General

  • Target

    24d2b492cfa12b3ee613410acc967676611715d806f2ab903aef8fae6095935d

  • Size

    768KB

  • Sample

    250702-x2g6jagj5s

  • MD5

    3cacbdbb369d28aba3cad883f8038caf

  • SHA1

    d7def26372e8bdd0dab6ff1a1a41fcda0b8b63d5

  • SHA256

    24d2b492cfa12b3ee613410acc967676611715d806f2ab903aef8fae6095935d

  • SHA512

    fc8c843fc0a22b40bc956705747676fe0ffcc2a73a668d680db269d895299d16d605e9a36d61a48cf4bba95f4db4c625649195e3a715f3a3d02f9382f00828b2

  • SSDEEP

    12288:2qXUHkUXe39sOkx2LIan5FAQjU/Lik8CQ3uEuZ9oawhtyybA:2jHPOSOkx2LFscUQPxuZ98c

Score
7/10

Malware Config

Targets

    • Target

      24d2b492cfa12b3ee613410acc967676611715d806f2ab903aef8fae6095935d

    • Size

      768KB

    • MD5

      3cacbdbb369d28aba3cad883f8038caf

    • SHA1

      d7def26372e8bdd0dab6ff1a1a41fcda0b8b63d5

    • SHA256

      24d2b492cfa12b3ee613410acc967676611715d806f2ab903aef8fae6095935d

    • SHA512

      fc8c843fc0a22b40bc956705747676fe0ffcc2a73a668d680db269d895299d16d605e9a36d61a48cf4bba95f4db4c625649195e3a715f3a3d02f9382f00828b2

    • SSDEEP

      12288:2qXUHkUXe39sOkx2LIan5FAQjU/Lik8CQ3uEuZ9oawhtyybA:2jHPOSOkx2LFscUQPxuZ98c

    Score
    7/10
    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v16

Tasks