37b51c529c4f88f175fec0d639759364d8dc4df55d0ebf775f4b4409546d6255

Sharing

Copy URL

Twitter E-mail

General

Target

DirectoryMonitorPortable2.15.0.5.rar
Size

10.5MB
Sample

231013-c9f8zsbc5x
MD5

036d6acaa1485ed8cb6d3893d9e3438d
SHA1

25923dd7fe7c4f81ad3c782302e39340e1f05991
SHA256

37b51c529c4f88f175fec0d639759364d8dc4df55d0ebf775f4b4409546d6255
SHA512

4619b4df3d5a73dd5461026d314470c5bad20705d52011b3bb542d9d0adc7b95e9818499ff0a81575851de4f0bf07ad4f2e43594c6b78b618b7112fdaf1963c9
SSDEEP

196608:whFJKXFcviWJEaDeCMXnxlMGvdtFs4hwH/2/T8g+T7Uir1RS3WJNQCjy:w1KXFfMAbdo4zaNxwm4CW

Score

6^/10

evasion trojan

Malware Config

Targets

- Target
  
  App/DirectoryMonitor/AlphaFS.dll
- Size
  
  358KB
- MD5
  
  469820340dfaac8887ce8afb05dd0f8d
- SHA1
  
  437c15378d2270f5726b30773d5d07f6c759f769
- SHA256
  
  742adae69237caf67f7dfe57b8753319dda9539191f77b17b56a8c30113f7635
- SHA512
  
  d34b886b57e23646ec8ab3c8829d8e0cd76a11a15fdd1cb228df7a2626fefed6116a1a0eded0e5c6375e7c439e4f4dea43acc01c9076e5864e63333d1a84075f
- SSDEEP
  
  6144:qKdWco0wPOvY4MOXg1AWUpoTjzbDxlov25zk:qKdWcNTvYbOVzoTjzbj/5
Score

1^/10
behavioral1 behavioral2
- Target
  
  App/DirectoryMonitor/CG.Controls.Grid.dll
- Size
  
  885KB
- MD5
  
  3228f497d8a88a3ecfe61438c39b9aed
- SHA1
  
  d6dd042717d64fb176d3652c40e6e47dd08b5110
- SHA256
  
  a6972a4f31342d080fdf12b26230eebb583e99fb5209b79257530453ecff002a
- SHA512
  
  520dd7c2fb0f700322f6e20795293d68db9c466bcc3c4f64e17dbea90b4bf74e84374fdd8a30615c1836f1f38438618b474a3ed65dcc8857898b2e22f62654e9
- SSDEEP
  
  24576:RhZXtIUWmu6ScgRQ18JlxkPGDuzHBmTp6si:rZXtfnu6ScgRw2kPGDuOBi
Score

1^/10
behavioral3 behavioral4
- Target
  
  App/DirectoryMonitor/CLAP.dll
- Size
  
  405KB
- MD5
  
  e0d9008959c59b1d5dd86fd5dce03fdd
- SHA1
  
  d01148848f3a7a73d945616c8e5328808c0a5554
- SHA256
  
  0139d3683deb86e534928e58037dd0c61af1b0b090a922e37aa01b2278dc15e2
- SHA512
  
  52d22d682eb50561fe11caf83079029a29a86c437cceafe372f125cfe4997f8856313981da339768d70f2ff5b356296b822159d5d6ad6d5745c7dfd6c508d318
- SSDEEP
  
  12288:SM3TCrHQh9O1lhn7mhDnNyFNlBXHkM5l:wk9FZyFDBXEMD
Score

1^/10
behavioral5 behavioral6
- Target
  
  App/DirectoryMonitor/DevEnterprise.Core.Logging.dll
- Size
  
  36KB
- MD5
  
  06505dd930ee967a93c0a0a6c822c5c4
- SHA1
  
  66e3eab08046deaeab38eb2378f12309e667ca74
- SHA256
  
  80736eb469d7e44614a9c90376783037d6d1851a31070ef7d11c05144c60cd37
- SHA512
  
  c782b89f000c2e3b268d5b14b0d27de922eb696b5d79bfedfa2d82e682a857e98edccc719c1b8d1b661679708f0bb78743014197ef3b349d7a9c12b8dea0b355
- SSDEEP
  
  768:Go1qsh+r4hUaBSNm6koFDib/E02IZT0S+uFWf:Go1q1r4h3BSE6O73tT0S+uQf
Score

1^/10
behavioral7 behavioral8
- Target
  
  App/DirectoryMonitor/DevEnterprise.Core.Monitoring.XmlSerializers.dll
- Size
  
  10KB
- MD5
  
  c3a8ddf04e1b82ad1a5ab4d633b1d299
- SHA1
  
  ca39adf7994387b6e943d7972874fa62b2e1ec7b
- SHA256
  
  466df6bbe2065af3ca3bc91d852c5de9a4c9c35de0d20934ac786256e3dd3aba
- SHA512
  
  6e6192cdda623c02bcc8c7ec2727c93525d788be3a396183f19fb9654fc2ed3d766987de21fef29a4010592f23c6b6b81e62684a29f94caae3dbbbf3607ae71b
- SSDEEP
  
  96:PopMjXaQP1Vt8eRBne1nbADUkz3j6rIHm7ATmd+uxx7OAdvcpYWAhamgFRqadq5G:PYMjZVRjkspDPadpOASYFAmaqnIjmxE
Score

1^/10
behavioral10 behavioral9
- Target
  
  App/DirectoryMonitor/DevEnterprise.Core.Monitoring.dll
- Size
  
  361KB
- MD5
  
  7ee02ce9789a1c4beb58a52ccee979d8
- SHA1
  
  d6cee84c5b890a9baec58e1e59a3695c42a31df5
- SHA256
  
  1bc9647cf1caee3348123de74f3294714cfc813210bfdbc06adc1458a27ad586
- SHA512
  
  5fde65d17b5ec94aaad37a8475e2bf5ef47a51705509c63f6b8322c95c6928d9be055c015a0fc72dbac3018c61207c51ae4c5a8d461e8931793b2c87bf00b68f
- SSDEEP
  
  6144:146YzV/ypVnzRZDH+Toh89ho/EezpXWCk:1464/sEoQojp
Score

1^/10
behavioral11 behavioral12
- Target
  
  App/DirectoryMonitor/DevEnterprise.Core.Plugin.XmlSerializers.dll
- Size
  
  10KB
- MD5
  
  1357149ee8bc55784d61d9c1b62435ad
- SHA1
  
  bb67ca6fab4b3c1eb077b0ee678a36b3a9459ecc
- SHA256
  
  b66047ca7f0f7ecde2ce873debbf34d556746a9a558558fab9e521c91e0a3b9d
- SHA512
  
  7edb99705888cb5438bc3f0cd32d33572f1d13f00a0d10241eda74bc112f0394b892fc1b772ff0d0c42f4b7c6bb9608ea11e3265b72a33fbdae7010d8873461c
- SSDEEP
  
  192:OxNbps+ZvZyhCjLruR/cc/AkumQCP9zFeG:KtBYC/ruR/cc/3UoP/
Score

1^/10
behavioral13 behavioral14
- Target
  
  App/DirectoryMonitor/DevEnterprise.Core.Plugin.dll
- Size
  
  51KB
- MD5
  
  a2b022caec561c1bbaa9eed3b51374c8
- SHA1
  
  e904c7fc1a84e40b07cfb6c0fcb5b6b44ab5501d
- SHA256
  
  f8ae65586c0ea29f039ce52c67960a0b82eb067998142d1f1c9f64401db39574
- SHA512
  
  673aa8f603756c08019ec381b9e1370ec65471a9f40d5fd5d37f4535c7db08f93ccfc13c72ed0fc7ebf3458ecd9faa8dd12a63320e32a40b85ac09b94f498f76
- SSDEEP
  
  1536:XhgndMZHcMItGGXWnOu4256+O0EIRzmIVbET:XhgndMZHcMKTu4256EzpbET
Score

1^/10
behavioral15 behavioral16
- Target
  
  App/DirectoryMonitor/DevEnterprise.DirectoryMonitor.Common.dll
- Size
  
  121KB
- MD5
  
  560cb49ef83d0572c66c20d4d8f7a365
- SHA1
  
  a45f1625d37c0cb3c2310ec33334185451b81900
- SHA256
  
  b3df6049536edbca33d5562705810ca60803e46df5a2ccfcab81333805d2b0f5
- SHA512
  
  6ec9ccac2195e46078ef6502f969e19a20feb5fd9f678bc32d45d8c29aac9450ad47535b2347be4e0559138588385d489bd98981954ba0ff757745ae47fad77d
- SSDEEP
  
  3072:L8X7ORzgK5MrlSK9cBW+Vqp2+DHnWqbXdBR/vfzuxpWIi3hW:5z3VWXdBR/3wW/
Score

1^/10
behavioral17 behavioral18
- Target
  
  App/DirectoryMonitor/DevEnterprise.Utility.dll
- Size
  
  433KB
- MD5
  
  cd5e05596414ba9d070f29603e9fdb50
- SHA1
  
  4b3fce7d86e1e496791ebd65f7a0e04edb9471b2
- SHA256
  
  9ca5ea6da2223cbb37b53caf2049a1361d774474be1dc82c6bc32cc508494588
- SHA512
  
  1879250b67ff7a633082292d8d824b92d133b0e4acb2ada987746dd27dd1eaf9ed97b05208c19188647ec9deeb366de23e7c1ab90bbedef19168fec285e6d84f
- SSDEEP
  
  6144:uopIJr4ZdWPV3XrJfoY4orWjf9Y6Wd6nOTeiDb/jcwDWVWjCLf60nTa8y/gmFBjc:9OJr4ZdyJfUjf9Y0y/NSxLy0ne8yZDjU
Score

1^/10
behavioral19 behavioral20
- Target
  
  App/DirectoryMonitor/DirectoryMonitor.exe
- Size
  
  1.9MB
- MD5
  
  ae0bc60a12ca3a32afb32cf17f44282a
- SHA1
  
  9100660d3e5daaaa810c8161d8ae25f2b0b54209
- SHA256
  
  242e6e9e8ef08501d6f97e408b2fff7d7141baced8214250219cad7c8a3b08dc
- SHA512
  
  72ed571b2a236415b20bfa6f7c1e4847df525b0f3a729e2f025236f6586254604f3a71dea282c9a9d0b2c8909e27fa67eb558569a362668ae82af8204afbfe56
- SSDEEP
  
  12288:4kLywLk29CPs+RkZL+AFncWlBI4g4dxCMDL6rkS:4ZECUXc+pgqCRrkS
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral21 behavioral22
- Target
  
  App/DirectoryMonitor/DirectoryMonitorConfigAssistant.exe
- Size
  
  815KB
- MD5
  
  67d8ba0b40cdacf007ce110e2c09801a
- SHA1
  
  fd7e5d59a250956481cf005c161d8eda19084ab3
- SHA256
  
  211441c9d079b604286efdf8bc81e7029a955f6e0c4d2442a7c7d1147f69e06d
- SHA512
  
  58038e9951e72735ea5df50764cd4d3b4756696119622efe8ae06eef4c7ead82566b5d6db8d8c645eeeb0afd5e37ef7bb462efb0d13e317674f4191bbf002edf
- SSDEEP
  
  3072:S52mS4HTwMNl8xw0SR5KIC7pLwMasRSOYJGrFrIGDb:S7S8TwMNl82VqDVLwM8ODvb
Score

1^/10
behavioral23 behavioral24
- Target
  
  App/DirectoryMonitor/DirectoryMonitorConsole.exe
- Size
  
  499KB
- MD5
  
  e0b22ec0a5f213ba536f563af8d63692
- SHA1
  
  7d0c5830628083e4567a2b5128f427fa6d52ef98
- SHA256
  
  5850c43861aea1c3bcb64c94fb26c3aa9c4b6e5f433ee14a1f1c028c9cef3bf4
- SHA512
  
  dcc764444d50b41e6c5ef7f5afacbdb0ca3f48b6f52dadb8ed0ca147adcf13740915e2dea4d37cc817b34ea7d978d699945418eb96fbb5ee9e3af63e5de67eb9
- SSDEEP
  
  3072:RIcM6fCj0fCh2tn4kMgKtJoua3MHTwMJJGP8o/DC:RID3A4dgKb5JTwMaHC
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral25 behavioral26
- Target
  
  App/DirectoryMonitor/DirectoryMonitorService.exe
- Size
  
  440KB
- MD5
  
  18680a1d6e673eaca6386aac9aa13210
- SHA1
  
  6470a1960e18a5e8d8ad0398572cdcee5aa80fe4
- SHA256
  
  dbf3d5b2911b66408c5f7ce70fe4fcbee723bff6db8df26fb298c6899e5cc3c1
- SHA512
  
  905b05f0719f0e297b65c0a778cb46674766909c0905129aec1768e281d8604bc4384477ecac6f816009cc63432a834f443eb6639db480b638e728a758c4d55f
- SSDEEP
  
  1536:TMaWZTIbCqXIOkJMIeWGOQQFBlWxpjKWzfnftgIB755HTRW38uy:YaWZTaCqXZkJMIeWSbjBHtgIBbHTwMp
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral27 behavioral28
- Target
  
  App/DirectoryMonitor/InstallerHelper.exe
- Size
  
  65KB
- MD5
  
  db69283176ba17c91bed5a30b9e8614b
- SHA1
  
  e9fe9ee1d332126764b0cee0051f9fef409b5470
- SHA256
  
  fac732e553b7b277dd0854605a0c13151b7a77a336b11ca7aca6826f0376103e
- SHA512
  
  3c5e6ad1e9ee2e35f55ebd97ae106a43df8a9ab4a9c866cf69a0a5071cf95b79ae19c55b5a47186ef66aaa1441efe75a63d97cab8a29aa0261aa86cd253288ed
- SSDEEP
  
  768:fn7RnUvJYaiIc4XDzpgPojfbKMsitmb10E9LFRes/w+KVksumPu:f7FaJYafXDewbbAQmuE9LFRe6sumPu
Score

1^/10
behavioral29 behavioral30
- Target
  
  App/DirectoryMonitor/Microsoft.WindowsAPICodePack.Shell.dll
- Size
  
  530KB
- MD5
  
  6d8deb7be7360761fd43ec9ddcaa0811
- SHA1
  
  b45482a37b381de2a0293b6be48c4cdef04aebff
- SHA256
  
  aa5d80cdc0da52970031309b457e3e3fd505bb1ac13fb79801d15bfbb4a700b2
- SHA512
  
  c400812dcdec40e4bce3ebfd1a3d472dbe27fb5bccd22e198f870f418c003d121135fa82e6699c581167f48393cacfc4876eb2e50f51104bcd9d322a5641f75c
- SSDEEP
  
  6144:DtIgLGv5WBfXkYlsL/Nz++R1yji08n3uzxRQKEPmBm9C5vEx3tcQ8Vub8xPtwZEF:jz81Dn3GQ/9C58x3tWXH9gv
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

Install Root Certificate

T1553.004

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks whether UAC is enabled

Checks whether UAC is enabled

Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32