General
-
Target
lan.zip
-
Size
8.9MB
-
Sample
230303-q4gt8ahb5x
-
MD5
0f7385969e2932c76dbb955a99cde674
-
SHA1
7fe6f3f950061fddf18a7f62a0908a556ec4ca82
-
SHA256
4454e4ab5ba2a9276ee993fbcc1d1c667d60ead18e9ca4c7161d142ed1d7ab1d
-
SHA512
36ac839146ca23b4eb80a7a577210f259dd45967258b82ab565ffaddff875464749a51f1e50729bbe9764a0cfdb8655daaca2bc93d66cee54280f5bafb173de9
-
SSDEEP
196608:N85vGDQxEOfrZYejp3XoAWy32Prr0dFCCeZEA0o0cui:N84y1YCNXN9g4JeZEDcd
Malware Config
Targets
-
-
Target
lan.zip
-
Size
8.9MB
-
MD5
0f7385969e2932c76dbb955a99cde674
-
SHA1
7fe6f3f950061fddf18a7f62a0908a556ec4ca82
-
SHA256
4454e4ab5ba2a9276ee993fbcc1d1c667d60ead18e9ca4c7161d142ed1d7ab1d
-
SHA512
36ac839146ca23b4eb80a7a577210f259dd45967258b82ab565ffaddff875464749a51f1e50729bbe9764a0cfdb8655daaca2bc93d66cee54280f5bafb173de9
-
SSDEEP
196608:N85vGDQxEOfrZYejp3XoAWy32Prr0dFCCeZEA0o0cui:N84y1YCNXN9g4JeZEDcd
Score1/10 -
-
-
Target
ILMerge.exe
-
Size
668KB
-
MD5
2bb6322885e6ca0986206de174e842c9
-
SHA1
c5ea70169106d32bc513d28ea76ae8ea1e49380b
-
SHA256
8110d740b485bcb06ff406b17001714c3a146fe6517098c9dc90d812b83389fd
-
SHA512
9750180c54a5bd8f0e1fa8a8f529364430f2ef444efbf8ac51e8d2a0aaa4e3d21fe553865ba8567c7c19e4ae84d04b20464f391743e88c52c00cac0bf20fc2a7
-
SSDEEP
12288:8E8Q+HlWx+TV7109nrRoTQhfL40+FQT7gWoi:hn+HQp9UQ2dFNi
Score1/10 -
-
-
Target
Luxury Shield.exe
-
Size
17.1MB
-
MD5
be0d52d163806c824bdbcf4fdae1c1cb
-
SHA1
f7421212d0757563a8f5faa95ba148439884523d
-
SHA256
37bd9f4d88ff52c03a663d4a4bfbe2fcfc3232b854b3b56ef41116f522373a87
-
SHA512
8d4c66fb37ac46ac64f82b198e499f344960ca40386970b50538cc5d1c07a92b299cb04d05c37c4018ee5108ed8d2509694bd3b93f43cd70afa03b1350c21065
-
SSDEEP
196608:4dY4ohMRfIGA5v68+v+D+r+pqpvJiADKMxE9EPTVIchOXC:+YhhHJ6SqpvfDlxE9yVeC
Score7/10-
Loads dropped DLL
-
Obfuscated with Agile.Net obfuscator
Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.
-