General

  • Target

    31dbf5779f4cdc294b5c8e2c999e2e5f8b00db02f56b0e64c16367986569aa26

  • Size

    512KB

  • Sample

    250702-x2eemszxg1

  • MD5

    936dc0e8cb6a39c43974573fce850146

  • SHA1

    741c87b165b51b3b24814febbaeaf194c88222f5

  • SHA256

    31dbf5779f4cdc294b5c8e2c999e2e5f8b00db02f56b0e64c16367986569aa26

  • SHA512

    027610e8733ab5a132d54dcdcfb478aad221d7baf0ed12ad4bdadf694139e93509689468162e4f9a069b4a10cc5b6aee50a1873a71e9622e596791f45f633434

  • SSDEEP

    6144:+l51orRJXlDixHkUXe35rGcEOkCybEaQRXr9HNdvOan5RvAjsjda/Liw:WqXUHkUXe39sOkx2LIan5FAQjU/Liw

Score
7/10

Malware Config

Targets

    • Target

      31dbf5779f4cdc294b5c8e2c999e2e5f8b00db02f56b0e64c16367986569aa26

    • Size

      512KB

    • MD5

      936dc0e8cb6a39c43974573fce850146

    • SHA1

      741c87b165b51b3b24814febbaeaf194c88222f5

    • SHA256

      31dbf5779f4cdc294b5c8e2c999e2e5f8b00db02f56b0e64c16367986569aa26

    • SHA512

      027610e8733ab5a132d54dcdcfb478aad221d7baf0ed12ad4bdadf694139e93509689468162e4f9a069b4a10cc5b6aee50a1873a71e9622e596791f45f633434

    • SSDEEP

      6144:+l51orRJXlDixHkUXe35rGcEOkCybEaQRXr9HNdvOan5RvAjsjda/Liw:WqXUHkUXe39sOkx2LIan5FAQjU/Liw

    Score
    7/10
    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v16

Tasks