9df17bf8148a240f7fa6814b4af732daf7fd936355ed21017ad8764159cd2468 | Triage

Submit
Reports

Overview

overview

6

Static

static

1

Sorillus-L....1.jar

windows10-1703-x64

6

Resubmissions

04-06-2023 13:18

230604-qka8bscc63 6

04-06-2023 13:15

230604-qhjrpach6v 6

Sharing

General

Target

Sorillusrat.rar
Size

617KB
Sample

230604-qhjrpach6v
MD5

bcf21495042d537736929ef6346f7238
SHA1

b25d7e3d851a8c0b66ffc485b2c85656152f90cd
SHA256

9df17bf8148a240f7fa6814b4af732daf7fd936355ed21017ad8764159cd2468
SHA512

1e051250c9613b5fff121d39bb418a342e2a8c1a00219a6f1e6ecb6b6fbe99f1c3dd1882c6b7b38aef9cd2d72ff0fd5ad491e35dedeacb00307927aad95899bd
SSDEEP

12288:q5+VFVI45l0pUuUo11W5o/VPAsJ5MsdxZdCOxvxp5U/j3Cq0q1Ac/7A:7VIC8c58f5Ms3f5e70qDE

Score

6^/10

persistence

Static task

static1

Behavioral task

behavioral1

Sample

Sorillus-Launcher v6.1.jar

Resource

win10-20230220-en

windows10-1703-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  Sorillus-Launcher v6.1.jar
- Size
  
  639KB
- MD5
  
  1372568356c7e3bda26552a536a320a0
- SHA1
  
  b6961dcfc1ba550274a3a51093eed8f2f99b8d3c
- SHA256
  
  1917afa516fb79da36ded6047e9cd7cc7413211acc55cf8fcef3c33f30e8f466
- SHA512
  
  0f15424913e30d36914b5855c7556502abb49168b6c72df760fdee83e16f1a7615a0739cdcc1a16715644bacbd238d08dc3e925ab852e03de4638d1398af297e
- SSDEEP
  
  12288:7nV4Qa/qICp8D4bY4wH/gI/dRP+9amNWJPgIhKRMt3quE2dkSdTD4q:7nGQO6p04Mn/gIn2vWJICfquZd3dTD4q
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy