59a0404d938f484aeebbc51a24c9bc6d3c268498c96decc97e2be237c12488a0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1bf34234d4ac7ff97362d804313522f1
Size

2.3MB
Sample

231225-agt82ahcdq
MD5

1bf34234d4ac7ff97362d804313522f1
SHA1

5b6c42b57acf220206a08737e2a63fec277674f7
SHA256

59a0404d938f484aeebbc51a24c9bc6d3c268498c96decc97e2be237c12488a0
SHA512

821ec484853e476380f8ef5e3d005cb920e7eced944e7ba886833bb1e7645d7b03229595519b28154c22f4d12812e2075fba6d568fcfe625c2a84dcee5f31b0e
SSDEEP

49152:0Ct6yN5Iekt6riYhIFlG0CjkY8TEmRnT6bBNsdxsvW+lCFQaZJQbHHefEP47XX:0CtVN5IeOdnF40Cj6D5T6bBAxt+lEQ0R

Score

7^/10

Malware Config

Targets

- Target
  
  TNod-1.4.2-Final-Portable/Config.bat
- Size
  
  24B
- MD5
  
  33558757b5064e42eb8e66caf7c0a084
- SHA1
  
  654b9f27764f828ef985bbc0c5321f657d56d07e
- SHA256
  
  1d51b84230f249b23e298a01faf34365e7d390cec578e3470a1899767f281324
- SHA512
  
  d9dee1356afe5eeb58e82c4d70afa979cd21638cb0bea9c1692ba90866bf0654e53a7def4c1a7ebe52e1173d703167d91bfac6495ef6971ed8e55e8548a0b1f8
Score

6^/10
- Checks for any installed AV software in registry
behavioral1 behavioral2
- Target
  
  TNod-1.4.2-Final-Portable/Insert License with the maximum expiration date.bat
- Size
  
  27B
- MD5
  
  3002829cfa88c67922bf9d3a2cd791c7
- SHA1
  
  3ad06fd1006295645d354ef829957d5bd57f0804
- SHA256
  
  1899e62d9a2300fcdf2cbba7183071e206a41d6e5515aa85828cd95f66ba73b8
- SHA512
  
  9441951fdd476e34c27c8ac19c60d8e5620b89af0b8ee74192a1cfccb659e1a4cf7f8c4217a60863deaaa3e1f0a76cec9cacc5090460acc2304f3fd652489cef
Score

6^/10
- Checks for any installed AV software in registry
behavioral3 behavioral4
- Target
  
  TNod-1.4.2-Final-Portable/Licenses Downloader.bat
- Size
  
  24B
- MD5
  
  48e40e7b2aee9440afaf45f776c175e2
- SHA1
  
  f51489f9d9ae70e0eb4f4ef7e4b7781da8a457b8
- SHA256
  
  d308a4d10ef11f6f3660c4e7a44f8f610528aa70287c5d6ccd1548ef9e830ead
- SHA512
  
  b82a045bdd2219baae63946cb2c790bb10b03a0d83a03feedc77bbc0ecf07ad6971b6d4c4d9cbb03266cb51085e49f2f232c63d02617569d1f5d40369a312124
Score

6^/10
- Checks for any installed AV software in registry
behavioral5 behavioral6
- Target
  
  TNod-1.4.2-Final-Portable/Recover current License.bat
- Size
  
  24B
- MD5
  
  64ecee168dd08aca1e9651edf8085398
- SHA1
  
  fbb7c3b8d5de470864e76048ff888b5d5d4d67e5
- SHA256
  
  3d6cc1125b4a77155742c2623e44898d6a0fa8ccff2adbce4f60b3ede0898e85
- SHA512
  
  7a6c2803e50b57fa91514d39b375318cc62894d66263d5e52bc24c428fb6ed586c51bcacbaffd4f1ed13e100d551f44c7710a5e42552f7adcef79c8fa0a4d3ac
Score

6^/10
- Checks for any installed AV software in registry
behavioral7 behavioral8
- Target
  
  TNod-1.4.2-Final-Portable/TNODUP-Portable.exe
- Size
  
  918KB
- MD5
  
  f9c26351ab2af9ac051419803319fb24
- SHA1
  
  27b4507bd029580453731ccd4ef3f2e838d06a30
- SHA256
  
  be8de65401d5f51a3e9ca9da8e4593664d4cbd0991ac725537747364ba0cfb1e
- SHA512
  
  aafb40cbfa3c13f3d32b599317bc3159f1133153765996296e7389e718b1810eae04bbfc3eff665cff89584a1e63a9e67ceea32d629ec204a7e61b7d04cec618
- SSDEEP
  
  24576:yVR3PPKFeaSjIkn42MuFo0yk8kzmd5ERBqXKsdB:y3nKEaI1/Xeiad5Els
Score

6^/10
- Checks for any installed AV software in registry
behavioral10 behavioral9
- Target
  
  TNod-1.4.2.0-final-setup.exe
- Size
  
  1016KB
- MD5
  
  0fb8a52cf58b61437c1299a06f4d5f2e
- SHA1
  
  4d06fe6ef4453d1a947ec97288450722af29ce52
- SHA256
  
  76f2bffe7ee8d03c3a80c5de96d5f1025f06779d5446e3c514c189b055e07432
- SHA512
  
  1793bf6b0c3145e4fe598162d4febeaf65ccb365786b9f727b2650266c12ae18fac6180ae8d9340d706c86422698ec6dc53b7db24b6b88d1c6395d1bfc43978a
- SSDEEP
  
  24576:Y9mNFARVHSsOo0DjNBQVXL7hruSoi69JYCGbSL+mdqdxH:Y4NFEVH3f0DjINLISh4Jq2L+nxH
Score

7^/10
- Loads dropped DLL
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

Security Software Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12