General

  • Target

    1ff4412c0fa73fd89adbea864b03ecc7f141376ddbbf93b64068a520b6495422

  • Size

    871KB

  • Sample

    250702-x17d2azxgs

  • MD5

    3e1ac04015a07087af204decc28d5cc9

  • SHA1

    af94f52eb8b682688af7516597e373868dd90a08

  • SHA256

    1ff4412c0fa73fd89adbea864b03ecc7f141376ddbbf93b64068a520b6495422

  • SHA512

    89e3e9629b332ce9e18d838d2a25f1cefa9e87c620d65e1f4e81a55ce9405480c85edfae9ae3e544be682376949537fbbee11d893b26e269bf3069fc8a2b582a

  • SSDEEP

    12288:sSvO2x9mONvKRILSFnOkx2LIaxya5FAQjU/Lik8CQ3uEuZ9oawhtyybA:fvO2xJKRI2FOkx2LFEvcUQPxuZ98c

Score
7/10

Malware Config

Targets

    • Target

      1ff4412c0fa73fd89adbea864b03ecc7f141376ddbbf93b64068a520b6495422

    • Size

      871KB

    • MD5

      3e1ac04015a07087af204decc28d5cc9

    • SHA1

      af94f52eb8b682688af7516597e373868dd90a08

    • SHA256

      1ff4412c0fa73fd89adbea864b03ecc7f141376ddbbf93b64068a520b6495422

    • SHA512

      89e3e9629b332ce9e18d838d2a25f1cefa9e87c620d65e1f4e81a55ce9405480c85edfae9ae3e544be682376949537fbbee11d893b26e269bf3069fc8a2b582a

    • SSDEEP

      12288:sSvO2x9mONvKRILSFnOkx2LIaxya5FAQjU/Lik8CQ3uEuZ9oawhtyybA:fvO2xJKRI2FOkx2LFEvcUQPxuZ98c

    Score
    7/10
    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks