d82aadd3332d5302851bff734bf5c07d01265a2630a66fe959fb894964cb2d4f

Sharing

Copy URL

Twitter E-mail

General

Target

00819168e1a9dc3e588c7f96973175d23d9a2cb3aeba4d185c3773aeb1a75ab9.zip.zip
Size

5.5MB
Sample

231107-r7e1gaag3w
MD5

9116547daeb3213d003deadd1eb0c31d
SHA1

cba80cf6f4e381dc963b30b7b4f13d7007838c5d
SHA256

d82aadd3332d5302851bff734bf5c07d01265a2630a66fe959fb894964cb2d4f
SHA512

ed6a1631c600abd281553b049ec1774100e40f070be6bbcc7b0e7402a7f354b4a9c41c1c7b37c2253436d896165d98cf4458cc57b4f819b6090db8264a4b2deb
SSDEEP

98304:mHLHw81D9b4oPL8f62wT4dhDKYT7OoSgoV+ItxZOKcMQM+Qms:AHjx6oj7CDKQ7OoSwQaMcs

Score

7^/10

Malware Config

Targets

- Target
  
  EmgUsb.dll
- Size
  
  48KB
- MD5
  
  e16071b1adaa7e77e3e1c1038ba45688
- SHA1
  
  92b8764489d6451e3e8404b1cd3f074255b4a351
- SHA256
  
  2dcf9a42e8b693f9fdd0b988171f02ed616183740780285d8cfc4ca70f944ad3
- SHA512
  
  dfafa4ac752b3a3fcf583ce19465ab6e12378581e36a90071350dcae277dcb3895178c235c666a647281dc4b00d52e2e4740d9d14dc3561042df7364d04fca54
- SSDEEP
  
  768:jFCSTxjpnYy7UM3u1js/zhHcpA/8ogi6:jESTxjJtIdjsLhmPogi
Score

1^/10
behavioral1 behavioral2
- Target
  
  MSFLXGRD.OCX
- Size
  
  238KB
- MD5
  
  07bae8106a135df779abc46ec603ea09
- SHA1
  
  be98c98a35da6ced57b7fc3c2fc933efa84b4273
- SHA256
  
  4e592240b745546c15e95e26b2547cec86352a49ee1ef79b3e3d28df8b5a0e70
- SHA512
  
  6ab494ea9e1c633969d5fe6c14411ec20f7073e464e2738c545deefbdc5fb84fb26ff3e9641236cf1afb4d90633437cd312ff5c665c0c8f462c101a957fffbeb
- SSDEEP
  
  6144:vMV3LOqB4GvoBOCzYRpHGbBFYe0SwX6ktCfh13cBvT:vMzaGKOCzYRANKX6kQB67
Score

1^/10
behavioral3 behavioral4
- Target
  
  MSHFLXGD.OCX
- Size
  
  428KB
- MD5
  
  f7814c0ae99fa399dfa33c4490a7cca1
- SHA1
  
  f8dc93765f0d4e04a7cab852a5cf0626d6f4f6df
- SHA256
  
  983a465b0e38870ea875f59575570ea14ddaac3d95c867279c9a44690ad4b379
- SHA512
  
  562625c59583f8528a1e8744ca659a7f3adbe69e52ebf771f6c450b0d84411809c3700433be6b5354ba0014f8134d67246627c42ce5f86851b606edf5aed16b8
- SSDEEP
  
  6144:fluMQ6F6RWIT4usbHlxq/ZBeYTMFtXgbqb/GXvQ7zjxSgYrSVAFsCTjamfnSvER6:9ujSlxgmgbqbcQ/jxSgYWVAFsC3am4H
Score

1^/10
behavioral5 behavioral6
- Target
  
  PreInstaller.exe
- Size
  
  32KB
- MD5
  
  7f898b2e6d0c070c5525519b4968928d
- SHA1
  
  1b0ad723e5e94f797d826286cb96942ba6d8d936
- SHA256
  
  b04d8dbc74abf343789d9641a15416738dcd3b8505419c7308f2d3d3e649b549
- SHA512
  
  d46eefde2776da6cb4af7fb38d70dfd5b7359f2cc3a1174c292d6f5536ccaedb5bd8839281189c193a9da858ebc301815320b584d18ef6a36f323bbe204974ab
- SSDEEP
  
  384:jV4K129tPqeDHf3PpIkXnpYoOSuSmh1CDfZpQju95AhY:68QXPPph1OSu3Ctiju95d
Score

1^/10
behavioral7 behavioral8
- Target
  
  SiUSBXp.dll
- Size
  
  84KB
- MD5
  
  97fa4aeed42098be816e9f240c98ba2f
- SHA1
  
  272feeae7d201aa2b57d31defac24ccdc8f786e2
- SHA256
  
  6ab476b4f34018000845c1b07910dbc396e5db099bf0e2edc85bea022a5dd9b8
- SHA512
  
  bf6e7a7f6c5e94f0f76e551687d38cb11da95681201d01b88dd06891c38a1738ad08ca9e114ec09cc27af8041ea67138d94700476824972700344574de8d2db6
- SSDEEP
  
  768:zWAWFvyy9poyPkwQXkDKEmU4Gszd1MDJT708HseUvuiB9XL2AokzIzY866WvooT9:eA0DuVatT70DYAnzIzbIoolZx
Score

3^/10
behavioral10 behavioral9
- Target
  
  eManagerII.exe
- Size
  
  944KB
- MD5
  
  6a14d6e5c172378d7af5c58967e5091c
- SHA1
  
  9a3793b1bb1625cc5c638bb5a22aa450307558ee
- SHA256
  
  73ca9ec95a169ef5ed010b685ad1c0e6f22f87ab9dfcd3bc90b9f7afb8e7ce83
- SHA512
  
  2df4a774d820d94473660bb16d636703d539c5c98eb87a6f5c103eee3489dbb87f282310b346d402414bd26b396707b270475600dbfe8cce5211f89c2c7b6e79
- SSDEEP
  
  12288:WuzNdlTZVv2U2Cn5QlevHOJeQVtrHTt8UDk+6w2lTjmByk4:WEqU2Cn5QQ2JFV1Ttgw2cBf4
Score

1^/10
behavioral11 behavioral12
- Target
  
  e_manage2JP.dll
- Size
  
  124KB
- MD5
  
  625d1add31f813e48df3a8470869aea7
- SHA1
  
  ef3a954a8895f0d94744b232961461af13d6d873
- SHA256
  
  a15ba51a2cf9478d00c3ac408586f0efdc0a957f2f47712355508786aa21a484
- SHA512
  
  ad452921ac6e9b2c61ccc1bb81d5ec4b0510d58df73baa8b68d208ded69d6bba47e899f2675be08b2165ea1a093c7d286ab3e9a8ee5a2aa808c54e076b798041
- SSDEEP
  
  768:1rXiH86uIJ96rbvbO+DachUoG3sp0XcWBqmo6:1rXi996/vb9hW3sKLB
Score

1^/10
behavioral13 behavioral14
- Target
  
  e_manage2US.dll
- Size
  
  100KB
- MD5
  
  86ad20a291afb30d73ed038c001f8a78
- SHA1
  
  83728b7a3cb7f46117547fec583f3cdf412129d0
- SHA256
  
  36506eb4263599ca192e87d3ac49dd0d1e458eb7e7247ef3c5ee1feae6e27788
- SHA512
  
  1502d456bded09b24eb02edf2bd5730706750cb959b48edf531dffeb85353707871dba04a4376cd0f9540515d5ee571ad51a90e554edfdb32c029478a9c245f5
- SSDEEP
  
  384:8Sk9Pe4jh66qcBipOVa+93AVrbvbO+tVaMYKDQ95R3RgndEEqYeWSw6j6ZmJmuK4:8SSy6uaJ96rbvbO+DacndEwkFCFPxBq
Score

1^/10
behavioral15 behavioral16
- Target
  
  emng2uni.exe
- Size
  
  28KB
- MD5
  
  bfedeb076f53f37a1f84764277a93192
- SHA1
  
  0d90401cfc953654b2add6616ecf6bcff7a7e669
- SHA256
  
  1f9b26befa6cd9ea18b51d88c8754c91255499f6f255e237b45f5a64b1030c48
- SHA512
  
  1ad6660aa3bca659bc5c9877255c04edda49fc0b2a717ebbeb07b206dfd99df7e77c7e3f790a07cb408b05ec319de38026ff41a671979923f4da3e2c462054f6
- SSDEEP
  
  192:bMPzfRr+WieLQV0lZN1eOEEyNehvhxy4VlQ9aKNsaaPd045XP4oyFyJ5fX1f:bMPrRr+aDDbeOEahy4TSOV04l4vU
Score

1^/10
behavioral17 behavioral18
- Target
  
  emng2uni2k.exe
- Size
  
  46KB
- MD5
  
  44c6dc2b49f766fee3fa8f9f2598c734
- SHA1
  
  c7ea1d56342db6d416c168cc6a22e7130a977034
- SHA256
  
  f7bae25d6122498743f953c7952efe4f8d967f7d034acf8c53392c21b22e6d93
- SHA512
  
  4a8daf0428d8c4bb1b2a5cb594eed47ff78cb31e208cd56122235cde11ce43a58c3d857a559de4588640f8765e76cd3650a4583763affb241df36afee5026c7b
- SSDEEP
  
  768:mEmTB8HcG+Q+9wRdmCVR0knfr6rRtKy/e:mcd+QEwRdjfcRtx
Score

1^/10
behavioral19 behavioral20
- Target
  
  emng2usb.sys
- Size
  
  11KB
- MD5
  
  739b948c5c6ea11414e8bbb899c6c768
- SHA1
  
  275b21ee542769fdb804a5fdebe59dcfda905e51
- SHA256
  
  957b9939f17d9e0d98be5f89295eb2bcba897c97ae2d24590d5982c313070802
- SHA512
  
  076ad7319ef2aa0d714577afa43024547622efd255d1281d1f48e31f0e72a9d8047b7fdc7604a1ab7beb25766b5376f845dceffe310b5bbd1b3480599714e543
- SSDEEP
  
  192:fMMSlUp7PN50w5m5r7KfLt0NoDN/uenH5PlieN1okh9QaPntCxgjiIid:EMSaF70umxqLt0KZ/h5NierlCaPtX9id
Score

1^/10
behavioral21 behavioral22
- Target
  
  mfc42.dll
- Size
  
  972KB
- MD5
  
  bbaf70203669e03aafdbe38ad766e98f
- SHA1
  
  7dd60fe53e2b8e4c53368f6ea1036117f4fee193
- SHA256
  
  d7494bbfec0c8530d4b9e6807d49d366d06b9d91cb0dd9615772181b6a8b07cb
- SHA512
  
  0fb2c984db4db7ee62cfc3f66a716da98e61f7b7e418de47ca817f8d83d719ab672933a911223b70172e1a34d1a5de6b97318098b71e8f8cd71470f8bc15d510
- SSDEEP
  
  12288:EkjBuo8WC6jPd04vLP5YyOLaAhgD+EoQt2IpaA6ni8Ii8:EKu5H4VBuaAhQXkISl8
Score

1^/10
behavioral23 behavioral24
- Target
  
  msvcrt.dll
- Size
  
  288KB
- MD5
  
  055b02d711cdedb8c5997274c4e99cb8
- SHA1
  
  5c816eeb6e4d5f1c11e9f56c992ee7d452e7c0f9
- SHA256
  
  d7cea69a98579d928e534070f5293e80ed7df38baf611b20717ef55aa1344a18
- SHA512
  
  4774431fe768e424f46c833236a41d68f05d98ed14353b04428a5d190dbe213bb56087a5e5cca5cd98598f2c1611fddfed3a7a79bbd362bc02e586cc367907c0
- SSDEEP
  
  6144:yk54RkH8RKDou3LlG/3Roe0Ro4zJsdF9gjFMgiFjNr7mcl2oZhogKLOmJxZR92l3:R4RtIR3BG/3We0RVJsdFFUzchogKLOmc
Score

3^/10
behavioral25 behavioral26
- Target
  
  silib.sys
- Size
  
  15KB
- MD5
  
  2bb9ca5e9ba6b87aa38bd2ee201be511
- SHA1
  
  6cd4484b6ca481c82148b62da3744743708bf0d2
- SHA256
  
  f71652fa19c01a71dd0d3c76aabf3ee2b6cf3e32db0bebacf13112836b4c4c9e
- SHA512
  
  72efb879e88b273499a8e6c44e42c7d680cd0556551df52b93328ed783f53cfea1c4651d761ad618b0548f17a7e6988eb809b7851143eea785ce515aa91f9415
- SSDEEP
  
  384:3nzqW2Apnc58vXTgylYzeyuHPEFYQ1qHdp4TQ:2khvXzAuHPMxs
Score

1^/10
behavioral27 behavioral28
- Target
  
  1.09_1.09_full/DISK/GReddy e-manage Ultimate.msi
- Size
  
  1.6MB
- MD5
  
  f0778b7bc125b476884ddf6c60354e54
- SHA1
  
  b65f147220f5759dfd850454f42a6a4ea5cb25e4
- SHA256
  
  f3d8b8eeabd8abd93ea2c9a91610b10ea65ce2c9c85fdea203dff21a38a5cca2
- SHA512
  
  9b6fd41758d23126aeb7c8cb1bfc47898bfeb68fdeac8e9c9ed4bbaa559e80aa9501d444f92ccf09f0e9b616c4f59ef273ce1026fd86ff6cd25d48a48cee1cbc
- SSDEEP
  
  24576:SJ3r+K7vay9ml1IeTFP9Bzj/AfNdyd0kGdc3ZwwNRH:SJ3D7vl9mlfP91/k7yX
Score

7^/10
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral29 behavioral30
- Target
  
  1.09_1.09_full/DISK/_vti_cnf/GReddy e-manage Ultimate.msi
- Size
  
  448B
- MD5
  
  2f299d2b91adbc74cf298c066d59a8e8
- SHA1
  
  18054de7ef4a70587e0dee200029a17e7828446a
- SHA256
  
  e079d56a66ed2d426936673be56ce41ea7b4247b89ab75565d55b40d869aed35
- SHA512
  
  fd22f265b4b94eef80d9ac2e950d49d716856e26e5934e19c55320389b24dd59ce494c7d06ae3a5e1f5a3107fb4a31cc26f308320e0b16527c401398937e5027
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

Enumerates connected drives

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32