Overview

overview

7

Static

static

DATA/47.a

windows7-x64

3

DATA/47.a

windows10-2004-x64

3

DATA/JJM.dll

windows7-x64

1

DATA/JJM.dll

windows10-2004-x64

1

DATA/MSINET.dll

windows7-x64

1

DATA/MSINET.dll

windows10-2004-x64

1

DATA/MSWINSCK.dll

windows7-x64

1

DATA/MSWINSCK.dll

windows10-2004-x64

1

DATA/WinIo.dll

windows7-x64

1

DATA/WinIo.dll

windows10-2004-x64

1

DATA/WinIo.exe

windows7-x64

DATA/WinIo.exe

windows10-2004-x64

DATA/les.dll

windows7-x64

1

DATA/les.dll

windows10-2004-x64

1

WinIo.dll

windows7-x64

1

WinIo.dll

windows10-2004-x64

1

WinIo.exe

windows7-x64

WinIo.exe

windows10-2004-x64

�...��.exe

windows7-x64

7

�...��.exe

windows10-2004-x64

7

�...԰.url

windows7-x64

1

�...԰.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    6e054712132fbc18a0c36bd8042c28b7e631f6e06e77e77c4e537d6b9c3182da

  • Size

    924KB

  • Sample

    221125-3rsr6sae7y

  • MD5

    6bea680fd34b44cd7d9b5eb98df56183

  • SHA1

    29f4ee1bba24ed9faaedf9ac5109e18802ef9504

  • SHA256

    6e054712132fbc18a0c36bd8042c28b7e631f6e06e77e77c4e537d6b9c3182da

  • SHA512

    19c0b03c4d7578f1162b69ad422d420143c3575216af0ece73f15cc76e013893d5b7c844dbfe3f4418de02c9823c68fb8ec2d76c6f030676441d2ee9886c991a

  • SSDEEP

    24576:1+/om++TyjwvEKVdwKVK/CAe8h6TBxZxBSGnH3Jnh3uLu78:1+/om+xMv7aKVK1vcBxZxIGnH3ku78

Score
7/10

Malware Config

Targets

    • Target

      DATA/47.A

    • Size

      28KB

    • MD5

      484a71a7e7ea7951857876727ba3a6ab

    • SHA1

      73b12c077bcea31e0975a0179a3523666b8c0f42

    • SHA256

      692a9490c18c5ad556495c923cc9859388c154bf6261311d6ef31aec8eecf0ca

    • SHA512

      38b9d9709df2a85747b47409dfd2743d4b8fa36e63c40756061af5173f9d9049a4ed016fddf1856aa481ef295e9c5da55509f42ca9dcacbdb8c524680701bd6e

    • SSDEEP

      768:ytKY/3b4NKXcOUDU0pNjz9XowdsoU9NfsMZvnNLlRM:yI83jX3wUk9Y+UTEgLXM

    Score
    3/10
    behavioral1behavioral2

    • Target

      DATA/JJM.DLL

    • Size

      353KB

    • MD5

      552ca52a22fbc59edd5a080996812579

    • SHA1

      c43fdd6d07c8c12c34a251ef0f1055cf2be3d022

    • SHA256

      44878c579ce6e4fdab7f31887db8c925720b607c021a63846050eeb63c98cfbf

    • SHA512

      0c9602c87e24bfbb4e99a06ef083015295a05f7676ae9d45a490d6ff5875b3f9b2823a10db30fc684c314c54003bd14df585697110d0c103b7f0ebea58e37cd6

    • SSDEEP

      6144:tzinkKaqgU9yv5/6qAI0nJKo88/Z3HnLhCIhVvU:RinkUn9yv5/6hI0JLFZ3nP

    Score
    1/10
    behavioral3behavioral4

    • Target

      DATA/MSINET.OCX

    • Size

      112KB

    • MD5

      7bec181a21753498b6bd001c42a42722

    • SHA1

      3249f233657dc66632c0539c47895bfcee5770cc

    • SHA256

      73da54b69911bdd08ea8bbbd508f815ef7cfa59c4684d75c1c602252ec88ee31

    • SHA512

      d671e25ae5e02a55f444d253f0e4a42af6a5362d9759fb243ad6d2c333976ab3e98669621ec0850ad915ee06acbe8e70d77b084128fc275462223f4f5ab401bc

    • SSDEEP

      3072:i4QYXpLZaH+kCp1RCaSCF/6UMiySQYPfrj:i4rBfL1RCaSC0ej

    Score
    1/10
    behavioral5behavioral6

    • Target

      DATA/MSWINSCK.OCX

    • Size

      105KB

    • MD5

      9484c04258830aa3c2f2a70eb041414c

    • SHA1

      b242a4fb0e9dcf14cb51dc36027baff9a79cb823

    • SHA256

      bf7e47c16d7e1c0e88534f4ef95e09d0fd821ed1a06b0d95a389b35364b63ff5

    • SHA512

      9d0e9f0d88594746ba41ea4a61a53498619eda596e12d8ec37d01cfe8ceb08be13e3727c83d630a6d9e6d03066f62444bb94ea5a0d2ed9d21a270e612db532a0

