General

  • Target

    cf083e73f3c06bb9a97f9192d1cd987ccd6975c6c9f1cd662401633b9350f3c5

  • Size

    2.6MB

  • Sample

    250702-x2dhcazxgx

  • MD5

    d8b37bff7c67a4cc2eaeeffbda445d32

  • SHA1

    8929f3d406d4fd9a7b9b5a50fdf9cfbcff79d2d3

  • SHA256

    cf083e73f3c06bb9a97f9192d1cd987ccd6975c6c9f1cd662401633b9350f3c5

  • SHA512

    33b0e56c671d1eca7ff4d77b5943ab9a4166e88b2dab345463e320c1d49a8a2f914f620b96afc1bbacb10a6250d52f6851278e310548e304c8c0f85eec042d7d

  • SSDEEP

    49152:VHHKO2FQd1oOU82lPJ6PsfsCWFn5+ovhnFvTGkQd5QZuTtS0rQv:VnKl2qOb2lP8ssYoJxKkyWsM0rM

Score
7/10

Malware Config

Targets

    • Target

      cf083e73f3c06bb9a97f9192d1cd987ccd6975c6c9f1cd662401633b9350f3c5

    • Size

      2.6MB

    • MD5

      d8b37bff7c67a4cc2eaeeffbda445d32

    • SHA1

      8929f3d406d4fd9a7b9b5a50fdf9cfbcff79d2d3

    • SHA256

      cf083e73f3c06bb9a97f9192d1cd987ccd6975c6c9f1cd662401633b9350f3c5

    • SHA512

      33b0e56c671d1eca7ff4d77b5943ab9a4166e88b2dab345463e320c1d49a8a2f914f620b96afc1bbacb10a6250d52f6851278e310548e304c8c0f85eec042d7d

    • SSDEEP

      49152:VHHKO2FQd1oOU82lPJ6PsfsCWFn5+ovhnFvTGkQd5QZuTtS0rQv:VnKl2qOb2lP8ssYoJxKkyWsM0rM

    Score
    7/10
    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks