3639fa09708f7b00d58ce24cdc6994e980d283e5da068898b7674aa99182d89b

Sharing

Copy URL

Twitter E-mail

General

Target

x64.zip
Size

150.7MB
Sample

230526-w7t7lshc2t
MD5

88652bfe610541ee466c9870425d82db
SHA1

46cba02bb506f73bf805bf8462b4e0f5dbda1004
SHA256

3639fa09708f7b00d58ce24cdc6994e980d283e5da068898b7674aa99182d89b
SHA512

57dc90337be8915b30081c44472d861de621f6c670cbf5d696bb1b36448caa6eb09eb88b49d891d76977975c15ea3ba96f3fad4010a9a024df8fae669b1def55
SSDEEP

1572864:j4sgPrwC4yC/dPSJXXOao4S49fNyRpHmwIyVA:jbgzwC439gXOac49mdHVA

Score

3^/10

Malware Config

Targets

- Target
  
  Ookii.Dialogs.Wpf.dll
- Size
  
  103KB
- MD5
  
  8b9618ca8a33bc141daf1cafa9e4101b
- SHA1
  
  a01b2a55b799210ef3e82ac56091bef46f948f7d
- SHA256
  
  0b849a11ae23e36d70a0dc1d7a1e9be244855c28dabfd50553ddb34448aa2da8
- SHA512
  
  d466aff8f3adaf6f18d4e521fa25605f879eb065441617888b13542cb30602ef3f1b804befb0a2714729f46d9614525f59eb8384421fda63cbb548514c83cc40
- SSDEEP
  
  1536:7ToBF+aPNGVuhMNw+LOp5B6Uor0pB/XjTVJIaweogtS5MKLh8sm6b0HAl:7TeF+dyMQmMxXjTVHc5/kA
Score

1^/10
behavioral1 behavioral2
- Target
  
  PenImc_cor3.dll
- Size
  
  155KB
- MD5
  
  46516734216d254ed814d547e997d865
- SHA1
  
  9e437f194c22d7d7426876abd7697a1b4a301916
- SHA256
  
  65ccbab008192df296c5742ccf83a9117a4dd352cdee8d0ca406de55e8d86bb7
- SHA512
  
  a6e0d8aa31f593c7690bcb4da6fa53e97abb93f99064771d002845234e7228ff2551a4e81b20bdd5a3034f8c3f9879af00b701006987383d9ff605e41f6f22cd
- SSDEEP
  
  3072:eFekE8STtfLrH58GGw5MGteuduEAjuEBATZ+oy0MdMNY4NYo0:eFekstD1pGwu7iuEAjuj3y02
Score

1^/10
behavioral3 behavioral4
- Target
  
  PresentationCore.dll
- Size
  
  8.2MB
- MD5
  
  6eef920e2b7713dd4c2070c91b5fe5dd
- SHA1
  
  57d596ebaa60fa0151c7e5a3a24ea7e53b078068
- SHA256
  
  bc103cb91617a0b6fb71d1cec303bbe7f9a2075c1a0d86db31b087b7719c28c9
- SHA512
  
  5841a806c134067431d8d2f4f60ce3d1fd14982cf6505465e6fd727f5e36c66c227171d09d11cff937e98afba466c774739b630472d1a39a9c75a54769f61d42
- SSDEEP
  
  98304:U7THV36Xek4la7JPyWn5lRVaZRzTMNozHp:U7THJ6Xh4APyWn5lraZRzTMNmJ
Score

1^/10
behavioral5 behavioral6
- Target
  
  PresentationFramework-SystemCore.dll
- Size
  
  38KB
- MD5
  
  4c8f5138f6ac63da7a577ada276a9918
- SHA1
  
  10ef32d246d1fa6f1efe5c6111862377213fa198
- SHA256
  
  c2f02da8a602a57af94ea271a67b3e70a0fbee79341bcf623076ab408335a01f
- SHA512
  
  487a190c83ab07c115c0bb44ae0dd0c87edbe611d2343043cfa9f894b64a8cb0677fa79feddd57773f7714d844d095e16470078ee4802f720131c6f591872f24
- SSDEEP
  
  384:5WlRE7ui1H2iMdRH5HQUAmU2jJQHl+iXvHRN7to36zR9zFOOSi:oREKiR2ndlo2V5ofz19zgi
Score

1^/10
behavioral7 behavioral8
- Target
  
  PresentationFramework-SystemData.dll
- Size
  
  34KB
- MD5
  
  98a7e628b513547405bf311bb2f75f51
- SHA1
  
  bda6285a876649bbce77648ce6143ab8f8ec9db3
- SHA256
  
  4ea22a961886aad3512615003558d854af5f142d174cd6962714551564986dd6
- SHA512
  
  c69f5c8a57cac84c49376b06d4e8a43735265738e92f90b2d7d9491b91546af93bbc4ae2be5be5a530c1bfe9cf43dadf52cd5c00e2ac8e679e784edf3e123058
- SSDEEP
  
  384:fW1Ir7tOnSGTGRAo5cz5Rj1J9iXvHRN7UoFsWAR9zeXe:6YtOnF991vof0L9z
Score

1^/10
behavioral10 behavioral9
- Target
  
  PresentationFramework-SystemDrawing.dll
- Size
  
  34KB
- MD5
  
  25c869afe4053faf5937a1cda56e5516
- SHA1
  
  12dbab6d280df7c8495098879bb952bd92fb342a
- SHA256
  
  73ef7683430d4123fd7eeb050bdee6bd2985b4f3c0e3c1174cab8da83bc4b99d
- SHA512
  
  ef3ffac4e5b9e8dbca53db9c51e4ad0fe7456ecb0fd96b7ea08a538effc2b002b368a368384fc11cfbd2cfbbc7835d4746f080137a685011de805232329ef091
- SSDEEP
  
  384:HWIrvcKSyEJrVK9yNCvaMiXvHRN7m0R9zDy+Ri:rDcjyEoXofm49z0
Score

1^/10
behavioral11 behavioral12
- Target
  
  PresentationFramework-SystemXml.dll
- Size
  
  34KB
- MD5
  
  18c5bcae01f9ef6299cccd3338864646
- SHA1
  
  75f2d1ffc48ac4d34050d39e84e3bbc0e7609f5d
- SHA256
  
  448056b42b9075afcdafc2d7fb62cffab3237794b0dfc98e676c71e8c77446d9
- SHA512
  
  d09cd7b827fd244bc6726d7edfb49b72860633a9dd89524142a0bb4de37a1afa6e9e5eeadeb891bf08d255bb88aacf6a64079967d29ee087b6d0e27a2a8633d1
- SSDEEP
  
  384:4WMwaotrNWtZ3J4XVCox+Ztn6fUanEmkmXjIXAHRN75LK7EHR9zN3YX:WFotZWtH4lrHrEiXIsE7Ex9zFYX
Score

1^/10
behavioral13 behavioral14
- Target
  
  PresentationFramework-SystemXmlLinq.dll
- Size
  
  30KB
- MD5
  
  2a8ecf4a80b9cc663bc702abf8bebf5a
- SHA1
  
  289f92387f3a0c8f94423635ed920e1b67f4020e
- SHA256
  
  ece639fac2283af8f74d38c6382e5f5b351a85324b75d402df0994d537e63b91
- SHA512
  
  1d5d1d5fe1daac4be9c8c8acc5c3accfad0b82bba288c6ca7159e5efcfc1503588fb48cba9fbc4adb09b10bfe84ac932fa3c4d4297d3dd8e5a7e0a51dc78fec0
- SSDEEP
  
  384:lLWoLJMIrbHdpvlISXAHRN71/hEK+R9z6rt:l/VMIrbblns1Zhi9zCt
Score

1^/10
behavioral15 behavioral16
- Target
  
  PresentationFramework.Aero.dll
- Size
  
  446KB
- MD5
  
  e510c1589dd75f1af52f09c85499f979
- SHA1
  
  5a10ac0a64d2ee8562363c33b283c120137a63c1
- SHA256
  
  11615e597f59702dfc6d82b5236b05bea001517db13673371200233ff0353f32
- SHA512
  
  f1a1106d4fa2ae461a13f51eb929c528e96fa768eda677edb93181b4b78e8427708f69d34ae699d6f805f9af564a234e396fdf9f3002c9319e474d345a68b841
- SSDEEP
  
  6144:pUntxxnUGjzKtQjMwskwJLDpzRtHNlhe04aH1H5Ke:AznU+xskwJnjtHNlhe0d1
Score

1^/10
behavioral17 behavioral18
- Target
  
  PresentationFramework.Aero2.dll
- Size
  
  450KB
- MD5
  
  968f846180893ccb677b99c85ddeeff1
- SHA1
  
  6786fce6736d127fad8e7cc5c933c0858a6e3a1c
- SHA256
  
  28c8699610175959a321d0eb6abf51c0cd67a4e7bd5d93b8cc4c93e37d1268dc
- SHA512
  
  469fca991427ed2990fedc20b37adbce1714e511c60b845445c765e29b45db2819a0a0818690d5a4fde7feff1f3252d18c72b29ae27e4f4cd375fa9a7e662048
- SSDEEP
  
  6144:mXP7nVEP2yDRb2G92TcE/zIIaCxXBtHNlhe0Zs1H5Ksn:UP7neesbKcE7pXBtHNlhe0qRn
Score

1^/10
behavioral19 behavioral20
- Target
  
  PresentationFramework.AeroLite.dll
- Size
  
  234KB
- MD5
  
  413e4532a4834f9b4c9a3dc8937aefcd
- SHA1
  
  eb434feda72e6e7b3032fd82cf377b0f57c28e8e
- SHA256
  
  cf13313fc86bd25c6dd8f07a4a61f2d9205f9b48fa081bec97a03e2b49053f8a
- SHA512
  
  da41fe0b5d805197b57b5c282575f672a6aa19c7b61ec120d8e629c08545339ff6347e92dd41d0f736943c699cea074a54ea1dd0c83c1ad51bf21bd071654599
- SSDEEP
  
  3072:Kyg05HdISwFhtB0sDK92SnCyOWvhVZ7St2iach:7g0JdINylHnPX4tGc
Score

1^/10
behavioral21 behavioral22
- Target
  
  PresentationFramework.Classic.dll
- Size
  
  266KB
- MD5
  
  7c0b3587613b689d293e449eabb88d1f
- SHA1
  
  81b50654ae466fddfee21d256220578b9607e68f
- SHA256
  
  66b1da30cab7402b6c21057523b4bcac74b6513006b9ba7a6d63accb28400106
- SHA512
  
  db6011c75808755319a378a7b42a5e463e26b3d7f73b8050cd8fde92767c8adb8f3f9f3f56a8ff34c0b660e5cb35c6cdacc0b79ea75255d3d510840b2d65c3dd
- SSDEEP
  
  3072:zAX7U01FlqnpGdSFxmL9gkAjaDdWnkLIiNes:kLU0PonpxH9kUaDdW8x
Score

1^/10
behavioral23 behavioral24
- Target
  
  PresentationFramework.Luna.dll
- Size
  
  666KB
- MD5
  
  42386471f95e2a960f8dbfeabec8d037
- SHA1
  
  f30a5a2f03244a987efa5257c083a2d03ef5504e
- SHA256
  
  4a58f760779281adf8e5ac7b2c9ca6fac250f1180ea44b47ef755ca74378b683
- SHA512
  
  5d7046f967de04898b58b1215e600b107a0ec468f1eacc950ee2260e2d248b44bd897771206bdc06d35b5e49d93348d7e047e5a89b9f56438ad4d0d76324c5bb
- SSDEEP
  
  6144:3rx/hfaM1AgqQB7YiOKyg1pury3j7SPgqfd77bd5gJm6LvQWYI6mHdzzo4G9B2bK:lJaMaS1OKy2d7SPNtA6ud3ABwK
Score

1^/10
behavioral25 behavioral26
- Target
  
  PresentationFramework.Royale.dll
- Size
  
  330KB
- MD5
  
  7024f0700ca9e198f3ca91e800be068c
- SHA1
  
  300687f2031af1aa5e4b9cd713911b6cf708633b
- SHA256
  
  2d02baec35f312f4ba9ba1a866f4b48a34159d5df40946f048d618a0d01b0fb3
- SHA512
  
  006f1d6311fa8e917b6c96665f621b67c5a4331a6bdfe6c78f11e21611a2d1c4c37192bd6c3b46be3ae4bff2b52419f277301929cd186ecb25024c089243e158
- SSDEEP
  
  6144:7vzGInd6Xcfg9UAMH4TvAllnCdi2i8iWcAVL:7vhndm+CdX
Score

1^/10
behavioral27 behavioral28
- Target
  
  PresentationFramework.dll
- Size
  
  15.5MB
- MD5
  
  c87946404708d5b24e53b51ebfd8d8bc
- SHA1
  
  1be52bd88ef5a94128ef257847d7d2d289756e6c
- SHA256
  
  c17c86570f750691095429c85530debbc3baba82269eca84f3d6d52dc693541c
- SHA512
  
  80beba64ae549cd65bd29317391de65d656fd7a22382a999f11e459f191b9d6b09fd4583032f9ef5c144a06d8626c7b27fe18d884be497d74f440e7167f514b9
- SSDEEP
  
  196608:Rp8MZFoIMNsdckSJQ+N3TEOlXOW4GjXOa+9eWJMhGwhCJHNgOE:TENsdckSJQ+N3TEOlXXXOa/huJtw
Score

1^/10
behavioral29 behavioral30
- Target
  
  PresentationNative_cor3.dll
- Size
  
  1.2MB
- MD5
  
  101536b90a55412fbbe8b5247ecd7af4
- SHA1
  
  8697af6fb8f07339db7cd45fea206bfef8b32563
- SHA256
  
  aea2d02150ca2c68d8323486daaa198a5237c1e47141dc3c907e2c4f46126304
- SHA512
  
  7cc262ad78a697025242bbf5af94c647fb01ee4b00099352fdf7eb9f0bdeb4d30ef9cf9d9f13cc73ba88eec0c2eb9fc8cbaf27c30e604ff6b6b668bdc55cc6d0
- SSDEEP
  
  24576:URBe8yLZba2oWlrbIwL0lMqfPUbsQf8N81hlAc0htf/H+WggUR8xm+OC8d:Ui8yLo2oWlHqfPBQfCIlAcU/H+ZR8x7I
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32