10135b5438feb7308f79578fe477315ff2c05687b65851ffcccb7a12b5f7f005

Sharing

Copy URL

Twitter E-mail

General

Target

10135b5438feb7308f79578fe477315ff2c05687b65851ffcccb7a12b5f7f005
Size

427KB
Sample

220927-fkz7caced7
MD5

c68c17cc9d972681ed06bd345cc016ec
SHA1

149266119d08bdaef14083cbd569acb4f1f7844c
SHA256

10135b5438feb7308f79578fe477315ff2c05687b65851ffcccb7a12b5f7f005
SHA512

608ae26eb88879e36ce560e2697c5abfd081ae7c993cb5c4a01f2f165e81a2d989d49d0eab337c75b435239f1f6bf72a248fe7773134c92e36232b6ca14a77a7
SSDEEP

6144:3JhjBe301GU6Q6X3bJtmz+djj+ftcqG+XsmMsqSGve8b4yAMHbsYkhUj6un7gA6Y:DjBemn6XvZmftc6cB/becchOn8Do5Ow

Score

1^/10

Malware Config

Targets

- Target
  
  amd64_microsoft-windows-s..-netlogon.resources_31bf3856ad364e35_10.0.22621.1_en-us_9159509e128e5a0f/netlogon.dll.mui
- Size
  
  12KB
- MD5
  
  227aa6414cb1be546caf2026c8e87854
- SHA1
  
  f6feb43a624c10ebe2645877e281ad9ee1d643b7
- SHA256
  
  9292252b7c1330438d8bfecc7d4f8ae9896bf53a184e93f54dca4f24e15a043f
- SHA512
  
  526e515ec7b4e04e32eaea3ff90f450bcee17e5788ed3edc579395966fa5a43824fdc4adaab978bea97057980da019505c4df25664c78c6aaaef7a757e6e536b
- SSDEEP
  
  192:mP+PQxm4cIOG7gsX60SLHnT020KxoyBLT3qdBlLiTWOMWh:i+IxVfOGU9rRABlLiTWOMWh
Score

1^/10
behavioral1 behavioral2
- Target
  
  amd64_microsoft-windows-s..k-transformers-core_31bf3856ad364e35_10.0.22621.1_none_cdc9665fc92f3e34/PrimitiveTransformers.dll
- Size
  
  101KB
- MD5
  
  46927303e7153b5783d3bd98ef0a226b
- SHA1
  
  8524a0b7a82675be0066509e5d9dae256f9e65e7
- SHA256
  
  da8a425b24e5f4e2572a8419380a7ea3ca574e82c094cdfb6278208841b79708
- SHA512
  
  c2967404a418da85a2a109c10f41e27c6e1cfaa550c1d05217b42f126349b572cd0055961057a9a5374c98f3e8745c713d850b6a931c16da7ad9fa0bdc216b7a
- SSDEEP
  
  1536:1HdKFtQvM5ChG19dAOR78ECM+erMfwJ1H4BFEBo8FhYAHPZ/zu6:QCcAOR78EC/erMoJyBqLVHh/V
Score

1^/10
behavioral3 behavioral4
- Target
  
  amd64_microsoft-windows-s..l-classextension-v2_31bf3856ad364e35_10.0.22621.1_none_9f774da15d91b69c/SerCx2.sys
- Size
  
  197KB
- MD5
  
  6918a2c6c841bb2f23aa8a2f6808ef39
- SHA1
  
  6be62ba439df1a1140e8cd5b36dbdf7af84fb8e0
- SHA256
  
  9d5fdded5f5fedfad17fa498eacbd1525df2d2b9f2785ff37b2c9cfd9fd3033a
- SHA512
  
  6be07b31d2f1cfc2c2e7599c7fa35b853c674ef1d7c4e150a37cb18c8c6ec90d4aee96f25bc71e1e0d13655c8848cf078b46d308c821d4a3067f45697ac3b877
- SSDEEP
  
  3072:+EgwlgMv6yQ2OzkGRuYvGniPd+dLifqsHPPoZnUSpoO:CDM6y0KYvbbHPPm
Score

1^/10
behavioral5 behavioral6
- Target
  
  amd64_microsoft-windows-s..llers-onecore-extra_31bf3856ad364e35_10.0.22621.1_none_85708ee1b6f71afc/ConfigureIEOptionalComponentsAI.dll
- Size
  
  77KB
- MD5
  
  3e2f3678193d7908eb183061b6fd9fd2
- SHA1
  
  860053a6a54f20bbe2b0876334cfe6502c1bba7c
- SHA256
  
  7271c2e705eb009b5f30a1499a577b0eb823575141a2009b09c372466a13e847
- SHA512
  
  43d33c15f592cebb15d767aea9cd0e4451e94a7a026baf0500f91f6bb130d5c5fc85643c7ebc84f0d8ce0b25fc26ad7d9097d0fc19fb01c8a1690205b26756d7
- SSDEEP
  
  1536:nkXS47ebuosY8I2Eht8ctItXMtYt6tntAt3tKtDtAtDtQNtVtbtnt4tItVtjtQtj:nkXSUer8B2bEFfb9GuH
Score

1^/10
behavioral7 behavioral8
- Target
  
  amd64_microsoft-windows-s..llers-onecore-extra_31bf3856ad364e35_10.0.22621.1_none_85708ee1b6f71afc/FeatureSettingsOverride.dll
- Size
  
  65KB
- MD5
  
  e05e1aa936a24f57fd53034e85b061f2
- SHA1
  
  57bc709c137970dc59396bf9ec07a72a90823b6e
- SHA256
  
  d53e3c66924f579a7dc1f921ab34c6b3f91dfd96b2b2aea449d75cf2befa8e27
- SHA512
  
  cec13cd9eb6562dfdb4a97e4343b5b142172fdf6abff4ed4cb9b4ef515cc488d6bee195f8456153e658d6e84211d5a09a1a2834ae8f5d470ff34e5b893fae83f
- SSDEEP
  
  768:v7MwfbBAsUOGujByLuRBZBJYYuJH1P/v289z+t:4wf1AfOGbivZBJYYuJVP3Fz+t
Score

1^/10
behavioral9 behavioral10
- Target
  
  amd64_microsoft-windows-s..llers-onecore-extra_31bf3856ad364e35_10.0.22621.1_none_85708ee1b6f71afc/IEFileInstallAI.dll
- Size
  
  61KB
- MD5
  
  f5a0579fa4261e1bf227f78448db56d5
- SHA1
  
  ec62a0f06cfa68d3f261a7a4f95e5c5fc61c0de1
- SHA256
  
  7c78dd30f8cdc5933fb7310d5143c3f5795220ba24a73a6688f9e1fa2a05fc1f
- SHA512
  
  7b12a132861b657d62dab28243c5af337159abc2e32f735c0b6cbf521f24ddb04cb087547cdb7ba1ed99906ae23dd9fdc2ae7bd18265959646253bff4ebb9574
- SSDEEP
  
  768:b0QCACRfk5FepQR5e3tmIQmuHyIMgcVy1PgXzg9zJX:IQCAn5FeGe3cIBuHyIrcVCPgDozt
Score

1^/10
behavioral11 behavioral12
- Target
  
  amd64_microsoft-windows-s..llers-onecore-extra_31bf3856ad364e35_10.0.22621.1_none_85708ee1b6f71afc/PrintAdvancedInstaller.dll
- Size
  
  157KB
- MD5
  
  83a92331693bfc5b9823083776836175
- SHA1
  
  66042425f7d245fbc4a8209bd39b81665bb42597
- SHA256
  
  1b61a9c2ed98ba44f81ab02ddc0b17010e289c45497f06a954857af7ff4cfeb3
- SHA512
  
  7bbac510b4a88cac1d03c1c5af5b142d5eb9da2f35161cc844d34e9d18973fcbdcda6b23d33f5b7ceb0772b9fade29f6ac893c1d7c2d4d5f0fccc50ca23777f7
- SSDEEP
  
  3072:4TQdlvW4S0YxrPAT5gWyiy3UsRxpElTcLhoLTS87Qyvvq/:4TQ/vW4S0YxrP+53y53UsRCTcVoLKy6/
Score

1^/10
behavioral13 behavioral14
- Target
  
  amd64_microsoft-windows-s..llers-onecore-extra_31bf3856ad364e35_10.0.22621.1_none_85708ee1b6f71afc/SetIEInstalledDateAI.dll
- Size
  
  45KB
- MD5
  
  6ee3f7aa73021702ca8e7fe13393c0aa
- SHA1
  
  df89082717b47656043aa9e643131f3a6fd41b30
- SHA256
  
  bbdf01c7758a7f095815263abda12b4e7372ff1431a4ad2f8fd7edd8875f2d65
- SHA512
  
  b9f7fcea294fd208e9a539028e0038d1316edadcb941c34593c40dba3165758f402e538a6e71c0f66657194b495ff30d8cb7a8882dc5339f9cab00370d6908a3
- SSDEEP
  
  384:3cpRIDagmK0WMIjgW+F52RraA3ygIT74JWpACwWcDBRJMd0VNcM6a1R9z/fg:3cp4aMEI+RMyGzF1PA0zn6K9zQ
Score

1^/10
behavioral15 behavioral16
- Target
  
  amd64_microsoft-windows-s..llers-onecore-extra_31bf3856ad364e35_10.0.22621.1_none_85708ee1b6f71afc/bcdeditai.dll
- Size
  
  193KB
- MD5
  
  600cabf875e4f07ac91b96a6d8a5bee9
- SHA1
  
  7ff9e483c35f830dcc5a8586999231bdd7f6cb9d
- SHA256
  
  ba28c67aca357c93ad8abe29dc976e3cd526ae064b71d31a12cc676e48584ec7
- SHA512
  
  415f0133d92c7304aa588498a3b7cd2682d390cc84503843d91fbb5897d0a8076a81e1524352d3b4f637badf9d653058d0f61802d34e89daab60a2e9e651051c
- SSDEEP
  
  3072:N45w3ishd6V/ysXP3A62xKe1P/uoxzXUFaDt0NUgtEsfRwX:yKcI
Score

1^/10
behavioral17 behavioral18
- Target
  
  amd64_microsoft-windows-s..llers-onecore-extra_31bf3856ad364e35_10.0.22621.1_none_85708ee1b6f71afc/msdtcadvancedinstaller.dll
- Size
  
  89KB
- MD5
  
  e659347e726be25897bf869ab7219606
- SHA1
  
  3f0c7d1c00cdadc3e9118fe33ed7e7143a44ad7d
- SHA256
  
  76ca4ce020427c8020e408feb0e7ed43e657a7a584c0da0fcbf3b2a05880ea2e
- SHA512
  
  b899f77af72a52e3b32670e956a8271b690bbadd3642538cc5b6cfbbcb1f364eb176a94b9e1838d6c5f4e4673bbdcc792277ba1fdebf450f1abb84636835532c
- SSDEEP
  
  1536:8ENS8qhlCfpbubbvm0mPuA9dkZyenXPvPzzpRy:QJhlCfp0DGddkceXPvLVRy
Score

1^/10
behavioral19 behavioral20
- Target
  
  amd64_microsoft-windows-s..llers-onecore-extra_31bf3856ad364e35_10.0.22621.1_none_85708ee1b6f71afc/netfxconfig.dll
- Size
  
  49KB
- MD5
  
  da042a8b09f72ed44b12637e3302d84c
- SHA1
  
  f7a7e82b1d04ec1e7e6ee2f30e5b965ea6551794
- SHA256
  
  433f3bc214265a771f544688f75503266eded9c18975c98ed9c2800a000222b8
- SHA512
  
  0c33f1205351a8edd661ee55cad031e50c407ad7626522f4f222c2231e32924e64a68557eedb2399aa206962fc7897b164d64f433a4b763f1d6cd70de831507a
- SSDEEP
  
  768:ZRko1KCPB8OXZaCo+RYJu1PtWF//dj9z6VE:ZN1dPB8OXZaCo+RYJWPtWZz0E
Score

1^/10
behavioral21 behavioral22
- Target
  
  amd64_microsoft-windows-s..llers-onecore-extra_31bf3856ad364e35_10.0.22621.1_none_85708ee1b6f71afc/peerdistai.dll
- Size
  
  61KB
- MD5
  
  2f2c291bab21518ba8130d054fb3310d
- SHA1
  
  9776b02f4f188fab9cb6ac5abbb1b8a878a3c1d8
- SHA256
  
  2e182070715c014b0e3f73a949599df9d2cf64d84ad203878f5d1e01c708dce1
- SHA512
  
  68667804e03e829a442e7308df63d3f37cf9b2afa597fa391b121d14460f0c2389a511f6ae6f6e1db20732f74f3d821b1d3c9a281b131ea8cc24cf3703ec5866
- SSDEEP
  
  1536:qbuxPAp/iT/scNmAOxAeP2TnyYHpPLnXzy:qux4G/p4AOxAe+TyipzXm
Score

1^/10
behavioral23 behavioral24
- Target
  
  amd64_microsoft-windows-s..llers-onecore-extra_31bf3856ad364e35_10.0.22621.1_none_85708ee1b6f71afc/servicemodelregai.dll
- Size
  
  117KB
- MD5
  
  1bbbc63d3f33f0fd989cd2c2ffc219d5
- SHA1
  
  fa410a1ffd697c84fb2a1516f8b89e620e035379
- SHA256
  
  9a8b1d7a60cbef4fbf11890857ab5fc8c414cc020fea242e4d736e14e3a4cabc
- SHA512
  
  1c0755e2597d8936b8c90244aff6ea8f389ded91c4ed90fea4495fb29e5b5d78ba420370e7b3793f954b9f2b92343c64cefd161abf6c879059d34c991b21f844
- SSDEEP
  
  3072:njXqIh0ysZ3Bkcv3Oh+SroWpCfmS8ec86G/5VA:n2Ih0bTkcvO1iX6x
Score

1^/10
behavioral25 behavioral26
- Target
  
  amd64_microsoft-windows-s..llers-onecore-extra_31bf3856ad364e35_10.0.22621.1_none_85708ee1b6f71afc/sppinst.dll
- Size
  
  53KB
- MD5
  
  f43b924eea4f0cdb4ae61d6f40c65c32
- SHA1
  
  1c751dedb9d674d756ff32ff4e7b467e7f69e018
- SHA256
  
  95772cad2334bd53cca41017187cd4ee85ae90026b576ab6624df6b77570b5cf
- SHA512
  
  d7a5adab16817daf1d82d0f46c7d5716c8b23f6d6861791b6d797f382db01430774240f4587e2e485412807cdd6b6c6aa8f9737c39c22e3decccc10c8f1a4889
- SSDEEP
  
  768:x/pBk+wHeNDJ79wZZpLXv8IQ1P4xadk9zujC:xBSreJ7iZZ9v8IIPszu+
Score

1^/10
behavioral27 behavioral28
- Target
  
  amd64_microsoft-windows-s..ng-events-container_31bf3856ad364e35_10.0.22621.1_none_a30fdd85cafe9a21/microsoft-windows-storage-tiering-events.dll
- Size
  
  16KB
- MD5
  
  e2c2b8e2b7803e8d7816614cb74b8f4b
- SHA1
  
  04019dd7075530a1822fb3169b69a30509f3c27c
- SHA256
  
  d149a785fb47ea74f8ee141d37da2279cdfa1a4153bba4964a1f5d023aa728ca
- SHA512
  
  71f5426cf07754a52cb1f9e04603f9d700974e4a940343e697060203af3a973ac69992ebbb31e7f4c6b63ec2179dceba2237785167fdc26f5a8837b5851fd39b
- SSDEEP
  
  192:LvM2W5ogwiJViXWWDjbojHFpH0xagDT6mh+p:LvM2W5o9gVsWWEzbU
Score

1^/10
behavioral29 behavioral30
- Target
  
  amd64_microsoft-windows-s..ngstack-onecorebase_31bf3856ad364e35_10.0.22621.1_none_521ac17dd5a24d14/grouptrusteeai.dll
- Size
  
  69KB
- MD5
  
  21b048cfd460a57aa65a8b7a516fe2d9
- SHA1
  
  433b5ebbb49e0afd7899d8e2b4f52758d723c10b
- SHA256
  
  53a630a48eb0df58e0e96f0f13d23055ef5277291adc821d10f048d59152b5d1
- SHA512
  
  8a97309d989f92b3cc29d57c0a5bf8769a4e76ae6590b283ecbf97983b32ba450f6a7fea715e21b5677fffb5303c3cd4ca149a36743501dd777e2479d64f5dcc
- SSDEEP
  
  768:8o5qmAjoEsA1Y3SN7ld6Ol+ejtzhwiCDzcpvBGDr1PQDYj/9zk1T:8okm860pd6Ol+ejtzhwtzivBGDBPBZzC
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32