Overview

overview

1

Static

static

1

Phoenix/An...rp.dll

windows7-x64

1

Phoenix/An...rp.dll

windows10-2004-x64

1

Phoenix/Co...le.dll

windows7-x64

1

Phoenix/Co...le.dll

windows10-2004-x64

1

Phoenix/IC...ib.dll

windows7-x64

1

Phoenix/IC...ib.dll

windows10-2004-x64

1

Phoenix/Ne...on.dll

windows7-x64

1

Phoenix/Ne...on.dll

windows10-2004-x64

1

Phoenix/Phoenix.exe

windows7-x64

1

Phoenix/Phoenix.exe

windows10-2004-x64

1

Phoenix/Phoenix.exe

windows7-x64

1

Phoenix/Phoenix.exe

windows10-2004-x64

1

Phoenix/WebDriver.dll

windows7-x64

1

Phoenix/WebDriver.dll

windows10-2004-x64

1

Phoenix/We...er.dll

windows7-x64

1

Phoenix/We...er.dll

windows10-2004-x64

1

Phoenix/se...anager

ubuntu-18.04-amd64

1

Phoenix/se...anager

macos-10.15-amd64

1

Phoenix/se...er.exe

windows7-x64

1

Phoenix/se...er.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Phoenix.zip

  • Size

    7.8MB

  • Sample

    230222-trf9psed3x

  • MD5

    697724a157867db81cf844552ee3076f

  • SHA1

    f7bdbce4e465453bf32c0831a86ffb03f44d296e

  • SHA256

    496b9ab44879aa37bbdb97a2cb70878becbe101fe80514eeb07d47cc2fb44179

  • SHA512

    dd98fa528edef9162ca78d14a65a126ffee65276cd6d3abd4d7c1a6e62f48c419442d31205af93030d5d65940d6073ec3723b979ace6bed5a9852e8efb1c6d45

  • SSDEEP

    196608:nI+ggwjQl5udfb9+ZRAPSKhVbfaMYMuUrH+oBqKfnu60:IxgwjQl8bsZRAPSKhlfaPUrH5Bb70

Score
1/10
linuxmacos

Malware Config

Targets

    • Target

      Phoenix/AngleSharp.dll

    • Size

      861KB

    • MD5

      ba231be096738680abadcb0504361b6e

    • SHA1

      7eb1609f8643d1964ec252f897c05a10345b7d85

    • SHA256

      78e304f09e0af840441733b89bb3c268109fa1c4200085a7c1edb097b6723d7a

    • SHA512

      3a662033bbd0688cd76da84970d988c6932912a7cbac7f6ed1b26e32f480e9ac4866609764334a610c3b8b52de4d52c557e23d3ea111f154ff41e426d14923cc

    • SSDEEP

      6144:JnFGmSD2smAF5DvLpN15eNcWx0x1DOlzWrBmXgis5zEJ0rlz6zoMJsJG/YLfjrkS:J8XlrNHwqd6aD26o2GckUMIC5Yq6ku

    Score
    1/10
    behavioral1behavioral2

    • Target

      Phoenix/Colorful.Console.dll

    • Size

      88KB

    • MD5

      89fab48df74cab3bb13ce012a1d3021c

    • SHA1

      9e26dc19e7126be8fa150e2798e3be14c059afbb

    • SHA256

      b8f2f0e9263129742e11bbaf56e0f082499a68d5113959b6a857ed51aa8a2570

    • SHA512

      14a778f15a7e2bfa178aa73c6c8776b7812116915318ae6202250f66faacf276e514c97628d104ae687efe9dcbb14a0ac48b2658fc1218bd2448cee473132c52

