fd395d87fed1adb16b9f28619feed0e0c486e0da05a2a3e5e90dea11187bb552

Sharing

Copy URL

Twitter E-mail

General

Target

WindowsApps.tar.gz
Size

2.1MB
Sample

221221-z9p78add46
MD5

25b2d82474c664986a6bf620fa27e3b9
SHA1

d74630971bb09dd8af56ba68b2d9e55f59f0f1f8
SHA256

fd395d87fed1adb16b9f28619feed0e0c486e0da05a2a3e5e90dea11187bb552
SHA512

769d46f5bcb3ca1293dda2247c2155e87f29e91b173e6faa2dde0dcf8d39eae8ef25a7ca2f69f58c5a76024b36d28ea1e693cb2dab39bb52d47d5fde54eb5d76
SSDEEP

24576:Kc5cySGCjXCWwgaejKTJyHYWQ+HZFGtJuD3Kn3hBcx8A1GVdMw2QV:wySZTqCuhiZIJ4K3hBcX1uJn

Score

1^/10

Malware Config

Targets

- Target
  
  microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe/en-gb/msointlimm.dll
- Size
  
  369KB
- MD5
  
  d1fc1c84d7f6888afefc8fa103cec680
- SHA1
  
  7f06e53394b02df8f35eb5c10fa1bdf31b439149
- SHA256
  
  985ea644437ad5e718622d3983dda4bad350a19dc02c9e206668079a5d9e87b8
- SHA512
  
  348d168ec78a27b80a7714cd3ba9bc05721b9deaf37e1bc6e39b951e120b58a2c32aa029b2df89a772732fad8529c893eff47febbebfca14329e15fd3fa104ec
- SSDEEP
  
  3::
Score

1^/10
behavioral1 behavioral2
- Target
  
  microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe/en-gb/wintlim.dll
- Size
  
  301KB
- MD5
  
  c0e32b31efb45294bf7b4df57a697d64
- SHA1
  
  9c71f6763bcfc9444194bf44bd7cd454fb526c93
- SHA256
  
  de30837dde4e8519120ff483e0d64eba893879d2e9aa44a8bbd72a20c09b4451
- SHA512
  
  7f7999a036f6db9123dee4be270bec32f580e29bb740dc9e169df4d1429fcae84b540b7158ced133b65515559e8b4f6b16c75b4f6b950c2d298f394cff6f5800
- SSDEEP
  
  3::
Score

1^/10
behavioral3 behavioral4
- Target
  
  microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe/en-gb/xlsrvintl.dll
- Size
  
  261KB
- MD5
  
  63bc83a81c24c5477dde2205358eb088
- SHA1
  
  980f4cbf311fdec864427f92bcba86e7e966bd75
- SHA256
  
  a5a30f0a084c127b9503c42cfe6aec0e3a0b23f563c781f06a4ab9137a18371c
- SHA512
  
  fccd3b02d5ce9399a886df1fc637d59825ac17f49f805ca0d5962a61d62607117e85dbc97e37b6752fd350d8656e36c464c6c9bd249ee74c0d7079f162ba472e
- SSDEEP
  
  3::
Score

1^/10
behavioral5 behavioral6
- Target
  
  microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe/en-us/hxcommintl.dll
- Size
  
  4KB
- MD5
  
  b1e27aa018409de6bfd73f8afb883a65
- SHA1
  
  3a57f903e4f3df49cc055b8d336869577c20ff5d
- SHA256
  
  606f558e014930f9c1669f03c71c28945c4631568e39cd308c6c7f4077c7bfb9
- SHA512
  
  c19595f16fe2bab35f5fc6be34098bd7d01d1bbde7c816f00e34aa5220db5c46c5b6a2b0229132fcba608ae99d3ec14bfe3820cc53ece7b0450961a0171c24e8
- SSDEEP
  
  3::
Score

1^/10
behavioral7 behavioral8
- Target
  
  microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe/en-us/hxoutlookintl.dll
- Size
  
  57KB
- MD5
  
  3229fe2ddaee8bb62d31f71e040cf5f8
- SHA1
  
  f9ae027918b86a7977ae343a42676c8b88256617
- SHA256
  
  50befcf9f7774517a00f1157e8b5a93e4923073de9304dc51e948713eeeddd5a
- SHA512
  
  772ddf9d0d6f9b0918bb765fdad97616258c3266f3e1f94976338f715ebf15d85325fc926e807414ec532a500a7f2e54f3df2d1b7d25076911d63bd5a1b8a910
- SSDEEP
  
  3::
Score

1^/10
behavioral10 behavioral9
- Target
  
  microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe/en-us/msointl30_winrt.dll
- Size
  
  84KB
- MD5
  
  3452c6bba1c888cb1d533015ba5fa27b
- SHA1
  
  5fc55b61ffca9e755767a12bf42f049eb5ec3b70
- SHA256
  
  9c138af0f6743d1a7cdad4172b756e0377cbba1347a9e4e59e223a1706f52158
- SHA512
  
  f23591631b61644e3676a7f205036005bafa886edafe7c45f094dcdedde5a6bd2e9bde69b389ac31d375234538faf95918ebf78201f3d52a3c6cf13a08429198
- SSDEEP
  
  3::
Score

1^/10
behavioral11 behavioral12
- Target
  
  microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe/en-us/msointlimm.dll
- Size
  
  368KB
- MD5
  
  3026e763ee9686a406e4faa3b5668531
- SHA1
  
  ce937618aa07ae944ff958f51057e4df80e2037a
- SHA256
  
  396d7b061c5bc78657dbef3884df6048ad6a699270edc703924034c59af7eeba
- SHA512
  
  197030af01bb318867c216fd4cf66c308ab94ac518d10da31c030db2595bacb5395b5149da7b91d24fdc9e920ae01cf99d5b75a626464f3484ba04206a67fd52
- SSDEEP
  
  3::
Score

1^/10
behavioral13 behavioral14
- Target
  
  microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe/en-us/wintlim.dll
- Size
  
  282KB
- MD5
  
  c6d27581202ae81a3d3326953e62823f
- SHA1
  
  ace50a6926c80261c91265e68aa512154da3bcc1
- SHA256
  
  bcda722e625cc9d7d5743a594ac46341992c015add15ac47f12f3d4eb567e1a6
- SHA512
  
  d4fb358b284fcaab37fe6b60c8eb57a561b095600786aaa701aca14c765bcb7083f92c9cc1da096bf616042f1d48e3467fed45e81cb9b99f8727a5ada3532790
- SSDEEP
  
  3::
Score

1^/10
behavioral15 behavioral16
- Target
  
  microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe/en-us/xlsrvintl.dll
- Size
  
  261KB
- MD5
  
  19eacfab9f4d5e32b35c7a76b3dcacca
- SHA1
  
  99161c9b483771804edad1dd4604fd7c118403f9
- SHA256
  
  48d4124ed87c7e4704adbfb99558f1cf06fa4f1e92b9b4b8df46a69da46300c5
- SHA512
  
  ea3476b8f2b55c542e40391a73e51b1afcee2290684776c2798c3ce7bbf87dfa6bd8f8e88ede6a29d257b80cdc0c33d34e8419013459e7ad6169686ad77e7f75
- SSDEEP
  
  3::
Score

1^/10
behavioral17 behavioral18
- Target
  
  microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe/gfxim.dll
- Size
  
  4.2MB
- MD5
  
  e0330597ab5d99da774a289f262207dc
- SHA1
  
  f7f3ca66d58d2971c51d950035ea4723b9cb8443
- SHA256
  
  363c4fb6efc07e710b550efca08216e06c698ccf8dbfc1a9b89e0aeacba7e60e
- SHA512
  
  63aa5e09c307fb944df804691a48747bd00412dc71263ed6b33db3f7164cf24cb9a45c8a16181c021767a243cb833bb9b87458b63d1498d84ecc77c3acebd466
- SSDEEP
  
  3::
Score

1^/10
behavioral19 behavioral20
- Target
  
  microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe/iacom2im.dll
- Size
  
  25KB
- MD5
  
  7cfd02677f3ec078a9845787b8352f87
- SHA1
  
  2daacdcd0c5bb13396b974d4dda45c39261c0283
- SHA256
  
  8353a30866074719a478dcc5f789eee51291377573d53b14bcf8524111678c71
- SHA512
  
  7163bef3d52e1525135b2abef69db77f3b753c1d710dd688f83c1735887e9488bbd61acda7cfda7b4b365d8bd6dfa5c9ca403b6044923795e7857482c90c1f50
- SSDEEP
  
  3::
Score

1^/10
behavioral21 behavioral22
- Target
  
  microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe/icui18n56.dll
- Size
  
  66KB
- MD5
  
  c2aa07c3647c13f148df8096205fe5df
- SHA1
  
  2df14faff0804a5e000c8746167103fad04e251f
- SHA256
  
  f267d5a506e5d4159d1f3b99e40ca7d129d2b9a25e98cb90c44ddddcc0fd29cc
- SHA512
  
  9b9b7dd9ada82b9bf9a4d01f570b0a81a78da4fe72e52535972169c6c81a3780f12cd2b63f7a55957c51ea0be7dd5bcca1bb5d38a1f0954502c4dd2562bbad04
- SSDEEP
  
  3::
Score

1^/10
behavioral23 behavioral24
- Target
  
  microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe/igxim.dll
- Size
  
  4.7MB
- MD5
  
  4165c1659f68f4be172088ec9966fa63
- SHA1
  
  f0611056047c5688e78b63ead94f232c098855ee
- SHA256
  
  76a43764bae9de4c1ef9c68de09249bda74a0e11f2d232ded6e24d5ab1da2340
- SHA512
  
  075481a6dce3e5a85c365e093c07e505580a58a655154d830a6769eb7d978b6e718dc0cd0206a35609d5e969de68a1e9b41d55e0a19c1cc1b2de245ea9241052
- SSDEEP
  
  3::
Score

1^/10
behavioral25 behavioral26
- Target
  
  microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe/inktotextengineimm.dll
- Size
  
  338KB
- MD5
  
  85a8eec18ec45b0e4811e07383ec0bea
- SHA1
  
  0265c7f78a3d26730442bd28861af7e04fbb05f5
- SHA256
  
  ac8638c98a2e1064105242eef53ca8632d6e0b2e17a915eb2f1558000d5786c5
- SHA512
  
  92c6a9e14f50bb0b5ea036073b52ba6fbd76b34178638ff97154103858b70697004bd2f2db2c0b5412ad58a874c4ebe3ac80c1cc51d6df599692ce622565099a
- SSDEEP
  
  3::
Score

1^/10
behavioral27 behavioral28
- Target
  
  microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe/mmsogdiplusim.dll
- Size
  
  26KB
- MD5
  
  72607c5cb8e5b05e74a73a52e22b9c95
- SHA1
  
  85d4225ae9903181ec38ab5f3f396641aa9c0188
- SHA256
  
  fe79bafa1cc12d5b1dd6d641baa0d28065f74b258d291bc9e61e848bc01e971c
- SHA512
  
  41b874be938808b713c536b95b066796b3a735a7261fa358f6f5626e014bea313f6ee9a446a1debdddf8f660e365db535acc661b92feb5c13cf18a9c6c40b97a
- SSDEEP
  
  3::
Score

1^/10
behavioral29 behavioral30
- Target
  
  microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe/mso20imm.dll
- Size
  
  5.7MB
- MD5
  
  cfae8d31bc91df46dd66bb7f7b567dcd
- SHA1
  
  9bb420b4936515aa4513c615a14ab24df967ccf9
- SHA256
  
  ca7be814b1cad82ea984e305fd18f6327762f5756a8b26c9acfc5e02fd29e3e3
- SHA512
  
  e3cb352ec349dbbbde485bffb1c1dca254a32ddf7cef983fb07aaeaa7655f6c505915609d73879ce26b1348bf4694482e94e22de00d0d2e82fade28082b97449
- SSDEEP
  
  3::
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32