    • SSDEEP

      3072:R7ZSBYfkVoFdRrqo0aRaA/HF673+UWHIfrb:RNkVsuaRaU6mHGb

    Score
    1/10
    behavioral7behavioral8

    • Target

      DATA/WinIo.dll

    • Size

      48KB

    • MD5

      6d113aa35a8c79b236751e4ccf2b7751

    • SHA1

      b4ac97768512acd31e4a824b6595ec2163db7972

    • SHA256

      d2eb2a40174b9adb3abc768af7fa80882cd1e2ad22303fe4448db89509ac392b

    • SHA512

      f83209d9e98395ae6127f247b7f68167708c1af789a332695feed0f7879d8a83405eed3c3e860e482cebc704a613563bcadfaa8a2986e348d85e50a2e0b3fb68

    • SSDEEP

      384:XPgsb8J2hTBC6nE5Ig7p+lAK37l6ape8cMAp3XynYHlwouJC6+p8oyx8rd:XPLhTBC6E5gAK3p618sXhHlwodL8oyW

    Score
    1/10
    behavioral10behavioral9

    • Target

      DATA/WinIo.sys

    • Size

      4KB

    • MD5

      7e5a7cf19504af7ddaf4fa36261940d1

    • SHA1

      baac4c3ce5a46a73dbfbe98c8d89489d04e488a7

    • SHA256

      e665441a0968e7ee6eb246c4b984ff7449d7905890e55e07f251464d60191a6d

    • SHA512

      d1b226f50a079e2ed40ab5c04098fa11466b914568ba350ea23c0781c37f960e9003ff0ceada80f5c5455ec4dddcd9b44614e667bb774f3a7e12e33052c9498a

    • SSDEEP

      96:VsXktSPyUFouQWu5GQt3RnP3tzCEKsomeL28L1:2XuHIC7tPeL

    Score
    1/10
    behavioral11behavioral12

    • Target

      DATA/les.dll

    • Size

      21B

    • MD5

      88b16fa3274444622d78f5b84dc38d9a

    • SHA1

      36764fadab2ce14d3cee075e629b06ed1bb5f8d4

    • SHA256

      a0d700c8aa0843a65b1395b27313423a11cc4159d040d92280f3df4ff89db822

    • SHA512

      2d230812390ef7348e53fc4da643f4041298e662405dd290191799800069ca43de540c20bfb05eaa7a1e1f0fbec6e5046d983f9d8fcb0e88f6dd3ae13f210113

    Score
    1/10
    behavioral13behavioral14

    • Target

      WinIo.dll

    • Size

      48KB

    • MD5

      6d113aa35a8c79b236751e4ccf2b7751

    • SHA1

      b4ac97768512acd31e4a824b6595ec2163db7972

    • SHA256

      d2eb2a40174b9adb3abc768af7fa80882cd1e2ad22303fe4448db89509ac392b

    • SHA512

      f83209d9e98395ae6127f247b7f68167708c1af789a332695feed0f7879d8a83405eed3c3e860e482cebc704a613563bcadfaa8a2986e348d85e50a2e0b3fb68

    • SSDEEP

      384:XPgsb8J2hTBC6nE5Ig7p+lAK37l6ape8cMAp3XynYHlwouJC6+p8oyx8rd:XPLhTBC6E5gAK3p618sXhHlwodL8oyW

    Score
    1/10
    behavioral15behavioral16

    • Target

      WinIo.sys

    • Size

      4KB

    • MD5

      7e5a7cf19504af7ddaf4fa36261940d1

    • SHA1

      baac4c3ce5a46a73dbfbe98c8d89489d04e488a7

    • SHA256

      e665441a0968e7ee6eb246c4b984ff7449d7905890e55e07f251464d60191a6d

    • SHA512

      d1b226f50a079e2ed40ab5c04098fa11466b914568ba350ea23c0781c37f960e9003ff0ceada80f5c5455ec4dddcd9b44614e667bb774f3a7e12e33052c9498a

    • SSDEEP

      96:VsXktSPyUFouQWu5GQt3RnP3tzCEKsomeL28L1:2XuHIC7tPeL

    Score
    1/10
    behavioral17behavioral18

    • Target

      ⴫.exe

    • Size

      1.2MB

    • MD5

      a92f1bb939ee9acf69396d5f85e185bf

    • SHA1

      d7d1e7702992e7cb54a672700629f33c40596620

    • SHA256

      0d2983156c17a640289efa197006c7d0f38a2b40573393a21c066b4f79beca9e

    • SHA512

      e67ad99a370f1789c26bfbfd96616f2b4a10eab246eb68ee2446c74f9ec779791a51ce5c213c2aee90edb94396fc616bdaed530e7b5ec9ae7b9800ff0d0b96a3

    • SSDEEP

      24576:7tcqSrNXsCxx927qRC33KjjnZRqPnFqRo7w3zgyZdt:hCXjx/2G9cv77En

    Score
    7/10

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral19behavioral20

    • Target

      ԰.url

    • Size

      168B

    • MD5

      ff1050dbffd353fcf1b33e1b98c46a43

    • SHA1

      84d1da117d9fa9adb5092180f945288f6bd350c4

    • SHA256

      264ced769e31afc066f90002420c4c52fae622a340483e35d149e3db836ed3d5

    • SHA512

      590bfca4916ac3b2cd4898d67fee017d5ba2b3129bfee51ba79bcbb04d1a593af28cd0724ee9f9bac75de8efe2bfbd9e15a086cece1b8ca47b64a70151db7f2c

    Score
    1/10
    behavioral21behavioral22

MITRE ATT&CK Enterprise v6

Tasks