General

  • Target

    Test.zip

  • Size

    5.0MB

  • Sample

    250703-gp615avnv8

  • MD5

    09c4328ef84098946701f76130bb355d

  • SHA1

    2a27c40f002ab32c25d5f65463ad351baef2c69b

  • SHA256

    4f45c351a81537efdfbaaccca4d945240d5d874bd24aa4a2b6a6448a6dc420a1

  • SHA512

    ee8a6e8428b0ca59b98dbff5d009b7e01046542185fd73a6dc621175690571a77877f3a24168da8bb2af641bdba75960df35e2cc593fee13dee43049c66da890

  • SSDEEP

    98304:zUNQZzmlOXd1tx0Yd3RkBWk/wXyCZy3hoGVQIm8egN3S7UJ/2/3W2ysuhD6Z/bAP:zGWzmEXjtbmWkk8h1myJ+u7h+M

Score
6/10

Malware Config

Targets

    • Target

      Test/Runs.exe

    • Size

      7.9MB

    • MD5

      c3eb00a139c6d43a923b462d37c7053d

    • SHA1

      19a9a9f8dc4cd9732eda13844407288e750018b6

    • SHA256

      083d78037c1b58ed7121905094728e8f62f3cd315cf848a41abe523c6a4cce15

    • SHA512

      0906884ba934521bfca3d616431a37b5fd4c415ea1c07fb03183433c1e796d769134ccda81290e407a9cbf4accd94729cd2fa40506c82554e97374bf1a03983a

    • SSDEEP

      98304:71F8cGm/E93/60qE8ISrYN6fjwhzulnAd822GaYHc6w6:7XGmU/6u8ISM6UKnAdsMHvl

    Score
    6/10
    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Obfuscated Files or Information: Command Obfuscation

      Adversaries may obfuscate content during command execution to impede detection.

    • Target

      Test/dbghelp.dll

    • Size

      1.5MB

    • MD5

      f1110018c67f702b341acb70ec0c9f76

    • SHA1

      e70525566ff437c02b1325362bf057bd39762bec

    • SHA256

      00206f6dfab5856dcb97a1dd886a6e23ba7e221488283aa72fe2585e4e7feb5b

    • SHA512

      49b30825e437d8ccc1fe9e555d7c00e3540646df53626ad4275cff23a18ee593f3839074766141ff0b2d03d0d6cbbf8be621b8c0b6925548b91f7bafed76b438

    • SSDEEP

      24576:KL52I9ItWBCHKeEYf+O3a4cR+Yv8JxGhFZnvzjnX7Lv:KL524ItWBCHdzf+iq+YvEGhF5jnHv

    Score
    1/10

MITRE ATT&CK Enterprise v16

Tasks