Overview

overview

10

Static

static

1

Full-Best_version.zip

windows10-1703-x64

4

Full-Best_...on.exe

windows10-1703-x64

10

Full-Best_...ju.xml

windows10-1703-x64

1

Full-Best_...ed.xml

windows10-1703-x64

1

Full-Best_...to.xml

windows10-1703-x64

1

Full-Best_...ae.xml

windows10-1703-x64

1

Full-Best_...rs.xml

windows10-1703-x64

1

Full-Best_...nk.xml

windows10-1703-x64

1

Full-Best_...no.xml

windows10-1703-x64

1

Full-Best_...ra.xml

windows10-1703-x64

1

Full-Best_...le.xml

windows10-1703-x64

1

Full-Best_...ia.xml

windows10-1703-x64

1

Full-Best_...ic.xml

windows10-1703-x64

1

Full-Best_...ee.xml

windows10-1703-x64

1

Full-Best_...sh.ini

windows10-1703-x64

1

Full-Best_...sh.ini

windows10-1703-x64

1

Full-Best_...an.ps1

windows10-1703-x64

1

Full-Best_...an.ini

windows10-1703-x64

1

Full-Best_...se.ini

windows10-1703-x64

1

Full-Best_...sh.ini

windows10-1703-x64

1

Full-Best_...an.ini

windows10-1703-x64

1

Full-Best_...la.ini

windows10-1703-x64

1

Full-Best_...sh.ini

windows10-1703-x64

1

Full-Best_...se.ini

windows10-1703-x64

1

Full-Best_...in.ini

windows10-1703-x64

1

Full-Best_...te.xml

windows10-1703-x64

1

Full-Best_...us.xml

windows10-1703-x64

1

Full-Best_...rt.xml

windows10-1703-x64

1

Full-Best_...rd.xml

windows10-1703-x64

1

Full-Best_...le.xml

windows10-1703-x64

1

Full-Best_...ze.xml

windows10-1703-x64

1

Full-Best_...ro.xml

windows10-1703-x64

1

Resubmissions

14-05-2023 07:35

230514-jer6bsdd61 10

01-04-2023 07:48

230401-jm77hsgg63 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Full-Best_version.zip

  • Size

    5.9MB

  • Sample

    230401-jm77hsgg63

  • MD5

    ca4d02a99b0ecf2343f0f4b3248f26e7

  • SHA1

    419a4e894b0db65980ed6fe2b5f766eb4a0a5bb3

  • SHA256

    671cc9e1189a0b67fb5ec59c8538865b91038021eac747e4d3db0ed13790549c

  • SHA512

    fcc3683b740039aecba0802641c7adc5d8ab8960a24b0758353834db53452c1311dd2d45ee87d121ac483a244cec182b4ef76ea89ad7bf2239694258ace92391

  • SSDEEP

    98304:duhx+eGVwmJxn1iBB8mkgbdn96+SFCGOX+EMg9YpJNoz7WFHWQZRKEiR+n:dMsdVJ/kgqZMuXMg9AJuzfQZUJq

Score
10/10
lummaspywarestealer

Malware Config

Targets

    • Target

      Full-Best_version.zip

    • Size

      5.9MB

    • MD5

      ca4d02a99b0ecf2343f0f4b3248f26e7

    • SHA1

      419a4e894b0db65980ed6fe2b5f766eb4a0a5bb3

    • SHA256

      671cc9e1189a0b67fb5ec59c8538865b91038021eac747e4d3db0ed13790549c

    • SHA512

      fcc3683b740039aecba0802641c7adc5d8ab8960a24b0758353834db53452c1311dd2d45ee87d121ac483a244cec182b4ef76ea89ad7bf2239694258ace92391

    • SSDEEP

      98304:duhx+eGVwmJxn1iBB8mkgbdn96+SFCGOX+EMg9YpJNoz7WFHWQZRKEiR+n:dMsdVJ/kgqZMuXMg9AJuzfQZUJq

    Score
    4/10
    behavioral1

    • Target

      Full-Best_version/Full-Best_version.exe

    • Size

      688.2MB

    • MD5

      4af00a6726258091519a23c663f3b5c5

    • SHA1

      4b68a3f48b1358f5f6506295a908ac664fbe005b

    • SHA256

      6167c27834aefe5443ba3fc65a9deaea4229873d2b8a8e3b749eeccd1ca61166

    • SHA512

      0d8325a87497b4ff5fe8aa3408027f1727730ed75079a074b89fc2d74d09a095c6dabd02f204e6441a4fd18c4483e848df25ece8dbe0191cd2949c22930c285b

    • SSDEEP

      24576:uemoKVciD2JhGtClhWL5pR1MUEMQa6tbzae6DgTXuQ5gurgaBPe4qdlTh7bmtVXP:uemVuY1+GYPc472Q

    Score
    10/10
    lummaspywarestealer

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Suspicious use of SetThreadContext

    behavioral2

    • Target

      Full-Best_version/res/cravats/broachOneill/badju.xml

    • Size

      66KB

    • MD5

      3bf18759130b47393436cad4c8260aa7

    • SHA1

      588b2ca91c8926dfe4ed4a21b88f4951bb0c024f

    • SHA256

      6847f8fc741480a253e5d94ffb0af9821c5f97b8dcf1b1e37cc4e8ea4919df25

    • SHA512

      c8588a36a1769d8c90043ac5b9ba0cfa8d5db8ca0989a256bd0997823f44167deddfd776ea1a5941d6698eeb759c67155b2bb1abb9be8b4b37e785711b66b148

    • SSDEEP

      1536:CBQV4s07p9dLrwr9wfU6UXvcFUf2QcFm59zXrWO:CBy4s07pr4V6A0afvcFczXv

    Score
    1/10
    behavioral3

    • Target

      Full-Best_version/res/cravats/broachOneill/bestinkSonarsBuzzed.xml

    • Size

      76KB

    • MD5

      1695d921cf1273c4c108c38ab49b6e63

    • SHA1

      6660529626f8fb6e44bb4dcb43542946d6a75947

    • SHA256

      a1ef4e13e10998452378480ac8db26e17c110cebf7496dab8e3669304609195c

    • SHA512

      d7941a94a19a8a55f10bcdb6a141fb3e96cd9aac3f44fb7ecb76a1694cf9e1e5365edffe8d9edd454fb7a527e7f58bf4fe8377e397becf59290985237cacb200

    • SSDEEP

      1536:lPw7ITAAk4ppa1XpFY6rc/t6fxD07a5MfKQuf6LVtdtm:2ITAApa1X3pr4W35rfKtq

    Score
    1/10
    behavioral4

    • Target

      Full-Best_version/res/cravats/broachOneill/busto.xml

    • Size

      13KB

    • MD5

      a6440d04aa8b84a3f7b373142f46aec8

    • SHA1

      b794d5a0d5a398713eaa444d10ceabef128a8502

    • SHA256

      774579308b68d19f8ea3252e3cb51067a816bbfcc6b7f7668993110db438be90

    • SHA512

      c7a57376a5e7bae17d59b9d7ab2e2362100d3930af41704ccdfe6dded4649a66754da34df9a7659aee9e3bd65872e919deb8956755a5e5fa8acbc781ef406e85

    • SSDEEP

      384:oR2IjUd8szjPms8WmbWGcBNVEAP8N+U+72hJMWNqOImf:opd6jPm+uajP8Numf

    Score
    1/10
    behavioral5

    • Target

      Full-Best_version/res/cravats/broachOneill/hebrewsNae.xml

    • Size

      23KB

    • MD5

      ee59f6e22530309aa1c89e1826b010c9

    • SHA1

      00d80241a03d28c42816868a2c4eecf4bd0d071f

    • SHA256

      4159a3468eda56949355eb5fda59539d2f08bdaafa8fd5021e57761b1b5856a2

    • SHA512

      fd84ee0feefecbe7207f5eab36ddb8e4615ee2e21e1e469775c6cfb60210e22916e789fb185375d3f24f57455e999f771a1a6a19f4febc1386931370f1111e99

    • SSDEEP

      384:AoyJutAZGH54ktClFCYqwDnNEeuVXuu0x9nDRcbDWtYdl121kG/V/3Rq:/61lF5nNEHbYK4Ydl18kR

    Score
    1/10
    behavioral6

    • Target

      Full-Best_version/res/cravats/broachOneill/shaleDashikiBajoire/ecuadorCapers.xml

    • Size

      42KB

    • MD5

      7411966ba263e7ebaa428c782fe9fc45

    • SHA1

      8b3bee6e129a04255f2b31bbc336524123fb1262

    • SHA256

      8c85e34d186c96a65990d7b2c0b47c261fd7da381679c604a30937cae07be62f

    • SHA512

      329a494d2cdf57aabb91938625338552986a914e813ced0994ee78185a5a2ee05f1b4c7790b07516da1039f99bb20d2e241b2fee28a56611099d0a97b54e424c

    • SSDEEP

      768:AbcR03Pbz/Lw+HqmaNkIZ8kfCEDW22I1Iea4OytHKegD:TMPMMqJNNBP21ea4JKD

    Score
    1/10
    behavioral7

    • Target

      Full-Best_version/res/cravats/broachOneill/shaleDashikiBajoire/humidorUnsealsUnbank.xml

    • Size

      90KB

    • MD5

      416def4cc90c4b083bbb37e05976b814

    • SHA1

      8d3adb4ad484c70f16196b96847a406a2e2c1292

    • SHA256

      992ea798c938903b33abbc2340fd185c7607c5d20fe008455e7026882e2584bb

    • SHA512

      757a756b143a6774d16e4a9eab45fb8f9ef653a7f943da7760004ad4f6f95befdfe10eb2c3ef129d018896f4c9f80c2d854bfe6edd9c2bef8f7f314f42e616ad

    • SSDEEP

      1536:GGWu4uJzuzsUv8ICrkI9fjyROKDzMBmDB5EwOBTy2b+flkJ4rdqm6dAh:GGWC9rk6eROUzemDBORoU6KdAh

    Score
    1/10
    behavioral8

    • Target

      Full-Best_version/res/cravats/broachOneill/shaleDashikiBajoire/wabeno.xml

    • Size

      31KB

    • MD5

      f2d7a9f2f50a918a0caafb345ffaae4e

    • SHA1

      ae0ff93c984f427acb3064646acdcd6c7ecd7eb5

    • SHA256

      00259cfb0f798679ff11417e67ea145558e0a70918639f6a3b772f99a0c9a48c

    • SHA512

      f23b2649deec4b7a628616e4e6b9ab64557b506857f6e869ad8ce3d8aef9f456d574df2e3f62d8a095637defc6a9587333f8438ec2880c8c4f4f85ae82e243e9

    • SSDEEP

      768:XTBULbw188RFKoE28gpjTFghjN6AtZ6Ax:jB+S82TEGehOAx

    Score
    1/10
    behavioral9

    • Target

      Full-Best_version/res/cravats/couplesGoura.xml

    • Size

      172B

    • MD5

      9445b31349b9dd2cc522b10954200049

    • SHA1

      b1bb882a17b7a0ee998d216b4048737222adaeba

    • SHA256

      bce88210ce6884a453a38c73317920a8c3d13ae42700f3f717edcf2b1d369baf

    • SHA512

      d25b144f9f580660a189b78679ac459efe201e340f0c460ebb1bc2750ee7de71b5c19f7e8cc69b1200750d1bbd1e35db27d72cbe2d495420bfc18b00933a8bda

    Score
    1/10
    behavioral10

    • Target

      Full-Best_version/res/cravats/farle.xml

    • Size

      22KB

    • MD5

      9faad7b598f55a690c85b4c61ccd1f53

    • SHA1

      83150b90cdb175b30aca48b1815ac0f644cceaac

    • SHA256

      b1c23e426dbbd680cc8aea94d45e441f72d32c7574ed8ef4fe4609b2d8261c77

    • SHA512

      c3b997996485e2634fb531d5e29adb51d213f6c4d43a1dbce009a57191a5b82c625b1bd2dfba7d42bd2452a1a0f6a5fe37e90feb4b5fe491bc19a1c8845c4879

    • SSDEEP

      384:tLPjdHAI2RGqT63XZjB9XdwUOE5lW9BF6Gk52yS0tmR9S:Zdl/RJjB8UZc/EX52YmR9S

    Score
    1/10
    behavioral11

    • Target

      Full-Best_version/res/cravats/gromia.xml

    • Size

      26KB

    • MD5

      69f3acc76eaed7f61e24a4aa65051bf8

    • SHA1

      cc5dc25e926160708833f52e7ba81a55c0cfa8f8

    • SHA256

      bc19588040530d788e91a7127e3830ef09a8b139a93e905f8c46ef9d2f576d51

    • SHA512

      3c458ea0efd1dd6cb8712eb7c7369846e231a298b32b82d3f418489e90fdf981e735a460684534b04ef853f6dd49d0f59d0b30204d0d0fd7df30fa38b972b9ce

    • SSDEEP

      384:j+IhzEnha6SJEGVN/h3i0VV9PQlvcInmEPqca5peDMiQ5IfD5YUBfRzgX:jInhazJEGVN00VfYliEiL5peDMqCqgX

    Score
    1/10
    behavioral12

    • Target

      Full-Best_version/res/cravats/peesashAphyric.xml

    • Size

      80KB

    • MD5

      2021f06dda7b2a3f634827ad00f5e438

    • SHA1

      669bf4ce9b8712f0aba566ebca0c21489ee343a8

    • SHA256

      4d48daaddeb1f72fdc1fdcb4f40cb16d51396e8f24c94486c9851fa508ffa7b5

    • SHA512

      84fae09ae3e0fa32c5fcad661209efa898ca026fb17076f36b0bb5b2d30709bd399393be00dbf5cfcce8ca6c939a2473d5c4509d37510976b689ffcde2811a58

    • SSDEEP

      1536:ONxB+qr1WZJH9hhonHLyhrC5ji4u1Wil2UbljNe/N20X1:slcZJdh2GhEiJTUUbJNoNz

    Score
    1/10
    behavioral13

    • Target

      Full-Best_version/res/cravats/tissualRyalGenesee.xml

    • Size

      37KB

    • MD5

      5f2f56432ad3b563c99950e8474cb359

    • SHA1

      3e21389dde1a269059ac028886927258f5daca5b

    • SHA256

      ef9540912106423abcad3e8272bb63e5c3c96d462e2169b3242f5c605e50abe9

    • SHA512

      33c8b3baf1f476a912177d0b8d6a01d29887e0f6b756ed8220f2a447189961703332a4498bb83bf6968d0717e10a0a239e414809425bab75d1b9de9d56b9f683

    • SSDEEP

      768:Phjw0R8L+pzXgnPNnNKh39G1Obcn6OwSb2cZdA:5Mc8szXgnBNx1OW1wO2kA

    Score
    1/10
    behavioral14

    • Target

      Full-Best_version/res/langs/Danish.ini

    • Size

      107KB

    • MD5

      5f50b22de0efb245cd3b8f2fb50a6d3d

    • SHA1

      be369ffd0c47ff92b3aa5c259ab9f4d40807b687

    • SHA256

      59df77a75aca7c0a8574f6d4b5be5632908c4fea8634f4748e36ff6fee40e317

    • SHA512

      f3fec19409ea564bd68f4bd1253297ed8bcbe86554422a22891c61ee237f581f95f6976512e53bcabc5cafe3411343e660d3fb8f398f95f9c1efcec8eaa4367a

    • SSDEEP

      1536:gmGRkLzUJnbfeKzcqt5G+qX59CcZEY9dHbm/c4C1CgqfRG:gmGRbnbfNRt5G+qX59CcNdX47G

    Score
    1/10
    behavioral15

    • Target

      Full-Best_version/res/langs/Finnish.ini

    • Size

      106KB

    • MD5

      09abf1d7277a388b362c7c94012c9655

    • SHA1

      85b3a52814c0a4bc9b0c39550e920340f4fb2ac2

    • SHA256

      eb6cd045c3899f7ca4a7ecd4e8211478720206b3e607ab21c22e164f4c684510

    • SHA512

      c531f18b5516a5cd32733bd2c00be746d580805a1178971ac57316befcdd0216e906e2283690157c622f217743a10d09e1e78b82558301a95aeb80f2278d4cb0

    • SSDEEP

      1536:+0X4yMypD2b6/lXRYpc1maOK+RJh5enKT2e2ULv387G:fMyYL5/fgG2e2UL4G

    Score
    1/10
    behavioral16

    • Target

      Full-Best_version/res/langs/Hungarian.ini

    • Size

      107KB

    • MD5

      7591df7fae4342cbc7a0706e1b28e87b

    • SHA1

      825e88ad498e8713522f5aef3b21ee01d6fa8b41

    • SHA256

      fe9997629d296908247a2e82da6c369e2ea7eb4c87b12fc7c8d3ecb3e6fc320d

    • SHA512

      8f58c6fbaf5ea140a3ecbbc88cbf4bdd0e0ba3fbdf169f4b7cb831094a47a6ead103f89fc07748f91d1396ebd13c7ebcc90a316f0eb203ff4c86a50be5cd3ca4

    • SSDEEP

      3072:UaKBsDgGod8NAH4iyf8kXrLfKgL6YhL+L3yGU:73X

    Score
    1/10
    behavioral17

    • Target

      Full-Best_version/res/langs/Indonesian.ini

    • Size

      105KB

    • MD5

      d944d8a3551719a176db4da31733ab75

    • SHA1

      6cf51cb43dbd7ca84334389076adbabe407d95b8

    • SHA256

      9e52e0b1f7ec39a36e2edd0231dc98865de8524a651fcf6b1b948a575e35fd0f

    • SHA512

      b9077bdeb69e07894c995bd519ebab594016c8077a213b29264a8040370c9841f1ad6dada2d0af595a596a3875f9c9989dc30af8e7c7b981b420cf1382d5c9a6

    • SSDEEP

      768:wbWt5bTJA+NtkooQG+Wioa6lBT8IwUzCc0qfcLVUWf1RzVARBBfxP7KLVoeY4z9v:9bT+atkwR2AIheY4pMOy0F8gx

    Score
    1/10
    behavioral18

    • Target

      Full-Best_version/res/langs/Japanese.ini

    • Size

      91KB

    • MD5

      36d47bfae8d0d48d56b7b1feb3b317e7

    • SHA1

      1d8d59aa40f765319fcb70a9f49e997aca305b89

    • SHA256

      9077b41d743ed6af51cd9b8aedaebb6d1e0e6217825635a1aa9451994efaff0f

    • SHA512

      b510a5b17e52778b87f58aaa61f222f11c6190a988440789d1d40591aebdcc7311f7bb3bee9621ab8d971dc2de1ec6ed4d52598b3808dd689f693c3e5897f938

    • SSDEEP

      768:wPZoCIywqTgXCaNnWYjV6UDFlv0Gaf9xS7ua6PE0FtrqGv0ZQkxKQRTM94DGNWdN:1CIywqTKnWKV5GAQkxHKUfxJYNeNx

    Score
    1/10
    behavioral19

    • Target

      Full-Best_version/res/langs/Kurdish.ini

    • Size

      106KB

    • MD5

      af61b416403963d653f5008aaba82e03

    • SHA1

      b1ab14d6ee43e1230cfcc5acfc4de27ab2a6f6b3

    • SHA256

      94ac43cb7eb95277db44616a53b23e9174415377b4b3b98a1bdfc98d06a40a4b

    • SHA512

      a65a21d5d9f7085acf0a96701d4577bf5fbfc0ebcb4f188ff39139b135570f95d76677e6470261aef022b75378898342ab3105704228029f90b8998f414603ab

    • SSDEEP

      1536:rESqStTfwl/lmie4rC3DA3f1wjF7af0/KkmwL3mnJ/6BD1I:lbTNC

    Score
    1/10
    behavioral20

    • Target

      Full-Best_version/res/langs/Norwegian.ini

    • Size

      104KB

    • MD5

      5cf9c294bd9d233d95e54e198bd8b4ab

    • SHA1

      670de196a831bc9b0d503694b594524ccfb77b04

    • SHA256

      1c99b7b06af0d5ac5582f00447fbe04e2325e173666cba8ce2d18678f7b31e3b

    • SHA512

      bea2be5e1dab1854cbb83fc221f392793aa7b67a1ba1ee521c4ad0aaea671bbbda868d57b3b226cc713eaf9f90bd9fc05b3166353d78c532a43111349159ac7c

    • SSDEEP

      3072:/Tu1PWiYzr8Z2GIBpLkQXtgpE7ZrB2kyC+3HX:0

    Score
    1/10
    behavioral21

    • Target

      Full-Best_version/res/langs/Sinhala.ini

    • Size

      106KB

    • MD5

      318ee9a93c4620940f88052b904f05ce

    • SHA1

      a5574f778537ce085d53c3fc52299b3049da2371

    • SHA256

      b6fad3bf2adba7c77641ee1a17ff4cd9e5e9b14bac1b855346c91a286e517504

    • SHA512

      054c1e0322a170b83273a5c253eeb9ffc107056c555ca470d19dbdefc7d68c822d67576fd9333cf5b17357878dc6147a3d1367219db48b2b10e9bd915e806e52

    • SSDEEP

      1536:Run1VCXWZTr/lOPoMHjYMgr5xU1Jdr/pSnE8EtwO5vrzAKnUs2:RungtoMHjYMgrgJqE8EqOxzus2

    Score
    1/10
    behavioral22

    • Target

      Full-Best_version/res/langs/Swedish.ini

    • Size

      104KB

    • MD5

      d0280eb9ebf7e5f9b91dc0e405bd7178

    • SHA1

      e0425673213109f140f8f9b7474029a0326cdab4

    • SHA256

      f1ee3b2de54ee588813a7dbffca7e7607bbb769c763cdf73ccd600e06346fe1d

    • SHA512

      0102a9b215d169b5cad039bbf80ef9882ad6eea7933ccb47e6ac204451456c50baabaeca43dd477a36d2db3eda317f4d59979e5387e169fbedf1c13494dc87e2

    • SSDEEP

      3072:lMgTj95UgiNg1TdyjQxx3Ho7wAM65CB9mptXse6/3/GbBJsXdFg9FNX:w

    Score
    1/10
    behavioral23

    • Target

      Full-Best_version/res/langs/TradChinese.ini

    • Size

      85KB

    • MD5

      dc01555f89e044192a9ad584b62e41a7

    • SHA1

      e830a3012e610b2c8775c993ff504f6f3e5628ee

    • SHA256

      eb8fc39f2551834010f3748d81e5f842a1b4e27adb87e425b764bb9152b55cb1

    • SHA512

      954582efc17a2ffb29ba462d3d670576682211066a67de11daae4e5b2f283e055bb3119ce6aab1f40fbf8e629d7e0562c5059455ae420741558484f3c464bcca

    • SSDEEP

      768:wRZh4e4gX/LtXW2DhVaajeVbWFcqnxCjDvUkkIRNQz+q8wbXrFtUkFhBaQagVQlz:yZGgX/LtXW2Dhk1bWF5dhBa00uZNfsi+

    Score
    1/10
    behavioral24

    • Target

      Full-Best_version/res/langs/UyghurLatin.ini

    • Size

      108KB

    • MD5

      98eb38cef87e8fa6e6d2619577d4265f

    • SHA1

      205d6e9147c1f935612423bb9716fa402efa3e57

    • SHA256

      d517f3322a43292dbb241597353ad01013ee3be86d666c83d87c0eda4f56f926

    • SHA512

      4e85b523bd819d41ab1032534ef1ca38e841a0d80c2fc672b21a9f2dfa846384ccedd4cea9745ef7ccf127c98378bba913057b0dd716fd620e4a7d2bcf9e75ae

    • SSDEEP

      1536:mJ05+SP/l0iI5XYIUicOFCWsvzqUSS0XZqISnFhKoMfyLd9:dI5oEcOAqUSS0XZqIWMfyLd9

    Score
    1/10
    behavioral25

    • Target

      Full-Best_version/res/lesseeVariant/atalayaPrimate.xml

    • Size

      34KB

    • MD5

      36b9684f5ef3f0fe4716828adb8fe8fe

    • SHA1

      b7cdf3f780b75a3c5de7af43523b520cc4b64798

    • SHA256

      0c57dffbfac38b070a82c7b8529cf6f7028cea8dce4fadfed40caf7e49da573d

    • SHA512

      660076bb4370e2886bb6636004afbe2df3c66a7d4148d20bfac5208acb7f47b4234284d65da2332a2cdfa0558c6690761676ba101d478ea34c376f281b0b94d4

    • SSDEEP

      384:pv+UkIKYH+InyCLYc9nOUYlIJzkNMJBX70ZJsPZ6+DqiP0ILGNqrvQJwc4jG7:p+UkIKYVyYiIJxGcPFYqkJw30

    Score
    1/10
    behavioral26

    • Target

      Full-Best_version/res/lesseeVariant/leptiteDomus.xml

    • Size

      87KB

    • MD5

      94ff4d272fdc1747508b48bb8703af93

    • SHA1

      2eab9edf3d4873b6cedc6bc05a29cacf0d637362

    • SHA256

      904b96fc58095694c043dfa917ed35598511a213cf28f394baf16ba15837dc0e

    • SHA512

      1ee3cbe06cd669971dbaecaa30b71600101b4517cfabd5dac1ceeb5d2873f5e80f59bc44126bdefa0ab76f483c28d28e08ce316459343ce456db0bd5d80ec990

    • SSDEEP

      1536:L7tQI0YtmifX87OtRsvyub7NkORE4Lm5PuENrzpKxb9BghFW3:L7tMYtmqbsT7NdREwm5mEBpKxb3g2

    Score
    1/10
    behavioral27

    • Target

      Full-Best_version/res/lesseeVariant/railcarChadarBennis/dukhnAstart.xml

    • Size

      51KB

    • MD5

      f6bc36ace45bbb8911ffd3f844c34b04

    • SHA1

      b310292acaf9846bbacb6116306a897001d95381

    • SHA256

      853f3fb442e707458462365d039fb3c6f431497de933142b6eadb4e9af8ef130

    • SHA512

      891e959ade72ebcbeac4534c5f36ddf9e62c411251b441afb1e7a864cbd10abe5e00e7e84098025ab6a68afeb502bc33eade32590b70b75fc6bd235662d11f6b

    • SSDEEP

      768:UaCZOEVF1Gevf0f69rtRceMC2CkCULnYjRnLDmjHZN33OpQbbJ81jCbLi:aOEwmzMmkTLWRAL3+pQbCjCC

    Score
    1/10
    behavioral28

    • Target

      Full-Best_version/res/lesseeVariant/railcarChadarBennis/obsequyHalberd.xml

    • Size

      22KB

    • MD5

      fc8f0692e57bf8e0d3a21426d704a00b

    • SHA1

      c710047288ddaa2612855b9595f117b413d2cd7c

    • SHA256

      de07ca94eb86f1393ecbaacadb7d5ef78002edb6cc4c0728f6faca0125529efc

    • SHA512

      b55fe274a73fdc3dc0afe741bf7e6e6b4ae8168c5df2ae3958b13d8404b17fac572796050dc39f3bd03c0b7a0d531d5a3abb8fd1096d00b75acc1c1244af1859

    • SSDEEP

      384:84qSNhId170rc1h/yuRjoMpau94uZraa1tqeJDVNdA5FXYCQqmz1cqkjYRI:8qNhIf1RjVkLuj17xQsRI

    Score
    1/10
    behavioral29

    • Target

      Full-Best_version/res/lesseeVariant/railcarChadarBennis/parcelsSetboltIndict/cholosQuallyQuale.xml

    • Size

      3KB

    • MD5

      845eddfd1853590da45681eccadcb9f7

    • SHA1

      bc225a69d361821376355956268f842104227859

    • SHA256

      10c7e2c32cb0e1e1f3698096b6f4b05a1a8b71169218bf54368a7fd176820a00

    • SHA512

      60ca831bca9dcf63bcddf40578361dd95fad105c74a58076cc24d0815df626a45f0a3ac05b9f33f4e99191d61a87a7d5e5140585b3a3eafd95aea05cd7df3225

    Score
    1/10
    behavioral30

    • Target

      Full-Best_version/res/lesseeVariant/railcarChadarBennis/parcelsSetboltIndict/maze.xml

    • Size

      100KB

    • MD5

      84538bef33dd2d242dfa19ba3566574e

    • SHA1

      6a86fea55b23c29dfab10d21fb7dd3bef48cb3b5

    • SHA256

      19ed8be210df1f4bfcfb8fb676f4f932a9d0858786c56007cff484898400fda2

    • SHA512

      8744161b2d795d5a4cc7824c5ecb690a8229e48158a7d2808f71e13b9f5c9288af97c829c2523cff36b3c6fe5636eb3c49a310d4777e6da433452418daac9225

    • SSDEEP

      1536:NWTOrSB9SiPAcPeELbteUNIFV6+Kufnzqg3/X/N0fRO8g1RuIbo+h6gPti2y:NWTOi7L8/V6+//zqYNyRBGno+d1i5

    Score
    1/10
    behavioral31

    • Target

      Full-Best_version/res/lesseeVariant/railcarChadarBennis/raconsPlexorBegin/bowkerUtero.xml

    • Size

      7KB

    • MD5

      1d1cb00383b1adcf50989dcb88e30e8a

    • SHA1

      166a2663f7a3218ee234dca51007258ebe4ca115

    • SHA256

      da1df6abdd89f890f9b1766e86f13255dd074a9b471bf1d87d3ef2abfb06bede

    • SHA512

      77e6c306b706c7cdded2299181a5f5ece9bf1b6e458177d52181655fbc2e5b98b737de99a814170369c479ea660f3e33a33e4618e97ad11b32ec2ca6a8bdbd77

    • SSDEEP

      192:GCccnQBFYkxj8L60qCGyB3JztR9g2CuqPX6WSzg+/VmYvMc:sBF1QL3qkBR9g2CuqPXZGguV/x

    Score
    1/10
    behavioral32

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

19
T1112

Credential Access

Credentials in Files

1
T1081

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Tasks