General

  • Target

    a5a2d02fb4202caad0fc7d5a3f06fbc2ef337c17445f6c6a863e5bd81a2a2adc

  • Size

    384KB

  • Sample

    250702-xzmm8szxey

  • MD5

    db2a9951e44b2d9d1891da211aaa950e

  • SHA1

    609816892417a25b4a69e37d00ed51fdce053690

  • SHA256

    a5a2d02fb4202caad0fc7d5a3f06fbc2ef337c17445f6c6a863e5bd81a2a2adc

  • SHA512

    93ffbe94c976254be03987c7c63e75185e92f7fe27aca5453dc06dc0aab2c3e0d4207cc8e67a80f539be36da081c5060a35950c4873d325879dd5628b1f4a1c5

  • SSDEEP

    6144:XcTgav1cdCTuoPbgwmOLJvKRILSFvdFDcEOkCybEaQRXr9HNdvOaxy8Kl:XSvO2x9mONvKRILSFnOkx2LIaxy/

Score
7/10

Malware Config

Targets

    • Target

      a5a2d02fb4202caad0fc7d5a3f06fbc2ef337c17445f6c6a863e5bd81a2a2adc

    • Size

      384KB

    • MD5

      db2a9951e44b2d9d1891da211aaa950e

    • SHA1

      609816892417a25b4a69e37d00ed51fdce053690

    • SHA256

      a5a2d02fb4202caad0fc7d5a3f06fbc2ef337c17445f6c6a863e5bd81a2a2adc

    • SHA512

      93ffbe94c976254be03987c7c63e75185e92f7fe27aca5453dc06dc0aab2c3e0d4207cc8e67a80f539be36da081c5060a35950c4873d325879dd5628b1f4a1c5

    • SSDEEP

      6144:XcTgav1cdCTuoPbgwmOLJvKRILSFvdFDcEOkCybEaQRXr9HNdvOaxy8Kl:XSvO2x9mONvKRILSFnOkx2LIaxy/

    Score
    7/10
    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks