General

  • Target

    6fdd58a7dda1852f5f8d4b7c6b5ed8a39d89f1e0036918d73fcec39bec4c4c56

  • Size

    448KB

  • Sample

    250702-x5y88agk2s

  • MD5

    b30c5d49c6d3f35f0542eaefba252034

  • SHA1

    c4c611f26a3149c56cd6a934c0bfca47629f6c44

  • SHA256

    6fdd58a7dda1852f5f8d4b7c6b5ed8a39d89f1e0036918d73fcec39bec4c4c56

  • SHA512

    cf7727fb4c5980585a68c0a81edca29d29917560d90bc69bcd88d31e6967e0979228471b1a70ba76eb22825b63db870ebeccce4a93b5118526565dfd64fbe005

  • SSDEEP

    6144:6cTgav1cdCTuoPbgwmOLJvKRILSFvdFDcEOkCybEaQRXr9HNdvOaxy8Kc5R+:6SvO2x9mONvKRILSFnOkx2LIaxya5E

Score
7/10

Malware Config

Targets

    • Target

      6fdd58a7dda1852f5f8d4b7c6b5ed8a39d89f1e0036918d73fcec39bec4c4c56

    • Size

      448KB

    • MD5

      b30c5d49c6d3f35f0542eaefba252034

    • SHA1

      c4c611f26a3149c56cd6a934c0bfca47629f6c44

    • SHA256

      6fdd58a7dda1852f5f8d4b7c6b5ed8a39d89f1e0036918d73fcec39bec4c4c56

    • SHA512

      cf7727fb4c5980585a68c0a81edca29d29917560d90bc69bcd88d31e6967e0979228471b1a70ba76eb22825b63db870ebeccce4a93b5118526565dfd64fbe005

    • SSDEEP

      6144:6cTgav1cdCTuoPbgwmOLJvKRILSFvdFDcEOkCybEaQRXr9HNdvOaxy8Kc5R+:6SvO2x9mONvKRILSFnOkx2LIaxya5E

    Score
    7/10
    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks