05e2eecbb6b1effa3d1662c538d912b846639bb14e5b7c03f18a69ce41e885e4

Sharing

Copy URL

Twitter E-mail

General

Target

Program 1.1.zip
Size

8.8MB
Sample

230407-zs963ace3y
MD5

ee6dd73e3cd04adad8fed498a8a51571
SHA1

c4a07b649723c559397d436bbd79fbfb66513cbb
SHA256

05e2eecbb6b1effa3d1662c538d912b846639bb14e5b7c03f18a69ce41e885e4
SHA512

8111c058d4f2bea291e48dc3158b77914ffa28e53cd31282161ccba55d1b0f8d958fc6303098cf131aaad6d8b9f24a47d9d652cb75eb058c121e2441448f7375
SSDEEP

196608:WUQr9hp0I25qs9EhZ3g7yvHg9GO3qaE6p56wJtzMW3C:G9hpoqfagTOaaE6GqtzbC

Score

7^/10

agilenet

Malware Config

Targets

- Target
  
  Program 1.1.zip
- Size
  
  8.8MB
- MD5
  
  ee6dd73e3cd04adad8fed498a8a51571
- SHA1
  
  c4a07b649723c559397d436bbd79fbfb66513cbb
- SHA256
  
  05e2eecbb6b1effa3d1662c538d912b846639bb14e5b7c03f18a69ce41e885e4
- SHA512
  
  8111c058d4f2bea291e48dc3158b77914ffa28e53cd31282161ccba55d1b0f8d958fc6303098cf131aaad6d8b9f24a47d9d652cb75eb058c121e2441448f7375
- SSDEEP
  
  196608:WUQr9hp0I25qs9EhZ3g7yvHg9GO3qaE6p56wJtzMW3C:G9hpoqfagTOaaE6GqtzbC
Score

1^/10
behavioral1
- Target
  
  Debug/Bunifu.UI.WinForms.BunifuTextBox.dll
- Size
  
  115KB
- MD5
  
  aa0a94c68a0230c699f2faa08984286c
- SHA1
  
  659146445b4c14ec8d0d0794e42fd72e53681d67
- SHA256
  
  c17e08245b6abf76f7b064271673b149a05a62f3dc272829fa9bbe250baeb5d0
- SHA512
  
  b2127d9c40d09c40a61ca4504645db3583237eeb3738c5df1d4126e8ebe3b55d3f237fac054941ccfdeb100cf16925c558d96c96737080fcf7407a60c6e86d96
- SSDEEP
  
  1536:VpRlrKEf3h5d/R9GUD7YTI9L1lqIp/Yd6O5vTg:DRdKwpHV+IY2/Ydvv0
Score

1^/10
behavioral2
- Target
  
  Debug/Bunifu.UI.WinForms.BunifuTextBox.xml
- Size
  
  59KB
- MD5
  
  6d0e613e885f251067755f3b02684ed9
- SHA1
  
  ae5f9f847d085126d219ea9473252e2b4921c113
- SHA256
  
  b219f80c53178f8d635eab02f4b1e94eff15c4abb3cf9b7972afa1a541f948dd
- SHA512
  
  bafaf1800f9d698896b9fc55d088916de2484129a9102d27f850f2b5c6ebbc5af5440033baa735e58cee2fb2747f9c8f0806ad7862baee0cf3625a76e6741405
- SSDEEP
  
  1536:oHos9Icq/BMQgVIaw4kCoPiyEK3gLGPfiCeC3Q4qdkzyW/fkAsm9E9acJiljoyed:m
Score

1^/10
behavioral3
- Target
  
  Debug/Bunifu.UI.WinForms.BunifuToggleSwitch.dll
- Size
  
  55KB
- MD5
  
  7e04e2b9ee0fef27f4098cb887378f27
- SHA1
  
  f0d51b0ff7db14aa410eac2fcc854890c7db6bf1
- SHA256
  
  c43507a2a7b1d1770766baa6e49fe647bf8cc519d924a1da36a1f7ad79a6d67e
- SHA512
  
  025f519a40bbd6f98dccb64131e3aa8dbb39b1daceafeebae0e6d8531cab6d8a6c64321c78443ba1d12344cfef0e327ce6a5edd44bb2582098142ef3a3d42453
- SSDEEP
  
  768:sFRPktWEVB2dcvvrELRswKiovhB0BXrBkhJtC6CNmhQTiTL:ERPP0JaBKiovLWXrGA6mJTiL
Score

1^/10
behavioral4
- Target
  
  Debug/Bunifu.UI.WinForms.BunifuToggleSwitch.xml
- Size
  
  15KB
- MD5
  
  0588e86f2d97532be5eaae23e315e034
- SHA1
  
  2fac49dab993b5525c19c077ce5fb963f48d7e15
- SHA256
  
  ed1f8d0c8a45cf20c676c5d3984fec7db35eb1965582a561d913fa39b78920cf
- SHA512
  
  8d27f34b2610462b126392d7298fc2fda757375417a4d78a9295d13dcfe9d276e55e69e4db718d106865e0e0594f26462acfaf8be08edc1a4ba5b9728849fae8
- SSDEEP
  
  192:SRtJAuiCoDd0mUreaYkDYs4O1lv8HnpjFgizQzv+Ja4QOnIZkZlRgQlKixQX+:Azrv8HnwizQCJSixQO
Score

1^/10
behavioral5
- Target
  
  Debug/Bunifu.UI.WinForms.BunifuToolTip.dll
- Size
  
  647KB
- MD5
  
  a00a5bf53533dcb8cb104339e20ca3b6
- SHA1
  
  e66bb0b82547099f9726065b5ff905555e86ba45
- SHA256
  
  26df31a6de0b222f270410dc57eab0914f15fd59645c47968dbc03492e450429
- SHA512
  
  3d7a2b2e881300021d0df17a18752db892d838e3e22e4a36868a485b426b04665620903d8123a4e1300b5f5b894044565c3b1ece7a8f2250d87d381f5a0293d3
- SSDEEP
  
  6144:eGmFDyje3WGkzBzMdqeJSU4o82QvCBXh9GlDYHBhdCTwiAV1KZvs4TOs/lTPgpmP:eGE3Wd9zMf782lClD/wHDKZUzVOtJ5SW
Score

1^/10
behavioral6
- Target
  
  Debug/Bunifu.UI.WinForms.BunifuToolTip.xml
- Size
  
  589KB
- MD5
  
  fe24227f604dfe994d6bb0f032f153ff
- SHA1
  
  afe97bcf55cbd0e5f7e2ef4061503cffe8e5a7d2
- SHA256
  
  4722e12176771d2e30bef009ed89c587880b1a5e0d136e89ac4367dabc085eaf
- SHA512
  
  62954251143f8dd7e187d30ca10d81ff4c6b8be8306ad7198045aa28f4eef44d8e3cfaa69ef2855292d7581982a46f65e650d0359413dd25cda2bfbaff8ec7dd
- SSDEEP
  
  6144:2T3Zr+svw2YXxIGWTnGQJIUA4wa5rTfrxsI8j2GoEpTn8DSqAQLmawIzuxV8UVTS:cW2
Score

1^/10
behavioral7
- Target
  
  Debug/Bunifu.UI.WinForms.BunifuTransition.dll
- Size
  
  94KB
- MD5
  
  cfd6962e58fc0e94cdf7c058f5de108d
- SHA1
  
  dd098078bfd7e66477c99fc0c37dfa13a1228362
- SHA256
  
  56fba13bf8ff1b209d5f1f724d647a43e4b1a3c4dfc97dc5e34ab0821ff4d76a
- SHA512
  
  5241db247b426fb4c97634cd4954ff45ce26e9f4e1c6b5e0ddded5ca4d16cb06397765ef78f997d48ddb31f5e1ed382ee39f9b8862c601369c71853d1f5a97cf
- SSDEEP
  
  1536:NlGize7o11eHIJcN1QTkYZmLGe2lPScHoL/3BaSTs:iiz+OEHI+It0Se2hScH8/BaSI
Score

1^/10
behavioral8
- Target
  
  Debug/Bunifu.UI.WinForms.BunifuTransition.xml
- Size
  
  28KB
- MD5
  
  9644bdb84cdc033266d0589c97904baf
- SHA1
  
  97f245902d5c3fe70371f1bc29a3f4701e8f900d
- SHA256
  
  6d08e9926f93fbb888b29944ab9fde420473127183b93a6770053fa47f5b0fb0
- SHA512
  
  625c6f9a3fcba2c16453f9345696be11e23f3ab20ba7a0189f340c7e6760d7f6d519a2d6dcf67d70248c8bdd2ce68ca8d94115f14170e2779119a2b857cba8b1
- SSDEEP
  
  192:ktmFpKQBk2o5OWaE6xWd6UqgicXM0l1lGBAGIHHmUB4LkSbLxR2FfPLur+NUkniA:ksbM5OWaE6gbvTfRHH5aISbFR2FfPn
Score

1^/10
behavioral9
- Target
  
  Debug/Bunifu.UI.WinForms.BunifuUserControl.dll
- Size
  
  80KB
- MD5
  
  39fca8a34d6c46b2babd9cb457fc2df3
- SHA1
  
  43859853aa46182633bd9377adb78101cfdd1093
- SHA256
  
  3be6f398a8e9639d48dd50ed2e7eec01932e61e5e10920af6d033172a8eacaa5
- SHA512
  
  ae56d7617993543caee93c9ee42d09dcfb3e2359465f80d94819ca0e6caeee91c76d5cc09d5be254aaf3555acbdd6baf4e5d03137754b9103da3111bee89b3c7
- SSDEEP
  
  1536:V/9ZAfqSELmJ1kHoV4Ux5vMR4kqXNzUT0:V/LgEVUvXUBCzUA
Score

1^/10
behavioral10
- Target
  
  Debug/Bunifu.UI.WinForms.BunifuUserControl.xml
- Size
  
  42KB
- MD5
  
  89abf398977a91c87edaa8b4099db818
- SHA1
  
  497877bb8ec2f8b817e468f16c30a39de088fc24
- SHA256
  
  6453e1b74200cac744dabff525fca38fd650de925dc770440864445ec13003cf
- SHA512
  
  8e3573817631c31441e8b6c6baa14555de585f5f732a86f1725444ee52358c96f5119caa14e84ad40e1cef2fc624a1400bb3269ae2dfcb265faf882da87d92fb
- SSDEEP
  
  768:5oMdo5+KfRswA1oKQYUiIFBKGUaPArWvHShC+GD5FsYiFkTSifnogIGDNkFa8lOm:5oMdo0KfRswA1oKQYUiIDKGUaPArWvH0
Score

1^/10
behavioral11
- Target
  
  Debug/Bunifu.UI.WinForms.Deprecated.dll
- Size
  
  164KB
- MD5
  
  f61a580438a08d0c6960936b56de333f
- SHA1
  
  c2b0c0e40c16cb4d31a3a28a763c18c30d6abd09
- SHA256
  
  3930b8c9c9fa5f1ae7215cc86aaf5a6c415d2e67fe4d957357bbc92aebf85031
- SHA512
  
  79316b4e7877c4a348af65e629cca953aef95968fc7348397f7f444fd8cfab32c0f29624df598a548c9cd00e232ff522d83920361e75f6ebc7ab12ea709d8e88
- SSDEEP
  
  3072:c7MsW55s0MlEDKdbEOoqfpdfa5XsUXkvHjaT+AjfrHhpqbwLLB:iW55zjDaABp2wfB
Score

1^/10
behavioral12
- Target
  
  Debug/CircularProgressBar.dll
- Size
  
  17KB
- MD5
  
  c645ae0887db03b6f5a3e043bbb65497
- SHA1
  
  ffd2e5fcd7fa2691f4d95444cb160a6ef001e105
- SHA256
  
  f2d8c6b2d4fdf020a6050dda53651b3895d0cd6fd6a057cb80cba446c5eb1b92
- SHA512
  
  c73ba7a69eca2c40291b67babac0c784e502ec0cbe7e5151e37ef011d41fc4d82cdb0417cd72ce732b55a68a03e50a089912695fc8a2257cf5d300b72c5b7a03
- SSDEEP
  
  192:jv6zrPl/8Vd9EzO8dVU5uUiKGu0eZmaRKghkDplG5MnUAZE/JGLXh21sGlnE:jQ/8WqfiKxD0aR2pcQUAOxC2ZlnE
Score

1^/10
behavioral13
- Target
  
  Debug/CircularProgressBar.xml
- Size
  
  7KB
- MD5
  
  8505ead8b10a802bd289cdf1ff5aec61
- SHA1
  
  1374e630555fd7e39300622cfecd587fa7e7d7cc
- SHA256
  
  86d93bab4e10c87f20580a076de1d91b1af2017f564c789282bc18e7f01e32c1
- SHA512
  
  ee667484fd463491b078f7f4606a24d0af575672d8c2f0ec6c3a787b60a35c941c87cfcac1b5c1aaa940bdac74e039aa3e90d824233547b745a5cab2fd6ebf16
- SSDEEP
  
  48:KPQHgLGHeSpcJeSF0dq9P9CrFoUPx7+Uxu:PACpcJBCX+r
Score

1^/10
behavioral14
- Target
  
  Debug/MailKit.dll
- Size
  
  847KB
- MD5
  
  b6cbc79d20520dafe3e9212806f5ab8f
- SHA1
  
  b1d3cf6e1288332eaaa754495d0d86689d991a23
- SHA256
  
  65a727b82ddbe6b6fc678968ddba7cc546f9cca08a26a80d324265b2b739a9e0
- SHA512
  
  9a0f24dcd547e9cff275476e22808e006cc2f06f41ccb632ba84f0cc9452c6d9aa345c4ebfea593dfe64d154288484586bf94d956dccb528dc001777e6f0e21b
- SSDEEP
  
  12288:oqCM+BMQEVTyhT5uKSgAAKk/cXbzh6U4a:lCM+BaKdAHXPh6U4a
Score

1^/10
behavioral15
- Target
  
  Debug/MailKit.pdb
- Size
  
  2.0MB
- MD5
  
  6772260bd2d669cf6d52a8c4fbb70560
- SHA1
  
  3dbedb83dbc0c6c6acd14f25845a5f6f551bc431
- SHA256
  
  185234d3b631154d06d2b6ebb6fcfbe2b02bc9031858d2a57a9200fdd9a6c1b3
- SHA512
  
  91509aac2c5df76ab64ae6d2c49804b797759781fd67a5f44aedb9f5945739318866830cdda1f023937250929e0138428a7c2794e6f98c216b8c70e8c69e9c21
- SSDEEP
  
  6144:qRaI6oD8KUX9kKSCrnXVQ6C5tomAZLaOlexRShBEER6AoCR6js7dk+lenWM6sy1K:TRcCDFVIgeVgHBTk5TRRmFgeVgCR2
Score

3^/10
behavioral16
- Target
  
  Debug/MailKit.xml
- Size
  
  3.2MB
- MD5
  
  1244aa1b0933f13bbbf5df9699561b8b
- SHA1
  
  648dfb735029cc5345574f27db08cc5037d51716
- SHA256
  
  409f295228197d9ff08afdd66c7fe652fde760194eb3cd7205b0cc5851c932fc
- SHA512
  
  815e5de65ea6d31bafc82ee6dcb9e0a77678c15ba9c0d7f64b40d7035921509ddde73f59c0bf90de30a153f729213429139b819c78bd61449ced06bb8fef673e
- SSDEEP
  
  6144:EDTFTbTDTVExjzojoTKy7pkvzsGvX40BjsWGfWIiwl9TT/ARTzAMTKADWkd+o/PU:EEKy7pkvzsGvX1BWBV
Score

1^/10
behavioral17
- Target
  
  Debug/MimeKit.dll
- Size
  
  1.1MB
- MD5
  
  b865958e67b326b2fa2e81e73ae515c6
- SHA1
  
  aaf3c52e2eb1e1e96f583c00195c961039fb71ef
- SHA256
  
  92938f6a4b349de70c3d9f1c2ec0341d2db7bbb1a66e3e3b3331d629bf2cd27e
- SHA512
  
  08cefdb20e4b2cda006410f3f2b07ccd697625540c6f1637d30409a726dd3855dc586a73ba63fb949e6f560401ca1a58185549d7bba7486da896cfb8cca84173
- SSDEEP
  
  12288:c+kTudr+s56QLZ9kZpOYhV6ZiIiuQYJhAk5ctBl/q:rSY+u6QLkfOYhV6ZiIPjA97l/q
Score

1^/10
behavioral18
- Target
  
  Debug/MimeKit.pdb
- Size
  
  2.2MB
- MD5
  
  d8329c76d5918b11c4cadaa09d16af02
- SHA1
  
  37217d127dd3e40ef6df391767df93be41c1906c
- SHA256
  
  88f488c705cee04934f1e275e28a9b6b1e855d077e0a2c93b3e3596ce1f3a73e
- SHA512
  
  b9680975746bfc793dd04e1081e211096ac3c8f4e7f862378ab16a9289079654cf106c2036e6e4b3beb7080108850c9766242b92b2d67683f6b62d08d6c0971e
- SSDEEP
  
  12288:cuyEy/ziKVDW6QstOtOpi2mhO12shV8HOtOOshVC:cuyEy/ziK0Y3pb1VX899XC
Score

3^/10
behavioral19
- Target
  
  Debug/MimeKit.xml
- Size
  
  2.6MB
- MD5
  
  7ca5f3c7800c903d75048d0e916c28b1
- SHA1
  
  8606fb58efbd51011a20311d19e478fec1e01ee2
- SHA256
  
  94f4a4e595d795162a669ba2afe1a3f40ac98a114510cb3582875dcdf14ea3d8
- SHA512
  
  5870ba625cdc642f4349243f2eb414a9373a4bf7cbee201945758b4f3ad2ef3ba8f3e7d97fd31ea9ccfa1e34d750dc0027251bad53088a42e4baf15998a8d5b0
- SSDEEP
  
  6144:iUMpMcofT+3RFFoEoDZsOZsTL1K/zSirjaneus/wfRi9f0IqlEZL4LOKySYLmLtC:MK/zSirja8qlElqJTdbYZA0zGG
Score

1^/10
behavioral20
- Target
  
  Debug/Program.exe
- Size
  
  1.7MB
- MD5
  
  fcb53f0e2ac4051a13aaa0d74dc5d6ef
- SHA1
  
  27ffbdc0dac8cf6fe18e5db8aea2cc632385379f
- SHA256
  
  31042127ff72ab262a679abb70404b50002ccc52563ca0f2df21a98773844304
- SHA512
  
  50cf61d0c7f67a2b3a20cd5af83d00b17f2a9fae8e80e970c17680f2eb4ac0388d6152d1d1aa22119bf190c18b78864274ef74fc14e4fc32f7de26facc93f763
- SSDEEP
  
  24576:FTNxBQZudBRiikTHtuK+umYASnZHe/Qhekif1oZMrtP6doBnev9d+bqChqf0jtB1:JXfYLZYQwkifUMJPfwD4hqf0jxgi
Score

6^/10
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral21
- Target
  
  Debug/System.Buffers.dll
- Size
  
  20KB
- MD5
  
  ecdfe8ede869d2ccc6bf99981ea96400
- SHA1
  
  2f410a0396bc148ed533ad49b6415fb58dd4d641
- SHA256
  
  accccfbe45d9f08ffeed9916e37b33e98c65be012cfff6e7fa7b67210ce1fefb
- SHA512
  
  5fc7fee5c25cb2eee19737068968e00a00961c257271b420f594e5a0da0559502d04ee6ba2d8d2aad77f3769622f6743a5ee8dae23f8f993f33fb09ed8db2741
- SSDEEP
  
  384:/rMdp9yXOfPfAxR5zwWvYW8a2cyHRN7vCvlbLg:/rMcXP6N6e
Score

1^/10
behavioral22
- Target
  
  Debug/System.Buffers.xml
- Size
  
  3KB
- MD5
  
  1c55860dd93297a6ea2fad2974834c3a
- SHA1
  
  7f4069341c6b62ecfc999a6c2d8a2d5fb59d44f6
- SHA256
  
  2ec7fb12e11f9831e40524427f6d88a3c9ffdd56ccfa81d373467b75b479a578
- SHA512
  
  37fa5d4553ca3165f10e2ffef38fefc0dba4a2dbfa05ab9f09ab87b5f71f30e6d965d2f833f58b50b3bc2529ebe8fb5cc431c264f7b47ad026f5c5a874a6ada1
Score

1^/10
behavioral23
- Target
  
  Debug/System.Memory.dll
- Size
  
  138KB
- MD5
  
  f09441a1ee47fb3e6571a3a448e05baf
- SHA1
  
  3c5c5df5f8f8db3f0a35c5ed8d357313a54e3cde
- SHA256
  
  bf3fb84664f4097f1a8a9bc71a51dcf8cf1a905d4080a4d290da1730866e856f
- SHA512
  
  0199ae0633bccfeaefbb5aed20832a4379c7ad73461d41a9da3d6dc044093cc319670e67c4efbf830308cbd9a48fb40d4a6c7e472dcc42eb745c6ba813e8e7c6
- SSDEEP
  
  3072:nUGrszKKLB8a9DvrJeeesIf3amN32AW/rcyw/s:OB8l3/aK32qU
Score

1^/10
behavioral24
- Target
  
  Debug/System.Memory.xml
- Size
  
  13KB
- MD5
  
  add19745a43b2515280ce24671863114
- SHA1
  
  cf44e6557fde93288ff2567a002a69279965caba
- SHA256
  
  d5714c96607eb1a9d0f90f57ca194d8a9c3ede0656a1d1f461e78b209f054813
- SHA512
  
  8d7e564fa61411b5c28f29b07855dd112687edcb39b991803c7c7de67b6894b309102ac9b52409b56b7bb5c9101eb4cdfb21fcfbf5d835e4a153e188cb97cc87
- SSDEEP
  
  192:19SSrAVfjSE0wxiMiLiLiXdCjticiciAiJiziPNjNei5i9zhi+ipOUTJ:1gbXKKXppPmcPi6LmJ
Score

1^/10
behavioral25
- Target
  
  Debug/System.Numerics.Vectors.dll
- Size
  
  113KB
- MD5
  
  aaa2cbf14e06e9d3586d8a4ed455db33
- SHA1
  
  3d216458740ad5cb05bc5f7c3491cde44a1e5df0
- SHA256
  
  1d3ef8698281e7cf7371d1554afef5872b39f96c26da772210a33da041ba1183
- SHA512
  
  0b14a039ca67982794a2bb69974ef04a7fbee3686d7364f8f4db70ea6259d29640cbb83d5b544d92fa1d3676c7619cd580ff45671a2bb4753ed8b383597c6da8
- SSDEEP
  
  1536:nPOw0SUUKw+GbgjMV+fCY1UiiGZ6qetMXIAMZ2zstK/hV+sUwS:nWw0SUUKBM8aOUiiGw7qa9tK/bJS
Score

1^/10
behavioral26
- Target
  
  Debug/System.Numerics.Vectors.xml
- Size
  
  179KB
- MD5
  
  95dd29ca17b63843ad787d3bc9c8c933
- SHA1
  
  1a937009a92b034edb168cfac0ec1c353be8f58e
- SHA256
  
  ae2c3de9ad57d7091d9f44dcdee3f88eccf2ba7cb43adc9bb24769154a532dc7
- SHA512
  
  8e9397816d3435ccf79f1bf07b482473a7dd3b570bce003639f2e9fa1c5fe31c4b9400b68f191a36251a59c0253ef9e09039fdd63ba2205d379b3c582e603499
- SSDEEP
  
  1536:azQgQfMzpKGPqMGFY3lF8YzA2HrYJtJZJ9JaGf4AscoqrbuC4BqaiaIacasa7c1E:azafMDl4LfX3MIg+QDB
Score

1^/10
behavioral27
- Target
  
  Debug/System.Runtime.CompilerServices.Unsafe.dll
- Size
  
  17KB
- MD5
  
  c610e828b54001574d86dd2ed730e392
- SHA1
  
  180a7baafbc820a838bbaca434032d9d33cceebe
- SHA256
  
  37768488e8ef45729bc7d9a2677633c6450042975bb96516e186da6cb9cd0dcf
- SHA512
  
  441610d2b9f841d25494d7c82222d07e1d443b0da07f0cf735c25ec82f6cce99a3f3236872aec38cc4df779e615d22469666066ccefed7fe75982eefada46396
- SSDEEP
  
  384:EybU8ndrbbT9NWB2WL/uPHRN7bhlsQVryo:Ey5ndvWbMPVryo
Score

1^/10
behavioral28
- Target
  
  Debug/System.Runtime.CompilerServices.Unsafe.xml
- Size
  
  20KB
- MD5
  
  c782e92abbfc0531226f735c6ac56498
- SHA1
  
  2586fdbeb6d1e11d4cecd5b3e8387a18c7b4d350
- SHA256
  
  39c2d4a63a186d423e9c866f4d3e9a6acba0103398f20baf8b92a38744894215
- SHA512
  
  a12b6807695c9c626de9602abc6df72bcc5e869a29c7111e956034f321436e7c50ea36ed5ec5b6f93a639ae0f7aea93953e91ae557bf423a749b036c7252a7b9
- SSDEEP
  
  384:Y/uXukudyvmB0fmkcdZKyQe1EyriJriurs8rsF9vVwFaFDJOeOtOEKFzUxRkj1r:Y/ApEwmafmkcdZbQe1EyriJriurs8rsR
Score

1^/10
behavioral29
- Target
  
  Debug/System.Threading.Tasks.Extensions.dll
- Size
  
  25KB
- MD5
  
  e1e9d7d46e5cd9525c5927dc98d9ecc7
- SHA1
  
  2242627282f9e07e37b274ea36fac2d3cd9c9110
- SHA256
  
  4f81ffd0dc7204db75afc35ea4291769b07c440592f28894260eea76626a23c6
- SHA512
  
  da7ab8c0100e7d074f0e680b28d241940733860dfbdc5b8c78428b76e807f27e44d1c5ec95ee80c0b5098e8c5d5da4d48bce86800164f9734a05035220c3ff11
- SSDEEP
  
  384:1R973o62/KqcAnb05J3w0I5eUGef8s72XBWdvVW2JW8aJcyHRN7WEimpplex:1RZ4nNxnYTb6Blha
Score

1^/10
behavioral30
- Target
  
  Debug/System.Threading.Tasks.Extensions.xml
- Size
  
  9KB
- MD5
  
  c89e735fcf37e76e4c3d7903d2111c04
- SHA1
  
  3c0f1f09c188d8c74b42041004ece59bbd6f0f56
- SHA256
  
  975a9555f561b363c3e02fd533f6bf7083aa11bbc7cbf2b46c31df3d3696b97b
- SHA512
  
  debdd8d0ed2ff6ad7b175acfeb1681b1a68eeedd6d717e20e6ac5e0d11c13a1219b4d60f9319939c63bf4b53456328531369f4a9fff5b201475858310e385007
- SSDEEP
  
  192:1/elWY3f207pbNcYDLna8MMOOXzHMfHuHoLob+OoMuJkfYSiffiWje0seJme0seM:1/2d207pbNc2na8MMOOXzHMfHQoLob+N
Score

1^/10
behavioral31
- Target
  
  Debug/WinFormAnimation.dll
- Size
  
  37KB
- MD5
  
  16b35ccfcf3e6e97e182d033cb7bb748
- SHA1
  
  dadae07416824b194557ad182546e4faf5775d0f
- SHA256
  
  d9052729b560d819c8d75149b6ca92c48b9e1b1b0ccaa50080a74166db8eaa12
- SHA512
  
  b652c2eea4ca9da97db7660b8ea3dd43d045f1d0a7302b0d7ec6b09720ff242e8e03401cedb854fe1198f5ebf5d043502ef91ca8cfe03e27d8cb223b34ba5eb7
- SSDEEP
  
  768:LkKguW2jU37VjIOsCF6sxx2trIOvwZw094wM8roBknl+8m3uPezhW:8FljVswHgV4oanlbm+24
Score

1^/10
behavioral32

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

Sharing

General

Malware Config

Targets

Looks up external IP address via web service

MITRE ATT&CK Matrix ATT&CK v6

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32