General

  • Target

    5dfc7cbf2117359b92b8e2e1aaee9df4562602d2e3432b77c74cb7db7bdabdf1

  • Size

    547KB

  • Sample

    250702-xzkhwazxew

  • MD5

    c466cdb3c7f07cdd8f062dc9e2eca88b

  • SHA1

    c0102e3a4c68aa0f986c498a7c7fa6c097fc17cd

  • SHA256

    5dfc7cbf2117359b92b8e2e1aaee9df4562602d2e3432b77c74cb7db7bdabdf1

  • SHA512

    dca105c89aa36e6cc7f56f6927b08058ae80e3a023867e5c734cbeab54cbe4ed0298fbccf28ef6329037ba21c71160817a52c4341cfd84a0917ecfd16de47769

  • SSDEEP

    6144:xcTgav1cdCTuoPbgwmOLJvKRILSFvdFDcEOkCybEaQRXr9HNdvOaxy8KARG3:xSvO2x9mONvKRILSFnOkx2LIaxy6RY

Score
7/10

Malware Config

Targets

    • Target

      5dfc7cbf2117359b92b8e2e1aaee9df4562602d2e3432b77c74cb7db7bdabdf1

    • Size

      547KB

    • MD5

      c466cdb3c7f07cdd8f062dc9e2eca88b

    • SHA1

      c0102e3a4c68aa0f986c498a7c7fa6c097fc17cd

    • SHA256

      5dfc7cbf2117359b92b8e2e1aaee9df4562602d2e3432b77c74cb7db7bdabdf1

    • SHA512

      dca105c89aa36e6cc7f56f6927b08058ae80e3a023867e5c734cbeab54cbe4ed0298fbccf28ef6329037ba21c71160817a52c4341cfd84a0917ecfd16de47769

    • SSDEEP

      6144:xcTgav1cdCTuoPbgwmOLJvKRILSFvdFDcEOkCybEaQRXr9HNdvOaxy8KARG3:xSvO2x9mONvKRILSFnOkx2LIaxy6RY

    Score
    7/10
    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks