General
-
Target
00e1bb58908ab7179a3709324dab5a69cd6ec31955ce6882b98dfac25b34ac4b.zip.zip
-
Size
8.3MB
-
Sample
231107-ryhd8sbd96
-
MD5
cecc2d3afd5a28b7003e855672ce81c4
-
SHA1
4906c8abe2f603d8905a2e43c86ad5cba8e28014
-
SHA256
5e529237967aee74d55a0843bf6d02ac9d39bd270b4ed06ee2a360d86aca2ba4
-
SHA512
0978ad8fe0ee5bf10d1b7a909463e5f4a6f7441e9346f3767b1dd408809191582ea1cb53a96e4f686d35c3912d744bba6d3e7b4202b9543b84466c090336b0cd
-
SSDEEP
196608:fyMxUf6wfCowqPWgGt7fELmE8yVWwgzVtdwBLTvL9jFPMac/T:WS0CoHWgGt7fKmwVWlmB/T9FMa0
Malware Config
Targets
-
-
Target
Agent.dll
-
Size
187KB
-
MD5
51f0134caa33a10dda524a9c88691157
-
SHA1
a957d2930601fc8a5161dc0dad8c9582d01d2481
-
SHA256
c7f917ac41563d6b7c64c3f041f082391093e2c2de7834e9a3033c744bb4a727
-
SHA512
69bd8f6b46386bbf47d507513cb27923bc21bc96fbe31bbf5b58463c072adc54bbfa70bab07bcf45aae0bdcbde79112a84cc3bb0891f2a1b52edde635414e1a8
-
SSDEEP
1536:0dwKh7fzPz9a5uVIhA2buzbaQCb+ZrZ31EC2NbzwDxR1EbCPux:+jVkyFCb+pZ317ibMDqePg
Score1/10 -
-
-
Target
Agent.exe
-
Size
228KB
-
MD5
58bb11acbd68ddcaec83a2a607a799ae
-
SHA1
e4e5cb3325cdcf2cc00d1bf02dadb9fadcbf7578
-
SHA256
82b67815d1f54075167f71a7a9617516bd84c94f988e99d24f689106ee96ee5e
-
SHA512
d5faa8cc38227ecaa45707c0e6e75e2a3cc7c41e0c00a40c228cf17fa85f9c456c724c1223daa546fcda0974d5fd4bab94c4fc91c2eb86698a2d8c087e5d4590
-
SSDEEP
3072:G8vbzyQ6Y1YXrbNK+3FNxacPEMk6rRQA3TWpPI:GszAXNK+3FVHRQQTWpP
Score1/10 -
-
-
Target
Agent.sys
-
Size
14KB
-
MD5
0c0195c48b6b8582fa6f6373032118da
-
SHA1
d25340ae8e92a6d29f599fef426a2bc1b5217299
-
SHA256
11bd2c9f9e2397c9a16e0990e4ed2cf0679498fe0fd418a3dfdac60b5c160ee5
-
SHA512
ab28e99659f219fec553155a0810de90f0c5b07dc9b66bda86d7686499fb0ec5fddeb7cd7a3c5b77dccb5e865f2715c2d81f4d40df4431c92ac7860c7e01720d
-
SSDEEP
192:nqjKhp+GQvzj3i+5T9oGYJh1wAoxhSF6OOoe068jSJUbueq1H2PIP0:qjKL+v/y+5TWGYOf2OJ06dUb+pQ
Score1/10 -
-
-
Target
AudioSwitcher.AudioApi.CoreAudio.dll
-
Size
76KB
-
MD5
1a3571119038a479c298097087635803
-
SHA1
95daf8034c518a52639fb845aad28bec57fd5cd3
-
SHA256
f496f74f48f3dbb499474ef0a06894079087871342b3e3bc254c5903e4aebf91
-
SHA512
d534bc4117a3ed5ce0a14f6658679b75a05453a41522d6307af4e0ab3bbee7049f70671a50db7dc3804fe5f6ccb6a4496f1a316222eab076deb6d39ac93c4c43
-
SSDEEP
1536:QlhKei7+LjzyJmJtJhendwV61ncQmlp/bV:Qo7+3zcndwIncQM/bV
Score1/10 -
-
-
Target
AudioSwitcher.AudioApi.dll
-
Size
40KB
-
MD5
3f88b41942ec020c9b66f464b3d1c899
-
SHA1
a846f0855d5250dc4dda9d3c37f6862e93ebc802
-
SHA256
26ff364fca496ee1093de596645c86731c156d81d026b5d020de46b0df053513
-
SHA512
dffe0b98033258ba3e58c43bf4e17e280ffb44c0d3c7a5b1c58761acc0ec2e4c30a035bae6df220c5ec07c641d494ccb135bc7b75977021dc2059f2e4e735af0
-
SSDEEP
384:iFo07NXH3jI8tRM1sGyfPodV/FU92983yggIwFTIVk1yUsUg43prF7RfrEEJvHQb:iG07NDI2ql8PQVtd83p40VoFtsT5h
Score1/10 -
-
-
Target
Core.Logger.dll
-
Size
8KB
-
MD5
c983fbbec5440eb7d675b700a5073b3c
-
SHA1
ae03d88d1360c7b5cee069247d47838d9cd73d24
-
SHA256
298898707499786dfb14d35ee81dd5e7900be7daaab89b4538c5cc912fe2b34a
-
SHA512
0ea7c34531b789eff811ae18f24bb485a359749237fba0ef24b1152a15ca0f527772e9657dd2315d6490dc45cc05a51bee2d5ee2400471f99ec9ffde979395c3
-
SSDEEP
96:nFYwuOyAjzQYJdSS3DYl4yaz8CJIG7+jvEx8AaSr2nHjCMgnoi1:n1TjMYJdbYl4dzzJI4gvEOAaSrqgoi1
Score1/10 -
-
-
Target
EmbedIO.dll
-
Size
342KB
-
MD5
e9346fb322505743ae312aaab73e25ae
-
SHA1
e1fd67ed0a72cf6cc013bc7a6b5a73f135c7a828
-
SHA256
21392a5fa8d00f4fed9450f7fabd2c8e5dd30cba73525c35f37584e17c639e2b
-
SHA512
79f480d92f2510586231284df713c0b8a066c4ebc8b479aeb39be940c868105c1244eb50da1d395adc571dbabd5b012940fd91663552f8d60768bdab5f1f9840
-
SSDEEP
6144:4EZFV9g/UR+spYMtsikR964FmxJtXdRsc6CR/1jQVW3V45ZfMRqXNeFq3O:r+VMtCbFitNip6NjQVW3V4xeU3O
Score1/10 -
-
-
Target
HTTPProtorol.dll
-
Size
52KB
-
MD5
9f2caac0bb3e0ee7a41e602b28aa8914
-
SHA1
1be0ff16b4163524e9dde6218cb446e9d164880e
-
SHA256
74644af13e2d2bf31d317ca9084631b7cb86f6952bac5c0c025d766f62fd81a1
-
SHA512
f7f4402661621cc994c39871094788ef8e474cdc211b30b38a389fcbccb45c09fbbdfc0c8aa6e0330a101656a8cea2b687bd612db8f1841a0cc1f40ed6f30ca9
-
SSDEEP
768:pePt5S6VlySch8YTqtMgfcs3yiyln8jog0E9ICK4FrrrCb86729l2+QFqBz:pot5SQlySchAtb3yiDjoVC/tXvQ0B
Score1/10 -
-
-
Target
HidSharp.dll
-
Size
230KB
-
MD5
c5e3f63adbd63da7e97675748a1af866
-
SHA1
3b9d5d2ecaf89d53f762048c9ab942250f1a2cad
-
SHA256
61eb2e22a5620d789a23d389f1af9d38faff4d85f46adedbc28fb22cfec61bf9
-
SHA512
16dcd61b83032a3fd47cb36a400ea4d7910179a9735e66aad9b463daaf2626586756b8ca2e0aa34c5508e29f89e3bd78366ad60c5bb08e053e35dcf03d0a9d7c
-
SSDEEP
3072:a0dmxS02174WbpfMRBKMTKsLzzQ6jxt9ovjX59TdDxtHbIg2biTz9Kaj9i1yfU43:4QECMDjQox8TZ62nBGM
Score1/10 -
-
-
Target
JsonFlatFileDataStore.dll
-
Size
71KB
-
MD5
592f096fddbf19e46e47b67291e88295
-
SHA1
9c46f862810bb05833189013ce8a005d9efb42f4
-
SHA256
aa57ec57b98d6318d8c7085df12f24e235ffea76a064565f2cc1af15aacf993b
-
SHA512
6a19dc28bfe57403b9f991944fdff920651c0b207702263a305bfe7b0c0cd92be2e41fb66bc03a90d630ad4991e2b5e676b611114a4a300031f455d6c2bdb176
-
SSDEEP
1536:3PhGof3WqLnDxMcw2fubhWkmZFYx5xdtzRLmpN3RznRw:f/3pNMcnubhWknx5xdtl2LRw
Score1/10 -
-
-
Target
LibreHardwareMonitorLib.dll
-
Size
689KB
-
MD5
b038165bba5c1889f65b0f8c7f375c23
-
SHA1
56f5a7193627b571d9104d90d18565b47b2b7a40
-
SHA256
ffffab51cef7c4f5d60f061a3dceb3d4ca277c1f57c4435c60c4afecd52514a2
-
SHA512
b9902ec2b3c3a7cbcb1e1639828ffcc2f5fb21216f3f5885eb4445e8911bc3ac94d6d48c02ee5d8f874461859be668fbe5eb2aade0922fc2f151f633f414b937
-
SSDEEP
6144:lT5jrJE+Cv82bK4FsV2Db41rhvkHdZNYqs18gJ9PVJFM0edE54D9kNT7pY+TRsfj:rFyBbsKgHPLxedEqMDQb4fu0CGYp
Score1/10 -
-
-
Target
Logger.NLog.dll
-
Size
9KB
-
MD5
b3e9db523b2840c0f3319dfb1098a357
-
SHA1
e05a16467d6408613e8e6eed14ba7d13866b7e79
-
SHA256
4cc76c36ebaa61a093f6fca53c12f2f661ed7247be683ed22ef096fc2d1defb0
-
SHA512
74c5749a11e68e7f73eae9aae814bd7da2b2df82a0eb0901a69e43107f804bccd04ecf6198c449d6a894c1cdcdbe81b996d21c394678117e527f8cbd2c375655
-
SSDEEP
96:mwC1zeZ1GnVRtAST4z/WNZXqByfr0WnfVbqUnFZt218H1zk8j+Of8h91:2zme2SQ7Byj0W9lnFZY18Vzk1O0h91
Score1/10 -
-
-
Target
Logger.Serilog.dll
-
Size
7KB
-
MD5
4b2e204251f57fdda607a73d9c65bf4c
-
SHA1
b174a96f7dbda55181132279bdf22bd9843168ef
-
SHA256
7a831084dc780fb93fe0b0a424b8393bb55c80c06efaa7d3ed4122f9ebd32ba1
-
SHA512
e49511f7e4fe8c2fa1c23a60caf2487e47c96563ab5e81dfc8d725b859f147fa65a0cd012c7fe7385071c9b3ed30e8a13f59396239b1050d3357a77636722d7f
-
SSDEEP
96:468N0Ol8OP0ETwR+I6UScJrabL+ZhD9hUaOQy5x06b8/Av/GusGRduwulnEO8:rc0S8e8R+IabChuQyrhbJvu0MFlR8
Score1/10 -
-
-
Target
Microsoft.AspNetCore.Authentication.JwtBearer.dll
-
Size
35KB
-
MD5
31b01e21e7a29d33d8634c5852ed26fb
-
SHA1
92ce8eb8a6947dbc03d026ad55feff196a8aba7a
-
SHA256
96ccfc46c68f80e9ba3599223078852286b16785e30e2392549f6adff4b74617
-
SHA512
93c032714b6450758fced274dc12ffde2e1978143cfc0d31522a30253800f00a828c21d70213e2b5332960d874daa3cb4079bb6d91934b01a966cf6b818d0454
-
SSDEEP
384:4zalP6MlDyfdLjm6zd68GzX+Om/yq9If8A/2TxjFkfxQZF7NEYZ6C9t69hGnPKX6:4GlC9XRqm//b8WS2na0I7B+U8
Score1/10 -
-
-
Target
Microsoft.AspNetCore.JsonPatch.dll
-
Size
54KB
-
MD5
6bdbd0bceeb367c6323c82b06392e3d6
-
SHA1
85fc726699798851e08be31846eec7981fd92e00
-
SHA256
f49945373970b8ba88ff5be707c9c7dee2402b2b45e3f70ed42b90880987b9f9
-
SHA512
a3afb1be073508f2e466d74afe3d3bc3f83b04dd98eb72b17b388ff7cadaedefd6f60ad3387a691f6b15d244735092ed1db678d8f49511e5832a0066f87b1506
-
SSDEEP
768:oMJdZ37ll1nq3TVwFnG26BoZ5QpKFQ0nPY2SMgWhonFajeaXzg9zUnB:o6dZ3BlhzgxqQp4Q0PYy/QF2FDozUB
Score1/10 -
-
-
Target
Microsoft.AspNetCore.Mvc.NewtonsoftJson.dll
-
Size
66KB
-
MD5
626bbc5ff63e828c038505f9caa72225
-
SHA1
8561ada859b3e4b87e082c8353dde99a1fe01545
-
SHA256
529eb1fde5561631f8b558cd560354d3379c1740d06d45697e4e88a84cdc284d
-
SHA512
55ba0a395abb5f03cbbc08c6acbb754d112d431b4238d69a016595c4b864cab3585acc69392f7d063f07015c56b3074ebe5b572b36e79151c48e5b00b85b9924
-
SSDEEP
1536:eKWwfNpk0kO7UgHNJ8b8J57A47O8tiQqzX7Q:BWw/kG8b8J57AjKwI
Score1/10 -