General

  • Target

    8dcb4f59d41dc9cf02372dc12d92a716f4578823941ba816cbe8e5b7b4277e79

  • Size

    4.0MB

  • Sample

    250702-xzj74szxev

  • MD5

    19b9903f08267d4402a2f317faa9def1

  • SHA1

    e0dbff21921f2c791dcb4f36bb7bec49f0337233

  • SHA256

    8dcb4f59d41dc9cf02372dc12d92a716f4578823941ba816cbe8e5b7b4277e79

  • SHA512

    4e6369646d45aaa540dc4a286152f1213a6345470215ee2cb13fafd2902053cf0541c0806715e18b699fe04612d61afb8f49ecc537fbb24033bf8d1e0d87e333

  • SSDEEP

    98304:HnKl2qOb2lP8ssYoJxKkyWsM0r1QnfKHV0Fe7:HCNDtojKL2Kqo7

Score
7/10

Malware Config

Targets

    • Target

      8dcb4f59d41dc9cf02372dc12d92a716f4578823941ba816cbe8e5b7b4277e79

    • Size

      4.0MB

    • MD5

      19b9903f08267d4402a2f317faa9def1

    • SHA1

      e0dbff21921f2c791dcb4f36bb7bec49f0337233

    • SHA256

      8dcb4f59d41dc9cf02372dc12d92a716f4578823941ba816cbe8e5b7b4277e79

    • SHA512

      4e6369646d45aaa540dc4a286152f1213a6345470215ee2cb13fafd2902053cf0541c0806715e18b699fe04612d61afb8f49ecc537fbb24033bf8d1e0d87e333

    • SSDEEP

      98304:HnKl2qOb2lP8ssYoJxKkyWsM0r1QnfKHV0Fe7:HCNDtojKL2Kqo7

    Score
    7/10
    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks