Overview

overview

7

Static

static

3

CoagulaLight1666.zip

windows7-x64

1

CoagulaLight1666.zip

windows10-2004-x64

1

Filters/BW...00.bmp

windows7-x64

1

Filters/BW...00.bmp

windows10-2004-x64

7

Filters/BW...x2.bmp

windows7-x64

1

Filters/BW...x2.bmp

windows10-2004-x64

7

Filters/BW...00.bmp

windows7-x64

1

Filters/BW...00.bmp

windows10-2004-x64

7

Filters/BW...95.bmp

windows7-x64

1

Filters/BW...95.bmp

windows10-2004-x64

7

Filters/BW...90.bmp

windows7-x64

1

Filters/BW...90.bmp

windows10-2004-x64

7

Filters/BW...85.bmp

windows7-x64

1

Filters/BW...85.bmp

windows10-2004-x64

7

Filters/BW...75.bmp

windows7-x64

1

Filters/BW...75.bmp

windows10-2004-x64

7

Filters/BW...65.bmp

windows7-x64

1

Filters/BW...65.bmp

windows10-2004-x64

7

Filters/BW...50.bmp

windows7-x64

1

Filters/BW...50.bmp

windows10-2004-x64

7

Filters/BW...15.bmp

windows7-x64

1

Filters/BW...15.bmp

windows10-2004-x64

7

Filters/BW...25.bmp

windows7-x64

1

Filters/BW...25.bmp

windows10-2004-x64

7

Filters/BW...40.bmp

windows7-x64

1

Filters/BW...40.bmp

windows10-2004-x64

7

Filters/BW...50.bmp

windows7-x64

1

Filters/BW...50.bmp

windows10-2004-x64

7

Filters/BW...60.bmp

windows7-x64

1

Filters/BW...60.bmp

windows10-2004-x64

7

Filters/BW...75.bmp

windows7-x64

1

Filters/BW...75.bmp

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    CoagulaLight1666.zip

  • Size

    1.6MB

  • Sample

    231016-tj5mbsbh68

  • MD5

    6f5c264f09f8e313409d399d07ca9a5a

  • SHA1

    246b0d50ff7ca83a83160a4b2ec68b917cfc6c84

  • SHA256

    02365c0d759ceecc193a5dfa8e96561e703c0aaa793a5fba277bac5d2ce2dd18

  • SHA512

    7b40b407c8fdedbd6ee0fccd0bec7b3fb89d045634b4cdbc28fc3ff5732def15d8a82444ef2a4375cabe080c26b036d735ccbce3ee619548cc26e6ea331af7da

  • SSDEEP

    49152:kXzXYJJDVAwbL1/FFC1wMspCDTIgxUdzlncP8Pbg+nt:kXUJJVnns1wMqy+dtzvnt

Score
7/10

Malware Config

Targets

    • Target

      CoagulaLight1666.zip

    • Size

      1.6MB

    • MD5

      6f5c264f09f8e313409d399d07ca9a5a

    • SHA1

      246b0d50ff7ca83a83160a4b2ec68b917cfc6c84

    • SHA256

      02365c0d759ceecc193a5dfa8e96561e703c0aaa793a5fba277bac5d2ce2dd18

    • SHA512

      7b40b407c8fdedbd6ee0fccd0bec7b3fb89d045634b4cdbc28fc3ff5732def15d8a82444ef2a4375cabe080c26b036d735ccbce3ee619548cc26e6ea331af7da

    • SSDEEP

      49152:kXzXYJJDVAwbL1/FFC1wMspCDTIgxUdzlncP8Pbg+nt:kXUJJVnns1wMqy+dtzvnt

    Score
    1/10
    behavioral1behavioral2

    • Target

      Filters/BW/Amp 100-50-100.bmp

    • Size

      10KB

    • MD5

      bb5553665761216508302ee440a92675

    • SHA1

      f87f4d1f4bbfec385ed168424eb7d61cf37746f1

    • SHA256

      41495b6f491517fc53314eb990051742b8a906a87e3917bda1d76ecfe2b0d6ad

    • SHA512

      6a237b6db66367b1d708503db6cd140cf541a85124c3fddebff5f99f0832d5dfdf4e90fa81ea3fd423b7dfc08d5ab22267a846a69921e9a9167d223bef5e395f

    • SSDEEP

      192:a5n3ECl+S6tWkAnPAzAnzBAhjrz94rOSEWw5gHIhKFhCAqd18RMa2o0Sjn7Qld:alECl+S6mnPApnz94rrEWCBgFGdMM9+G

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral3behavioral4

    • Target

      Filters/BW/Amp 50-100-50-0-50 x2.bmp

    • Size

      10KB

    • MD5

      c8fb1c8e84c693f1bd2b0762cfca962e

    • SHA1

      8890f244a07fbfaa9ff6fd98d773d4bfb802c1dc

    • SHA256

      ad768a7afbadf5888ca14f1e98ed579f21fcc770b71be5c7ed22ed06807f9fa1

    • SHA512

      5402460444ab5208a82f7879c76db9aebe4c3c6a408ba02291d49d2cd49827dd3b641cb09f7177e0cbe06516537168b72e47011e4f1857f532ca1dc0d0c56bef

    • SSDEEP

      192:a5n1SRQeQUNHaoa1/pu1bN+/Y4eNsXUQmQILRwu4FyYu0NH/puj3kuaEe5aJf3c:asg6NymDF30Jf

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral5behavioral6

    • Target

      Filters/BW/Amp A00 R100.BMP

    • Size

      29KB

    • MD5

      525bebbd1f0a44da770e271b84c647ee

    • SHA1

      d0d52f8ecb6df9d88a261f9a6e6347ec41d6b62c

    • SHA256

      a6035e707d285684228ee7e27b81b95d32aeb1c592ebce06fbbe9a0c591b9ab8

    • SHA512

      35d0e350f951318e74f07213eb6501bea77c4efbbc55c492953fdace23e28db1e4a6eb35318d9ce22c6e58780428956f02f14220dbf64ba38867c62e21f38db3

    • SSDEEP

      768:R0M0M0M0M0M0M0M0M0M0M0M0M0M0M0M0M0M0M0M0c:J

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral7behavioral8

    • Target

      Filters/BW/Amp A05 R95.BMP

    • Size

      29KB

    • MD5

      cca9e283037e3604c95160cb07650e51

    • SHA1

      1ce7805c8c3be0cf89397b2be076ebf8f2546836

    • SHA256

      5d636c8f264e222d314f82d14a416055bad1d618a24696c613af7f0c3e1a731f

    • SHA512

      f3494a0cd0efb2831690890bed9370957e4a53b1f9c85c2ca5486dc78da76f33f6330a210356a6d18853d539a2bf293ff5447bc32cd7ae8b65dba09fb6e8abde

    • SSDEEP

      768:XVR+n6SZ0ujEnLpzwKsve1PNh+gIhyQqKdlJf:FcnV0bVzwKsve11MqKd7

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral10behavioral9

    • Target

      Filters/BW/Amp A10 R90.BMP

    • Size

      29KB

    • MD5

      a03236a88297ea9e13cdbde1507967da

    • SHA1

      34b50af5d211afdf8ea72e0a51e60f47a009a16a

    • SHA256

      8a06fb130096e271639da74fae48215b86e17d3b7c4a57a6d4d7d59abcd3ea83

    • SHA512

      5b96ebc3d91b31d958ae4c3d03ec02a2b606f6efa1a75a500e599707859f91a11e269026dc426a8f021413fbdbcd2767bf79c7973188ad8f47577d0d1f8b349d

    • SSDEEP

      768:DCEQVn4asW+wXEdhUnPEiN1DYtIWnpUwmw:D8VncEXshUnPEiN1DYtjpzmw

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral11behavioral12

    • Target

      Filters/BW/Amp A15 R85.BMP

    • Size

      29KB

    • MD5

      3844558323154808a247371b6931256a

    • SHA1

      789c516f52790d5498568e328952308b211ef25d

    • SHA256

      a70c318edf38f41529df902f78614c64b927bfaa60369b8f476aa72cfda3fe13

    • SHA512

      92e0aee0fe74f8d0447306c7c4d891c415760fe621bb69862d50346c9dfc68d83dcddd96f88f19cc01256ae13af4fb278bfb02164a645f069ff5d035086c0330

    • SSDEEP

      768:teShNqavK/50OBoZGcZ8TKRvEi4VLWYh34fGA4U:teShNqavIOOe6svE7VLWS4f5B

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral13behavioral14

    • Target

      Filters/BW/Amp A25 R75.BMP

    • Size

      29KB

    • MD5

      611133197f9739e7ba12599f6c223c5f

    • SHA1

      ceb8f1995f624e59cba24826cfba5b5992b914da

    • SHA256

      2b87680eafd4f698303b008a78de8e0b83c97c01f45cbb6969bc9c0239a28eff

    • SHA512

      5f4e29c18b0ecbc32a72cacd12de37823d85d78cb5b562d5e0881a2e618cca426ff515bc5ad0960347afcc913da437fcdc1b50a2d9962ef72a9065941994553f

    • SSDEEP

      768:pOahImC2zWI1tUUJ2QIa4bRm9WOtwygzQw:42Ic1uU0QIa49m9WqwygzJ

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral15behavioral16

    • Target

      Filters/BW/Amp A35 R65.BMP

    • Size

      29KB

    • MD5

      aefd6320b04d3a484ab4467acd6a0128

    • SHA1

      1e42ee90ccb5cf8645adceacce263604820b1a19

    • SHA256

      63856b9ccd51c6d4a5a1ba9189fd440206879050a01792719f85dd7a0dd90b6b

    • SHA512

      34f22b5796c0a8b0dd84a1685affd9b417ec4690558fe0c4ce129d9e3196913d40693a2e8b3ae4936e0741657b542f2c15e33b7e9ded8ce550c257b510ac8fd1

    • SSDEEP

      384:TkZ9x4qE05JWent4TVMTnKCmKMFyUi2XFlv3HK/d6IEJzw/B9HXIpIAQkKP:Iqi5JBnt4TMKCJMF9FlPwdy0XIifP

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral17behavioral18

    • Target

      Filters/BW/Amp A50 R50.BMP

    • Size

      29KB

    • MD5

      472e10849d9769b971f9348482286cf2

    • SHA1

      40e6e3f9b4ca2b482ee4935c398657e614b62da5

    • SHA256

      842e7af45dbc76c4c98ef42281df2226ce88ef87f0ed1d08b1e3410e33c4797c

    • SHA512

      3027c05bdc7553891294b4eb9103c93868a3f6a7ba2623c790b4289c4001b2929ddf1d7cee6d02e2206aacc0de4ef5ea901ca65d126779297420f378ee3006b2

    • SSDEEP

      768:C5mQI0s0BNEEsJ65HQpasHZ1093Xlu2VynT2rJK:bN0S65HQpasHZ1WAyyT2w

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral19behavioral20

    • Target

      Filters/BW/EQ LP C15.BMP

    • Size

      1KB

    • MD5

      63b565b2e284af0a23d61e7779389d3c

    • SHA1

      7e051bf379653ecf5a2eabf3a0abfd3c9b773caf

    • SHA256

      ca73b3e744f6d854c8f877103e31da3d8f992db2826324a55ea4ca115f92931c

    • SHA512

      adf424fa1cb26a85dbac98599f3204752e162b3c2efa28560da0a6faf46738cd06f6dda395d266b64a51af01380e7e2276cf05d4f1fad701344097b16b3ec931

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral21behavioral22

    • Target

      Filters/BW/EQ LP C25.BMP

    • Size

      1KB

    • MD5

      6d65aa3bd92818d10baa44508daa1c33

    • SHA1

      9b764a0cd07919f6dc5ae348f3820a7575939068

    • SHA256

      0b5dd63c9d6b10436a6072b0cfb7a0be868f455ce745ba53e583fecad54efb7c

    • SHA512

      a2e69e4c3ea34c61315e67190dfb6dd6355a69b1d0ff95fdc269487fbb5afadd379681dd945c596685da8af098807134926554eab818e55c9219633d1b6ce080

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral23behavioral24

    • Target

      Filters/BW/EQ LP C40.BMP

    • Size

      1KB

    • MD5

      29bfdcbc4f605e48ed1a16274dd73a3a

    • SHA1

      a3c3d44cf7b3149cbf0a601acd072359bdf61ded

    • SHA256

      2e92f88eec6ce4620a14ca350b05c9e1ff13285f5a8efd69b52c8694e383e9f1

    • SHA512

      4f14ee8dabd98b8bbb5ef380eff657cf436bb6b5bd51d2cea94360ade854c78bb841fea36931c8c0518d1a4cfe2b3eaea16b795413c357fa115ae97fdcfef47a

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral25behavioral26

    • Target

      Filters/BW/EQ LP C50.BMP

    • Size

      1KB

    • MD5

      b9c1d525326ba7666961f0d5e0a77cf5

    • SHA1

      cc436ea037db484fc65799c1adfae1f74957acfa

    • SHA256

      9826f03abcd109110b2829eb1d6572152edd44bae70f8bcee5077302ce5af15d

    • SHA512

      0ee53c1aac2f0e6a062ac9ec67d29393fb19c57a66f5fefac891341a26a299175bf73c6c20a630019f696c640646a9365ad98a2700c1ae3a9f83a1cdaeb4b4cd

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral27behavioral28

    • Target

      Filters/BW/EQ LP C60.BMP

    • Size

      1KB

    • MD5

      460a9857e4c28ab4c9539dd20537aa55

    • SHA1

      7781c2803d7acbf3f2bbe1aa140bee3dcbf96c86

    • SHA256

      c81a69e0208195e1d5c4a668807c5348e562b54cad17a272fa1a58dde7145747

    • SHA512

      d6ac8963e1acad339f1cbd6bee3cb38b574ffd486448d0a3ea3e972e3680ab3800a038edef5a88b75b4a88e36b2590097bc59db17c00072d1b4104d24b7a5d33

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral29behavioral30

    • Target

      Filters/BW/EQ LP C75.BMP

    • Size

      1KB

    • MD5

      3c63e11823ae17f2e7e992f0bf01be4f

    • SHA1

      537f5945573a2ff8938c36b405e2371d5a7ea9e4

    • SHA256

      1325dbe93967ab9cc33807a87b5f28238de25f4b329b7e82e5633219a5b0566a

    • SHA512

      6ca75fc22d77f85cf9e6b9fe12c28409951e044d44d0b9d8c6612eb31e6b25888e1b5421027a2c3eca9a2e8e7e3cf792597eea33e49c52e4ba24bc8843e0e8d2

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks