General

  • Target

    a7d725465df5efb048c844f1a198a0e9ff0a3df7c2da143a685193d9dc160e31

  • Size

    704KB

  • Sample

    250702-x2cwtazxgv

  • MD5

    9b2547b983a1311d28ba7a4cd6251cc4

  • SHA1

    5e62fb43ab2d6f218d1d06dce7a95ec1959ab145

  • SHA256

    a7d725465df5efb048c844f1a198a0e9ff0a3df7c2da143a685193d9dc160e31

  • SHA512

    75a1ea8b77cff7acd35d99657be1ab2d7da0dcfd2a6e00b66a57e685d65d56c87d5b6c9e63d952aaf79eb0807586dcf9f8eb6e131a6d2dc882e6c1d02737868d

  • SSDEEP

    12288:pSvO2x9mONvKRILSFnOkx2LIaxy6RJ05r:QvO2xJKRI2FOkx2LFEF

Score
7/10

Malware Config

Targets

    • Target

      a7d725465df5efb048c844f1a198a0e9ff0a3df7c2da143a685193d9dc160e31

    • Size

      704KB

    • MD5

      9b2547b983a1311d28ba7a4cd6251cc4

    • SHA1

      5e62fb43ab2d6f218d1d06dce7a95ec1959ab145

    • SHA256

      a7d725465df5efb048c844f1a198a0e9ff0a3df7c2da143a685193d9dc160e31

    • SHA512

      75a1ea8b77cff7acd35d99657be1ab2d7da0dcfd2a6e00b66a57e685d65d56c87d5b6c9e63d952aaf79eb0807586dcf9f8eb6e131a6d2dc882e6c1d02737868d

    • SSDEEP

      12288:pSvO2x9mONvKRILSFnOkx2LIaxy6RJ05r:QvO2xJKRI2FOkx2LFEF

    Score
    7/10
    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks