General
-
Target
Secure-Invoicess-.zip.zip
-
Size
23.1MB
-
Sample
230531-srdyxagb71
-
MD5
b3423b2f825e7f0c85bc77be0a56fc69
-
SHA1
9124f4593963018838922d9c53fdd1065a179ab4
-
SHA256
cd0772a4089bfa360622ba94a52ccce9ffcf82064aa23862073dad58423cadde
-
SHA512
8ab29557c7136cf065a7d838c0dae6491031dc1a9ae3184986f0a6c58a1a0800ae1468b7e980ee04c1d4fe1864495f8a112dcff211714be18f1a7fe204a4954e
-
SSDEEP
393216:tPz4uulPFXcGCS9msirY/cMZGVOQ73Bs73ky+PYgCP1fYJ2GZ2AjHJ82+t1UIFLW:tNuqHPJBMc3BaAaCB2E8Dt1UUi
Malware Config
Targets
-
-
Target
Secure-Invoicess-.zip.zip
-
Size
23.1MB
-
MD5
b3423b2f825e7f0c85bc77be0a56fc69
-
SHA1
9124f4593963018838922d9c53fdd1065a179ab4
-
SHA256
cd0772a4089bfa360622ba94a52ccce9ffcf82064aa23862073dad58423cadde
-
SHA512
8ab29557c7136cf065a7d838c0dae6491031dc1a9ae3184986f0a6c58a1a0800ae1468b7e980ee04c1d4fe1864495f8a112dcff211714be18f1a7fe204a4954e
-
SSDEEP
393216:tPz4uulPFXcGCS9msirY/cMZGVOQ73Bs73ky+PYgCP1fYJ2GZ2AjHJ82+t1UIFLW:tNuqHPJBMc3BaAaCB2E8Dt1UUi
Score1/10 -
-
-
Target
Secure-Invoicess-.zip
-
Size
23.2MB
-
MD5
ef79e3f7e631f9bb6747d7d161720398
-
SHA1
06e8d08bca5d230e6ce4a77f335f3376fb6d66b8
-
SHA256
59e2454cb93265e4ada59e8c3beec5abae5ea3833879cd90995365f9f89351eb
-
SHA512
6f6368312c26b30409a5758221147d4b2a46a3dadb7a9b2bd618d4779bdd6bd90ee2f6884591e2e6c67dc14d97c7789edfca9ff40d545f772d6542c58d3d941a
-
SSDEEP
393216:wmBQfaPdfPF4mJ2Kax4twDlPGKgHoGlje5BV0OPUWlgG7l6ObE8iHnUHuDvaqVrx:wgQyPxthJ9ftwRezIky5B0Zql6SiHnLb
Score1/10 -
-
-
Target
Mcafe.exe
-
Size
638KB
-
MD5
76166c4ad30e3da0060f41fe59e465f1
-
SHA1
31d887a689a2a6fab9723589bd02d5c15ec09924
-
SHA256
908d00c0d3a8fe68b7cb0da154143ac81e357b1ca043ff25ac3581d2186defcb
-
SHA512
e0ed4e2af54add6d449d9b4ac0ac291ed9195a96d55a44c956fd7d32f7144ef432d9da14a5d6ff00fb3e94e79df8a7278338f3c475936b62a5da3848ab538f47
-
SSDEEP
3072:FgXpJozm2lkCsuYDbM2ZZQ4MGGfviMQYTQbrEQ:IpC62lkCMcGGHikTk
Score5/10-
Drops file in System32 directory
-
-
-
Target
Mcafe_Data/Managed/Assembly-CSharp.dll
-
Size
6KB
-
MD5
a25cef19c2c97ddde81a00eb4ecc911b
-
SHA1
0111610dc92bf8db93e523e8a25328987fb856c1
-
SHA256
98ba6fb4434f4971e366a4a325275e983f6adaa00d8ca8fee560dadf43ab82f0
-
SHA512
223dfcc5e2ac226b6d336470f3ff6957b2739471cbbc14113dba340b52ff639c749fcd2ca3ddcccb9e6bb4c75a605b7d04ce548d8a9f3754586f23c751d385d5
-
SSDEEP
96:CZIUElC8tqftdljisCh2ZCw1IFIG34ejhHC/+gCjSrXderud5:ClElBOdHCh2ZCXFV34ejhi2gCjSjkra
Score1/10 -
-
-
Target
Mcafe_Data/Managed/Mono.Security.dll
-
Size
303KB
-
MD5
f7acab1e09deaa11c9bdd0d723363016
-
SHA1
e940058cff5dc584c11dc6e4b111e85a3f6ca06e
-
SHA256
8c47b23389f9eede068683ed8b64b5a466f986499112983290778b30accfd1ba
-
SHA512
ec73a3c841358113a33829b50ea14ec860ccaee883c327515b369d08e3979643466fb57dfd550c62eb1468b6c92c0cb03ffb07505ec77e62bb83fafcd51b2894
-
SSDEEP
6144:Buca+sTOwf+31OE5FXNywY1URfxArXj5of:9Ui9kgxY
Score1/10 -
-
-
Target
Mcafe_Data/Managed/System.ComponentModel.Composition.dll
-
Size
242KB
-
MD5
7cfe714806f245e2571e58be288ea10e
-
SHA1
4820ec4a7558e18aa1ea151d22cf1920b82b23a7
-
SHA256
596500c15e90d4b63573a19da292009c95b02e05005f48077d7fc0850dd220fd
-
SHA512
9e5808152c5921b69f1080644ff84a1ecbf1358475c4c28191bd07a061e504c72264854777c2be38dadb7c250d890285f55d94a394edf8277692a83fe9d79bf7
-
SSDEEP
3072:DdpvT15KXwrqrkRixoK47Sr73v/1fLExXEGgDX/EOoRlKPW10QgFLqRRRRRqqS6h:DrvTmUTTOoRlKPk5gF3HoJ0XtCeaK0w
Score1/10 -
-
-
Target
Mcafe_Data/Managed/System.Configuration.dll
-
Size
42KB
-
MD5
088d4bdd389791bef853be1505596ca5
-
SHA1
c743abc65192df2d9966ef273dbeed2c2e7fc043
-
SHA256
36464365e61cc52e8c854226009430c1f4527790d95338502b20f8e7c540e82f
-
SHA512
b3dc53a184080167ba897237a29324c68e5cf27c3955c492ca602c7e0ad994c7994dce9b45f4718e2bece8f0e3169d16b11932897ca12e9b65b432b401f07609
-
SSDEEP
384:jC2yuMNMMZJN56g8mKo/hjp0r4ourMVSzciDqnjdiaFg9/Ses93HE7LDaXTSv/fY:vyP1Sm3ScrMdWgdVl93kZAarx2ZJM5
Score1/10 -
-
-
Target
Mcafe_Data/Managed/System.Core.dll
-
Size
1.0MB
-
MD5
caf99bab07df42b6e4544ae64dc4d908
-
SHA1
cac81132ef8a76cc0bee99dfa5ffc2096c02b848
-
SHA256
2d702d211d34e9b94ca18a5ef10a6c2b0fa40fb2cb09751348c7d5bd4dffed02
-
SHA512
312ae4f3baa0bbae11173961f99d4ca1ff35473fa7432076c36fe07ede4f16b882e03d5dc4216f20091b47763e269be113fe95af9f31927b789c3bf953569c19
-
SSDEEP
12288:7HJ2eJWqejMiMRDm3l2fo+5HcXILaRbm57iNC/UB1658SYd5kcowul:7HFGoqCUXAYdecowul
Score1/10 -
-
-
Target
Mcafe_Data/Managed/System.Data.dll
-
Size
1.9MB
-
MD5
d314b95fb863cdd6119abc7e28e7c1fa
-
SHA1
5996b5c782631a2e7f276f5f660809c421810916
-
SHA256
23dae8379e8c412f69caa0668be411c87672a775ce473e18faf01f56c114e079
-
SHA512
bd74f8a6d19bbf45ae67117ad3fa8eafc397c16657197eb4dcbad3829ffa6096fc29c692b7dc8649a75c9d6078c8ed123806de27db290a9ecf445143187801a9
-
SSDEEP
24576:+etFgYwMkru3rrFdx0dkR9VUJLdaD7y7X5bLid1EB80o6Dpc:HFLwirZ0CUJL4f1EB80jp
Score1/10 -
-
-
Target
Mcafe_Data/Managed/System.Diagnostics.StackTrace.dll
-
Size
6KB
-
MD5
1fbb019db62578427a660fdca39139fe
-
SHA1
6c5cee9a58dcf493f94df27b7de17f19bdf021e3
-
SHA256
4701e843059674accc1c87038ec41f3cecbadce2a65755f527c8b65b0cebc8ce
-
SHA512
7571a6b15a03b2ac408d219b798b964d90cea0b58ec9cacc2709c1495dd4edd24fd35327e496e945e297f1fc976f128db6ee6a75e1d22752adc7a79a65f3d4dc
-
SSDEEP
96:Z5SzrdBy6UFfVGJfFPlcaxvtV6gOCua5fpbe1xa0:Z5QfnUF9GBFPl5xFVsCFTe18
Score1/10 -
-
-
Target
Mcafe_Data/Managed/System.Drawing.dll
-
Size
180KB
-
MD5
1afff3a67c365aed5c2603e9c69d8c51
-
SHA1
9a95855ddf016638e72c3bba8749823969fcd9e7
-
SHA256
41d7f9907c43d1c9dda3cd4a9eda76c836dcc7daf7f657ba993f6b6d9c146ae1
-
SHA512
9252dba52939c852f8377a58b2f0ff673775f409f41d5efb463c50cde72da8d1c6ef595f3d1ef94db3351d3b41a66711dc6ed299a8fd1b5a880c04af25614c7a
-
SSDEEP
3072:EigawrUmay+yV3XOe3QpYbh+q6FR3F7lx:v2VnOppYbh9Oxl
Score1/10 -
-
-
Target
Mcafe_Data/Managed/System.EnterpriseServices.dll
-
Size
32KB
-
MD5
31c9da18602abe48d77bb1d31c1d5601
-
SHA1
61fc287fd1758bd3e36c4fefd619a0473476e6b8
-
SHA256
971dc75334d9b6b2cd14b0a32bdaf9b11a8a07e0a0f3e8f82faf5badc78a6d99
-
SHA512
3801049d1cfca2dc82a0d64e47ed60efd5158853fd6f74004046a6a675d8a3fe6b6e7b21823506b10fc2c732757a891c17a9b3b9a349990c2099f8a41be3172a
-
SSDEEP
768:fFDPgwXPjXVB1SeXbtjfLWifV1jmadK/wDS1ubn/kQK:fRPgwXPjXVB1vXbIifbm8KoS1ur/kQ
Score1/10 -
-
-
Target
Mcafe_Data/Managed/System.Globalization.Extensions.dll
-
Size
6KB
-
MD5
f09c5ddef200f21725e5fde17d3b9016
-
SHA1
44bff1f24b235f742f84e4f152e912fa0452ec9f
-
SHA256
4e8c5ad3450450ba6bc6a474300f2445094870f2bcc9ca16472fb2f3adb88ebd
-
SHA512
d966eede100800f13f6c759a59410758b137379aae5ad4f770e705197fd02b6b7e7ea26f08a9bddc10fbf5e01948117e3721248603d5e40756f458f20edbf6dc
-
SSDEEP
96:ZA4ggaqpBVwEw8xv1lOH2OARPtcRQKRWen0R/0:llLxXOZARPCRpRWen0R/
Score1/10 -
-
-
Target
Mcafe_Data/Managed/System.IO.Compression.FileSystem.dll
-
Size
22KB
-
MD5
f9a07c1ef58c863f89e74f11a3b21447
-
SHA1
b80979949b817d26afe0a8a8b0358f704ece82b2
-
SHA256
221abe4eea00347c51ac7409b47ba7b08ccfdaae8e36e706a8ee0d4de6ceb87a
-
SHA512
280f846d9d769a3244a6689c72758024639d867bb5f272ed54577ffb3a6f6bd29fc22ac9dff0010f04524c352b76cc7703325c11cdcb63aed5412d96881d091f
-
SSDEEP
384:6930DrKcLQhPZcNgndNzytVTl0qRbli3ESmMadMMtDBEb/gYFf0B7a:60D1Lhs6ve6
Score1/10 -
-
-
Target
Mcafe_Data/Managed/System.IO.Compression.dll
-
Size
96KB
-
MD5
bd03377bb478fe581834bb237b4c6725
-
SHA1
c3ae3bcd5c8d9af77cc579e1d335f8cf6d2a2415
-
SHA256
6045d16e65834f67b2604359a137a4b74434293813ccab0d86b34c5f7b1785fa
-
SHA512
7cd60c00a40e4dcb5b4fbcbd71ed2249d0e2baef48aafd2a72cf95040c653187109b85f96167bb8e550d38b630129dd7df597d104e3284a6ade425c480f25501
-
SSDEEP
1536:mVYlTkwzl46ORXHNopHEJo5JK1/E9ITZOBLOTX8MHujjHs67b:mVYZH5460XNopgo5JK1s9NCTXFHuXTP
Score1/10 -
-
-
Target
Mcafe_Data/Managed/System.Net.Http.dll
-
Size
112KB
-
MD5
d0a7d2c01a86da46b6b7f076aeb0ed15
-
SHA1
88a0274f1109891c9142fb3c4b5e047e8934ae64
-
SHA256
b96e5692bf791f02f036db0267df25dfb3089ce94472345867baedf0cafd3f48
-
SHA512
e276f2da40ca4bb2273cb458eb6ec7882b4b4fc212df3be6738e810932e111c14a23cb7fe2dd43e346aac4ebda84f92112593a5861ae6fb9d701be62c805c333
-
SSDEEP
1536:BRfA2tSFNT2MqE17jdzrr/TaOCSBjM4OeP9az/XPPb4na/7B4:B+Z3qu1hCSBjM4Oskz/XPPb4nq14
Score1/10 -