Resubmissions

02/07/2025, 19:24

250702-x4tx4szya1 7

02/07/2025, 19:14

250702-xxlyxsgj2y 7

General

  • Target

    setup.exe

  • Size

    63.5MB

  • Sample

    250702-xxlyxsgj2y

  • MD5

    7bf037d31749fc9b2e41571373cf25cf

  • SHA1

    5f31c217f542a89418c40775f4fa2d9870dbbf5a

  • SHA256

    b6df770317720457bc7626e38bb55a74c85e30b28c0b85182dbac5662b1e9756

  • SHA512

    5c57ebc9849161ecf641eac6e3cef19f42aad502fe5ccb5483ec4c37e6bb00ff62286a63c3449ae89257dc1baaea79d21fd601b1ba141c41171ae1265e9bcbee

  • SSDEEP

    1572864:FPas/X2heCbfVd1AEJ5Rh1+BDDy4gds8KN2YCvoec38+oFFpR:5PCDVd1AY5bADDxgds8Jge/

Malware Config

Targets

    • Target

      setup.exe

    • Size

      63.5MB

    • MD5

      7bf037d31749fc9b2e41571373cf25cf

    • SHA1

      5f31c217f542a89418c40775f4fa2d9870dbbf5a

    • SHA256

      b6df770317720457bc7626e38bb55a74c85e30b28c0b85182dbac5662b1e9756

    • SHA512

      5c57ebc9849161ecf641eac6e3cef19f42aad502fe5ccb5483ec4c37e6bb00ff62286a63c3449ae89257dc1baaea79d21fd601b1ba141c41171ae1265e9bcbee

    • SSDEEP

      1572864:FPas/X2heCbfVd1AEJ5Rh1+BDDy4gds8KN2YCvoec38+oFFpR:5PCDVd1AY5bADDxgds8Jge/

    Score
    7/10
    • Loads dropped DLL

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v16

Tasks