b95c4f354f85a335502b63cbea99686ab2129897d7a81fa096a8ad80c6424eb4

Sharing

Copy URL

Twitter E-mail

General

Target

b95c4f354f85a335502b63cbea99686ab2129897d7a81fa096a8ad80c6424eb4
Size

2.3MB
Sample

220908-gwyckadha3
MD5

76343ea6247c47eff20a96d0d26aeae7
SHA1

b23cf4e708bf5149e8d4fd4d9133af4eaaacbfe9
SHA256

b95c4f354f85a335502b63cbea99686ab2129897d7a81fa096a8ad80c6424eb4
SHA512

9a96e348439a175e2433d46f0f60d842bb6562846487691a1638aa550f077b5005e4af5ef5348bbc13df65a46d900218f410443d0950e5287646dda0a6fcdf67
SSDEEP

49152:AHFGKYqgFU/Xt0eOvR235cRPaTTmhIEXqXbjNWSIZ/qB11Da8g+/8PWG1ePm:osqMHeOvsCyvqqtWJqBvo+kPWb+

Score

3^/10

Malware Config

Targets

- Target
  
  (2040 2135 2635 2540 2235)kmtwainlang.dll
- Size
  
  32KB
- MD5
  
  eaa84219d1c0f42cf7abe951d566868d
- SHA1
  
  c17a8e5f611e269ec9d38db04bf8cc6f98f0337e
- SHA256
  
  b9627ee443dbd4b32090fdd44b8c8296e500fb5e1498b276a4f1bd4e6241bcf6
- SHA512
  
  6e046c3f7876989f52a125aea1c796dc24da62f474a762d229fea92c1114ff6365ed1eef44b7302903381dc72cfcb4250db83636459fbc38ac16880bedc87b3d
- SSDEEP
  
  192:0XBKaUtzWlFn0yU688unS677iebxUMUiebxUMS7CYuVBoDJno:oKFzWlF0N688wb4bS7CYIoDJo
Score

1^/10
behavioral1 behavioral2
- Target
  
  (2040 2135 2635 2540 2235)kmtwainlang.dll12
- Size
  
  32KB
- MD5
  
  1844136c01f2c616f858d9f022eb0ad4
- SHA1
  
  deb79f81b47fd2be35ea81cf68ec1a8961a24c8d
- SHA256
  
  a23fadb3a1f9fa46550ecfb773c7a87b2dbc89ba8072d35131ab491a528d7764
- SHA512
  
  9b982e3cf88d7058fca5a9a4c56b40bf401aa564afa2cab13b80f70b52ccde6a53ae279024bdfdb0dbacf3b6e57f9c7dc79ca5140384b0956efdf26828fb9648
- SSDEEP
  
  192:nXBKaUtzWlFw0IU688unx+5cKwUi+5cKwUJRuSVDoDJ+Fk1Qo:xKFzWlFB/688iPURuqoDJ++
Score

1^/10
behavioral3 behavioral4
- Target
  
  (2040 2135 2635 2540 2235)kmtwainlang.dll3
- Size
  
  32KB
- MD5
  
  fe0ac1843dae86f3ba5decd275302e59
- SHA1
  
  448691b51ec089dea03596e87cb7f0ac1304e87b
- SHA256
  
  0b4b4e6eb1f1176d67c8deda8b12a540de7f5332c6d8e695fbdbb311d37d2dc4
- SHA512
  
  80f5e95f05910d6d636ed6ea093abc543524fd4b3e6801c78ddf49541dda13857e02c4e74a11a1554e2f3a66c7d23354fda76b73e0a0f1f855ba3dc721efd4df
- SSDEEP
  
  192:UXBKaUtzWlFP0FnnbU688uneHP4UtHP4U9gYuVBoDJ0HBo:IKFzWlFcVg688I9kgYYoDJ5
Score

1^/10
behavioral5 behavioral6
- Target
  
  (2040 2135 2635 2540 2235)kmtwainlang.dll7
- Size
  
  32KB
- MD5
  
  de9b9185b573e2565d8df7305001cbb3
- SHA1
  
  a6a53b251d10bd34f92f79f13791cb310e8f6989
- SHA256
  
  48534abc0dade4e52127342a2a4c55a08ce1b401af02c83fa90196a5b708a06a
- SHA512
  
  62c4872366d921cd0dc30c0368cb1de3b6c45b474d5b075c2cdd961c3c090e1e9e3d3a90d004ad039a9a11c058d1485e8aef72979695ee4ce6e9c105caa9728e
- SSDEEP
  
  192:4XBKaUtzWlFv0KU688un+43wJ4JNUe4JNUMaIYuVDoDJIo:MKFzWlF81688UA1aIYmoDJH
Score

1^/10
behavioral7 behavioral8
- Target
  
  Index_dll.dll
- Size
  
  1.3MB
- MD5
  
  4f314dbbfa09d74bbf839bddc3f42a8c
- SHA1
  
  d251c5fcf14cd7353bb9f698fb0a5f8b4874c9fc
- SHA256
  
  51b2fc04e6e54ac7d0fa2840ee7e82774266baab7fed6010c061d2f0bdc87858
- SHA512
  
  dfae9abf617601c0d15712324d4ab58e0357354bbb50892eb3c9aaa49910707d5c236d69582e3e74781f3770f65e20ca690baff03a543507baf57368d63f1b35
- SSDEEP
  
  12288:4ByKw8GAxGoWjs1aypa1jkOngBkcR8Fog9fka8di9UamKHGPtrG5XXlizk0:048GAxGoksXpRrBReoA8ILGF/k0
Score

3^/10
behavioral9 behavioral10
- Target
  
  Netviewer.resources.dll
- Size
  
  1.3MB
- MD5
  
  8ada1585850bf3258b297eb2a2536dee
- SHA1
  
  8a42932ba407fc4736cd1e87b04bd8fe1e007b0e
- SHA256
  
  3d365d01532dc432304cb3ad87b4b86764c9dd8882b0e84beecdb62d1bb35d7a
- SHA512
  
  f0271dfa1ca42caeff6e1a96ce025c69d9027b0a4d7f456da0c2c466a04fc6093d52b3f7be04c922e892014e4da35399f77e9086040cd3c07e57d63ec027ad1a
- SSDEEP
  
  24576:6JEFdNOvry0NyuSOnjygOCnh3yD7HZZnvEzOV+gWTk5JEFdNMVEFdN:SEFdNOv7omjyRyhiDNZnvEzOMnkbEFdZ
Score

1^/10
behavioral11 behavioral12
- Target
  
  PFXRsaCertDown.dll
- Size
  
  2.0MB
- MD5
  
  d89ca85ee33124766808c7ac969abb98
- SHA1
  
  92931cf7db3db42406eea8faba18eadea93e9341
- SHA256
  
  c2ee6eac2678b0d1e6ffaeb6b97e035b91811070f64a3d6d62b89315207507e8
- SHA512
  
  337c2caa72741c8264ae025c5f64f2c1eab610c2549d458321ad24ff9742947a116c208d1a0e8c6e9dc0a336fd922888d8760bc8e9ee3df357484bc1d4bee480
- SSDEEP
  
  49152:i47lDVCpTJmjEjrYTDg+9YwR/mqJx7KuQ3ufM:imDVgmoXSDgQYkmQx7KuQ3e
Score

1^/10
behavioral13 behavioral14
- Target
  
  hpmcro32.dll
- Size
  
  13KB
- MD5
  
  5ddeca6443e5c2cf7a4525c47488e496
- SHA1
  
  5099f4252b04f3fbae3fb8b26bd81cfb12d694d0
- SHA256
  
  72a5d9f7a3f286062a16d3e7b7ffff9530aa8bc81f8de863a00f1ba1becd9b99
- SHA512
  
  43d971056e1dca7d17dc451b27c75d15631eaf8e0f9ff54d7982b070194d6a1151792c99e84a1e380bc72669077d94ed6f801f2ea5a39f9f78eaf48569dfdabc
- SSDEEP
  
  384:5ZyrNrVUUuirfGh08ZUuux26C0Det+JoNSqWljW:nyz/1r0M
Score

1^/10
behavioral15 behavioral16
- Target
  
  kmtwainlang.dll
- Size
  
  32KB
- MD5
  
  53edf08e0f0dbe874f654585db2ad5ba
- SHA1
  
  b13d5c05fb15a5b5b4507b0448515743319b40d0
- SHA256
  
  51942b03e17ab80fc70d83c41abdc7b2234376f6d8e9178f8390e3e66ee965f9
- SHA512
  
  415b802348879c5185ad705e4d2dcd65a2473a6193d8c2025b2d48370b6ccd1a19a9701b5161f81852a0494f516f6d37d590fb959db3944eca6312cb2cb0a012
- SSDEEP
  
  192:eeXBKaUtzWlF80LU688unS67yuWJk8mNkKYCYuVBoDJno:eaKFzWlFtQ688uKCYIoDJo
Score

1^/10
behavioral17 behavioral18
- Target
  
  kmtwainlang.dll15
- Size
  
  32KB
- MD5
  
  7ba88dc576f5982fdd5b94c1c840ffcb
- SHA1
  
  238129eba872254720eab3864f7f5d91dde3d19f
- SHA256
  
  a05bb06fbebe1747a1f39b18efbff657154c77bb6e2893fe48cee3a4ae3d2eaa
- SHA512
  
  c36c9c8f7f13645869da06d20ab1c38a3a6ed7f2e6bc9c48cf9ed13c6e292ed4525edc70f11845d1d9aab16ffc62da1ee1086891d7740871fdde7965c99a41b7
- SSDEEP
  
  192:e8XBKaUtzWlF20EU688unAtQz/GzuhMhquBq3YuVsoDJ9ro:ewKFzWlFvT688wLG+YFoDJu
Score

1^/10
behavioral19 behavioral20
- Target
  
  kmtwainlang.dll18
- Size
  
  32KB
- MD5
  
  206cecf6c457a5abe0b6187b4af85bfc
- SHA1
  
  920bc111d00d7ab26984b1db47165b5be68f6de9
- SHA256
  
  4017daf10d41a08f57ff8119a2e8fb832a93408dd400aecd9c5c73befa00bd5a
- SHA512
  
  aab62a93da762b28936766a8bf3ca4e964be433912347d7281f783b9ea097395d71f854e5cb24106870e44fd2765cb03a1807d60a82418ad725301cbb417291d
- SSDEEP
  
  192:eRXBKaUtzWlFj0jU688unDzTq6E63bQl6EhSkiuSV9oDJlVGHo:ebKFzWlFgY688E7baSkiugoDJlVGI
Score

1^/10
behavioral21 behavioral22
- Target
  
  kmtwainlang.dll3
- Size
  
  32KB
- MD5
  
  3729aa171f460f0583ab4ad2d0e975f6
- SHA1
  
  1fd96521afdcadd03c718042e698f2797542c07f
- SHA256
  
  c49a94d36ac24886f3535f9c38a3e2f4410b790aa8d3d92171d256aa564ebb80
- SHA512
  
  ba2f01a64a92934f250aaa4358a903e9e10139bff15ab71973773356cb665acadc47d28a6a9758992d729c029016d3da0bf0f0df9a77fa25b4b0f89724f04580
- SSDEEP
  
  192:eHXBKaUtzWlF50Fnn3kU688un8pnf7Ry4frYuVBoDJ0HBo:eRKFzWlF+VD688fnRYYoDJ5
Score

1^/10
behavioral23 behavioral24
- Target
  
  kmtwainlang.dll7
- Size
  
  32KB
- MD5
  
  fc71ef5ad820099755efb6318a9696db
- SHA1
  
  2c15f29b5db0384792d474539a2dbd0eea886a6f
- SHA256
  
  bd1edaafecc3c63a956e806881e0177ee906a6245563e8f3893f70d54b8db3ee
- SHA512
  
  4b6dbc57ea0111e6043166b30dba9c62ad5fe05e418aed1093a6f2399efe835510d43ae86f56ef55736f5a2019b4d9de186d4f202c96dfadcd0fe1f5a9e12212
- SSDEEP
  
  192:eKXBKaUtzWlFw0g3U688un+43wB9xNXbG2N7IYuVDoDJIo:eGKFzWlFBgk688jZRIYmoDJH
Score

1^/10
behavioral25 behavioral26
- Target
  
  kmtwainlang.dll9
- Size
  
  32KB
- MD5
  
  e294ae5e780dbc64bd74b339b5d8377f
- SHA1
  
  84faae9627a0cf6520fb8dcccb36e3dd87c45b2d
- SHA256
  
  50354774438f47c5aedc8ebe24d4cda463c7010c6fb89dbde7ce51dc31324d6d
- SHA512
  
  429ade6565307cc278dbfed72c4e72040220de0d4576ee280528c040c13ec2c40ab0caf25358a71c8173bbcd385a26ecb121ecce6837ec0c2311ae21077b741c
- SSDEEP
  
  192:e+XBKaUtzWlFQ0UU688unPg9SKTPT6SR6uSV+oDJplrb7o:e6KFzWlFhj688s4P/6ufoDJpW
Score

1^/10
behavioral27 behavioral28
- Target
  
  nlwnsck.dll
- Size
  
  24KB
- MD5
  
  9ff3cb81d2c201f96b734c0db5a2ad48
- SHA1
  
  efd9ca0cb99ca4f74b70eb80ee69e17a8d22dbfd
- SHA256
  
  709efb99250ebf69a787e11c3f3d2561165fccad87a064e4387515d7c9511621
- SHA512
  
  52c6a8007fa138d996ed5f90f2f6b5102ede23b1bdda1f6a2c43048a4773e7fd602e65d6fd54e176af3a361fcaa6e9e97cd80c335cab77d240be8b92f1f55075
- SSDEEP
  
  192:cDswlM1zkgkXYP84lLtptsz9huZEdZntep:dtUAc9huyop
Score

1^/10
behavioral29 behavioral30
- Target
  
  txtonly.dll
- Size
  
  11KB
- MD5
  
  5bb212389d37da3efb3063fb62d478c5
- SHA1
  
  db4919984b95e101abab7502910a7994ab849bbe
- SHA256
  
  cdacd102c721a2b486dbe2c68a61d243772913aa8805275f95ea3451a6ac7dae
- SHA512
  
  ec10b094f8d11ed6d0c4edd01b798aace665942c54731db9807805c3cdff6b3170e056ae6b9a28fda56677f6b40e5bc43beb7bfdb23a3a4ecfd2da24741ed0c4
- SSDEEP
  
  48:6GJpXEl9rWm7bLk33jEECm7vWxtlZW8IKL/hll5WGJqlkHk2KJ+fGfGfnfC5upCM:M7BIwtjWxIZlDWxkHAT529PNVE
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32