General

  • Target

    a003290e8f10b0bcafea79297ae6aaaeed17f29feae5e1bf51fbcd7149a391a4

  • Size

    512KB

  • Sample

    250702-x12hsagj4v

  • MD5

    5fcfd39960465c26463287d0cf02537c

  • SHA1

    a1c2541662f4d1e8418cd2791273edcea8555894

  • SHA256

    a003290e8f10b0bcafea79297ae6aaaeed17f29feae5e1bf51fbcd7149a391a4

  • SHA512

    0f7a2ff35cc7526db64304ed90829f57d3a982143abefa40be568aaa528852c41e326a45633357b566f05d693138b26deadeb1c24427286b8cc35138663803b3

  • SSDEEP

    6144:+l51orRJXlDixHkUXe35rGcEOkCybEaQRXr9HNdvOan5RvAjsjda/Liw:WqXUHkUXe39sOkx2LIan5FAQjU/Liw

Score
7/10

Malware Config

Targets

    • Target

      a003290e8f10b0bcafea79297ae6aaaeed17f29feae5e1bf51fbcd7149a391a4

    • Size

      512KB

    • MD5

      5fcfd39960465c26463287d0cf02537c

    • SHA1

      a1c2541662f4d1e8418cd2791273edcea8555894

    • SHA256

      a003290e8f10b0bcafea79297ae6aaaeed17f29feae5e1bf51fbcd7149a391a4

    • SHA512

      0f7a2ff35cc7526db64304ed90829f57d3a982143abefa40be568aaa528852c41e326a45633357b566f05d693138b26deadeb1c24427286b8cc35138663803b3

    • SSDEEP

      6144:+l51orRJXlDixHkUXe35rGcEOkCybEaQRXr9HNdvOan5RvAjsjda/Liw:WqXUHkUXe39sOkx2LIan5FAQjU/Liw

    Score
    7/10
    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v16

Tasks