dfe7cb07fa975461082cb6ba3dbf8d13e3ef89d6010532fae0cf94125af384bb

Resubmissions

15/08/2023, 18:26

230815-w3cf1ach29 3

15/08/2023, 17:15

230815-vst3macd32 3

Sharing

Copy URL

Twitter E-mail

General

Target

BAL-0590-SU.zip
Size

76.1MB
Sample

230815-w3cf1ach29
MD5

3b3c548e4a06ac8606b14748242e878e
SHA1

bf73e2fab7c55ae6755f1e8ab2a7db81a6f78a23
SHA256

dfe7cb07fa975461082cb6ba3dbf8d13e3ef89d6010532fae0cf94125af384bb
SHA512

d5585ab9262dfd281b267c498af2b4dbb7e21b11fc72e50a304476a3d59d74cfe803c8ca0ae7ca8975ed665f93a688d0f75bcab55825f85194a621e3d9d5f150
SSDEEP

1572864:bd7p28NRsyhGkb69tvjwrVd4Mgg7pnYMskvdRp3uwjAoDmxe0:fRsVoixo34k7CAZelU8e0

Score

3^/10

Malware Config

Targets

- Target
  
  BAL-0590-SU/MCE-0032-SU_v2.17.1.0/DB/01_MCE_DB.sql
- Size
  
  67KB
- MD5
  
  ebe50f862f7f73714117928ee9e5c1b4
- SHA1
  
  11fec65b092daec52233c365ab3a0dbdf0c60957
- SHA256
  
  e9980528aa9fa588f9d94554feca1b1267f2a8ec024a84b4f71aa3415a42d33a
- SHA512
  
  dccfd39d9c2a57495959db3abd3ad11b7870edfed705b50c129deebb6806729776aae0a81401db2fa30dd4a20407b2c3aa8dae98735af8366b9439f8225a1d6c
- SSDEEP
  
  1536:xN0oD9TVuZIdVWtHVUr90yL+QF4X78/OV89UN8xh78vM50lV5UZ+qUv8VU1pFUXd:MKxZH
Score

1^/10
behavioral1 behavioral2
- Target
  
  BAL-0590-SU/MCE-0032-SU_v2.17.1.0/DB/02_MCE_SUN_DB.sql
- Size
  
  41KB
- MD5
  
  251df23d6b15f308f639e58c0d6202fe
- SHA1
  
  e5ed902e4bfad83e5a9089ab4c263e9f24c88ba7
- SHA256
  
  d975d458dcb19fc60a39669e905d334f8af6d752dfbdffa3273521014ba2509b
- SHA512
  
  2c9716e559aa5f2f38e25f15fd92626f3f3ac3fed04ad181dc6ef920a3c2a90fb77c57727f44c9d32225ce39a2157fc69dee3daae8c49fac86c522fb037c30b7
- SSDEEP
  
  768:SqL3EsIMqLIflLYAC0rHJVyg+VjyG9EswFjs/UE38/PZ+I+7/ZVPSdKmdgdEdNIH:SqL3EsIMqLIflLYAC0rHJVyg+VjyG9Eq
Score

1^/10
behavioral3 behavioral4
- Target
  
  BAL-0590-SU/MCE-0032-SU_v2.17.1.0/ITG_Modulos/MCE2/MCE.exe
- Size
  
  24.2MB
- MD5
  
  2ff7b23bde9aba9bfa79e586877ff56b
- SHA1
  
  d43d4bccf730829bb88fb3204a323d89a01569a7
- SHA256
  
  5b3eabfa8cde7badcc6abbe26146d67a1e4feca1cc53e251a9546fb7d4a68b8f
- SHA512
  
  308fcc2a21ada22677e4cc8c8cb7ca2f163bd7911c2e1653d30b967f7e8b753d5ca1f660a0e65f1045c28f7a2b6298bd492cc21dd1a67e29a86dc0274d88631c
- SSDEEP
  
  393216:mUG3ZoENPkOzf6wuKOu9DXe7RBuVTGFalr4pduuWVKRziVEnvbpXTAtkKstU:mUWRftuKzTABuVSFsr4p9pAczFT7FtU
Score

3^/10
behavioral5 behavioral6
- Target
  
  BAL-0590-SU/MCE-0032-SU_v2.17.1.0/ITG_Modulos/MCE2/MCE.exe.config.padrao
- Size
  
  1KB
- MD5
  
  9b577568d78b05eb7889677deb14397d
- SHA1
  
  465b06d277155fa6d56e186b0944b4287f61b342
- SHA256
  
  201d7da0bda0851cf8c09866d07553ef7607336921ab64aa91b91a97c857609d
- SHA512
  
  28557e6305e9b2b790989045fd61006718ac43c7ad1ced276a5b63c3c6bb68d763485964b4bd341bfc79fbc5886713b4433b8ae3a6e2ab45e8f5df871d00350e
Score

3^/10
behavioral7 behavioral8
- Target
  
  BAL-0590-SU/MCE-0032-SU_v2.17.1.0/ITG_Modulos/MCE2/PLUGINS/SUN/C1.C1Excel.4.dll
- Size
  
  570KB
- MD5
  
  975aa744afbaf0bb3d094a8f4bc03b45
- SHA1
  
  17f40db68a6d5b4dfc06385ff207c7ee9135adc4
- SHA256
  
  abd9398e89a37fe1ee529f199da861b6f27a0c849240a25d667afe07761dd4d4
- SHA512
  
  d6eb4f0206c04fe7d40e041210e8bc2aa1b39f46f7462af0c6a78a02c03468f82ff2b84e5d1e0daedc5fb5f9e07356849f42323864e3a6b65909eee8f1c6e8c8
- SSDEEP
  
  12288:9DiLpjr8FwwSzNfLiVqegYb2r6WUHCBfId:p5SRzaoYbjWUHqAd
Score

1^/10
behavioral10 behavioral9
- Target
  
  BAL-0590-SU/MCE-0032-SU_v2.17.1.0/ITG_Modulos/MCE2/PLUGINS/SUN/C1.C1Pdf.4.dll
- Size
  
  2.5MB
- MD5
  
  d01590bc729c05a3dd3c8ade483ce52a
- SHA1
  
  d5b99d644145c7e8524ffb9b001422548381ea4e
- SHA256
  
  f9076c59d8094ce4dbe725b1b8e5ec3cafd1b11fbca474eb42daf20018478e90
- SHA512
  
  a55fd035246cba09dc0b6e414b0c711c37c7da892aa1ca94cff8b70ffdb25190ac84148a99fb432912d6f730430f605fabcfdd5e9b0e53d9db6d1f7ded429725
- SSDEEP
  
  49152:aqX5LQJNtIyxeKorzYFGLiF3vK+aKmY1Owc9ec7wQa+lKtS:aY3zYFGLiF3vK+aKmY1Owc9ec7wQa+ld
Score

1^/10
behavioral11 behavioral12
- Target
  
  BAL-0590-SU/MCE-0032-SU_v2.17.1.0/ITG_Modulos/MCE2/PLUGINS/SUN/C1.C1Report.4.dll
- Size
  
  4.9MB
- MD5
  
  ad06074b29e7dd90cefca6968cfc1296
- SHA1
  
  28e769a69cca3c3894e3887da8ee31b07ef42226
- SHA256
  
  1b931a18e507bfb4768d8d7323d3e915a6e1af3d50b9743e5307db4b3150041d
- SHA512
  
  d490a3d279500f839b4b594255c90900b3f4dcf23009bcd3bd9bd8bed18a17093182c320678423d43c5a86804e7b674a92c7c68751e3e510ba23c577e904e883
- SSDEEP
  
  49152:8esszV5/Nv8kWW7IqY72OMdqZN6tPcwUv3HTpvNCRI27pzyb9tMhYDBusbS:xz//NX0qY72GZ6DotRu
Score

1^/10
behavioral13 behavioral14
- Target
  
  BAL-0590-SU/MCE-0032-SU_v2.17.1.0/ITG_Modulos/MCE2/PLUGINS/SUN/C1.C1Word.4.dll
- Size
  
  742KB
- MD5
  
  6c0ba3c966c104a6843a9d53eddd326d
- SHA1
  
  23941ce63b9e7d9c1803868de2fd7539c21eb526
- SHA256
  
  cd690665ac2dddbaf547c07def1c391a2c2679c49f0d9eb835e33673a55ef45b
- SHA512
  
  7b5253a0ee03c6e4a18ab43991a260a6eba94d2ff4a5b715c4dd9b2696b7d7391bbfe210bcf9c1548e82d917ca168bc237ebdc7a5a4c5b2341436a52cf44a033
- SSDEEP
  
  12288:EEsCQhp3smPsGWjG4yzFmtIE2eNMIVDpXPSTnydIj3jBfRDG:Iz5EtrpXg+qVM
Score

1^/10
behavioral15 behavioral16
- Target
  
  BAL-0590-SU/MCE-0032-SU_v2.17.1.0/ITG_Modulos/MCE2/PLUGINS/SUN/C1.C1Zip.4.dll
- Size
  
  94KB
- MD5
  
  9360b1f025f099767b34aae65e168af5
- SHA1
  
  12b62989a400d741b44edcf93b974370da920ffa
- SHA256
  
  04ca4a89f58a5e5786d0a598a1fd35f0582f9be751f3f72af85ce2c12ce841eb
- SHA512
  
  df314304c2f58292093f8eb2f58c82a3585f06874b98bd829c8bf910196416a4617b8af3aca35ba0bbb3450f0d9c83249ddeae38715ddcb371e30309932f035b
- SSDEEP
  
  1536:XVDW+rUG3LVr47mTYZmCyARVWBUMdV3RI/KZ73WmUPnCVFFv:XVDW+Z3Rr47mTiaKYUMdVhI/KZ73WmS6
Score

1^/10
behavioral17 behavioral18
- Target
  
  BAL-0590-SU/MCE-0032-SU_v2.17.1.0/ITG_Modulos/MCE2/PLUGINS/SUN/C1.Win.4.dll
- Size
  
  1.0MB
- MD5
  
  33d003240b943c261735b14efa1f350f
- SHA1
  
  51e7744c203043d449d381a2f74d6ec1b112ca17
- SHA256
  
  121b329de7b7deeb501d21fdf5ca0cab8876c52fab503e82e315a1e68a4e6586
- SHA512
  
  c3473060b7bbb3013229be10d7ee929959ea60e8d53ce1290434e3ee2e5df41970fdea9567e4371988f1fbd52fefcd60f2addccaba687f7c158751a7c1ded8ca
- SSDEEP
  
  12288:ecacOVuKAv60740JXCRi1n2wT/B1nNLKxWhS9KsoNbZC0sxK+u0032C4r6uJuMtz:aAvyk2wrkDJsb8xKiCi6uAMY7uJx
Score

1^/10
behavioral19 behavioral20
- Target
  
  BAL-0590-SU/MCE-0032-SU_v2.17.1.0/ITG_Modulos/MCE2/PLUGINS/SUN/C1.Win.BarCode.4.dll
- Size
  
  618KB
- MD5
  
  3d806df06056ed92e5476b551ca0fed8
- SHA1
  
  ff5064be701d2defc857f2ceeef156e789f4db2c
- SHA256
  
  e77397c9e445a7a6590618698a62a0c0c0f6ea56042533d56f01943d8ff63a80
- SHA512
  
  aa63c6f7c3d7e83d70022e60fd14946ff6e817560f163c70449b735f595e723c3b64fec485c28041c630ec1639cba77696d41466023ab85dd3e0b45ef92e2c4f
- SSDEEP
  
  12288:tiyUbIysoTlrmlLp27OrH3b18gtuPkt1gWO1F8cpOJvbBfWC:qbIy7lrmr3Jb0WO1ac4/z
Score

1^/10
behavioral21 behavioral22
- Target
  
  BAL-0590-SU/MCE-0032-SU_v2.17.1.0/ITG_Modulos/MCE2/PLUGINS/SUN/C1.Win.Bitmap.4.dll
- Size
  
  61KB
- MD5
  
  50a4e94050d100e5e94c64d7abba8ea9
- SHA1
  
  9e8df6f71c4157d624986b7b71e6073f4d4ca2d9
- SHA256
  
  a5d09ac5fc67f9dd353dfe6fd85e79a8d04090292de4e68987b8f69712de92cf
- SHA512
  
  ed4cb6e49a6272d014ff7a1be155d6a6a795abccd4309775a008fb2dfbd95a1eef699d0f149920fc254f5852506174f1b3cce673e5c5a788471b5671e84bf62b
- SSDEEP
  
  1536:xdB08MxEa+QZ34Rev6fJa+cFCDjLjNIqq:xdB087yy7cFCDbWqq
Score

1^/10
behavioral23 behavioral24
- Target
  
  BAL-0590-SU/MCE-0032-SU_v2.17.1.0/ITG_Modulos/MCE2/PLUGINS/SUN/C1.Win.C1Command.4.dll
- Size
  
  2.7MB
- MD5
  
  2ba9aee8102cc01c922c9650a1864033
- SHA1
  
  adafd6adeee7f9aee49ac31d27ff7ed1a702ba33
- SHA256
  
  74bac0081cca2ca5b05cea690fc79eb4068465008f517132cc49e6775c6d6428
- SHA512
  
  fa7f5feabd522052871f55ee40857e07869dd3a91b282cbdda72f4dfee80070871db4b3c7a0e294a78b4cf36ce6f3bab6e65f7b792bcfd0eaf4d205d43c279d0
- SSDEEP
  
  24576:oGEpk/r/wcEsX/Ooqqn09LTU5HDAH+lyVCw3pv+yyyKyyyC:iW/rIcEmOoqqn09/zCB
Score

1^/10
behavioral25 behavioral26
- Target
  
  BAL-0590-SU/MCE-0032-SU_v2.17.1.0/ITG_Modulos/MCE2/PLUGINS/SUN/C1.Win.C1DX.4.dll
- Size
  
  800KB
- MD5
  
  45c20824604c39236c02ea0b2d75553c
- SHA1
  
  be1e1f6034c40fe76af206b866bf20a4d80d1be8
- SHA256
  
  57bbc75ee1d162962e97de6ed2870fac48c9532a6e9c2be6fee14844c9289d8a
- SHA512
  
  77ba9542470131df2a1ef48094a8962952381634281e6fc3074304cbc2ff332785249b64c83cfd5c6a3fddeb241ad08cc47680c87740e0eba43fb64c1679e9ad
- SSDEEP
  
  12288:ZJW3iIzvJc+gmk1waWOqiRyUH97oJ00mkZ5vXjgj3AmOLwL:+3iITeWid7Y5vXcj3AX8L
Score

1^/10
behavioral27 behavioral28
- Target
  
  BAL-0590-SU/MCE-0032-SU_v2.17.1.0/ITG_Modulos/MCE2/PLUGINS/SUN/C1.Win.C1Document.4.dll
- Size
  
  5.2MB
- MD5
  
  7309b45ed30107ccce37bee92d0cf365
- SHA1
  
  e32704f55ffc56751121f57ae3a67672faf3d31c
- SHA256
  
  8b3407c7f6a3f84e0e3c9de722b7c418784fd47f9d180b79b17f8079714384b9
- SHA512
  
  01fb4e07533089699e314b48a3a565f38216652492673d14de680085d53be60331bd7e2f8e9eeb63a57a4a209900015155a86a1eafeb75e2b3b32467cfafdc28
- SSDEEP
  
  98304:XCt/3nLeI380fUJAuprzgYJ1axwi0LYAL1OQzohCGr0:XCt/3nLeI3nc7Zmxwn8Qzohbr0
Score

1^/10
behavioral29 behavioral30
- Target
  
  BAL-0590-SU/MCE-0032-SU_v2.17.1.0/ITG_Modulos/MCE2/PLUGINS/SUN/C1.Win.C1FlexGrid.4.dll
- Size
  
  1002KB
- MD5
  
  7dcdd392c88e45757343ff6853a85929
- SHA1
  
  707b15e6a33debe1cf45d39606b1bc2063c0548d
- SHA256
  
  39a2b952188edc5e9f469ad7551849b3ea72f45d73667c78272e1797ebfb3f4b
- SHA512
  
  9f129ca60258236b1f23f5b825a2cdf793fd8d7ff1c8146363b7ddf3e02882f86f116af9e1ec2d270f861bbd510daa5e80732e25b726f12b039665db4b4b173a
- SSDEEP
  
  12288:oYy+WlRUEBLrxc6JyQSUcwUAUYoemOLPkaQphW+KBfmImUJzuo4++sH3:7y+6guy7OUAUYoemyeWnX
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

Install Root Certificate

T1553.004

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32