Overview

overview

5

Static

static

1

NL-Brute 1...en.exe

windows7-x64

5

NL-Brute 1...en.exe

windows10-2004-x64

5

NL-Brute 1...PN.exe

windows7-x64

5

NL-Brute 1...PN.exe

windows10-2004-x64

5

NL-Brute 1...64.exe

windows7-x64

5

NL-Brute 1...64.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    24dcac87be88b46f739157b139dafb2a.bin

  • Size

    18.0MB

  • Sample

    230421-blgdeafc2z

  • MD5

    24dcac87be88b46f739157b139dafb2a

  • SHA1

    6f095e5fa845fd106f9a82d573fdf2f6386e7bfc

  • SHA256

    4bbcd735b2866a10a7050a523a51586c945e4cd1cb14b70f2ff6c20ded044cca

  • SHA512

    acee7b8363186fed6d8f2f8d54bb18637666fb76b983699c88e4e5789f1edb406300bc55d50639a0930eddc24029a61dadba4fc4ff3080732bb04426c5d5fae9

  • SSDEEP

    393216:TaPdyG+3KJY2fFmweoXgZFqkO3Odbgywt3GJLgGZX/bGupW:39KJYqmwxXgXVOGUZYgQbvpW

Score
5/10

Malware Config

Targets

    • Target

      NL-Brute 1.2 x64 & 1.2 x64 VPN Edition - KEYGEN/NLBrute 1.2 x64 & VPN - KeyGen/NLBrute 1.2 x64 & VPN - KeyGen.exe

    • Size

      2.5MB

    • MD5

      62b039b2af7bf5f6abf35ef903024300

    • SHA1

      4ae220e451482e839619c2e927752468e0eda8d5

    • SHA256

      83d7f6eaf7fe075503ea6a0bc726633c34595a6eae7edd7deab95ab4d4a66fd5

    • SHA512

      8abcf2fb422465fa578eb59e2788317ef88360551b675c964e03475a865e22dd4b86550bb442c1823fa72de059cedb438cac34538dcb291ccdb22fd34ee5433e

    • SSDEEP

      49152:45U/Jdf39XFINkWr5kkYe6TdOYz44rcaMJIsjOO/ry3X0EdNZgJAxGEG8CZaFD:L79XaH5kheKdX4cjuR6q6XTNTI58Z

    Score
    5/10

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

    • Target

      NL-Brute 1.2 x64 & 1.2 x64 VPN Edition - KEYGEN/NLBrute 1.2 x64 & VPN.exe

    • Size

      7.5MB

    • MD5

      91608c3ee9c91a2a1155abf519f97e92

    • SHA1

      4950ce47bfe4f73e2c0372196527d247bc8a0c9f

    • SHA256

      6e0dcbb9710aced2a00c8863b2fe295a9e7677a07d6fc4bbb100714d2ddf0d4d

    • SHA512

      813ec8a6cc8bf5a42d8d534187e3c3bdbbe875286733aa82bfcf9a63c14b74d7ddd2c26758a154e9ed5b677166317b6c7c1e5d4fc408a48d5857904c19994066

    • SSDEEP

      196608:RLTZ9CkBXEkMnt5P+0rh1LMzLsoMusAsdf:57Cuat+0rHwLMujsd

    Score
    5/10

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral3behavioral4

    • Target

      NL-Brute 1.2 x64 & 1.2 x64 VPN Edition - KEYGEN/NLBrute 1.2 x64.exe

    • Size

      8.7MB

    • MD5

      78dee6d98ef0305edf5e264f4b9e3389

    • SHA1

      e89564f142b0900357ea5be5dfa5ec12a21f91ea

    • SHA256

      f109dce14b8d7911ba69d6ac1309da3b93461c724cf327fd7be5d73eaae21572

    • SHA512

      254a1dfd30dfed73de864cbca51c5673c4723796b9c3ccfc62cf8dd67b09abfe2786e8cf76ac0465f3a7582ab2a8c2c8ca163517fc4e607443b9cf9a4949fe7d

    • SSDEEP

      196608:ELty6I5phJfAzVV4A8MWzYHuiDaU/BYv7x3soJrXC8I3Asdf:ELg6IxwV4ALWzrGa8k3sodJDsd

    Score
    5/10

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral5behavioral6

MITRE ATT&CK Matrix

Tasks