cbf5c51ba26fc8fb53b25faef5748a7e13c5ebc39c0a1f2c00c1644469b9fcbc

Sharing

Copy URL Twitter E-mail

General

Target

Delta V3.56.zip
Size

21.9MB
Sample

230802-z9732ahh97
MD5

97b5cd122fc51ee0dc055a18fe28cb3a
SHA1

d052517ba16559f5e84a42314ac4c73edcfa7fe4
SHA256

cbf5c51ba26fc8fb53b25faef5748a7e13c5ebc39c0a1f2c00c1644469b9fcbc
SHA512

956b95c567a1a808f16af54f6cdc726ceb6ef7def15dfe1425a29ae58676fdf3526df0d8c35d19a2a6948b8f8922d19e5e239b9bc69fac30aa6057c21c51b151
SSDEEP

393216:ZDhVCaZFxhhliwFpIgDDLB3IwxEzbXS3ad/h99ZTRfKtPN27g:HcYD/pIelGbXS3q9TRiNN27g

Score

6^/10

Malware Config

Targets

- Target
  
  Delta V3.56/Delta.exe
- Size
  
  17.0MB
- MD5
  
  eae8863a337c042193c0faf27daf1a64
- SHA1
  
  027c092f79bdbbc9bda891917f8d4258313fbce9
- SHA256
  
  bcc5a811c734fceb0c6468e2260229c46fb9ac79de91c7c81b4478e7f008b8cb
- SHA512
  
  dd3db5c8d9bdf8f9ff50ab31276a0f8cd07acd85708ea7eeabe25ccc7276f52409abe5ace2b91260865e5e5b1edc993886911bb2d489b56091201936df01b846
- SSDEEP
  
  196608:QOM8QZXcqPrn0guhegnueaIN3l4X+yBXeLUpcgwBj9aR:QOM8EmegnBaS1C+yBaUpcgwBj0
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2
- Target
  
  Delta V3.56/ICSharpCode.AvalonEdit.dll
- Size
  
  598KB
- MD5
  
  b6142f182a86adf382ea845935a327bc
- SHA1
  
  841367a389b4df1207224a26f9e201e593d551d1
- SHA256
  
  7225253a9ca59db879340f9ea8ee4f48006ceadf878d04b446522007fbe3ebb3
- SHA512
  
  a5e4941409b4b06fdf44ec5ebfb5d99cec47b1f348e266e7dc20254e5465deb1abf60d67092b5aa1bd14f52d637b52b380382f838d601b0f3734ea5a406fb068
- SSDEEP
  
  6144:m7zJDqOpyhu6XzDnHYRdioOfP/5GvVTBz/xz0z77OxRmvdM+lNsjXU+9NKsTLO0l:C/9R9VONf
Score

1^/10
behavioral3 behavioral4
- Target
  
  Delta V3.56/Newtonsoft.Json.dll
- Size
  
  685KB
- MD5
  
  081d9558bbb7adce142da153b2d5577a
- SHA1
  
  7d0ad03fbda1c24f883116b940717e596073ae96
- SHA256
  
  b624949df8b0e3a6153fdfb730a7c6f4990b6592ee0d922e1788433d276610f3
- SHA512
  
  2fdf035661f349206f58ea1feed8805b7f9517a21f9c113e7301c69de160f184c774350a12a710046e3ff6baa37345d319b6f47fd24fbba4e042d54014bee511
- SSDEEP
  
  12288:U9BzaPm657wqehcZBLX+HK+kPJUQEKx07N0TCBGiBCjC0PDgM5j9FKjc3Q5:U8m657w6ZBLmkitKqBCjC0PDgM5A5
Score

1^/10
behavioral5 behavioral6
- Target
  
  Delta V3.56/bin/587.dll
- Size
  
  5.6MB
- MD5
  
  0687a42a8d9a45e9c994d7d569f003b9
- SHA1
  
  10edcbf55f0deb7ae78d8b444a310d3ae9dd3a59
- SHA256
  
  08b60a3a4842be193fed29bd1da35a3897d91e17c03efff412c0754a58582e05
- SHA512
  
  5bdeef33f6bffdacb5fe169e61a4e19426e397674dc87cf76b506d616a640af272edba2076f13ffab6b392443e2cfdb34b972b311467a8b5bfe4da05b89368c9
- SSDEEP
  
  98304:6T99SNZb8g2YdvpgFxg2BdtVQTE6DSe6sqckGOeHC2E0o4QzrxdhfrNpqJXzT1tw:6h9m9vlyTd0SRsq0Oyo40/VfqPt4xZl
Score

3^/10
behavioral7 behavioral8
- Target
  
  Delta V3.56/bin/Fluxteam_net_API.dll
- Size
  
  6.2MB
- MD5
  
  cdf73079a63074805810016f13fbbfce
- SHA1
  
  f7ecbbd392820ea6fb8cbc72911325c440c0c271
- SHA256
  
  c1eb4052b0a9d672595be10d21ff60a79039c5842d8c98e837251a721549c60b
- SHA512
  
  2eb5a41dfe01d6b58aba5d27a4b359f8b6ea2b913e465ca839f09b3c334aabe550d4925a6e786540a5c28c9086ed97b2187722f3bf62c54ae92922550f5e36e9
- SSDEEP
  
  98304:ff0ldnefVuuvtLonWJ7gatg6QrkP6G9qvPpZDI0evx+AquS/gdV7Wme+OEDl:kH6tvP613pZkvquddNLhOW
Score

1^/10
behavioral10 behavioral9
- Target
  
  Delta V3.56/bin/lua.xshd
- Size
  
  3KB
- MD5
  
  e2b537e027b3251fb82e213739e66376
- SHA1
  
  e47888a238dcf90097ecd3c8860b0f9b02ded0e3
- SHA256
  
  5c508701141f851aeb0ad9088759f7da15bc33f9e7459ea8c8d4e1ec7b4eaa60
- SHA512
  
  1e347301cdc75933d709eddeace7cc9d62a7e9685f5badde3e1ec6f3cdbb37bbb8b95c23632e11b283e0464ab4c84e79c644660a1f0c09f51729e30571555f7e
Score

3^/10
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12