Overview

overview

7

Static

static

7

Sendan Mul...ib.dll

windows7_x64

1

Sendan Mul...ib.dll

windows10_x64

1

Sendan Mul...ng.dll

windows7_x64

1

Sendan Mul...ng.dll

windows10_x64

1

Sendan Mul....3.dll

windows7_x64

1

Sendan Mul....3.dll

windows10_x64

1

Sendan Mul...er.dll

windows7_x64

1

Sendan Mul...er.dll

windows10_x64

1

Sendan Mul...UI.dll

windows7_x64

1

Sendan Mul...UI.dll

windows10_x64

1

Sendan Mul....0.dll

windows7_x64

1

Sendan Mul....0.dll

windows10_x64

1

Sendan Mul...ol.exe

windows7_x64

1

Sendan Mul...ol.exe

windows10_x64

1

Sendan Mul...ha.dll

windows7_x64

1

Sendan Mul...ha.dll

windows10_x64

1

Sendan Mul...rs.dll

windows7_x64

1

Sendan Mul...rs.dll

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Archive-0a7c.zip

  • Size

    104.6MB

  • Sample

    211209-cev4nabhdl

  • MD5

    94a38c63e2ac8c2633e4578b676ede29

  • SHA1

    d786c4e8baf408ec650cb41590a4462123fa596d

  • SHA256

    d3476e956324bcc9a8bbac1b1f467e44cd982f401c31afa69e843c8f5be0efe7

  • SHA512

    332dd8471800c979076628663e056349c79874d656c919e5bb4ab0ab59059938a32543331d5ca3c6fcb1dc86544979111a666da55df22a5ef41376d2d892f0f0

Score
7/10
agilenet

Malware Config

Targets

    • Target

      Sendan MultiTool/BrotliSharpLib.dll

    • Size

      1.3MB

    • MD5

      7ba33b5fbfd4662d72b50bb09bde7ed7

    • SHA1

      d26998c60811161ec2130d8566029bf0648fa990

    • SHA256

      ec1e6529a83db97684474c1cb4e0a989eb7bcfea98591afc2c026b08f48600a0

    • SHA512

      4626bf8721675e0b0063df5e677b06616db08cdb71f5026263167179dee32faf2a87881e8031a1359ed828ff9e090c1ee29829bb43f3cd043c2b19071aa7c316

    Score
    1/10
    behavioral1behavioral2

    • Target

      Sendan MultiTool/Bunifu.Licensing.dll

    • Size

      952KB

    • MD5

      8836edb783ce89ca6481c297772325bc

    • SHA1

      6968c977f594930543ec296ad00322e998129a6a

    • SHA256

      cfa1993c3e7272b3aee610634592c26beaf8e573ac9d3c59695e35a5d2372b17

    • SHA512

      34f07f52e43296e0b3e084857270a8375faf50e2b6cd9522a572efb90de38a3f27b9727861e0258149ed13bd96e114175c9d1d237b0ef97ad4fa53e119ce7f36

    Score
    1/10
    behavioral3behavioral4

    • Target

      Sendan MultiTool/Bunifu.UI.WinForms.1.5.3.dll

    • Size

      344KB

    • MD5

      b4280d2898d92ab5c3911f0305d7672f

    • SHA1

      0ef4d6fa24811cea3cb36fccbc45d71e1effb17d

    • SHA256

      e2248459dcc95183d0f0c5f3abd3b0a2b93cd26cf8e130a1f43c8b32c58f4c8f

    • SHA512

      2c719c32144ce2968123dc8e3a6f61f70460e463ba9b3681dc86e124af1343d08e574f7313339ecef4b88f95d2fd9ad56462f0f9e5f9f51ba5de6ba19559af2e

    Score
    1/10
    behavioral5behavioral6

    • Target

      Sendan MultiTool/Bunifu.UI.WinForms.BunifuSlider.dll

    • Size

      197KB

    • MD5

      dc256af8a6709e8d02dbca9955a73b32

    • SHA1

      528e35bf49d9927f23993fd2d2587f7fdacbfc48

    • SHA256

      dc3be56629858ff7327bfbb3a5986d87af3a2d48e4d40806320af5c1f8432005

    • SHA512

      b62bd3bcf2b6f389bd383c106b7a76dfc21730d987dd421ba0ff61640a11f14233c9e8d1af56c78798f8767e467ab4f5deb801187f96ce2517dcedb7b71432eb

    Score
    1/10
    behavioral7behavioral8

    • Target

      Sendan MultiTool/Guna.UI.dll

    • Size

      876KB

    • MD5

      6d6a1f28978d42ad2f0a8f278eaac966

    • SHA1

      b09168ec88109422ca29cf4f1b6462d51930873d

    • SHA256

      fb23fa4fca8f28bebe7b7e39593a211cd3c3405de5f948ec520e859b1bcaf91e

    • SHA512

      76ddf88255a9355fc3c781880e23d94206acca4decf5623712411f7a733e91ca9ea37944860401cf9667f10e8c33a087803a4726f91faff1f23e3e0592ddf41d

    Score
    1/10
    behavioral9behavioral10

    • Target

      Sendan MultiTool/MetroSuite 2.0.dll

    • Size

      347KB

    • MD5

      7988c35882e1f099acc9f8c2819f8121

    • SHA1

      39a2793cf43b30b243f0bec76b3a296b71f2aa2c

    • SHA256

      2faaf6afe6c42e60ceed13c2bdd3f9df62d21ed85589d77112d84c6b79ca000a

    • SHA512

      2decd201075e696593ca70a5577c93f1f398016de71f6fa637a1e5d4dd0e09c1454cff6f0f7386748655675c39498061bf3c30452c657216a24ebc964074bf9c

    Score
    1/10
    behavioral11behavioral12

    • Target

      Sendan MultiTool/Sendan MultiTool.exe

    • Size

      100.4MB

    • MD5

      9de68acfe666d7dabb9aaafab09b44b0

    • SHA1

      f2f7dbb4bb883f306949d3b4315d334b3cd7e3a3

    • SHA256

      46cba3cb5d3a6dd6a3d7b563abd3d15aa05b6ae0e679a24f6416ef61b32fe40d

    • SHA512

      01ac63a64cfc642ebeb6cae86d9de9ce68821e5df034b5c78cec651ea01ef9b3c52a5e2dd8ad8911a5e012d5a1bd262ed7558bf20a09bc0621b3f8daa7911331

    Score
    1/10
    behavioral13behavioral14

    • Target

      Sendan MultiTool/TwoCaptcha.dll

    • Size

      26KB

    • MD5

      0ba56e43509df3d799c2d4be6cf2f236

    • SHA1

      189c43e85a875a9b1ba7ce8327910dd0d9ed178a

    • SHA256

      dfc587f85a86a4dddb2e7603e3d205e4b2f33d9cf9a943da8a2213c5807ec9de

    • SHA512

      5e09f2cb33ff67469bf820ddd68172ccdedfdd5751de410dbb9d38aa265ebdbf8d49e0b97c62f764bbb631fe8a6b43244f38d1065d9ede1bd2a530174788c71e

    Score
    1/10
    behavioral15behavioral16

    • Target

      Sendan MultiTool/websocket-sharp-customheaders.dll

    • Size

      246KB

    • MD5

      5f0e090a911eaa61daa3c95818b76380

    • SHA1

      39d0b4195608585cd198da7ed3c019291e3e3bc5

    • SHA256

      9a77112f10c96b4c5f099208eca409abecc07e2395cd72ed1fdfe9839cc1262b

    • SHA512

      16fc315b29bd0f3907b249bc7f77f8c5af54ec4362741235aac9554be01723dc8aa86eb743762f7c2fb94a8010a0bc751baac78dc5fa7103744a5cac17b25626

    Score
    1/10
    behavioral17behavioral18

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

1
T1057

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks