0efb201862f2e484e0366dc8bc7a46c70c34057320c1020bc8bf73d9e57a312d

Sharing

Copy URL Twitter E-mail

General

Target

Total Network Inventory 2.zip
Size

109.3MB
Sample

230504-xgy9baee78
MD5

2be95c2c8871afeb11063846ffd4b34f
SHA1

87f91b0bcf6ca0f25a34a67c9b262263d41071b1
SHA256

0efb201862f2e484e0366dc8bc7a46c70c34057320c1020bc8bf73d9e57a312d
SHA512

30b7c5c63cbf13dfe81ff13cbe1c4ab24596d7bafe14dcbaaea89ed6cb0818a5dc237c51745a572fa49ac188c335b871569e84cab86a42e78ce2f95dcc82c243
SSDEEP

3145728:NDJQDARAaEiP5AgRMPnIXwIZEee1xlt5cU0gfMt/a3L:lbKa5P5AgR+gwIZ0xlJLfS/a7

Score

7^/10

upx

Malware Config

Targets

- Target
  
  Total Network Inventory 2.zip
- Size
  
  109.3MB
- MD5
  
  2be95c2c8871afeb11063846ffd4b34f
- SHA1
  
  87f91b0bcf6ca0f25a34a67c9b262263d41071b1
- SHA256
  
  0efb201862f2e484e0366dc8bc7a46c70c34057320c1020bc8bf73d9e57a312d
- SHA512
  
  30b7c5c63cbf13dfe81ff13cbe1c4ab24596d7bafe14dcbaaea89ed6cb0818a5dc237c51745a572fa49ac188c335b871569e84cab86a42e78ce2f95dcc82c243
- SSDEEP
  
  3145728:NDJQDARAaEiP5AgRMPnIXwIZEee1xlt5cU0gfMt/a3L:lbKa5P5AgR+gwIZ0xlJLfS/a7
Score

1^/10
behavioral1 behavioral2
- Target
  
  Total Network Inventory 2/TEMP/PISWKSD005_F8B46AA41F18.inv
- Size
  
  87KB
- MD5
  
  3f339005e3b1dcc7708d47ce0e8aa501
- SHA1
  
  016e315749fd7a69d3c85c509054017d19437742
- SHA256
  
  de4f076558f9741a11c383bbc3db8f1d5da5257c8b297d7ac1a80afa915370ae
- SHA512
  
  2faa9f109c5ca43819a83c116fe44692924f3fd841e5efb32007f2c6432cc8017448bc4206289ba25cb34fd29e7296ac8d0c8e72d5f0427d84c50f340b121cc2
- SSDEEP
  
  1536:tcuRsU7IsbeGYAebgN8knML+VDGiBjfp5a3GtJK/7g2HZbOJ9/ucfV5K3P:tcud7IsEbgv7/fA7PVOJzfr+P
Score

3^/10
behavioral3 behavioral4
- Target
  
  Total Network Inventory 2/TEMP/PISWKSD006_F8B46AA336E7.inv
- Size
  
  75KB
- MD5
  
  e905edeb9e4c4a8d6ee0dc4720f7a54d
- SHA1
  
  2c3216487a69172963bc0da1d955a4753d261f4d
- SHA256
  
  05caaa4c90fbf91f6572ae9e6fa5df2e170b7f8e4cf75f0bbbf5037335542d15
- SHA512
  
  e319da26b39a8e432209cfa28213035d3434396ad7338962e4f6527c9c5b410f0ca0f1b62d1ac5a2664629056c3764ed2b6820d4d46425610f15e8b976dfdd09
- SSDEEP
  
  1536:Y34Tidvb1dvqCrD6BMZDOWjycs/LVm/F+vqwjhxB4TeFQ7:nTidT1dvqCrD6BoPyBL+AvljLB4iY
Score

3^/10
behavioral5 behavioral6
- Target
  
  Total Network Inventory 2/TEMP/PISWKSD007_10E7C61AF08A.inv
- Size
  
  82KB
- MD5
  
  649e3be268ec9f420896c4c57976a729
- SHA1
  
  ed776c0afe1b01349ce8468880ed77cade49c3e6
- SHA256
  
  a053375491c88a03d8ecafc5d60332bb187d7f1fa6afc350de435ff5bd4c689a
- SHA512
  
  d0b91d3558c3356ab08a8b79b9b40a51a19a2c9b4dfcadebdade676afdb22bfbc182711e4aa982bb505fbf66b0272ada55135c18e222dbf24bfb9d1f5a577e50
- SSDEEP
  
  1536:hXBc/RgWUSiLpDZi3x4fhRbXQ4dgp7SkLPxH4IobzABnMBq8sm+tPn0hhZkvq8rH:NwRFUVLxgFGkLPxubz8MBq8V+t8hhG
Score

3^/10
behavioral7 behavioral8
- Target
  
  Total Network Inventory 2/TEMP/PISWKSD008_F8B46AA0CD6E.inv
- Size
  
  83KB
- MD5
  
  babbb6d4cfcea95247086e931dd93f92
- SHA1
  
  fbe92010c63b40f2970d9e5ee83c45da623f85eb
- SHA256
  
  a6b66fc0da5e23cd88c351416e0a272d6d7619dff7ba159166214802a4dcd452
- SHA512
  
  e2789d869b190bfed57575d0efc5b7bfe757adecb8cc2c24edcfad23fce52276c0c51432845eef69ef633dcff70c46ed2308a1cb9dfd36c3f7ec366cb51cb875
- SSDEEP
  
  1536:dm8cWVTHCHvDuQ4mEsgAhSsdN+F9Vix4Pyo0OVS90/gPz/Rd:08cW5HCKkgEMdyobHCzX
Score

3^/10
behavioral10 behavioral9
- Target
  
  Total Network Inventory 2/TEMP/PISWKSD009_F8B46AA33C48.inv
- Size
  
  91KB
- MD5
  
  8ce0c9b8817df1dc7e2ebc4a5319810b
- SHA1
  
  db7e852081b5671aa82fe0ef535ffd13425a1aa1
- SHA256
  
  7911be2425430f8724ca90f9085969f4392dbfc2ecc0e3eaba57fa404df4baae
- SHA512
  
  5b517cd5dbdb01de071cace17bd1e736d5c91fdc2fe759c6b33155d3500f07a9ef34ab9659c8580c714a920891ea107bb1cc694bfdceb4483d2211ffb415ac67
- SSDEEP
  
  1536:Rvz4QuXOCJoRQsI3X5YKO8Y0ggMflvWBrN7FA6rTz70raglu6H7Rn7oHVmwyN:xz9u+CJoRkSKMXgMlAJRXP0e4NohyN
Score

3^/10
behavioral11 behavioral12
- Target
  
  Total Network Inventory 2/TEMP/PISWKSD011_F8B46AA336E8.inv
- Size
  
  94KB
- MD5
  
  6b397d7282a5a1b091c331274913a15e
- SHA1
  
  7dc43a9c40c74e1f5e93dea24f846bb0160ba2c9
- SHA256
  
  d4bd8f84ee951ad352e0ae73660529975c13555d4f481f6a8f07b943524b7c1c
- SHA512
  
  5674c9f87328151c44abc5aa21c2835ce59b2bbfb049d1c901a557b5b6dd3f66879f7316f0904b5f28cf8cba561b1b1a3cdf95e603c76795bcac727b74edda7e
- SSDEEP
  
  1536:ct+2jYu0PJzjNBzDsh/nMFHlqtaGP+5dppwhHgFwHImHCt80goVugruseZ9x0D4U:aLjYuANBnshfcIbP+5dh4zsvYgrY/eDP
Score

3^/10
behavioral13 behavioral14
- Target
  
  Total Network Inventory 2/TEMP/PISWKSD012_F8B46AA41F16.inv
- Size
  
  93KB
- MD5
  
  1f4ffb4859403d8a542819fece712faa
- SHA1
  
  8073861028d7f70573762851a3faf1d0243cf065
- SHA256
  
  af01316740edf9edc43b7f236e5ad70361ac302c98e99e58d4b73b89b938e7f7
- SHA512
  
  781d301c422c2560cea9dc62cde3239ac3d61d596894d6ca844ccb190eb60be22d01c43a909e74038362001778fde1f8e7821927eb7eb4e34719b745235de636
- SSDEEP
  
  1536:liSQiL37O3jDXsk3qeHef0iK0CobkceoUJ+ulKgFysBOBulOIHXs:lpL32sk6+LjcRuQgp5H8
Score

3^/10
behavioral15 behavioral16
- Target
  
  Total Network Inventory 2/TEMP/PISWKSD015_F8B46AA41E5E.inv
- Size
  
  89KB
- MD5
  
  32619f225b1ac67ce571ecde13fa2a39
- SHA1
  
  b5b4027d605e52d6ac2b588a1aff7556ba8fceb8
- SHA256
  
  44beed3e71066d69570c12b1e07dd6127dd1ce247556590a0f5327bfa4fa6b44
- SHA512
  
  e31d66729184301475ba093d52cd6f83e542acf49fdfa99688d694c01320d869e279fe482d67aad22928c815353a23e4efdecf237cceeed13094151a404ae2b0
- SSDEEP
  
  1536:cpxrR6j+pVmVN+v6HGfcJeVTQ8tpYY6V6WiTsQLXcwrJt7:gEUmv+v3seVTFtpSV6zstwFt7
Score

3^/10
behavioral17 behavioral18
- Target
  
  Total Network Inventory 2/TEMP/PISWKSD016_F8B46AA41F22.inv
- Size
  
  87KB
- MD5
  
  3f171972a736838f8e0dbf6baf77a2e3
- SHA1
  
  cb414c28e11cdd65b125dd52f040d04a848fcf30
- SHA256
  
  2e6f3feb349b3d302445a8de4b0399a9a32024c056118db1b5c96020d90650db
- SHA512
  
  44698a5eb1ee8658d018bd43bb9a5e075686247a349378142ee2b82db14e3aa5b74241465b85ce46ccce9547e0bc931b51f17e4ac31726b935590d1f4695c960
- SSDEEP
  
  1536:Cz2w/J+bhAD70icsckMyIW38lp8LMkp6j+DTXNtJbHjrghhXDJ:O2wN2WslW6yftjcXN
Score

3^/10
behavioral19 behavioral20
- Target
  
  Total Network Inventory 2/TEMP/PISWKSD017_F8B46ABE44AA.inv
- Size
  
  104KB
- MD5
  
  3f0bea76195baeb64d65db495db40ed8
- SHA1
  
  05ac7cbf77bb191d87317a4f7dcbe3a51044d776
- SHA256
  
  96af478dbff515b2893c0fad1706408f6644239ec8cd17ca6a7dd61d3bdb250b
- SHA512
  
  bda2feb55115026f1f6ae112fd564ed724a2d697f292cf82271245df298b9198fa0dfc220a4e5e4766f9ac0e931dff7babdf77d286c2b718cc7a3c3ac1c9a7af
- SSDEEP
  
  1536:me2H8NLAdAt7KJxVdnuY5JV2iNx2Iv7rHGp1jo+NIxJ3FJIh1255MX4vdpH3yUPE:zJLAdsAdTJ3rvXmYE0J37zt7vu1im
Score

3^/10
behavioral21 behavioral22
- Target
  
  Total Network Inventory 2/TEMP/PISWKSD022_A0D3C114330E.inv
- Size
  
  421B
- MD5
  
  6144e6cd33a3cf186e13e487680dda3f
- SHA1
  
  847e93b3adeb85a4e33a75b9f88145255c9c7fef
- SHA256
  
  5db05f0d410a8462986856fc8813dd9f0304cc7c1a59ca75d35945c7c8c61671
- SHA512
  
  cffa382aef64a4869b777ff13f5a856c3c8bab8f59bf063410b28a3d4031db402bd7545ac948d70d52239da0047527c8c125ef5ef713cd7b7256428c762e85c5
Score

3^/10
behavioral23 behavioral24
- Target
  
  Total Network Inventory 2/TEMP/PISWKSD023_F8B46AA3369C.inv
- Size
  
  76KB
- MD5
  
  f56635e4ab6b8298806888916047a6a9
- SHA1
  
  187add1c17d8d298225f85b05368d67473aade0c
- SHA256
  
  d2d46b68fdd1ba3428ceefedd27c28d834226613c7bfd0cd3ac7fecdb88cd1aa
- SHA512
  
  07f1cc2f39bbe85dae7ebe21cb5dc337b67cea5ad8d94f2aaf2f1e26a5c93724cb775eeaab272a000144baf74e00183d7c76674d322a282173172cd265447916
- SSDEEP
  
  1536:2dAgWACf95IbEJHOWkLRDUvJowgmImbWgbRpVurYrFmlfdH:2WUi95xuWEQvJoVmnagbRHu0r8Z
Score

3^/10
behavioral25 behavioral26
- Target
  
  Total Network Inventory 2/TEMP/PISWKSD025_8CDCD4469BF1.inv
- Size
  
  461B
- MD5
  
  a5ec8d21316ce6b8c54715058485d554
- SHA1
  
  e76d1f73800e761c51ecd3a56e912f83d119a77a
- SHA256
  
  4e0a1119ce960c58e2da8c7df654daf39da1e1e0c0393480a00aef7c6a315bbc
- SHA512
  
  dc89d413c1bfc79a03864e3d344ae9ea02c2ace070118bb57aba73790e50fdc8a2fd3e73dcbf120726085a19a5bf536685941df2fab4e9938972af7a514b9727
Score

3^/10
behavioral27 behavioral28
- Target
  
  Total Network Inventory 2/TEMP/PISWKSD026_6451063667D3.inv
- Size
  
  422B
- MD5
  
  24a7cf16a1224caa61dd64c653853917
- SHA1
  
  783bbe1525c0679e6b9c4325604153cdb37ff2ea
- SHA256
  
  92ce918fa6be4bcc09ccf21b213e690c9b668cf2b78f67979b6e2fbd550cb0c4
- SHA512
  
  889a2aa4e16c59467f258ec0fe121fd974f57784e692eb1eeba39ad08efd3e013236fa343de4f029f88e287d04b4e71aed937a6e874028c8f7303a14d5379a61
Score

3^/10
behavioral29 behavioral30
- Target
  
  Total Network Inventory 2/TEMP/PISWKSD036_6451062A9E85.inv
- Size
  
  74KB
- MD5
  
  00145e4130b2e91c7a836514e6086773
- SHA1
  
  d7c994ccc22c6bfead56154a233c1ecb4038e737
- SHA256
  
  ff8f0ac160f9e569932ae5adfa996b11187e857a0cfa983a28c321c03b1c610f
- SHA512
  
  6eb0e5b9903013d3a06cc5b627db467e1a7618ed1990189a973c520872cbfb4951aa42d82df774719c49265ffd4dab23c8b00220be26475597f0cab777aee04f
- SSDEEP
  
  1536:t8ncl3o+EWNI3sxsvMbaLeCC5Vh6Ye7Wc69IBlgY7eE3qHgnZSmrOT0XafFbY8:t8n63FEyEsxLeLTC5Vh6j7169Ls6AnZI
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v6

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32