    • SSDEEP

      1536:1yQJm5aA5hedAW4B2nBKc6dQ/lawQ/ddbrL:1ccA5QdO2B9Wsl/Q/PL

    Score
    1/10
    behavioral3behavioral4

    • Target

      Phoenix/ICSharpCode.SharpZipLib.dll

    • Size

      243KB

    • MD5

      4fe179ef90fa134b8e564ab7ff9bd903

    • SHA1

      350090780710aa3448e2bd3b814eedefcc6026a5

    • SHA256

      d35291416c0b7dec5232486b26406f4d02da190ca8237b53542d20f24135eac7

    • SHA512

      321092782a5ddc78b3cd1b5395ae8818e0cfab762b48f0fcd9bde4b1ab9c40b374d3a910efe67e6fead3b7aecf378055c7feb97e3c8198f83a13bd6612a23411

    • SSDEEP

      6144:6Po8JC1HXfrusPX/qQCSdAFRLtaMimzXo0f:69C13fr1v/qO6yiXo

    Score
    1/10
    behavioral5behavioral6

    • Target

      Phoenix/Newtonsoft.Json.dll

    • Size

      679KB

    • MD5

      916d32b899f1bc23b209648d007b99fd

    • SHA1

      e3673d05d46f29e68241d4536bddf18cdd0a913d

    • SHA256

      72cf291d4bab0edd08a9b07c6173e1e7ad1abb7ab727fd7044bf6305d7515661

    • SHA512

      60bd2693daa42637f8ae6d6460c3013c87f46f28e9b0dbf9d7f6764703b904a7c8c22e30b4ba13f1f23f6cbee7d9640ee3821c48110e67440f237c2bb2ee5eb6

    • SSDEEP

      12288:1eos/POdGV5jfWrV/9Yeh9eRcyLfLYtT5mWxTZ/B7jW5JMtRRpKzQk:10/POdGV5jfW5VnhFyvOB7jW5JMty

    Score
    1/10
    behavioral7behavioral8

    • Target

      Phoenix/Phoenix.dll

    • Size

      337KB

    • MD5

      9d2fd2fbfa89da32d7be55fbc0456008

    • SHA1

      6adbb69ec345b88c40d94724a93b0f32bdd7a35d

    • SHA256

      d087c07f117bd12f1881192c46105dd436d6df053a594b34c6509447d6342acd

    • SHA512

      35f05a3de6078ebcc54147299128128041aa3b3dd51128eb489d6db733b75da471fae6e9d9e4ff1dae8c45e43889b1aed11fdb88353d34d27aaaf1d0e0a9cdcd

    • SSDEEP

      3072:rm6RkKTbaALtiR2QDTpYAA8sHqAQA/VoxrdtSZtV2u+Q:rTTK2gTiPHqAZ/exrdKV2

    Score
    1/10
    behavioral10behavioral9

    • Target

      Phoenix/Phoenix.exe

    • Size

      414KB

    • MD5

      ec4d07a1cf9fe38c0a3d38f43acadbef

    • SHA1

      0d0a5d4054389ceeffb3c58a9a29f59f77598d88

    • SHA256

      6bd40edf9f7a61561f1c0a061fc6715d551586c8db6655d9a5a30ce828887918

    • SHA512

      d828317992968170492cac0ff3b1b34822dd8b5c891e008006da8451da7ee2712b8146cc01c15901b018046d9439fa73a4f406adf114bed4dba273a483ba7693

    • SSDEEP

      6144:tIvK36o44QadTWYl/IK12gTiPHqAZ/exrdKV2:tIvKKadoS2aQYxRKV2

    Score
    1/10
    behavioral11behavioral12

    • Target

      Phoenix/WebDriver.dll

    • Size

      6.0MB

    • MD5

      bd33e9b536793f5cad22274e26439520

    • SHA1

      46bd26083a11f0f124104563799136a32049574a

    • SHA256

      fb0f5fddf5dea7d189f88ae5a15e23069428c85424c2ebdd6aa0824e2a1d43f7

    • SHA512

      12f07f57d2c5616cf57137ad42465f58b03d19eb229012d8622145377ab8a60b2233fb34bd9301c2ec3c708d68582cb4205fcd9c7899e4dc2ab271d25907696e

