Overview
overview
6Static
static
3DevCompone...r2.dll
windows7-x64
1DevCompone...r2.dll
windows10-2004-x64
1Horizon.dll
windows7-x64
1Horizon.dll
windows10-2004-x64
1Horizon.exe
windows7-x64
6Horizon.exe
windows10-2004-x64
3ICSharpCod...ib.dll
windows7-x64
1ICSharpCod...ib.dll
windows10-2004-x64
1Ionic.Zlib.CF.dll
windows7-x64
1Ionic.Zlib.CF.dll
windows10-2004-x64
1License.rtf
windows7-x64
4License.rtf
windows10-2004-x64
1System.Dat...te.dll
windows7-x64
3System.Dat...te.dll
windows10-2004-x64
3class3.dll
windows7-x64
3class3.dll
windows10-2004-x64
3lzo.dll
windows7-x64
1lzo.dll
windows10-2004-x64
1msvcp100.dll
windows7-x64
3msvcp100.dll
windows10-2004-x64
3msvcp80.dll
windows7-x64
1msvcp80.dll
windows10-2004-x64
1msvcr100.dll
windows7-x64
3msvcr100.dll
windows10-2004-x64
3msvcr80.dll
windows7-x64
1msvcr80.dll
windows10-2004-x64
1General
-
Target
Horizon.rar
-
Size
11.4MB
-
Sample
230809-f3949shb97
-
MD5
61aed6b7c5c9ca7a52afe632d1213d9e
-
SHA1
97c1376722b47bb3520a3f3f045cc7bf04d53bbf
-
SHA256
194d2bcf5594e4d2d9cbd85e619209b08ba219776edaa9a3f39e3436e9172934
-
SHA512
e424cb1c44a7948d0cae31a79707a3842ee9d706325690271ae94a1fec770863129873c60f7085d2e8ce16bac291000e9ab1decf82cdc90f705d972e797f02c0
-
SSDEEP
196608:lp20jSSrAig16dM40beDXCSHyLt67EqqY7BydGieDhnMGNkrnIrsFSKJsI:HeSy1aD0bQtHyLtbYlcDeDhBaLWoSEsI
Static task
static1
Behavioral task
behavioral1
Sample
DevComponents.DotNetBar2.dll
Resource
win7-20230712-en
Behavioral task
behavioral2
Sample
DevComponents.DotNetBar2.dll
Resource
win10v2004-20230703-en
Behavioral task
behavioral3
Sample
Horizon.dll
Resource
win7-20230712-en
Behavioral task
behavioral4
Sample
Horizon.dll
Resource
win10v2004-20230703-en
Behavioral task
behavioral5
Sample
Horizon.exe
Resource
win7-20230712-en
Behavioral task
behavioral6
Sample
Horizon.exe
Resource
win10v2004-20230703-en
Behavioral task
behavioral7
Sample
ICSharpCode.SharpZipLib.dll
Resource
win7-20230712-en
Behavioral task
behavioral8
Sample
ICSharpCode.SharpZipLib.dll
Resource
win10v2004-20230703-en
Behavioral task
behavioral9
Sample
Ionic.Zlib.CF.dll
Resource
win7-20230712-en
Behavioral task
behavioral10
Sample
Ionic.Zlib.CF.dll
Resource
win10v2004-20230703-en
Behavioral task
behavioral11
Sample
License.rtf
Resource
win7-20230712-en
Behavioral task
behavioral12
Sample
License.rtf
Resource
win10v2004-20230703-en
Behavioral task
behavioral13
Sample
System.Data.SQLite.dll
Resource
win7-20230712-en
Behavioral task
behavioral14
Sample
System.Data.SQLite.dll
Resource
win10v2004-20230703-en
Behavioral task
behavioral15
Sample
class3.dll
Resource
win7-20230712-en
Behavioral task
behavioral16
Sample
class3.dll
Resource
win10v2004-20230703-en
Behavioral task
behavioral17
Sample
lzo.dll
Resource
win7-20230712-en
Behavioral task
behavioral18
Sample
lzo.dll
Resource
win10v2004-20230703-en
Behavioral task
behavioral19
Sample
msvcp100.dll
Resource
win7-20230712-en
Behavioral task
behavioral20
Sample
msvcp100.dll
Resource
win10v2004-20230703-en
Behavioral task
behavioral21
Sample
msvcp80.dll
Resource
win7-20230712-en
Behavioral task
behavioral22
Sample
msvcp80.dll
Resource
win10v2004-20230703-en
Behavioral task
behavioral23
Sample
msvcr100.dll
Resource
win7-20230712-en
Behavioral task
behavioral24
Sample
msvcr100.dll
Resource
win10v2004-20230703-en
Behavioral task
behavioral25
Sample
msvcr80.dll
Resource
win7-20230712-en
Behavioral task
behavioral26
Sample
msvcr80.dll
Resource
win10v2004-20230703-en
Malware Config
Targets
-
-
Target
DevComponents.DotNetBar2.dll
-
Size
4.1MB
-
MD5
6321327bcfff3b4fbca8d5a33086b243
-
SHA1
574d51ac04c4fef86f9ca3a074d1ee127522d211
-
SHA256
53fe5ca4bd1629e58202fe46e789161b94eebea55168564aff93cf035b8f3d96
-
SHA512
7994fa5a9d68efd1beb30c4c473c01081ea0ea5d0879b7e91f4fe6a3d0c3b137440e5434604519b5c364940bb8e78ce8dc74aeb78a7817447b22bcb9208f2ae1
-
SSDEEP
49152:pfDjWwg/R+kzNvoabsAawrCd52yQ19nYydg5nmQ28OeaiLUXPaOjtNcIlfzhMw8U:djW/Nvfrlm0
Score1/10 -
-
-
Target
Horizon.dll
-
Size
900KB
-
MD5
28dd289bcf1f9aa0d62ec80538525530
-
SHA1
84e75ad5082ae1a987c4f1347b333067e5b35d40
-
SHA256
ff0a15d0d71f3ed711db533246ae469ac2f15ae1f3a3c531485a063ddd01bf6b
-
SHA512
6a6648ce822a3a9370e9a4b8a84eb522395afd4a7376a3f3fdaad6df489cb689600ad5967f4101f598af7f42cb991af1416051a9d23e3e7f76dbcd6c52ccc4f4
-
SSDEEP
12288:jAxIaVw0ka+NbFBcy5yw4iscyRTnp5j9h9NALyYYFNBE8HyJTkkDSDuog:jAbV6Pcy8w8np5jR+yPe8CkkDOg
Score1/10 -
-
-
Target
Horizon.exe
-
Size
18.0MB
-
MD5
1fb2720bd08ccc907389b3523fef0afd
-
SHA1
8e9451886ab09c83c250c285ddde255ace477d1b
-
SHA256
e8d80429477097cb7373dbee103e740da67faca935d79a70a5d1ec0a50607977
-
SHA512
28ec6b9d3f8405b9a059e5d8b8ebf40c0abce635773ae7a941860dc67b09bf8f26d209ea4292555a9a08da2db323980d250e95f4d2db9727fc8c40f141a0048b
-
SSDEEP
196608:CIJefVB9ws0sOA4UHSKjgkEJuX5p/AkAlFK7ihA:CIJIosOcH9k03UAGA
Score6/10-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
-
-
Target
ICSharpCode.SharpZipLib.dll
-
Size
196KB
-
MD5
c8164876b6f66616d68387443621510c
-
SHA1
7a9df9c25d49690b6a3c451607d311a866b131f4
-
SHA256
40b3d590f95191f3e33e5d00e534fa40f823d9b1bb2a9afe05f139c4e0a3af8d
-
SHA512
44a6accc70c312a16d0e533d3287e380997c5e5d610dbeaa14b2dbb5567f2c41253b895c9817ecd96c85d286795bbe6ab35fd2352fddd9d191669a2fb0774bc4
-
SSDEEP
3072:hjMibqfQqFyGCDXiW9Pp/+Tl4abpuu201PB1BBXIDwtqSPVINrAfvp1:GibqI59PpOPf201/z7p
Score1/10 -
-
-
Target
Ionic.Zlib.CF.dll
-
Size
71KB
-
MD5
df81afc6b1e9f682d670bdba64bbec24
-
SHA1
cf219895a2c6051d80bb9533ae22fbd4dbf5d2c4
-
SHA256
7ab49a7969a38b94159cd192524ac78fed97e5c181328b7dff197ca822c7eeb8
-
SHA512
d54caba57c443f0a3651c71fb7ee2df280c50d4e47e013e64cd6227c14947ebae9db28c969ad2a383db329dd5988e99269ea30b3721823a385a6e45ceba42785
-
SSDEEP
1536:VMq4tpj3PRZqc6I2Js3Y0rLlDIC6g8ilfypeI/KQ73WmHD:VMqyj3PRZqcz2JsI0rLllKTpeI/KQ73r
Score1/10 -
-
-
Target
License.rtf
-
Size
24KB
-
MD5
cc7dd16c0f4e4cc06fc737385a410e8f
-
SHA1
508e95e8e65675b554e21f215455d850dfd4fe01
-
SHA256
600cc547310d6511fa459e8cb3cd207be034ce1200fbab19c654277814b261e4
-
SHA512
87e5fa4d1e3c982d3f41b39cad8db40e73af7cd66fd0887dc783b1ce37a270f8d08dded7799e154f580852a2460daacfb0f17e5861f7a51424e20a7a70583d6f
-
SSDEEP
384:xE0X7PUs3yALEht5atlc4C+pXxZ/G5B9hf3DiArs2:xfXTUs3RL6t5atlc4C+phZ/W7i8
Score4/10 -
-
-
Target
System.Data.SQLite.DLL
-
Size
865KB
-
MD5
2be2852eb87ac03a5508e9e186f7aa7d
-
SHA1
89ed56a07e3dacddc8083c35a2598164f3f16f93
-
SHA256
79901092fc9c02db8aa06654434d6a1c79b4220f35b03d841191fdfd7ae6bd03
-
SHA512
7cfc492344bc9df8c2afeb7f6e3b555297859f3aa7d9332457d0e07209c43fddf31a8ab186d46ba84fd1774d7a45fbaed7f858642b769ee67709442678518d58
-
SSDEEP
12288:+QOzN2/IHPxPbx8YwkbXFl8a6PifS8t7YncnfrDc2Z0dwMHs9nFNFGFOFwcGF6cM:VukIHPJKYLvFGifS8t7uczrfX
Score3/10 -
-
-
Target
class3.dll
-
Size
10KB
-
MD5
576a2a21b4e217a33a53ae054dbabbcb
-
SHA1
5abe09f9354bb9c25283af441b6fafc538fc850a
-
SHA256
ebe7eda16e07382d2055a6ba9cc436d58010e546a93f881a2e965f123013e0d6
-
SHA512
9d5c8f110c390e1283b1e880ae550286081c5eba1bce4e9afb34ef1ebfcf56f7919b0e8faa7c105ecf361aeb4e17da50a93d35753ee930975bb63aca89a1a84f
-
SSDEEP
192:/TZCFk1AHEj7isj7iGA5BkgQzIkfwTLjp4UESHE3XuEqxCKabM:LZUXHEPXPTA/EBoTLjpc+h
Score3/10 -
-
-
Target
lzo.dll
-
Size
87KB
-
MD5
f0d3f2b94cd599201c5cb6ae4bd0143a
-
SHA1
72af5cb900397171da08ce9c3aa90d3ca95cee66
-
SHA256
e0b5a7bccc75564052e79cf2e35cb2bfa2d5a3435c44ed5bf7efbb7baf770874
-
SHA512
13fe68fbd193fe32e65019e3e862980db489c64c8aae8b2220465636d0d91b1c7c3847f1dd771113b2238a0dbe2e7bcf75797f8751c84fc1fc9d93793693e8c7
-
SSDEEP
1536:z2kD1qx8Jw/IO2nVncK2HTQOnGVZnzba43QtkdNqo:z232JO2n+K5OnGFQtkrqo
Score1/10 -
-
-
Target
msvcp100.dll
-
Size
411KB
-
MD5
03e9314004f504a14a61c3d364b62f66
-
SHA1
0aa3caac24fdf9d9d4c618e2bbf0a063036cd55d
-
SHA256
a3ba6421991241bea9c8334b62c3088f8f131ab906c3cc52113945d05016a35f
-
SHA512
2fcff4439d2759d93c57d49b24f28ae89b7698e284e76ac65fe2b50bdefc23a8cc3c83891d671de4e4c0f036cef810856de79ac2b028aa89a895bf35abff8c8d
-
SSDEEP
12288:iHEqYsrMWIqz473PTiPoH/aGhUgiW6QR7t5qv3Ooc8UHkC2eKq87:iH9YsIWIW4rPTiPofaDv3Ooc8UHkC2e8
Score3/10 -
-
-
Target
msvcp80.dll
-
Size
536KB
-
MD5
38e1a82ea77e591245fd7487a7e32fe8
-
SHA1
920a0c5a8c5afc3ba22a5a208ff8acba25a641d4
-
SHA256
4abb7b40d139d4e25a3c6150a48f935508d22a71cdf6c50029185fcdd79e3671
-
SHA512
dd337162421540eccb25149d65d2fd52db2a232a52e6b0b35925a3dd48dcac6bb9dc373e41a2cb4ed5fd1f0f337c25579fc5be431dc81ea112930db8e37bef64
-
SSDEEP
12288:HZY4lOHMwLwXBt+ia21tsUa/hUgiW6QR7t5j3Ooc8NHkC2e2:HZY4lOHMM8wib1tAj3Ooc8NHkC2e
Score1/10 -
-
-
Target
msvcr100.dll
-
Size
752KB
-
MD5
67ec459e42d3081dd8fd34356f7cafc1
-
SHA1
1738050616169d5b17b5adac3ff0370b8c642734
-
SHA256
1221a09484964a6f38af5e34ee292b9afefccb3dc6e55435fd3aaf7c235d9067
-
SHA512
9ed1c106df217e0b4e4fbd1f4275486ceba1d8a225d6c7e47b854b0b5e6158135b81be926f51db0ad5c624f9bd1d09282332cf064680dc9f7d287073b9686d33
-
SSDEEP
12288:fQmCy3NeRjkpQmj3oaMtQqjoygfXq3kon9IlbgaOxQdVJJ6j5EBKX8hR5:ImCy3VQs9MtLjTgfa3kon9FaOdEz5
Score3/10 -
-
-
Target
msvcr80.dll
-
Size
612KB
-
MD5
2a617261b0de3b9ac1ee5f83cf1fd830
-
SHA1
633a290738145fde18b93c8fe945b08ceffe3e3d
-
SHA256
0c11873eb674c72e41c9e89c42f5e45bb905bb4417ebbd1b3507355c4042acc6
-
SHA512
a2f0b53cad3dcd717f80fb6b5875a91bd873e5c58d5968fee5d6d63782d154c4b719fd85dfe1393768914555c4c9d4905d2fdc27903ec729267e8acb7d56b35d
-
SSDEEP
12288:mxzh9hH5RVKTp0G+vNhr46CI8V0yZmGyY2:mph9hHzVKOp18PmGyY
Score1/10 -