e7673c880ee230d32c67ff76b859699b3045c4c242d24010279022186d98be63 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

External_IP_Check.exe
Size

18KB
Sample

241001-3dp45azcmf
MD5

27806a2932f40a546e7e9d63271743a3
SHA1

47b777ca12e1f577772f8f1b01b5e387419cb57e
SHA256

e7673c880ee230d32c67ff76b859699b3045c4c242d24010279022186d98be63
SHA512

731d5f4376d8bf0b8d6148398e69b4eadb31504d045097d855979dedb486ffb3de1f7e1dfb9eaf52a0c5aa7ea9d70154592acbd4f089ed70b7f3976a931243c9
SSDEEP

384:yipKLFCFEugwrekebPQm+jS0g/U1g7aPGde22w:mYPIbPCg/N7dde2h

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  External_IP_Check.exe
- Size
  
  18KB
- MD5
  
  27806a2932f40a546e7e9d63271743a3
- SHA1
  
  47b777ca12e1f577772f8f1b01b5e387419cb57e
- SHA256
  
  e7673c880ee230d32c67ff76b859699b3045c4c242d24010279022186d98be63
- SHA512
  
  731d5f4376d8bf0b8d6148398e69b4eadb31504d045097d855979dedb486ffb3de1f7e1dfb9eaf52a0c5aa7ea9d70154592acbd4f089ed70b7f3976a931243c9
- SSDEEP
  
  384:yipKLFCFEugwrekebPQm+jS0g/U1g7aPGde22w:mYPIbPCg/N7dde2h
Score

6^/10

discovery
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2