268989e779e194d856686051a4dd9117967f7cd857aa27098522a24f9d5414cc

Sharing

Copy URL

Twitter E-mail

General

Target

8d7030219cafd49283b6ef935b9937d535136dd2ace589ee2a6d6df912c314f0.zip.zip
Size

3.9MB
Sample

231107-q44zrafc3s
MD5

22b33467e4066ecc7a0cbd16fcd9fe72
SHA1

f6333d65d6f3a1635a979575dd8b2b7dfa1110b7
SHA256

268989e779e194d856686051a4dd9117967f7cd857aa27098522a24f9d5414cc
SHA512

3b4d644bdc5dda15869db4b3e1ca858ac81d59bb1c252c8127eca4de210c1fee834aedb963e20c952d3a921f248f573744587169c58fa74cccef27730317b8aa
SSDEEP

49152:5YpvAB2sBi6bWo+Xn8vN+mnsCGq04aR6B/Vfls01vJG1vEPaw253mqZIdj4MnZmU:5YOB2s06xs8YCO4jlmczSmqCLZmEgy

Score

3^/10

Malware Config

Targets

- Target
  
  MethodPlugin/Autofac.dll
- Size
  
  357KB
- MD5
  
  56a2f3a491093210f2ad532bb15a3bab
- SHA1
  
  0fd2c457de6e9484715dca265a33c5a493ce1eb9
- SHA256
  
  f6fd9992fe3ea4d62695d1be3c79625f13008878b7bb984c751805f7c40713fc
- SHA512
  
  81217a5dfd912aa8bd2c4fd3afd1e22a2dcb3850fb630af8d5f768897c64f50b5aae37efdec64872611914340432392d9a19a471c826e46d6ec131ad599e7af1
- SSDEEP
  
  6144:kaGLs+Jq2XaEDYy7x7rsQ0kjPcnN4AYCkXSMujJfJyRjCS:OQz2X37RrsScnwSG
Score

1^/10
behavioral1 behavioral2
- Target
  
  MethodPlugin/Awesome.Worker.dll
- Size
  
  6KB
- MD5
  
  1086c02c30ba41b7f2e3af394b784a9d
- SHA1
  
  afa95cd3258ec18bd510ff64cd520ec58597c974
- SHA256
  
  6bdc4f23e7948d49f4886df239118adbc1971189bf54d8616a01d73b684dcdf5
- SHA512
  
  8580f4c1253b942deacb9bcea502c809cf9c5d843069e273f27db1262c41ec5950f8f04f87babc28af6d79ab32e2dce0f44cf3195d2b66054c496c285a2c8f5b
- SSDEEP
  
  96:ZBmGsVN0VcDz/7G/06KH+RjfvzME0v9vdU4EhS+e66G+8vju3OqJW:Zk90VuT6KkDbMEEdUNbe66RoA
Score

1^/10
behavioral3 behavioral4
- Target
  
  MethodPlugin/Clients.General.dll
- Size
  
  15KB
- MD5
  
  e3082a5a8a09b0cf3a14e32f901e5f37
- SHA1
  
  8ca34cb123cd1f5a78b3965f6665c3841491a7da
- SHA256
  
  708e407693df1e204f3e83264fef6d72a9e9e9b51b4839109a52fdccb2a6f10f
- SHA512
  
  e850b9a09f761eb605448052d8792fd6c0af83ac40a67f767a6cdbbe69feebe9f7c81e44a73ec380ce0a147a315f9522a5b04814e9e0e989a03555a4c34ee856
- SSDEEP
  
  384:MKs4gKXxswsA/ANud2xMHnKiAdKzCIQNe/pj:MKPg0xswsA/PdcwcB8j
Score

1^/10
behavioral5 behavioral6
- Target
  
  MethodPlugin/Clients.Method.dll
- Size
  
  17KB
- MD5
  
  e6678f74f0ff0a2146a6e503872f3f73
- SHA1
  
  fd2e81dc820972b437c5f8f5965a0b4bab6c2b24
- SHA256
  
  561918ebdc565b3968a16a47cca74cb5b89ca98ba6272807d0cbe4a4ae73e9e1
- SHA512
  
  ecceff4bf4d1da2ed40701ce34b0e142a985f8547acb1cd63212e7edc0754c6fd37679255a6cc1095fd157c720106e3a370795060854279e379f6d802c0d1a63
- SSDEEP
  
  384:yckw6v8lz7gEU8mnzlum6909zG0V+kUS/k:qw68Ng98mzUmfoY
Score

1^/10
behavioral7 behavioral8
- Target
  
  MethodPlugin/DynamicData.dll
- Size
  
  724KB
- MD5
  
  92e370f647ba7b86a089dbf376496b68
- SHA1
  
  bbde24babc57a1bf0a0e4d17973495b4e990d5ed
- SHA256
  
  f68bc874aff394d0500a3e37c54b76df931092e9c6ae33af7174114209e7f55a
- SHA512
  
  efb39fdb9dfa54422a290b9f1441527dbe2f219450e14fabf1ac431294e5d530972a0979f4ae2015e606519e6c368ee2bf306ca1eafc422f23ec71e9deb27f67
- SSDEEP
  
  12288:joxxP5K4fs438K0psIPDNyVxo/S/CsD8Ue2m/MFPIlFlbI3:qxPw4k438ugZKxoK/VD8Ue2m/MFsFlbI
Score

1^/10
behavioral10 behavioral9
- Target
  
  MethodPlugin/FluentValidation.dll
- Size
  
  453KB
- MD5
  
  b4111a8f1d08731d4a2dfd341a1f2aba
- SHA1
  
  bf1e235ddcbe131e54cd31a5e060dd2e562de825
- SHA256
  
  777c590fb87e5dd6f026fff29c3dd72c68d6b6eca31087eb032c62299019ff4a
- SHA512
  
  86fb3e86e1e9ab554d93d66815b0d14284ce6177caa6c18ebccae4549ed39878d2ef6f03a1710dbb7f56fc32237473207137c16d0404480e85d0770744bb5b72
- SSDEEP
  
  6144:lUSoB9l2NXnKurjtV0IAqWxkvHXCwloSR:la45nNb0cWHw
Score

1^/10
behavioral11 behavioral12
- Target
  
  MethodPlugin/JsonDiffPatchDotNet.dll
- Size
  
  44KB
- MD5
  
  8ad0c012ea41d5abc70aa289f4f78b0f
- SHA1
  
  87f40d427738be099566d5590112d34e4fa898fb
- SHA256
  
  645e78d75be299bb91e40244eb3a0f7edecd89cb56db5924e75feab3be5db61c
- SHA512
  
  d38ba40741db3b27bbdd82a30bdb3eb921c864af0d5917d4675d69024d5d7c83234f090bf8608e8b582a1f67f12d27ed2a9fc635a74350bdf8cb171a27b7b028
- SSDEEP
  
  768:1RFNMBJU3qfmVcNH3A+eIxj1KGMrHnwgbzRkM:nFNKKafmVcNXA9IyHwgb1D
Score

1^/10
behavioral13 behavioral14
- Target
  
  MethodPlugin/LazyCache.dll
- Size
  
  23KB
- MD5
  
  efa1cdfd99190c54e4f9ff2aa76c5bed
- SHA1
  
  e6c27dbc07dfa76ea8313a9deb2a082ea1a35f9f
- SHA256
  
  cf651e1abcfc71695e54bc0b6a9293a377f34a409608a9559e6506f3928d5994
- SHA512
  
  850a015a5b36f4c3c7960e8338b478fe0de065bac34456fd797fadd85f01be7bb9319b39a9a6a36189e4d1696e7ef65a67b04760c369e2c819ad2253f4e19b45
- SSDEEP
  
  384:/pIDLfcQK4rMTSjawSukttn7AZirGxnbM+5UqDpCxjnmE+wvV+KPhgRmcCj0:BIDDcQDrZlk77AZnhAJ7+OV+KPCRmn0
Score

1^/10
behavioral15 behavioral16
- Target
  
  MethodPlugin/Microsoft.Bcl.AsyncInterfaces.dll
- Size
  
  20KB
- MD5
  
  1ee251645b8a54a116d6d06c83a2bd85
- SHA1
  
  5dbf1534ffbff016cc45559eb5eff3dc4252a522
- SHA256
  
  075ce79e84041137c78885b3738c1b5a03547d0ae2a79916e844196a9d0ec1db
- SHA512
  
  9f67fd0566eac2da4253d08697daab427e4e85780615d940f086a88424dcbb0563abae7e4824088e64ef7024c1bb3bbf324f2d07bc7ba55f79e4af3c9ea88e97
- SSDEEP
  
  384:69P2wZOXm7YJVHTe+0VJI0vrdaVemxO/f7vWeq/WIdHRN7bg30uw7lGsV9W+:u2zmYrHCV9cIL6TbtCSW
Score

1^/10
behavioral17 behavioral18
- Target
  
  MethodPlugin/Microsoft.Extensions.Caching.Abstractions.dll
- Size
  
  25KB
- MD5
  
  1e21cda9e32f96746244dd7952429e83
- SHA1
  
  006ac70b0941ca301b3cbce5053caf72b70e5231
- SHA256
  
  c9193c06366fbf8bce3583832c768efbdabd6dd487895476815e2edcfe75ddd0
- SHA512
  
  74d7d4bbb80c5d65f4ebb49fc72180d8311a72b97d0c6b8e304d09f44c36357dc5c3e585fe86627b4f44353dccedd6b96ee654e404171559fd3057b4af0959c4
- SSDEEP
  
  384:q1WlZwKgpUDfOlb0hWFen0fKjE8KJATPzS58NWBUphzWc/SWnaQHRN7URlD16cSu:flZwsu4h0eeKY5ATPO58NyA3zLUxl
Score

1^/10
behavioral19 behavioral20
- Target
  
  MethodPlugin/Microsoft.Extensions.Caching.Memory.dll
- Size
  
  31KB
- MD5
  
  9e9953021c7d87f456c8b499dc10e3d1
- SHA1
  
  2fbd97ddfd6651f2c30cdf0e589ca468511476a4
- SHA256
  
  5a1617df2bf42c1dd2d51f32e31843b468347f745d9723300ee72230be63e0ae
- SHA512
  
  7b5270a13ac5553c408dc699af1c1ff9a5b027017eb42abe13f09ab70f64931eca0fa095283be96b1df176e75cc593e0792b46fb917c1e750cd9aa3d1c14d178
- SSDEEP
  
  384:okmw1RCK7dH8cJby8ua+H42AAAAAAAAngAAAAJ9uLvWg8Pc20Jgee4BPUJ2JXv+Y:ok2AZ8va+HjvD8AqisASlLw
Score

1^/10
behavioral21 behavioral22
- Target
  
  MethodPlugin/Microsoft.Extensions.DependencyInjection.Abstractions.dll
- Size
  
  35KB
- MD5
  
  1bc1277126655b767aa9e4cbc41bb5e6
- SHA1
  
  5e46b938639a28651bd4de8eda438ccc5a212e1c
- SHA256
  
  175dd59c6ef443c8350f5365db3ac262a2f72016d38e1abb304538dacbbe0918
- SHA512
  
  93c73ecbbbef595af6168457f0805b0b53d40cc126ce33efaa2a65b86d92c27e1b0d3a468f3619bbec70c990601c6d94c8556083cb33e85011c709d4162d665e
- SSDEEP
  
  384:23VVPJrgCcYGJiH4Dw/lbfQV460lER0+YUMiwEzITzW4PLWGaQHRN7Ot5ltV:CbPRgC4iHt9IVTBYMwEzIpJLOt7
Score

1^/10
behavioral23 behavioral24
- Target
  
  MethodPlugin/Microsoft.Extensions.Options.dll
- Size
  
  39KB
- MD5
  
  56585ad1c2d84699e681f41b460bb54f
- SHA1
  
  c2f479717993eae16142a207f175482169d8bccb
- SHA256
  
  4e0b13152ac4e724b35e2dee57148bbeb19bbfdae5107aaee715812eb5f92f33
- SHA512
  
  e73db1e9b66c8bdc2d246afa553f74450b8633bac9d5e9dcd10ea56a8c3d161e763783593be2194087a72d0acd5f8d24398359f09aec35d90d971e019ff9ecb3
- SSDEEP
  
  384:MLpz9xn5F8kerWqFbOkbdVXc2YbpoN7vGFTrqbtY9WSaWM+6P0gZ076V/hELC8d0:u8cpoNDSCRpfWMDP0AypufHFLxV
Score

1^/10
behavioral25 behavioral26
- Target
  
  MethodPlugin/Microsoft.Extensions.Primitives.dll
- Size
  
  34KB
- MD5
  
  cea2297b737b2c9b87c898a25fb3a44d
- SHA1
  
  914dd11a94e9fb1ca79dbff6bec661d4e29cd0b0
- SHA256
  
  07ceca42e6c7739a280c0df47c71333a5966a3281c75c0987b6e14b7e6b27cf3
- SHA512
  
  954047e647bd42484dcc069bbe74f724657a6f46eb772e2956a257a3e2af9a4bcce603e12bc6b956916622a52cff87f31636100058fa391672950a74699183c0
- SSDEEP
  
  768:LOiXLlC8IFsZ+SH1WYU9IeZtmufrkR7LZF8:LOwsFsh1LUGeZMqkRnZF8
Score

1^/10
behavioral27 behavioral28
- Target
  
  MethodPlugin/Nager.Country.dll
- Size
  
  223KB
- MD5
  
  906e1b0c8e80092fc1cffa8e86c2e5e0
- SHA1
  
  4af2ffb22e7e0b6037837eead46dc0f4d618ad0b
- SHA256
  
  137df5f658d4a68d00d1bfef973ad5b9646917dfb24fa713c2bf11ee34bc4b72
- SHA512
  
  26cfef68cd0d68b3e4226944b58e23329ef7ad541914dcffa226f8192982255b55123e043cca8a93cebd928f7bba3fb727947d29863698a6ce44fccd62ba0b67
- SSDEEP
  
  6144:25nVW7ds74GsOaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaY:d7ds7BD2kJ
Score

1^/10
behavioral29 behavioral30
- Target
  
  MethodPlugin/Newtonsoft.Json.dll
- Size
  
  695KB
- MD5
  
  715a1fbee4665e99e859eda667fe8034
- SHA1
  
  e13c6e4210043c4976dcdc447ea2b32854f70cc6
- SHA256
  
  c5c83bbc1741be6ff4c490c0aee34c162945423ec577c646538b2d21ce13199e
- SHA512
  
  bf9744ccb20f8205b2de39dbe79d34497b4d5c19b353d0f95e87ea7ef7fa1784aea87e10efcef11e4c90451eaa47a379204eb0533aa3018e378dd3511ce0e8ad
- SSDEEP
  
  12288:WBARJBRZl/j1TbQ7n5WLm4k0X57ZYrgNHgK9C1BSjRlXP36RMGy1NqTU+:WBA/ZTvQD0XY0AJBSjRlXP36RMG7
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32