General

  • Target

    f4fb2c3873e2fce3b38217a5b8ed1eb20fc9f5dbb6dc5de0b148edd648bd3ff3

  • Size

    768KB

  • Sample

    250702-xzpslazxez

  • MD5

    0e8e48c0a10217cc4a33b77f4c8b50ed

  • SHA1

    b38e44dd6fcf57a96874fbb69d2cb2a88badaf41

  • SHA256

    f4fb2c3873e2fce3b38217a5b8ed1eb20fc9f5dbb6dc5de0b148edd648bd3ff3

  • SHA512

    d3552f2cdd5122ef71fe593b60cc7fe8b38d1ef95d93c99258b3ab1fa4c690fafe15469c4f0c0602a9eac8069e560a085319a4973c685a25064fd8da50f333b6

  • SSDEEP

    12288:kqXUHkUXe39sOkx2LIan5FAQjU/Lik8CQ3uEuZ9oawhtyybA:kjHPOSOkx2LFscUQPxuZ98c

Score
7/10

Malware Config

Targets

    • Target

      f4fb2c3873e2fce3b38217a5b8ed1eb20fc9f5dbb6dc5de0b148edd648bd3ff3

    • Size

      768KB

    • MD5

      0e8e48c0a10217cc4a33b77f4c8b50ed

    • SHA1

      b38e44dd6fcf57a96874fbb69d2cb2a88badaf41

    • SHA256

      f4fb2c3873e2fce3b38217a5b8ed1eb20fc9f5dbb6dc5de0b148edd648bd3ff3

    • SHA512

      d3552f2cdd5122ef71fe593b60cc7fe8b38d1ef95d93c99258b3ab1fa4c690fafe15469c4f0c0602a9eac8069e560a085319a4973c685a25064fd8da50f333b6

    • SSDEEP

      12288:kqXUHkUXe39sOkx2LIan5FAQjU/Lik8CQ3uEuZ9oawhtyybA:kjHPOSOkx2LFscUQPxuZ98c

    Score
    7/10
    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v16

Tasks