    • SSDEEP

      49152:oIgABcyGvlvRKMJUBGZTbZFEZB4XU4yOe54znQgO:o/ABWkBGZTTE4

    Score
    1/10
    behavioral13behavioral14

    • Target

      Phoenix/WebDriverManager.dll

    • Size

      28KB

    • MD5

      e46c940c1b5063c0843ad3fc356f075c

    • SHA1

      3a8a46d8b6a6d7bc5dce47ac6de7f80b7b6dd74a

    • SHA256

      0b99bfe6a17ff026d4f762dbca7d1a6b1cdfc3c444b93a33b275475920e84612

    • SHA512

      76aafb88e50968dbe7c4c131c11252ded77c74b4ff610e959e7cd15c757822d45581ee9cd8b87049b23739d7f63b3619a1a46f31e94fccbacc84a54532317fb2

    • SSDEEP

      768:bH14xO5hrj2PIgEgb/4G5pU/upU0KpFp9B6heR:QO5hrj2jEO4G5pU/upU0KpFp9B6heR

    Score
    1/10
    behavioral15behavioral16

    • Target

      Phoenix/selenium-manager/linux/selenium-manager

    • Size

      3.9MB

    • MD5

      6e0e8d086bbd804f2e7b8bac99453d9e

    • SHA1

      0a4c23a12bc73d781cee661559d9868855d0f6dd

    • SHA256

      99a3039f3ea56a89424e6b2085e0b64621425913472ac233a0815d6a4c177817

    • SHA512

      4a367bc23dc2760ba49fbc736193ba1dffeb70a2c4fff97c25b0036fc79b24ec3d0ebbfdd7f8368ccbe803d5e4c078d6adc1a85432be9af6265eb99c288133d9

    • SSDEEP

      49152:tshvNZyQaYFD5VCaYFUG1gnBlIQVO31H+nTzixYwKNx+maI2hYcUG19IU6iUevM:tshbAjOUicUL+UeU

    Score
    1/10
    behavioral17

    • Target

      Phoenix/selenium-manager/macos/selenium-manager

    • Size

      3.4MB

    • MD5

      13034fe2a51d88c5e454f805263a979b

    • SHA1

      a66578d23769730d451ff20a746e460c734fe7f6

    • SHA256

      ce0e45ac9edcfde5443d10664e062ed284b71094a46c5d7b94259bfb14d11c1b

    • SHA512

      1ac9aa19189864492e1c649cd4ba5953611e877367695b164b14c010626b055793db3e052ed749d1bda3e6d26abff1699efd34a9cfa13d314f727f6148263719

    • SSDEEP

      49152:+n9dyvEVeBUYQHa4SW2bqZUpioHZRxj0bNSb/2bcE0rkLnXucOu2l+k014VIU6il:Up26ZzbcEF5k+kzy+wt8FyTA

    Score
    1/10
    behavioral18

    • Target

      Phoenix/selenium-manager/windows/selenium-manager.exe

    • Size

      3.3MB

    • MD5

      0d0f8fd7d7743c404ebde5a912bd7e01

    • SHA1

      4ab712747be3ea26c5b6c4d1708b0e41bcde2184

    • SHA256

      b178fdc92ae8a9df9ab5ea0450b5766256130dcddf5b171911c84c1844defd7a

    • SHA512

      5dcd2ca86023d1ad44496ed03813031a598890edca43f43cfd2f05b875d26a111a26a4ef6f8e5cf8cf6b687a65141bb7fddde3338451c57388d9e0435444c630

    • SSDEEP

      49152:zq3qfVzxJ42+ngCV67a2i48e/5pLVk0WRXb94QsG1TXIU6iKSb:ODg4Jle9k0Wb4QsV+KSb

    Score
    1/10
    behavioral19behavioral20

MITRE ATT&CK Matrix

Tasks