b239ec840eecef3be43530b242e7aa5a39dd708c75adec105390523a7bca57dc

Sharing

Copy URL Twitter E-mail

General

Target

b239ec840eecef3be43530b242e7aa5a39dd708c75adec105390523a7bca57dc
Size

530KB
Sample

221205-hwkxxafe59
MD5

d735989ce9197798ae9d1018b2f4077e
SHA1

56ebc95daa95a50a728836fc7d0cfe585a854d43
SHA256

b239ec840eecef3be43530b242e7aa5a39dd708c75adec105390523a7bca57dc
SHA512

4558085a9c3ff7334346fbfe80cf7492dba7402f7ac038fa4777a342340e5654addadbade801b03fbe83ac8c340ebd133159269b401b8006769df24bc00aec64
SSDEEP

12288:senIYwcyeMoADrzuFxVTM4yD62Xicvic2yE:fscyeMoy0yD6+E

Score

5^/10

linux

Malware Config

Targets

- Target
  
  aces-2.8/aces
- Size
  
  22KB
- MD5
  
  4e06b28350a2b1d9d2bdf714310b681e
- SHA1
  
  99740eb010f66eeb99660499c626072fd0801c87
- SHA256
  
  31e11f25005b91c565ab51a710d16448317427b0370d4cf0b9ba434d31e3ba54
- SHA512
  
  df80bd76d6708c69bfc0a0d5c308fff0c4272f381e2bd1bd9eb62e4d3db1796f6303dad2613c569442d223a2dc1a10d19a72a0a0af86c2b700d5ff84ba7ddea1
- SSDEEP
  
  384:fzvfVrMFzk9XxyIgwyf5Kmg+pj8jfko/G:rvmF45xYHxKmg+pjs8
Score

1^/10
behavioral1
- Target
  
  aces-2.8/aces.doc
- Size
  
  28KB
- MD5
  
  d58c6f1bef548c8f9be0171dcc91ef16
- SHA1
  
  effd546a98642e13aa6fa82063e3b3dfba76f17c
- SHA256
  
  d9bcdab722ced843e884f129e5ba117d557fea4fbc4f3d451d6e78724e7e04f9
- SHA512
  
  c5fad8973781a0a8e79d35879399d96586b18f229d4de7b559f314dd2b41aea6f84e8ca558d30bf384a71d2716da21e1a2000fcfe6173b2afbba2bc5dfcd822b
- SSDEEP
  
  768:L3Dh2Mx8Md6H58WYW+70jpi0RzGxJSXpe9q:5TNdY5pYX7YttGrSZZ
Score

4^/10
behavioral2 behavioral3
- Target
  
  aces-2.8/doc/aces.doc
- Size
  
  29KB
- MD5
  
  f791b3150c2b5b431afd4bc137f11fc9
- SHA1
  
  a18d027606563b6ad79877316e224c0e80c6a43c
- SHA256
  
  0943514b5db12fb26c999857c241a3456d449a62217cff702a1e7d23eeacd1c5
- SHA512
  
  1c88130a8c25ba0ad840fefbeb51b48a6af0961e80ed9c060bfb80a6ec48a863cb86f65d6cff10591785eed4cff36dec253a12557e808686e4032789e577fce8
- SSDEEP
  
  768:Mj4gNCGUQAG5bFxGbEuwWNHvFas9PBm4BWbDp:AkZGZFAAubP8snm+u
Score

4^/10
behavioral4 behavioral5
- Target
  
  aces-2.8/scripts/host2list
- Size
  
  253B
- MD5
  
  e4c1b5537b086f0611d819224ed21c8a
- SHA1
  
  043d98bd1d9255e7459a2d9fbb47fbbf961fbae6
- SHA256
  
  e05d81a81bcee69571f75b8809828f6b24966cc704f03b8052f3ba1724052158
- SHA512
  
  fe9e4f81f60110630113d5b8ade2f899df14f5fc597a505337ed511d9a8a447eb083c714afc2502fb3d6fc5e06f0862cc24b6aaa37f683f218a1c2f67eec9094
Score

5^/10
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral6 behavioral7 behavioral8 behavioral9
- Target
  
  rpc_client
- Size
  
  5KB
- MD5
  
  9cf9b7208202e806d75b2e0c0eb0dfea
- SHA1
  
  5a11e0e4632a1765be7e6667598c39e53c4450ca
- SHA256
  
  634995e0e316290091117100e0dbbbdf917e370b4520f9029391a9962a867dbe
- SHA512
  
  f874a1e5aea6dc49319375c9e62b98139ed85ad40ef84a70ae1c6e15af0ef658c4c33dc75de5bb84cb3291f73c73e62186f110cac6b1fbe70e62861c27d63294
- SSDEEP
  
  96:fiN/czFo739vLiXBk5OubZoVYx3AVX4Cl/m4lSMKw2ZGCc2VB4wG:fiNGxkVbZoKx3AVoMwVG
Score

1^/10
behavioral10
- Target
  
  rpc_serv
- Size
  
  6KB
- MD5
  
  24fb1c8ffe0596aff4f81299f6281c01
- SHA1
  
  b5d5007ac04e50f2da9dcc689012ddca8b4ffb6e
- SHA256
  
  7a53c2e7b1912c67c97b89d10bdcc60b260b3757673476ac3ede56d9cfe22b23
- SHA512
  
  99614a6e31c36e397ed2eb81d6b8c530e5b34e182e9fb71f7ae13565d81b7d4f08463f59cddf5ee99cd57cdbf944804ba92261c0f24f3f15ad0f7a42d0e70d45
- SSDEEP
  
  96:fWXZZffLYxjiadWaRMBqtFQXlPp/jzWOft5tGlCK/R36w1CkGeXPKw7TSo37KlkZ:fWjLGRHFQ1YOf38lRNuFwJ
Score

1^/10
behavioral11
- Target
  
  snip/snipdos.exe
- Size
  
  16KB
- MD5
  
  5b4cb0f26d4f96bb941f8780456f8b63
- SHA1
  
  297e531b51669278046af2bb61df35fdd7baae2d
- SHA256
  
  923d654acd0c61a3ca24c79327410cb607d84dd0f166b50976a6536baa9fe5c2
- SHA512
  
  91b7017a17dde0f18c36e2b53aa1e7dc893bbc8b0c8cd9945cebb745ba4428422c2d373505fbb43d6e909928d0dc8af1281170c63c83b3c1adcb1a7e15191772
- SSDEEP
  
  192:fFuuyCBXd/QxNztFPPL3ygXKA7OveDON6oHk1VK4x3QgQwVCAUbRKAN7dyZiimAG:foYgBogXW7E7F39yRXL2lbqCw8VNVeFj
Score

1^/10
behavioral12 behavioral13
- Target
  
  snip/sniplin
- Size
  
  5KB
- MD5
  
  c302b92dd8446ec7cd4d47755f618500
- SHA1
  
  da389b48a360495189a654421221ef62dced55a0
- SHA256
  
  e9964395aa1d623df0c21cbaa97e8dabfabd039102a6e648ffa2883b0a953095
- SHA512
  
  05572231d01b0fb2514a57f932a939092a846eae464f32e40717fe89b6bf7875ae9078bfbf7c80b5cf1f83c1406059c8c7a2871bcac4a4225f26c0e9b1b865ee
- SSDEEP
  
  96:fSFIWg/s6GvHTHwNLVvL+wB78dPrvBqOOUBeVoLZcKLCh/Pg1C34gcXDmCqNrs:fSFV1GLVDq+cLft
Score

1^/10
behavioral14

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Writes file to tmp directory

MITRE ATT&CK Enterprise v6

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14