General

  • Target

    a15cc0b9dd9645c5a253f301981088b716a83d484235e269a97b4a7e58c87366

  • Size

    448KB

  • Sample

    250702-xzlqya1ky5

  • MD5

    acb1d8fd5a1d6c939cbd03798fba8f38

  • SHA1

    eedeb7adc62d4e8e4827930b9f6a68cd24f397cd

  • SHA256

    a15cc0b9dd9645c5a253f301981088b716a83d484235e269a97b4a7e58c87366

  • SHA512

    8bc3bfb6100043a061e7729c588f8d7f645e57e51dcc128c1256974cdc6c431ad17cd42f1c80216d7f0c89407a7b50d5870339d1a6e30da436c50607dae6e9c9

  • SSDEEP

    6144:+cTgav1cdCTuoPbgwmOLJvKRILSFvdFDcEOkCybEaQRXr9HNdvOaxy8Kc5R+:+SvO2x9mONvKRILSFnOkx2LIaxya5E

Score
7/10

Malware Config

Targets

    • Target

      a15cc0b9dd9645c5a253f301981088b716a83d484235e269a97b4a7e58c87366

    • Size

      448KB

    • MD5

      acb1d8fd5a1d6c939cbd03798fba8f38

    • SHA1

      eedeb7adc62d4e8e4827930b9f6a68cd24f397cd

    • SHA256

      a15cc0b9dd9645c5a253f301981088b716a83d484235e269a97b4a7e58c87366

    • SHA512

      8bc3bfb6100043a061e7729c588f8d7f645e57e51dcc128c1256974cdc6c431ad17cd42f1c80216d7f0c89407a7b50d5870339d1a6e30da436c50607dae6e9c9

    • SSDEEP

      6144:+cTgav1cdCTuoPbgwmOLJvKRILSFvdFDcEOkCybEaQRXr9HNdvOaxy8Kc5R+:+SvO2x9mONvKRILSFnOkx2LIaxya5E

    Score
    7/10
    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks