Overview

overview

7

Static

static

7

Pegasus HV...ck.vbs

windows10-2004-x64

1

Pegasus HV...os.ps1

windows10-2004-x64

1

Pegasus HV...sh.ps1

windows10-2004-x64

1

Pegasus HV...hs.ps1

windows10-2004-x64

1

Pegasus HV...SA.ps1

windows10-2004-x64

1

Pegasus HV...ock.js

windows10-2004-x64

1

Pegasus HV...ck.exe

windows10-2004-x64

7

Pegasus HV...oxy.js

windows10-2004-x64

1

Pegasus HV...rmV.js

windows10-2004-x64

1

Pegasus HV...S_M.js

windows10-2004-x64

1

Pegasus HV...ll.ps1

windows10-2004-x64

1

Pegasus HV...per.js

windows10-2004-x64

1

Pegasus HV...nts.js

windows10-2004-x64

1

Pegasus HV...ner.js

windows10-2004-x64

1

Pegasus HV...or.vbs

windows10-2004-x64

1

Pegasus HV...er.vbs

windows10-2004-x64

1

Pegasus HV...em.vbs

windows10-2004-x64

1

Pegasus HV...ck.vbs

windows10-2004-x64

1

Pegasus HV...er.vbs

windows10-2004-x64

1

Pegasus HV...on.ps1

windows10-2004-x64

1

Pegasus HV...es.vbs

windows10-2004-x64

1

dll/Bouncy...to.dll

windows10-2004-x64

1

dll/Guna.UI2.dll

windows10-2004-x64

1

dll/IconExtractor.dll

windows10-2004-x64

1

dll/Newton...on.dll

windows10-2004-x64

1

dll/Vestri...ib.dll

windows10-2004-x64

1

dll/cGeoIp.dll

windows10-2004-x64

1

dll/dnlib.dll

windows10-2004-x64

1

dll/protobuf-net.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    PEGASUS_RAT_FULL_VERSION_SOURCE_KAWAY_OFICIAL.zip

  • Size

    95.5MB

  • Sample

    230331-gh4bnaab2z

  • MD5

    a894bbeb81dca4862ec248eac8f042a3

  • SHA1

    48460ff40ba894ae4083e64c4a5053629fa0ca77

  • SHA256

    e4460dc20a3a9b45a43013e677f809fc2f8fd35a0b31dfaec7cb4670181c7754

  • SHA512

    81f48050441d16c9a541c237da3c4bbcc5f2184d1163d8ffa40ab24d3279db8a270e834ee446a77d2df75b8ef0be27253db07601e3ad35f62163532b9eef0450

  • SSDEEP

    1572864:0ZKXujN2VhDCUmOhMvDN3ywFbLvEi6yvi5olZOe22bX+yKIbY+JQ6HCMTAHOagnD:0vETCUvhcDVFHm5+HHKIbYvICbe

Score
7/10
agilenet

Malware Config

Targets

    • Target

      Pegasus HVNC client/PegasusHVNCclient-main/MessagePackLib/MessagePack/MsgPack.cs

    • Size

      15KB

    • MD5

      6288f439902726cc12b2fc90b7db9b4d

    • SHA1

      7fff648b3af6407ae6615e24201940ed95bd7239

    • SHA256

      18fe6f9530cb3731d57be5e6396a7125665502099a959ef6ae62058f1165194c

    • SHA512

      e019b8caae7d8b0d9059e41234888586f31df98b916a6a13b18a986eb091157ae78ecd00e2633e16a777b566f5555c1fd974746e4ec79a153d339d6bfb412352

    • SSDEEP

      192:Ypt1f8+iCRz5L2X6awvr+fA1MBWV+2NwUHzQ2fLPLU9zjL7ck/A4QfLocyJI/Ttl:Ypn8+imc9T3JI/L

    Score
    1/10
    behavioral1

    • Target

      Pegasus HVNC client/PegasusHVNCclient-main/Peg/ICARUS/Aetos.cs

    • Size

      4KB

    • MD5

      4f23433c2e8d67a35222863fd55c1c3d

    • SHA1

      a94d16d5488a7448cf97f6ae2e90fabf303d58e9

    • SHA256

      9edc583aadf066c7b96d5f4dd630ad5d937cefeea11b82e733245ce4be0bb028

    • SHA512

      ad99a953ced1b00c53fb7e89d84175f575de8c663761b56896c3dcda431436427b5134ff1bda5a46c53b533e947953a7cf80aaa3f331e3538a3a855876261353

    • SSDEEP

      96:CoUbcWhrhSSgGrjJjqjdjxjXrjZj/jPjxj4jojB8M0dOUjJjqjTjKjX4jyjUj2Rg:HSgGnF6J9Xn1L79IYF0dOEF6faXIyE2q

    Score
    1/10
    behavioral2

    • Target

      Pegasus HVNC client/PegasusHVNCclient-main/Peg/ICARUS/Ekinhsh.cs

    • Size

      2KB

    • MD5

      52078926cf2f0bfb822032a8f1352921

    • SHA1

      bec3365363b3342cb594c914a1d206478bab2b27

    • SHA256

      391639c3331d58e3edd6be872fc82439b4286aea70d350606dce34bf12b4e1d4

    • SHA512

      903d95a599a3dba7405dc19b19b948447ce4accbbdfd7642c81a49ef43da98e752d8ade04d82be72cb7b5d0ad75e0e1e034507106d0f3a450026ca661b2e20a7

    Score
    1/10
    behavioral3

    • Target

      Pegasus HVNC client/PegasusHVNCclient-main/Peg/ICARUS/Ektelesths.cs

    • Size

      384KB

    • MD5

      eb19230f4473ca6e81e6bd2175042ec2

    • SHA1

      bf8d23c1879cc443cd736166c0ce686a3b1ada86

    • SHA256

      728d486230e0f8413660b1780bcc9aeed42d286828311208f3ea2fae2af1a09b

    • SHA512

      e95293a2c9e46da8a1e3e8f0a27d2a6a5a8b1a937cb24400cfc54f8e923bdb31acdc80dd7f8a8d8844a30887b9ec7e79b6da4f2cbbca4549916c5e307de2358e

    • SSDEEP

      12288:9WsJ5U7Ev5lvsTNEJSe3FK0T5V2P+feBNz+:DOEB4qJp0c5675+

    Score
    1/10
    behavioral4

    • Target

      Pegasus HVNC client/PegasusHVNCclient-main/Peg/ICARUS/IMSA.cs

    • Size

      1KB

    • MD5

      a1eb0909bf24bfa12acccff60878b750

    • SHA1

      ce7a6fa4e1dfeab87d75a7b54969bbefd0a61866

    • SHA256

      776d814a64cd9ef33f4de204b7e2d842dac411b3deabde91bc54a7c81a10d1c0

    • SHA512

      06e8f3583c3b25e7a2e4498cc3b4e4bab8d61ff1943b11a45767d2c788f501fc61e596dfa4ec52d915f00e7dbc943e1d2a29a0dbf4f4beaa403ebfcf00fefd16

    Score
    1/10
    behavioral5

    • Target

      Pegasus HVNC client/PegasusHVNCclient-main/Peg/ICARUS/PegSock.cs

    • Size

      9KB

    • MD5

      f5ea2f8149f4ada8c2b2f328be68247a

    • SHA1

      fcc112b654cff8b2532dc6a7d7ba7bfaac0349b0

    • SHA256

      96bb66aace4476450898008babc0e50282d2cece980b7074693aeed6eee72a41

    • SHA512

      53153bd222df37537edfa7687d226364fe638bc90d363b760b4c464a78ebfb158120e79a84de0ca333506b027f2d1af65c595b34c7d912c0492798a9344f1df9

    • SSDEEP

      192:YbFgd0pzMnX64ZnfBOAKE8LprLq50zLhnQXYz5yHLd+4aL7r8:YB67nX64ZnfBnKE9CxnuZB9T

    Score
    1/10
    behavioral6

    • Target

      Pegasus HVNC client/PegasusHVNCclient-main/Peg/Properties/crack.exe

    • Size

      18KB

    • MD5

      2a62b2d78f2c0f2efd39f07641d231e1

    • SHA1

      30e17f27edb951a306fd907e37aacc170bf3c7be

    • SHA256

      b4b1dd5fc206b0089ca1e7d613d6475a9a06bbcf4c207830d7c0cf02a94ae79a

    • SHA512

      4246bb79753f803aaeef24ec6bb9f5ec23859f2cc24d3cfb58c901722cd089b98cf8a2eae6763d18f1a2a330f71887aa8dfbfbd2bb92865680c2f1135a371ca5

    • SSDEEP

      384:F4DIh6WG5tV+xSjdto26g2S0olp6NaUkBq2CimESaz+kz:6DIhK3gG/6rsYjEJSkz

    Score
    7/10

    • Drops startup file

    behavioral7

    • Target

      Pegasus HVNC/PegasusHVNC-main/PEGASUS/Design/FrmReverseProxy.cs

    • Size

      23KB

    • MD5

      bc434304e73bb9ee751f7e337a6fa854

    • SHA1

      1299e0a131337f8af34c5669c0d6ee286aab7471

    • SHA256

      861391c172c052340723ec142473c6b32ff70f4603915718a8a58eba39878ec6

    • SHA512

      f809239e9f9c20ae8bf5f8581c2afa2887643728607ef54fbbc6d7e72ac271133cd24cc00a22d1758e65a86ad8564464c5703b6ce012c47a341bc0febfa89b1e

    • SSDEEP

      384:YfiIeYn3jacef49dg84kchSYOHlAjd7OMk6t6piUda5pY3/96/5B2STRUtxT58aI:LYnTXeA9dg84k0OH+dOR6t8iLWNgHqQf

    Score
    1/10
    behavioral8

    • Target

      Pegasus HVNC/PegasusHVNC-main/PEGASUS/Design/PEGASUS/PEGASUS_HVNC/FrmV.cs

    • Size

      60KB

    • MD5

      5b0cafedd951c9b846689fcca5e50be0

    • SHA1

      2a9519335e30d3974663b8b0ef065f386e72f0bf

    • SHA256

      5649a14c8d13adc711dc600031d7a6552d767412c5f8fe2e4c0d16a4a9a7b7a6

    • SHA512

      62210b707a86d2036bf545c0c8a5521baf4075d944894f88c3d314ac0c519328b4c74daf7819f131a5a1a7788fbc115317507c521fab890e80c57b0a63e245ed

    • SSDEEP

      384:YfivlaNoGgHNxGAG9r199kchSZChnUwcefd94A9R5IufhvIdefX8m48A6pm4oMaD:XaNHgHNI/9r1XkGif1W2CM

    Score
    1/10
    behavioral9

    • Target

      Pegasus HVNC/PegasusHVNC-main/PEGASUS/Design/PEGASUS_M.cs

    • Size

      340KB

    • MD5

      4657a88f8d188b03aa650000780b73ad

    • SHA1

      462bd3d72baf66783777c7240fd4fc73235adf63

    • SHA256

      cbb7af26163a36f6223789619d2736b556a4ae498f39f3f61c2a21e2585404ad

    • SHA512

      b0e96ba624936e3193eba13892ef0f0b0ba31f5e4ede0673bcbb74d7f10ca245a704e72dd159224a3ebbe05037865a87fd5bcba0958d663c46050220b557344c

    • SSDEEP

      1536:urW2Wbt55T0dd9ODa+AqH09ckRI5e7nUxHqjJ9k3SOAzGdDFYPiL:bt55T0tODa+dkfGdDePiL

    Score
    1/10
    behavioral10

    • Target

      Pegasus HVNC/PegasusHVNC-main/PEGASUS/Design/PeToShell.cs

    • Size

      224KB

    • MD5

      9516b400db12280a7d6e93a3a5533eef

    • SHA1

      18245d254c544b4c973ebc2862183f40f89192e8

    • SHA256

      802de50003168f93139c76ab9f4035c282556e66015ec918caed5fc4c0bc5d37

    • SHA512

      a5c50710cc986fcfdb1edad62f083636542742c09ce09e3aae755839f0414b147445b291b8f9c5df484fdcde04ddc50991e6ec9193a8813a4ea5444e5d820740

    • SSDEEP

      6144:1Wn2HDGA2MeRpU4mqxqmMMcQ94H0YmZJOCM766NGoxV19rMSqUEQ8bC+u:n2MMpU4mYpzsB5MBFbFu

    Score
    1/10
    behavioral11

    • Target

      Pegasus HVNC/PegasusHVNC-main/PEGASUS/Design/RenamingObfuscation/Classes/DecryptionHelper.cs

    • Size

      355B

    • MD5

      a3d83449f812c19fddf10d9e283ff555

    • SHA1

      8c27a9aa4e7af47cb6450d9de539774f06140cd0

    • SHA256

      96605ba524eb3bc7161e639ab01431f4c20ee6be82b4edb13014a22e9c4e5d40

    • SHA512

      abec55226cdcebcd33d004cef2355ad3c5f191b8d5fec5e1ceb65e635fc2b06d0129543775c4e1186a8ae46394e71325d82e43e281647fd160afa9b9a278ad6e

    Score
    1/10
    behavioral12

    • Target

      Pegasus HVNC/PegasusHVNC-main/PEGASUS/Diadyktio/Clients.cs

    • Size

      6KB

    • MD5

      835ec60f32aa77e3cc4c520f2af60a7a

    • SHA1

      fd17e4492ac911390dc18a7aa0357d497d4734d3

    • SHA256

      6fb12af3200bbca5e969d2a930e824cdbc052b6490c540f2873beededa089520

    • SHA512

      e4338561bae3f3ebeed948f02210d59b16adce6bcfca6c33fcb6c186334dcc794a8041885eb5d772cdb99b6bd1cdd64939fdbaf9b36b1407dcc0f9b93b5d7b9b

    • SSDEEP

      96:Coz0U2ntlKV0Vds48JT4Y7p6+96f4jcfA4wYFtloH/SL0kTP:TyyWdP8JlEwjs7tjL0G

    Score
    1/10
    behavioral13

    • Target

      Pegasus HVNC/PegasusHVNC-main/PEGASUS/Diadyktio/Listener.cs

    • Size

      1KB

    • MD5

      304e43aab657f5b721a5ea0a02993558

    • SHA1

      3e6d5100847a50299c7112625c52db956b4b45d8

    • SHA256

      f39c99cef96b841ac405a52ea6ef3c1641f3fcdfc50457799c5fa56eee647b0f

    • SHA512

      6df9f5baba89ff6c981b3b00dee538a5f0cbb382117488f41b7420c00fc27ae8fa471246d6e20ca9d19b7527882661b69e8ebbd6fe5865b9fa5d568acdc889d8

    Score
    1/10
    behavioral14

    • Target

      Pegasus HVNC/PegasusHVNC-main/PEGASUS/IcarusWings/HexEditor/HexEditor.cs

    • Size

      22KB

    • MD5

      00cf8c842f08766ebf23fe8aa558786a

    • SHA1

      306596a788e73383e4b663ebd45602fa7a674091

    • SHA256

      c8e548de7af1a476d22ceaac70983453771c833ac571dfe0c55fe135fc1da314

    • SHA512

      d5ffd3f7e2226c68ed94eaa2764138ed1a0b81df247f95f9eaa956f062af16a9741e88d920a415c2ee96b09bd5e9f0cab35cc514988c71f243cb471c8a58f14d

    • SSDEEP

      384:Yf6N4B69AwhwHi67LFm1b4H6J3JGXE/WRBAh/It2rQopkW2FPIiaT0IpN3gohpA3:nGB69AwhwHi67LFm1b4H6J5aDRBAh/Il

    Score
    1/10
    behavioral15

    • Target

      Pegasus HVNC/PegasusHVNC-main/PEGASUS/IcarusWings/ListViewColumnSorter.cs

    • Size

      1KB

    • MD5

      6f8c6cc050459f1daed3b5f80d26a786

    • SHA1

      c64ded0456907ee5ff1c31fa3a97df1faa357a41

    • SHA256

      4fddd77770f1eae8f98cec0f6dfc107392965c32b78fb182b5801455a0de0f7a

    • SHA512

      8517800b5831cddbe0517d83bb3de2e0bdfb64a72c61405990fa7f1b3a8d220ac5103f4b6a8cf026c5438eceb1f5d67d15602880e801dc3e814ebe1270cdfd09

    Score
    1/10
    behavioral16

    • Target

      Pegasus HVNC/PegasusHVNC-main/PEGASUS/IcarusWings/RegistryValueLstItem.cs

    • Size

      1KB

    • MD5

      783366e393e83ca443ae07402f4cb859

    • SHA1

      abdef7fecf2c0da3c68d2c856a7f755ba3b858ef

    • SHA256

      f94c86f04f8c133bad9da74dc4620a49e004cb518372dee662e572fa1f37c347

    • SHA512

      b0fe6cc10227d87c4c43051d9f7bc4cd551d1313c80157e02337cc2220737330fa321fa2d12100834c1c9ce10f23b34c0e916370fb6a744782a53966cfc77711

    Score
    1/10
    behavioral17

    • Target

      Pegasus HVNC/PegasusHVNC-main/PEGASUS/Metafora_Dedomenon/MsgPack.cs

    • Size

      15KB

    • MD5

      2035c4eab30d06fcc7528d9a52d1d558

    • SHA1

      9debb74bca0e6d3ca2a9a4939447e08698c7155a

    • SHA256

      291c67cc7cdfd353df2c44839a04701856f11576c1842fc6dd94748a032fb135

    • SHA512

      6689551bc6db5511874d13e897beb293e5de89ba315fd513ea1b289bd95cad70d0ab7cd29b2911d1b12a250ba4d3e727665246c29fce6a905b9bb05ce34085c7

    • SSDEEP

      192:YpuFNk8+iC4z5L2X6awvr+fA1MBWVe2tQUHzQ2fLPLpUQjL7ck/gYw/LIcyJIfzk:YpuA8+ilBj3JIfQ

    Score
    1/10
    behavioral18

    • Target

      Pegasus HVNC/PegasusHVNC-main/PEGASUS/Metafora_Dedomenon/Server.cs

    • Size

      16KB

    • MD5

      522067429d5d424340a4e2609bd32280

    • SHA1

      5f8afbe32af44c7108e5118244dcc23d8d689f42

    • SHA256

      b6ea4c5381786211398bab060c90a1908b6c8827e8d1fbd56a930a61f2259296

    • SHA512

      5658bc63d4911f89b5741b723bb33c7639a224a5f06dff649f9e8cc749ee8dd230d7cb33c645ee118fdfcfba043c2eda18d020d30eb4d789a66b0ae75faf3052

    • SSDEEP

      192:Tu2T3gxLpcV+SR2uBmia/DeTgpXAv1AMqe0edaW2hg1zh8bPoS6vDClKckBjADLx:Tu2zoFC+9P8EwvmnWveSDuhYWwv2

    Score
    1/10
    behavioral19

    • Target

      Pegasus HVNC/PegasusHVNC-main/PEGASUS/Pegasus/Encryption.cs

    • Size

      6KB

    • MD5

      7fbeef0844c4b1d98a437f47863d0080

    • SHA1

      30d4262d9af14548d28105cbae653f1e737553c1

    • SHA256

      b7e83e4188e5e511c2bc9d1a5fc024ad2f3e93962d7fbe5f8965a05311b6048a

    • SHA512

      072111d695b2b1db9dacc5d96136179267dfcbd8d534c15a8abff5c9980fa18eabf9d0616eb4f7ed744d69828bb0a0272850c568947e44ab3a5d848932704401

    • SSDEEP

      192:vY+h+vsA+h+e9+h+zs5QHwzfc+aitgcl8y2+28:vYOWOfOQQLcwtR8yHF

    Score
    1/10
    behavioral20

    • Target

      Pegasus HVNC/PegasusHVNC-main/PEGASUS/Properties/Resources.cs

    • Size

      1KB

    • MD5

      493c9d879c26d50a59d51474884163c5

    • SHA1

      ce38dca0352eb44c60f7bfee139948440f818dcb

    • SHA256

      0a7daa30c2e91e18793f8269fbb9dd6b7c79f2b9197ffddfecd068cdaedc68c0

    • SHA512

      ea771d082ec63f965de8d6cbf372230f8ad40b62a5cdfea88f98f1de0fb381acec7d39b8a92906eb885a5a497183d76aabb196f58112c8daf37366e6f69209d8

    Score
    1/10
    behavioral21

    • Target

      dll/BouncyCastle.Crypto.dll

    • Size

      2.5MB

    • MD5

      3551343fab213740bbb022e3a6dcf27b

    • SHA1

      de67fb4f9d58db4a860a703c8d1f54ff00ff9b1f

    • SHA256

      5530dff976bc0c889076b97ca695bdb97ef07f63449d32f893ed32398ed8bfe6

    • SHA512

      e90f51053e1d4b0ea1f7458229de92174abf0781c766290da4de5cc8dfcfb730998252bf28b36ca5070978fdcea8b97f0aea6a47b875dd34173643ac0cb46c42

    • SSDEEP

      49152:3CTzhVM0AU5d3UOhq8hmReOUJfd5T3D+VTQlgQeCKbu9kQLO0:GwU5d3vhzhmoOmfd5rqX0

    Score
    1/10
    behavioral22

    • Target

      dll/Guna.UI2.dll

    • Size

      2.1MB

    • MD5

      d33cf2051c421320177535dd546dcb61

    • SHA1

      4638fb4cfc20213eaf8b5f9b27a6cff56b41a97d

    • SHA256

      b1fa91f17ee658d07548dfbd436f530259f0744c86bd472147a9619da28df58c

    • SHA512

      db9df298466e7c8e69a0336f5791f3e01615b9e42892fafed474def69b85a0d3e8c8756a5590dc67f84ed71a5dd48326318dd345a32afc37c4a57aee9a2c39ef

    • SSDEEP

      24576:MSedfqPNDZZmH0bT8rsLezqI97KPNx4ZZOM9MohrmzW3BnU:MSbsATNF0OMRm0Bn

    Score
    1/10
    behavioral23

    • Target

      dll/IconExtractor.dll

    • Size

      10KB

    • MD5

      640d8ffa779c6dd5252a262e440c66c0

    • SHA1

      3252d8a70a18d5d4e0cc84791d587dd12a394c2a

    • SHA256

      440912d85d2f98bb4f508ab82847067c18e1e15be0d8ecdcff0cc19327527fc2

    • SHA512

      e12084f87bd46010aded22be30e902c5269a6f6bc88286d3bef17c71d070b17beada0fe9e691a2b2f76202b5f9265329f6444575f89aff8551c486eafe4d5f32

    • SSDEEP

      192:7f77J4cGYyfQknxLvIgyLY5xJeU5pPpZlEAs:HS2yINgyLYLJR5wl

    Score
    1/10
    behavioral24

    • Target

      dll/Newtonsoft.Json.dll

    • Size

      685KB

    • MD5

      ca38dbb7b2882b7fbf148138f0aedc3b

    • SHA1

      0d3bb0200b464119670c994fe5b39bbff21cfe3a

    • SHA256

      fcf7ccb16c0734d4ced47670c1328b6016a667442c897aeb77ed366f04a89f34

    • SHA512

      a605d50ee95bb39887013e25d60a995f0d0b21949000753263813a3a96c203f011e8d9b010b59f9b66e9fc0e4ab763d040e3db1279728dd42efa76869443cbd0

    • SSDEEP

      12288:Vf9WGsSVSM2mxL2nRiOr8gUckc6V/g2GhBzj05cHd:1XNL2PVh6B+Bzjmc

    Score
    1/10
    behavioral25

    • Target

      dll/Vestris.ResourceLib.dll

    • Size

      76KB

    • MD5

      944ce5123c94c66a50376e7b37e3a6a6

    • SHA1

      a1936ac79c987a5ba47ca3d023f740401f73529b

    • SHA256

      7da3f0e77c4dddc82df7c16c8c781fade599b7c91e3d32eefbce215b8f06b12a

    • SHA512

      4c034ff51cc01567f3cb0796575528ca44623b864eb606266bcf955a9259ed26b20bec0086d79038158d3a5af2ada0a90f59d7c6aae9e545294fe77825dbe08b

    • SSDEEP

      1536:CSSYikTF0Z+sFGu11tIcyI1MtI9eDG3fL7:CJYD0Z9FGu11teI1r9ea3

    Score
    1/10
    behavioral26

    • Target

      dll/cGeoIp.dll

    • Size

      2.3MB

    • MD5

      6d6e172e7965d1250a4a6f8a0513aa9f

    • SHA1

      b0fd4f64e837f48682874251c93258ee2cbcad2b

    • SHA256

      d1ddd15e9c727a5ecf78d3918c17aee0512f5b181ad44952686beb89146e6bd0

    • SHA512

      35daa38ad009599145aa241102bcd1f69b4caa55ebc5bb11df0a06567056c0ec5fcd02a33576c54c670755a6384e0229fd2f96622f12304dec58f79e1e834155

    • SSDEEP

      24576:TRgJE8pkCLLe/K43EnnnclQwIqJY0OjklWXQMFBRpmkL/59ah0USm3uwl00odi9p:TRgfX/59a6USdi9Ues6bV6boLO6r

    Score
    1/10
    behavioral27

    • Target

      dll/dnlib.dll

    • Size

      1.1MB

    • MD5

      de0069c4097c987bd30ebe8155a8af35

    • SHA1

      aced007f4d852d7b84c689a92d9c36e24381d375

    • SHA256

      83445595d38a8e33513b33dfc201983af4746e5327c9bed470a6282d91d539b6

    • SHA512

      66c45818e5c555e5250f8250ea704bc4ca32ddb4d5824c852ae5dc0f264b009af73c7c1e0db1b74c14ee6b612608d939386da23b56520cac415cd5a8f60a5502

    • SSDEEP

      24576:m+pL+hwfQvqx+yLjynb1YNzh/CNX7fegPeH3hid3Hc9ZEu5DkU6FPepU1VWv7fo0:sxvCLUJ

    Score
    1/10
    behavioral28

    • Target

      dll/protobuf-net.dll

    • Size

      278KB

    • MD5

      9fbb8cec55b2115c00c0ba386c37ce62

    • SHA1

      e2378a1c22c35e40fd1c3e19066de4e33b50f24a

    • SHA256

      9f01d9f2ed07e630ec078efa5d760762c3c8ad3b06e9e8a9062a37d63d57b026

    • SHA512

      da0211d1c9ba0a59616bc15de80a1fed62b0405cad3b11ae4220ef1488c7837634aad67cbc8b484621a2a6288ef5e424cd816a2523bdb6167abcab76f3ac1a04

    • SSDEEP

      6144:1kWu4n53u8Q5w+8yxIxM2NUpwMTRHslVz:G4n5e8kXOMkUp9GlV

    Score
    1/10
    behavioral29

MITRE ATT&CK Matrix

Tasks