9f4f94e28d45ab21771555fd06d44418f5017acd2dd455b22620e420631cd15b | Triage

Sharing

General

Target

CrosshairEditor by Freya v1 (2).rar
Size

757KB
Sample

230815-sww1aadd2v
MD5

4cd05080a94a3621c563ebd11c723cb1
SHA1

405d3286a1207f5d09631490c913c74abedc6fdc
SHA256

9f4f94e28d45ab21771555fd06d44418f5017acd2dd455b22620e420631cd15b
SHA512

db40ec348b0f7393824b21822c818b60b6959fc116370c36c0904bc371640dda11c1494439f04701f5a5cd9da2ea707796d51492c1621153eb632bf076a00cf5
SSDEEP

12288:lXZHmPaP+4PK6LydUODD4R2xoD6f9aten5gMz8JOBt5UWoG8IL2jU0SScCkh:lUPE5SUODD4R266We2LK/NNXCkh

Score

7^/10

upx

Malware Config

Targets

- Target
  
  CrosshairEditor by Freya v1 (2).rar
- Size
  
  757KB
- MD5
  
  4cd05080a94a3621c563ebd11c723cb1
- SHA1
  
  405d3286a1207f5d09631490c913c74abedc6fdc
- SHA256
  
  9f4f94e28d45ab21771555fd06d44418f5017acd2dd455b22620e420631cd15b
- SHA512
  
  db40ec348b0f7393824b21822c818b60b6959fc116370c36c0904bc371640dda11c1494439f04701f5a5cd9da2ea707796d51492c1621153eb632bf076a00cf5
- SSDEEP
  
  12288:lXZHmPaP+4PK6LydUODD4R2xoD6f9aten5gMz8JOBt5UWoG8IL2jU0SScCkh:lUPE5SUODD4R266We2LK/NNXCkh
Score

7^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2
- Target
  
  CrosshairEditor/Freya.dll
- Size
  
  281KB
- MD5
  
  d5fef36a5ad0e809aad6b7cbe19d1062
- SHA1
  
  5adf39cfe296acd1e62618155f1e2ed68ea452df
- SHA256
  
  8cd822ca2dd0d9e3f298fb42f5c95ab6ef7ed71b68bfe4ac9e2fdb795760d1fe
- SHA512
  
  7c9580d9929c1b4c8f90109808a236113543e41ea3709da9a041c6802666cf18e2e2a827e951267f0fc497605f44bf83e2f5c9824f66917f1a2b0994a6cd8b90
- SSDEEP
  
  6144:+3nUjhnjy3aPg+ZQLM7KUAOFLjKjuUjB0r3T+fMMMMMMMMMMMMMMV7MMMMxliqyJ:1CYtQLMwFjuUN43T+fMMMMMMMMMMMMMP
Score

1^/10
behavioral3 behavioral4
- Target
  
  CrosshairEditor/Freya.hl.exe
- Size
  
  179KB
- MD5
  
  12b9674d5a68f829f20214644e67baa3
- SHA1
  
  9f2681173105f628c7cb14b57540121c5dc667dd
- SHA256
  
  88132922084d88a606d4430b1903c2c7d2b48e4b1467253c3a51ed00b05954c6
- SHA512
  
  c1c47d6d7f2ec3d2cf6a50fe85acab653a4e81d7c56a2f1972f7de0b686272c3cb03f59be9512acb4530b94bbe90d4b81b00682d4413ed62bc69b6033a43a073
- SSDEEP
  
  3072:O2qkbSLWyjCkRtc8lsAR8Z4GkZypFuX6HNwTBf0aeEus/aL:xH+ayW8fWOCDRY0ouAK
Score

7^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral5 behavioral6
- Target
  
  CrosshairEditor/injmthd.ini
- Size
  
  1B
- MD5
  
  cfcd208495d565ef66e7dff9f98764da
- SHA1
  
  b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
- SHA256
  
  5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
- SHA512
  
  31bca02094eb78126a517b206a88c73cfa9ec6f704c7030d18212cace820f025f00bf0ea68dbf3f3a5436ca63b53bf7bf80ad8d5de7d8359d0b7fed9dbc3ab99
Score

1^/10
behavioral7 behavioral8
- Target
  
  DefenderControl.zip
- Size
  
  522KB
- MD5
  
  a777ff67c2d2b3922880af16784c63df
- SHA1
  
  8f7c894526cd3aa452beeb7fc2520cdc1e2e9575
- SHA256
  
  feeb917641251b670918cb9ad198e007b3d951c7934c1bbd1d1007553254184a
- SHA512
  
  9b6f862015cf0e5d750decd10f39d4148853e2811c7d60177560295878c19b759cf929bf75a859e9f1f4917e9af368eba0a548a632fb1c01a945ff5b052eeaac
- SSDEEP
  
  12288:B2xoD6f9aten5gMz8JOBt5UWoG8IL2jU0SScCkU:B266We2LK/NNXCkU
Score

1^/10
behavioral10 behavioral9
- Target
  
  ВАЖНО! ЧИТАТЬ!.txt
- Size
  
  679B
- MD5
  
  2288d98266207c089dc4f1aa4cbec6d4
- SHA1
  
  c79b6fb4481cec6a1b0d01b6c1ab147ffc07866c
- SHA256
  
  13b45fcdf60d8c731ac79daeb603f1f3f280d73b836b6c6ebb8c0b46943bd314
- SHA512
  
  dfb98df84c5a0dfae33bdcc1a4236e315d0ea8bb97a1ae2e28cbbe1b58ea9186762a125083a6517fc0fbfd58ca947258b7e543e53b3e7c4e08b85eac44c0dcda
Score

1^/10
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12