtS0rQMYOQ+q8CEn

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      394b6250bed230a694dd6476d54a43518f34861a0b72bad7e97683fbd2b5531e

    • Size

      3.2MB

    • MD5

      da2dcec29fec43a538f77313f10d967e

    • SHA1

      0dbcd0dbc7877ed53c7d8e26d103267384d26b34

    • SHA256

      394b6250bed230a694dd6476d54a43518f34861a0b72bad7e97683fbd2b5531e

    • SHA512

      8e09adcd1397cbc41c9e57e6922406164dcfc7a5fa72e8c88059a36b92d5201d644d401699a11d7c727f66f6aa8e07a238b10274676beefbfe623e4b882a8b9f

    • SSDEEP

      24576:ajHPOSOkx2LFjltee8AcUQPxuZ98Es8k3OH3C0rQ6+8pKJJFo3Q+qdCOKIbAn:aTGkQlR5QZuTtS0rQMYOQ+q8CEn

    Score
    7/10
    discoveryupx

    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks