2138beb77f545b5ec224e407f84f206bb2e5b14868ba0603dd12bab6c7f2b837

Sharing

Copy URL

Twitter E-mail

General

Target

4e24ce8ed59a0420b985f457b19312620b3820ee5c2db2f8ab3c877cb8c2563a.zip.zip
Size

4.3MB
Sample

231107-qy5zvseg7x
MD5

580eb2af117b29222029e42852b8572f
SHA1

093af2c352f2ac6f2675aea4a146bc636abf0c0b
SHA256

2138beb77f545b5ec224e407f84f206bb2e5b14868ba0603dd12bab6c7f2b837
SHA512

cfd0bf802a30ba90285dfd2328f7042cf3e5134120aa1fd1b0a0ce5ac342a4255cc0412e478113d165f244bfd2c5743c2c051604d0d269f3219d460c753c06c8
SSDEEP

98304:1A3oIFlsNZdTkHFFyGV8Yuzvn5MfiKF25rgogSmyf5M37gOTxLQzaunjD:1QElTqFSvnGyrDgf6M3cQLMjD

Score

3^/10

Malware Config

Targets

- Target
  
  Resto.Front.Api.BeInTouchPlugin/Awesome.ActionCable.dll
- Size
  
  238KB
- MD5
  
  ab3d8a79e72b7f67ce6e06d1a686ce8f
- SHA1
  
  a8625c0b617af4341f808b56a65c0e681602e6c2
- SHA256
  
  b20b2b11686f10a0b72da6f0af6bf165e2682cf02d155b8311c72ea7ec4b17bb
- SHA512
  
  6093004cd172a9c22589ad57a9f2cf5e2e52df03b92c3aeebe2ac50343315a7aeedd08b3a3fa8df703ffff8f23658635923830fd66f033f76842b178be1cac14
- SSDEEP
  
  3072:D64LcHjOuHRWEiPrSbt+8WbKEdxj9XCQ3FAzWfaNUVjy5hPIwAvaaFmCq9L:D6x2stYWoj8Q3uyfxM
Score

1^/10
behavioral1 behavioral2
- Target
  
  Resto.Front.Api.BeInTouchPlugin/Awesome.Iiko.ViewSession.dll
- Size
  
  14KB
- MD5
  
  de53869fc3f18884c43479da9e45924b
- SHA1
  
  c0a474d898d441186c2c66840c80c2b6daf2e5e1
- SHA256
  
  0a81ff14de8df26406cf8c34a815355bc82f744e3a6f7b6ba276f5cad9356d7a
- SHA512
  
  c466d4ecb7f1bd9805f0a9e2c1ff61269f8013a4042c8099c58b273ccfadab4263448b40b3e04290ef52be650712892215c324e722afc91a3ec5d2af48a89b5b
- SSDEEP
  
  192:z5Ymng+iyyObQVbPMt6MoU21m6PdXqUzA75OM3KIlrwN0YIJNVdf:z56+HydMvoU21FdLzAdOYlrE0YE
Score

1^/10
behavioral3 behavioral4
- Target
  
  Resto.Front.Api.BeInTouchPlugin/Awesome.Worker.dll
- Size
  
  6KB
- MD5
  
  1086c02c30ba41b7f2e3af394b784a9d
- SHA1
  
  afa95cd3258ec18bd510ff64cd520ec58597c974
- SHA256
  
  6bdc4f23e7948d49f4886df239118adbc1971189bf54d8616a01d73b684dcdf5
- SHA512
  
  8580f4c1253b942deacb9bcea502c809cf9c5d843069e273f27db1262c41ec5950f8f04f87babc28af6d79ab32e2dce0f44cf3195d2b66054c496c285a2c8f5b
- SSDEEP
  
  96:ZBmGsVN0VcDz/7G/06KH+RjfvzME0v9vdU4EhS+e66G+8vju3OqJW:Zk90VuT6KkDbMEEdUNbe66RoA
Score

1^/10
behavioral5 behavioral6
- Target
  
  Resto.Front.Api.BeInTouchPlugin/Clients.BeInTouch.dll
- Size
  
  57KB
- MD5
  
  eb11ee2ae4a2023a6af4571526b44ec5
- SHA1
  
  e1d5e2523fbfb25efa388dc9326b7df8fc87c56b
- SHA256
  
  003419bd9db3a26eeb15aa765e5a4c0a23932dfcdb71504af433d79f09ea265e
- SHA512
  
  ab3c12d3dbbcef29dd5c71b99e5396721fa162e3a6fa9491c6f0dd2255c646807119d129a1f7897863a1d7235c76c23f3a69de4ea47d758dfdb012e419dfe44e
- SSDEEP
  
  1536:I7gxEAKUh7t0jaEQ6PsgLQoLRvQ5kw6p5b:I8eUh7tjSLQavCkw6p5b
Score

1^/10
behavioral7 behavioral8
- Target
  
  Resto.Front.Api.BeInTouchPlugin/Clients.General.dll
- Size
  
  15KB
- MD5
  
  e3082a5a8a09b0cf3a14e32f901e5f37
- SHA1
  
  8ca34cb123cd1f5a78b3965f6665c3841491a7da
- SHA256
  
  708e407693df1e204f3e83264fef6d72a9e9e9b51b4839109a52fdccb2a6f10f
- SHA512
  
  e850b9a09f761eb605448052d8792fd6c0af83ac40a67f767a6cdbbe69feebe9f7c81e44a73ec380ce0a147a315f9522a5b04814e9e0e989a03555a4c34ee856
- SSDEEP
  
  384:MKs4gKXxswsA/ANud2xMHnKiAdKzCIQNe/pj:MKPg0xswsA/PdcwcB8j
Score

1^/10
behavioral10 behavioral9
- Target
  
  Resto.Front.Api.BeInTouchPlugin/Clients.IikoCard.Pos.dll
- Size
  
  39KB
- MD5
  
  febaeb12ff0429d6f30baf6fa339905f
- SHA1
  
  8628f65bafc1955f2c5af54ea797e917b6331777
- SHA256
  
  ebf13c6150b80784eb588592b134c05bc0f93e81bf871a6d309e93ca7e12d947
- SHA512
  
  8e454d1ded2b8b4f0de6239a1915562fe7dd8bb4fea7737f02b680100adf94fe1590b56b5adef1e90a266cb09ddaa03ae77d15ef1385b529b3106850c7a17463
- SSDEEP
  
  768:gW7eKzNvRQSY6OiyGsOl87Yxyc6gpIJnX6:gWXtRQSYvX6
Score

1^/10
behavioral11 behavioral12
- Target
  
  Resto.Front.Api.BeInTouchPlugin/DynamicData.dll
- Size
  
  726KB
- MD5
  
  c183685d564177f2c72ee5f903d601b9
- SHA1
  
  0e3c2234bd77546ac5c1e682002ca23b743b0a82
- SHA256
  
  ed9caa5cb8a04535818bb53867151d9ee01d22743f03f1b880155d658abf2478
- SHA512
  
  0075d3d2caa6f99f708649a9f1558ab29ad29b7ca9278c0fb00f4891bbce50da926a8345c52faea98c3c93dfd8f23ea2bd1f833978cdc39c81c81d0641ad4736
- SSDEEP
  
  12288:lox9PkYArhRvJ0nyr0Dq7hHNO2I8PxoO2rD8Ue2m/MFGI03uV4gG:c9PZmRvn0qlNOH8pHYD8Ue2m/MF63T/
Score

1^/10
behavioral13 behavioral14
- Target
  
  Resto.Front.Api.BeInTouchPlugin/LazyCache.dll
- Size
  
  23KB
- MD5
  
  efa1cdfd99190c54e4f9ff2aa76c5bed
- SHA1
  
  e6c27dbc07dfa76ea8313a9deb2a082ea1a35f9f
- SHA256
  
  cf651e1abcfc71695e54bc0b6a9293a377f34a409608a9559e6506f3928d5994
- SHA512
  
  850a015a5b36f4c3c7960e8338b478fe0de065bac34456fd797fadd85f01be7bb9319b39a9a6a36189e4d1696e7ef65a67b04760c369e2c819ad2253f4e19b45
- SSDEEP
  
  384:/pIDLfcQK4rMTSjawSukttn7AZirGxnbM+5UqDpCxjnmE+wvV+KPhgRmcCj0:BIDDcQDrZlk77AZnhAJ7+OV+KPCRmn0
Score

1^/10
behavioral15 behavioral16
- Target
  
  Resto.Front.Api.BeInTouchPlugin/Microsoft.Bcl.AsyncInterfaces.dll
- Size
  
  21KB
- MD5
  
  48efe61d6ca3054309907b532d576d2a
- SHA1
  
  f36403aabb16540c93fb35245ec0b4e435628aae
- SHA256
  
  295af2142d9214f3fd84eafe4778dca119be7e0229f14b6ba8d5269c2f1e2e78
- SHA512
  
  778e7c4675d8fde9e083230213d2efa19aa6924fe892ed74fa1ea2ec16743bb14b99b51856e75eaef632d57be7f36dd1bc7ce39a7c2b0435b2f3211bb19836a3
- SSDEEP
  
  384:O/9b512C4dABe070VJI0Ftdalemxxf34wqsWeb/WjR/uPHRN7Y5slu6o:O/f1IDjV9UPPpWRMkT
Score

1^/10
behavioral17 behavioral18
- Target
  
  Resto.Front.Api.BeInTouchPlugin/Microsoft.Extensions.Caching.Abstractions.dll
- Size
  
  25KB
- MD5
  
  1e21cda9e32f96746244dd7952429e83
- SHA1
  
  006ac70b0941ca301b3cbce5053caf72b70e5231
- SHA256
  
  c9193c06366fbf8bce3583832c768efbdabd6dd487895476815e2edcfe75ddd0
- SHA512
  
  74d7d4bbb80c5d65f4ebb49fc72180d8311a72b97d0c6b8e304d09f44c36357dc5c3e585fe86627b4f44353dccedd6b96ee654e404171559fd3057b4af0959c4
- SSDEEP
  
  384:q1WlZwKgpUDfOlb0hWFen0fKjE8KJATPzS58NWBUphzWc/SWnaQHRN7URlD16cSu:flZwsu4h0eeKY5ATPO58NyA3zLUxl
Score

1^/10
behavioral19 behavioral20
- Target
  
  Resto.Front.Api.BeInTouchPlugin/Microsoft.Extensions.Caching.Memory.dll
- Size
  
  31KB
- MD5
  
  9e9953021c7d87f456c8b499dc10e3d1
- SHA1
  
  2fbd97ddfd6651f2c30cdf0e589ca468511476a4
- SHA256
  
  5a1617df2bf42c1dd2d51f32e31843b468347f745d9723300ee72230be63e0ae
- SHA512
  
  7b5270a13ac5553c408dc699af1c1ff9a5b027017eb42abe13f09ab70f64931eca0fa095283be96b1df176e75cc593e0792b46fb917c1e750cd9aa3d1c14d178
- SSDEEP
  
  384:okmw1RCK7dH8cJby8ua+H42AAAAAAAAngAAAAJ9uLvWg8Pc20Jgee4BPUJ2JXv+Y:ok2AZ8va+HjvD8AqisASlLw
Score

1^/10
behavioral21 behavioral22
- Target
  
  Resto.Front.Api.BeInTouchPlugin/Microsoft.Extensions.Configuration.Abstractions.dll
- Size
  
  19KB
- MD5
  
  8b5474881ef32f1d70b6a42497f513be
- SHA1
  
  610f1a0ee21a40a56b4e641e92c2fc0ee6ebfd8e
- SHA256
  
  bde7eed1ef279a80071da35170802aa817a469a2f82e1245b1eace88933230d4
- SHA512
  
  ac471829370621c4bb64436832ee6002679176d5105de900e4f853519edc2fd86d67382d56afafc41f126f30871a1abfc8e2c1a814c1c81eb71090112cfc3be9
- SSDEEP
  
  384:EljVR4i8Ab8TG/ZvozRjz6rRc3JvKzWSFTWmexT4bHRN7h2wlgedrkUl8:yRR73QJU7e6boodYq8
Score

1^/10
behavioral23 behavioral24
- Target
  
  Resto.Front.Api.BeInTouchPlugin/Microsoft.Extensions.DependencyInjection.Abstractions.dll
- Size
  
  35KB
- MD5
  
  1bc1277126655b767aa9e4cbc41bb5e6
- SHA1
  
  5e46b938639a28651bd4de8eda438ccc5a212e1c
- SHA256
  
  175dd59c6ef443c8350f5365db3ac262a2f72016d38e1abb304538dacbbe0918
- SHA512
  
  93c73ecbbbef595af6168457f0805b0b53d40cc126ce33efaa2a65b86d92c27e1b0d3a468f3619bbec70c990601c6d94c8556083cb33e85011c709d4162d665e
- SSDEEP
  
  384:23VVPJrgCcYGJiH4Dw/lbfQV460lER0+YUMiwEzITzW4PLWGaQHRN7Ot5ltV:CbPRgC4iHt9IVTBYMwEzIpJLOt7
Score

1^/10
behavioral25 behavioral26
- Target
  
  Resto.Front.Api.BeInTouchPlugin/Microsoft.Extensions.Options.dll
- Size
  
  39KB
- MD5
  
  56585ad1c2d84699e681f41b460bb54f
- SHA1
  
  c2f479717993eae16142a207f175482169d8bccb
- SHA256
  
  4e0b13152ac4e724b35e2dee57148bbeb19bbfdae5107aaee715812eb5f92f33
- SHA512
  
  e73db1e9b66c8bdc2d246afa553f74450b8633bac9d5e9dcd10ea56a8c3d161e763783593be2194087a72d0acd5f8d24398359f09aec35d90d971e019ff9ecb3
- SSDEEP
  
  384:MLpz9xn5F8kerWqFbOkbdVXc2YbpoN7vGFTrqbtY9WSaWM+6P0gZ076V/hELC8d0:u8cpoNDSCRpfWMDP0AypufHFLxV
Score

1^/10
behavioral27 behavioral28
- Target
  
  Resto.Front.Api.BeInTouchPlugin/Microsoft.Extensions.Primitives.dll
- Size
  
  34KB
- MD5
  
  cea2297b737b2c9b87c898a25fb3a44d
- SHA1
  
  914dd11a94e9fb1ca79dbff6bec661d4e29cd0b0
- SHA256
  
  07ceca42e6c7739a280c0df47c71333a5966a3281c75c0987b6e14b7e6b27cf3
- SHA512
  
  954047e647bd42484dcc069bbe74f724657a6f46eb772e2956a257a3e2af9a4bcce603e12bc6b956916622a52cff87f31636100058fa391672950a74699183c0
- SSDEEP
  
  768:LOiXLlC8IFsZ+SH1WYU9IeZtmufrkR7LZF8:LOwsFsh1LUGeZMqkRnZF8
Score

1^/10
behavioral29 behavioral30
- Target
  
  Resto.Front.Api.BeInTouchPlugin/Nancy.Hosting.Self.dll
- Size
  
  23KB
- MD5
  
  c868f4a3e7fa4873f22726eb4c7fb703
- SHA1
  
  d416c698d8eb26bb018884e021e0f11f59f31b6d
- SHA256
  
  160f85391c507edb34e9e01c471e6a4d34fd59cc9919885a07c0b4de83323262
- SHA512
  
  217e7071bf9f7706341966b7ee06ce5c2232983c8858eac5d7d18c948c0134f5d042f5793904074ccbcd02d0564fa92877b25345c8ec4b1f6d5a84bd63b1be5c
- SSDEEP
  
  384:9qfKK+UNZNLSaJIdnyFWD7w2qLzwZj9a0c50nPrMp00qSkjvA0A3AoTuBhPmaut3:4ybiZQaGocwfAiXOIuAulut3
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32