Overview

overview

7

Static

static

3

HexaPort.dll

windows7-x64

5

HexaPort.dll

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    HexaPort.dll.exe

  • Size

    514KB

  • Sample

    241210-bvnh3stmcj

  • MD5

    2386ff4241e16fcca5481606a1424bf7

  • SHA1

    f1d299336aac1a1314b36064ffa9ae12ebdb3e4c

  • SHA256

    a9f2c4bc268765fc6d72d8e00363d2440cf1dcbd1ef7ee08978959fc118922c9

  • SHA512

    5d31aec494217835d8da4c8b3b3a85c8aea148fa484ab2b348546154470aa96d64a205d4aa3909cc337b791a7daa2daea76a0c5b00660daef818e7883e078cdc

  • SSDEEP

    12288:+lCodWFCE5bMQSuXYKwJCGZsv7y+eU6u:+lCodWFCwb/HwJh8HOu

Score
7/10

Malware Config

Targets

    • Target

      HexaPort.dll.exe

    • Size

      514KB

    • MD5

      2386ff4241e16fcca5481606a1424bf7

    • SHA1

      f1d299336aac1a1314b36064ffa9ae12ebdb3e4c

    • SHA256

      a9f2c4bc268765fc6d72d8e00363d2440cf1dcbd1ef7ee08978959fc118922c9

    • SHA512

      5d31aec494217835d8da4c8b3b3a85c8aea148fa484ab2b348546154470aa96d64a205d4aa3909cc337b791a7daa2daea76a0c5b00660daef818e7883e078cdc

    • SSDEEP

      12288:+lCodWFCE5bMQSuXYKwJCGZsv7y+eU6u:+lCodWFCwb/HwJh8HOu

    Score
    7/10

    • Deletes itself

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks