eb23475e6105c1907ab2e27d314cac9a485f3390edba830a66357ca9d2e2f419

Sharing

Copy URL

Twitter E-mail

General

Target

1cfa462e6c70da87c068f40edede4ab3bdff373d337610bc8b5ea7f2973fbfed.zip.zip
Size

7.7MB
Sample

231107-rhsv2age71
MD5

d4802dc4092edcb227b0636665e9b0d8
SHA1

9bf411899023ab8247b7e4f31f24cf4952340d83
SHA256

eb23475e6105c1907ab2e27d314cac9a485f3390edba830a66357ca9d2e2f419
SHA512

f18e64108a3e2aa76fc539e352b9b59e450cffd15e3fd8a6e377c9f5b058b0e1f836a7f9a476fdb00d33576eed359fb62897597105a940fe1e34b3886fe79cfb
SSDEEP

196608:DrzaiSaFtW5amLyjfWI//mbK75HetAT4lStc3H:tS8eLu+IWc5HetrUc3H

Score

3^/10

Malware Config

Targets

- Target
  
  Resto.Front.Api.DeliveryCancel/Autofac.dll
- Size
  
  347KB
- MD5
  
  6ed95e81459ef8485e6ff6c6c5ed82ff
- SHA1
  
  a5466908a5cc45af75718644a9f785581c74615c
- SHA256
  
  47a00246aaca5f93e6dfda93791caa41f2723781cdeeda3cfc92fdea9b3032ed
- SHA512
  
  c17a7b0df45660c543a7a5e704bcc5a43448082e0193e216c383cec4e3f5464e01f320763d81cb8aabc0547e4525f65cb0d1ef5ce906b5067c67f9c738c5010b
- SSDEEP
  
  6144:7EMcaK8ZpA72U6mSubQP+PwA0UNsiiRfeD4QXlEwr5rS:gDaKgHP+obzRGDf
Score

1^/10
behavioral1 behavioral2
- Target
  
  Resto.Front.Api.DeliveryCancel/CancelPlugin.dll
- Size
  
  324KB
- MD5
  
  a15090ffa5c5040eea3082eb599c3fe6
- SHA1
  
  a1d85c90caa4f5ca1cb731a72f8c20eac8da9a28
- SHA256
  
  f3a54f24ed221059b4b38207ee21e4ebd0827a2114470f9993740d6ce56835a9
- SHA512
  
  8cb913d78db1747ebcaa4d8278bba2a412c225443ac3296bf3b6ebf280f80b184025bb47cc857ff1646009be97dc374d04f027563541f38ddf7cde0d73389dcb
- SSDEEP
  
  3072:Z95+a0fTafdmgO/GAwfLOKG43pf+zU5cTs22E8H7O1j7B3YgAX/28HYs6cws7aEd:Z90FWfdmgO+hfjG45GDsN2Elka60x
Score

1^/10
behavioral3 behavioral4
- Target
  
  Resto.Front.Api.DeliveryCancel/ControlzEx.dll
- Size
  
  234KB
- MD5
  
  a472ab932b06d6d455bad37217a2392f
- SHA1
  
  a9bf997c6118276463cb874e4cbf7d59e9852a4f
- SHA256
  
  6a61b0979f9178e54be890fba931d62dff4b807047873641268800a336f82499
- SHA512
  
  55ca272d9c3bd232689f6fedfdb1a9d32afd5041c51279995f45d7e03d00142ed54cf010f348c441d6e3dd3a3ffb7f71254ed7e0c0ba5433d76486e4fea2c416
- SSDEEP
  
  6144:ACCcdInhQE5b8iyRG5ckGspY88CRr57gP2rxp+7vVNviPF1SNsL:A7lXmYy
Score

1^/10
behavioral5 behavioral6
- Target
  
  Resto.Front.Api.DeliveryCancel/DynamicData.dll
- Size
  
  724KB
- MD5
  
  ad3f371cae1727903f0aa363ba45fd1c
- SHA1
  
  7d999a2f1b5b777a148414aa5bfa0e5ef7201632
- SHA256
  
  4af21efee5275adef8b923c90039167282c23142450615a952526b65f86df667
- SHA512
  
  38e105afec3ce52dde023fee8f4aeb03e87f6fdd701cf655b21b9e8000ce7efa1676db08ab4eb7de0ceb8d60635616197ec3e1db513cc20fced9e123ecdf39d7
- SSDEEP
  
  12288:h2EqXWzN2islJehPE+6LOQsqdf5wYSiwqud3WUJnvg:9KVisIRcsqdR36FFJn
Score

1^/10
behavioral7 behavioral8
- Target
  
  Resto.Front.Api.DeliveryCancel/MahApps.Metro.dll
- Size
  
  3.4MB
- MD5
  
  7b0f105e6d64d4ee914d5b48ec9bbe75
- SHA1
  
  34d69cb025f1fde595b0670e59b0ada7ec074dba
- SHA256
  
  1f3c694ec608fff224e98fba810fe70adbc7e470f56ab617be0b812c5b1113d0
- SHA512
  
  e61dcc0a25d542e265be904693363c989e952126bdfe9fc9ccc1c95a0d765dd67970bba2e9d971d796cb4cfa65ccbe54a28eda62cd4853c5eba7fb504c208037
- SSDEEP
  
  24576:prXx6dKYH5UHXfMvbj2OqhOV7qDL2P/1Y5e1bq7mTv+iruHt+j:+D2mM2bq7mTv+iruu
Score

1^/10
behavioral10 behavioral9
- Target
  
  Resto.Front.Api.DeliveryCancel/Microsoft.Bcl.AsyncInterfaces.dll
- Size
  
  21KB
- MD5
  
  48efe61d6ca3054309907b532d576d2a
- SHA1
  
  f36403aabb16540c93fb35245ec0b4e435628aae
- SHA256
  
  295af2142d9214f3fd84eafe4778dca119be7e0229f14b6ba8d5269c2f1e2e78
- SHA512
  
  778e7c4675d8fde9e083230213d2efa19aa6924fe892ed74fa1ea2ec16743bb14b99b51856e75eaef632d57be7f36dd1bc7ce39a7c2b0435b2f3211bb19836a3
- SSDEEP
  
  384:O/9b512C4dABe070VJI0Ftdalemxxf34wqsWeb/WjR/uPHRN7Y5slu6o:O/f1IDjV9UPPpWRMkT
Score

1^/10
behavioral11 behavioral12
- Target
  
  Resto.Front.Api.DeliveryCancel/Microsoft.Extensions.Configuration.Abstractions.dll
- Size
  
  24KB
- MD5
  
  700a883d56bb05b55ae1a7e80f4187a5
- SHA1
  
  4957c67dcddc2a143d5fc9717516594d0d71d7c8
- SHA256
  
  4891b08c0157568e97b003936391841fb08684e96339c9ab6e9b060c0b2cc46c
- SHA512
  
  b61e0287c56b976a0cb0e1b354bded2dec15de05fdde89a63105ac59c04327d6f31403858e519a83014cd451b03cd6f1504a714c9f69f25c6b591cb362f395c6
- SSDEEP
  
  384:sm++Js0AtZ7WuzF/R9iaTG/0wEzRjz6qMvJsOhAWM86WsrNW0/uPHRN7LmG24rlK:LlsFfypvi8yZML7CL
Score

1^/10
behavioral13 behavioral14
- Target
  
  Resto.Front.Api.DeliveryCancel/Microsoft.Extensions.Primitives.dll
- Size
  
  42KB
- MD5
  
  4360e5ddde76b62461762f72f85b1d79
- SHA1
  
  26f641b14e70ed7fc51e32590b65623ed2cdef6f
- SHA256
  
  60df37bef5b47e822c02cf8547de3b2a836973e517efbaf090f14086d5155c9b
- SHA512
  
  5b2b345f1468094f050d8ace375a13ef1c44f3c3e5a1644c7395a9518bed9e965b4b511d650299b1ff844d9062e342998245c7de308b5252b5c875b3ea4e97be
- SSDEEP
  
  768:xKOg6fZr3r15Cpw4iI+OPGWcf9CRui0zbf1JPM2:Hg6txCLiI+OPGbf8Rui0zbrPM2
Score

1^/10
behavioral15 behavioral16
- Target
  
  Resto.Front.Api.DeliveryCancel/Microsoft.Xaml.Behaviors.dll
- Size
  
  141KB
- MD5
  
  ec5a1abee150abe698689211b07cd1ec
- SHA1
  
  affc3cb47da8fe76986d271cdc3e7ea345cc04e5
- SHA256
  
  b864da9d88414877cea9b1a016146265a5fb9d0e12f4dbb1dccc0cc998119a54
- SHA512
  
  a2b55b4ffc3f11546ed8d3457e98b986c089e25229bd687da35d45d63e4860722e8b13826d3a3daa1be843cf3a4ae3da4cf9b6fdcb5d1a4948648537e683789f
- SSDEEP
  
  3072:UAyazS96IT0O6gAf+LwCMe1u051dXcr9/soMEs5r/j9:tyhYIT0O65cwCMyE
Score

1^/10
behavioral17 behavioral18
- Target
  
  Resto.Front.Api.DeliveryCancel/Newtonsoft.Json.dll
- Size
  
  685KB
- MD5
  
  081d9558bbb7adce142da153b2d5577a
- SHA1
  
  7d0ad03fbda1c24f883116b940717e596073ae96
- SHA256
  
  b624949df8b0e3a6153fdfb730a7c6f4990b6592ee0d922e1788433d276610f3
- SHA512
  
  2fdf035661f349206f58ea1feed8805b7f9517a21f9c113e7301c69de160f184c774350a12a710046e3ff6baa37345d319b6f47fd24fbba4e042d54014bee511
- SSDEEP
  
  12288:U9BzaPm657wqehcZBLX+HK+kPJUQEKx07N0TCBGiBCjC0PDgM5j9FKjc3Q5:U8m657w6ZBLmkitKqBCjC0PDgM5A5
Score

1^/10
behavioral19 behavioral20
- Target
  
  Resto.Front.Api.DeliveryCancel/Pharmacist.Common.dll
- Size
  
  17KB
- MD5
  
  a461a8fa835e9a7c38588d99a1b749f6
- SHA1
  
  4ec9380ea4cf447c37da8d2cac6f6ad1e4e35532
- SHA256
  
  48cdb6c39ace6933e1ab63946847cd68a5eae41fd43a6297fbead6a9f210fec0
- SHA512
  
  30e466d1577d1d05671e5c570ecccca9ab17a008e35d91f4f3f99d8593d943dd811a6c6cc608d89f1681c3c1da07982dce804e321f19d23b637504db165eb48d
- SSDEEP
  
  384:WoG71I9EGx6KkRu7hpihdZSZmZP9g/sXhlp:Wj72EGx6BR6piht9vXhlp
Score

1^/10
behavioral21 behavioral22
- Target
  
  Resto.Front.Api.DeliveryCancel/Plugin.Extension.dll
- Size
  
  11KB
- MD5
  
  7bad325b3980c7f646a452a45e5b0a58
- SHA1
  
  4ceb88f192c38356b1144a89a0721527b8d75319
- SHA256
  
  c906ed018f773ca8b515f326d0f9557a5aa1cbc2b2b023b27de29d159c4c1784
- SHA512
  
  ec4cea6f2a4513ca0322f57832bdcbfaed4c823bb724ae05dec55b805ff24da66d83a74bd956058cc400b9426fa239a3659d5145dba999d5ca2517bab828aaa2
- SSDEEP
  
  192:sPCXNedLguMT+kWhp31d7rA1e4/lWEh27EFnanDb+MuJu4XMhh+uD8vUEBiNM:sqKguMTIhp3DYe4/x2qanq3VuyUe
Score

1^/10
behavioral23 behavioral24
- Target
  
  Resto.Front.Api.DeliveryCancel/Plugin.dll
- Size
  
  7KB
- MD5
  
  1a87dd1a83db2b2e66acbaeea6676090
- SHA1
  
  d73a5adc2312673d2156c480193a70e5bd2d8dc9
- SHA256
  
  5f8e0ab3217e52facba342b84fec77904518b5d969db0d72ec6e7b129f1e1e09
- SHA512
  
  ab1bb6306176d1b07cad3dcb1d865e71cc4065be603034b650b320f18cf79b4c67bfecdd7cb3527ada3efb8c6b094c4d6e91293ef7565d8cf44efc57867df433
- SSDEEP
  
  96:5ZMtMuH+8YlI96JT5t40I3xBagnKDJPBxHlhV1763ctHQ:5utdePHSTbagniFBxFhV1G3aw
Score

1^/10
behavioral25 behavioral26
- Target
  
  Resto.Front.Api.DeliveryCancel/ReactiveUI.Events.WPF.dll
- Size
  
  427KB
- MD5
  
  8549afee1d044ed9bfda23556a200b32
- SHA1
  
  6476fc033b411bb0ef4818c85d3dd954d16cce3f
- SHA256
  
  f667ce45d6822817f87c767a6cc73eea0bc9609050925f495df53f470e21406b
- SHA512
  
  b83dfd9e5af2b133b4ed47dfba399ae96547d0287b13cf7e686628560041331d9cac441c40acb29b375922dd3fa4e29c395f44af73dbd35636433de6da58a8fb
- SSDEEP
  
  6144:R/uKniMMjJ0rqTA/2tLD9RYBe5F5872O91bQwpDDnCmt3M7xF2SnpZoCCMTJLos1:UKniMarTA+NnaSO9kosxUdccv2KK
Score

1^/10
behavioral27 behavioral28
- Target
  
  Resto.Front.Api.DeliveryCancel/ReactiveUI.Fody.Helpers.dll
- Size
  
  22KB
- MD5
  
  75c5c3515294d083eb85bebf8b1e84b2
- SHA1
  
  acfa81d6e23850bab9aa375301a48d6fd867ca4b
- SHA256
  
  f786767855c870995c19a13111877f65334ef985d5aed484c19c750695d5f690
- SHA512
  
  12ce055e434be93495edf209978247b49d4cc925ccf2750efa6a20b7ffd3d1395cb465400998c5daba703e2c3c5695b4866118a37eccee69165bf44ba227f73d
- SSDEEP
  
  384:dUDxSdOgjemL0mJtZSZmZPB5ga/HdGIjk4i/8E9VFL2UtNszN:d8sp0mdIKcmkeEdW
Score

1^/10
behavioral29 behavioral30
- Target
  
  Resto.Front.Api.DeliveryCancel/ReactiveUI.Validation.dll
- Size
  
  73KB
- MD5
  
  2ca2239fd4312aa3e931ef9957cdf41d
- SHA1
  
  54d9282f7509270c138e080e71bce9b0756dfbeb
- SHA256
  
  5bf6bf3e9a18a2b866260b7dca830974117a05ad3236479ebf8b01ce44f3e4e9
- SHA512
  
  89e9db7dd47c24d733bae9aea8d648e663cfafbd7ea60960b89e88cca66a60ffd21479b25ff57e692cf32f15fd1a0f85b4362b34cc1e60b0edbeb2def49326e4
- SSDEEP
  
  1536:KGly+x3we3+zv+36F7v5YZ/1Lkl0jI2pe:KsDVXuzW3SjU/G0ZA
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32