fda45010d8297cf7afd9ebb35510cf2628daf5fb247f7dad2c765e91674e2b52

Sharing

Copy URL

Twitter E-mail

General

Target

S3tupp__Pswrd--1231.rar
Size

29.3MB
Sample

231230-azz71aagaj
MD5

dadbd17d0d0832e38e7d4bab8f47ac3d
SHA1

3a228e41c037b72f3f424fa0a15193ec25e3a133
SHA256

fda45010d8297cf7afd9ebb35510cf2628daf5fb247f7dad2c765e91674e2b52
SHA512

df7772e295161ba98dc1753f11c68c793affad5efac33c663e1715d1301e2e4e8a6aae9c8251f9a67426a9e1c64ac83c06afb27c441899ba078889f4dcd6fe41
SSDEEP

786432:i+pKhCnj7oI++Dwfw0Wwcn3GGQr7w4Y7xpYcV/pl36o7:iNAj++DwfKn3G97GPjr7

Score

7^/10

Malware Config

Targets

- Target
  
  S3tupp__Pswrd--1231.rar
- Size
  
  29.3MB
- MD5
  
  dadbd17d0d0832e38e7d4bab8f47ac3d
- SHA1
  
  3a228e41c037b72f3f424fa0a15193ec25e3a133
- SHA256
  
  fda45010d8297cf7afd9ebb35510cf2628daf5fb247f7dad2c765e91674e2b52
- SHA512
  
  df7772e295161ba98dc1753f11c68c793affad5efac33c663e1715d1301e2e4e8a6aae9c8251f9a67426a9e1c64ac83c06afb27c441899ba078889f4dcd6fe41
- SSDEEP
  
  786432:i+pKhCnj7oI++Dwfw0Wwcn3GGQr7w4Y7xpYcV/pl36o7:iNAj++DwfKn3G97GPjr7
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2
- Target
  
  S3tupp__Pswrd--1231/Setup.exe
- Size
  
  231.8MB
- MD5
  
  7c0ee255e2dba1e634ce5b6596ebd55e
- SHA1
  
  fb462fabac991ac7da60cf532680824c0165af25
- SHA256
  
  6bea94841fd8f125e3c9f35f69326e529dc0126c0290c6600330f7bc9aeb30ee
- SHA512
  
  a0ebcbe27b98636ba92edf94fc9046381db3484a4657337f950d9bdab140cfd95b72ddefecbc543a1c5dc444571cd0ac22d88d9abf4182567e5d6df2474b5799
- SSDEEP
  
  24576:B/smDM/IhzEfKvMTdOS9MTH9yYi2brgvr:B0mDM/IhzEyETT2A
Score

3^/10
behavioral3 behavioral4
- Target
  
  S3tupp__Pswrd--1231/cr.dll
- Size
  
  701.1MB
- MD5
  
  c25fc4a6a168b5d6ee832d0a0d594e72
- SHA1
  
  db1c13482637af9a638bdb28f867b5aa1714622d
- SHA256
  
  6ea2e795d258469f90f47cdb666b2d291e541376f2ca499a55d0b48353c70cb5
- SHA512
  
  c9c77809d9aec496a9851ba4953f3f6ecab40614fe3e9c13fe22c8489a1da91a195a07f9c7fad3dfaba1c6955a78d8b04780c42e9f725a8d70adb70bacb59707
- SSDEEP
  
  24576:1LTibD9P8rT21S6MYckrjZqIsN7g4F7rZr8Hxz5kWFiTT8Q:wD9P/Ah5G45KHxzO
Score

4^/10
behavioral5 behavioral6
- Target
  
  S3tupp__Pswrd--1231/dll/Qt5Core.dll
- Size
  
  4.5MB
- MD5
  
  b4f2c1be9ac448fdbb6833b0fba3bb75
- SHA1
  
  e34496261619f6dc70efd08b0f3c9c73b3dfee50
- SHA256
  
  7ab15d298cdd7185f2cceae2613715c54a54861fa788bb2de3d152eceb484288
- SHA512
  
  be478f77214590ffe6360ee4b9e3c20e45d5281973cfbd502674dbdfb5afe62ec9b0ae06418f4523dd73fa4573d92c52100cf5c3b730ae1bc8ff3f34d8e1860f
- SSDEEP
  
  98304:0dS/SBS/PayG3fVkp9PJsv6tWKFdu9CPDB:/wfVUPJsv6tWKFdu9CPN
Score

3^/10
behavioral7 behavioral8
- Target
  
  S3tupp__Pswrd--1231/dll/Qt5Gui.dll
- Size
  
  4.8MB
- MD5
  
  d9b78f4b2f8f393c8854c7cc95eae5d8
- SHA1
  
  8d648e7bda5b6bf7b02041189b9823fe8d4689e5
- SHA256
  
  55faebb8f5e28cde50f561bbd2638db7edcfd26e7ee7b975e0049b113145ae38
- SHA512
  
  6e76b524a56cc9bb5ae4beeedd41a48c35cf03c730752da3cae49862cb7bc3c17283099c39787f5933c1771eca7c2e651d92b961de7f43813f026eb295c90c81
- SSDEEP
  
  49152:PcLeg66Ry8jdAYbppzo7Tzj1/JrRbkwW6Ydzzr3YCWizxCqDRkU9i4g1/JAyn:kLrBpr1o7bRyfdzzxz0NTA4
Score

3^/10
behavioral10 behavioral9
- Target
  
  S3tupp__Pswrd--1231/dll/Qt5Network.dll
- Size
  
  840KB
- MD5
  
  0fdda3a8c8be28993b156b24b300ccdf
- SHA1
  
  57fe6cfd0b28708d23ae560675d4c462127722c8
- SHA256
  
  335cec3a5f9082f083190660932b6641f682f4c5818ffbd6ffa98c9d0c24e0f1
- SHA512
  
  4ba8b28ac903d087344185b77144bfcbcd5bda11efb2a8d45b942363b8a13c7c4fb56820644166c7556fb44b68a8786ebb10b8cc4b3557247aa85214289e4453
- SSDEEP
  
  12288:/fGeWXoifZwygBFp9RsVqSA3jk1x5X+JPnk4PpazkoLhVY9hqivwlsBNzARfG2:/fGeWXoiBwHbHEgqM9BNzARfG2
Score

3^/10
behavioral11 behavioral12
- Target
  
  S3tupp__Pswrd--1231/dll/Qt5Svg.dll
- Size
  
  253KB
- MD5
  
  06cc5d18a496520e05bcfee1e3169535
- SHA1
  
  98ba5d0ed52499a845038c3b4bcba356b9339f11
- SHA256
  
  ea31035fa96ba656d64b58d4f1a9dd210df7154afad3d4f96ee36b41584e4360
- SHA512
  
  154a2fdbaa045df6289476420cc4045905a866cd54d756dcc09e0ea79f2cec7f33c748534f47c827841e35c35f71d462cadb801a6b99bf72c162c075d786fdbe
- SSDEEP
  
  6144:kKD4dwpLEE61jMW52NP5xwuMnyOWYGcy8Dv4Cnke+9oCsGhvdw61IwxP4zd:kKD42pLEE6mw2NPnBMIBrU
Score

3^/10
behavioral13 behavioral14
- Target
  
  S3tupp__Pswrd--1231/dll/Qt5Widgets.dll
- Size
  
  4.3MB
- MD5
  
  f697ffc85fb86d72654c4f5ba4e1bdc2
- SHA1
  
  670657f598d408ab232dec75be6fc7983bc5ce4b
- SHA256
  
  400fa69aa8803f6c3a6f9a5fc956475d0396095c4b6d4665b7aa29bbcb8e3640
- SHA512
  
  47513892c22a193c51ecf09c8f3e4c4271a92be33b7b7d535290ea75a1498c5531881a26a85dbf758361e6892abf12a796f1c5c284a34f1d173d61d2012325b7
- SSDEEP
  
  49152:Zhk8cs4FhK1FKBxR8Lcdm0OTqZ7uA/GrXHIaTU+cDZ0V37SUJ:7k8ymoBxKAdmL8yONaQi32UJ
Score

3^/10
behavioral15 behavioral16
- Target
  
  S3tupp__Pswrd--1231/files/libs/WsmPty.xsl
- Size
  
  1KB
- MD5
  
  d6cbfa113b69c491de370e85ebac80e9
- SHA1
  
  33efa0a3a620361732f1ea4c47b725cb3ecb885d
- SHA256
  
  f45582748bf4c111556865185b668b2810d59a67146224d4fb25a7087401d65c
- SHA512
  
  a4bc97e506d594abcfd1188ecdceed419266c4f2555d126b75355ebcc9aae54604b0b7c6bdf8dfc1e69823c2a66fcd618664ab31fa67ad207b1ed8639589a8fb
Score

1^/10
behavioral17 behavioral18
- Target
  
  S3tupp__Pswrd--1231/files/libs/WsmTxt.xsl
- Size
  
  2KB
- MD5
  
  b2edf82825d979928ae07cbe9c7a2160
- SHA1
  
  647fa4eebecbc3686394f434a52f1ae8420b2e30
- SHA256
  
  78afa5d402539bf4b46f9f3ac76e82cf6426eb69ef090d1aa087dce597d850e7
- SHA512
  
  1f18ad56e53a9a5fb1c9bef204a483a1d500ed2f5aebd7fefd65346edce9cabf1764eff0a3bf793f4586eee334ce65b4bb1c6e7b0ac7028f055931b36dd7d02e
Score

1^/10
behavioral19 behavioral20
- Target
  
  S3tupp__Pswrd--1231/files/libs/X_80.contrast-black.png
- Size
  
  627B
- MD5
  
  f7b865265606c41b0e07779d3317e0a8
- SHA1
  
  03c8fcfcb7fb7c44d7041b8da1f3c3459d5c1ac2
- SHA256
  
  f2cb80617b591cfd3aee11a8db72d6ca714e5bb6017f77af513410375aa4d793
- SHA512
  
  242cdccaabde0cab7caaa9876b1de60d0d9e04697b7228f7c9330e3973a9253e77e829e20fb0971da85c3f127e181a8aa448cc523ca5d7b328a28b2857bcbe05
Score

3^/10
behavioral21 behavioral22
- Target
  
  S3tupp__Pswrd--1231/files/libs/X_80.contrast-white.png
- Size
  
  579B
- MD5
  
  6ff92221af9d6cdf0966c4e44c367975
- SHA1
  
  d43e55d423ffa86192263d295b8599489746d536
- SHA256
  
  8b0c607a26cddd0799bc232b2e0c55e6437865ffa18336853859bbdb6ccd0c91
- SHA512
  
  bc87333c8442521f82a640e3bd96e9315466db9afbe305151820f91578661dc06d451a85e6cd4b5a4cff105aa7c5b9ff4a7bedbb3975f8ac40b4b70d18678029
Score

3^/10
behavioral23 behavioral24
- Target
  
  S3tupp__Pswrd--1231/files/libs/X_80.png
- Size
  
  627B
- MD5
  
  f7b865265606c41b0e07779d3317e0a8
- SHA1
  
  03c8fcfcb7fb7c44d7041b8da1f3c3459d5c1ac2
- SHA256
  
  f2cb80617b591cfd3aee11a8db72d6ca714e5bb6017f77af513410375aa4d793
- SHA512
  
  242cdccaabde0cab7caaa9876b1de60d0d9e04697b7228f7c9330e3973a9253e77e829e20fb0971da85c3f127e181a8aa448cc523ca5d7b328a28b2857bcbe05
Score

3^/10
behavioral25 behavioral26
- Target
  
  S3tupp__Pswrd--1231/files/libs/wpcatltoast.png
- Size
  
  9KB
- MD5
  
  1b46e2e85d401a629966a8f62d9b0775
- SHA1
  
  fd2c95c213d5c11530e086a33c3afb5c5a28214a
- SHA256
  
  7a6d4465b716ea97a13cb7b257f1b2bc302a4b669a1df663b90c945afe254bd7
- SHA512
  
  8ed0dd338fe2607d9cdd71ec02df084649e75f272750ce7fef3cf01ed0179827a4993b66386bf7fe5065c698bec2298fb78f2a72562141feac50ba1fde221dd7
- SSDEEP
  
  192:HDeCVWbedgLgI/fv0HbWfneWJop2VkQr3SimhVQnXB+1FObjIbATafhpd:qCsbaHIncH6fn1JoekoCi2Vqk1FOwPF
Score

3^/10
behavioral27 behavioral28
- Target
  
  S3tupp__Pswrd--1231/files/libs/wpcmon.png
- Size
  
  4KB
- MD5
  
  c30c621748c66ce751b19b2788559a3e
- SHA1
  
  2a3fe3168930db21b0da1509afaf0a9b12d38f66
- SHA256
  
  501c1cb2b4c9c1505a83dddc159d3dcab2d75742a782fe1e725dca394267b75d
- SHA512
  
  c014c8fd68aacde89d2b93b74fc4d032632abeab7b4c53e98496a7c6541d9d77a3408cde1b8ff8bdfa478f85b3a56c0d064cbe88301d31f6cbecebc0a49f9d25
- SSDEEP
  
  96:9+eaTQjWCSFuPH+cRk7Js4ToiEqNfv2yII2Ovv4tkxh6TkNW8+FT7:9uESCS6H+cwsXiEqFeTOiah6TS47
Score

3^/10
behavioral29 behavioral30
- Target
  
  S3tupp__Pswrd--1231/files/libs/wpr.config.xml
- Size
  
  724B
- MD5
  
  69fec1494f4c454e994d27ca6750832b
- SHA1
  
  abe6daf643d39a02ba9c8de43e387b7769241fc0
- SHA256
  
  bcb6876b4779f3d748772c3851ce29f377e48a4d22955bf79d17fe81a05085fc
- SHA512
  
  1df1d5da813eb6a2cbccf767ea350df8c8a3d7d494a31d3093b64c83ee1f595942391e5e18c0ae23ef1e835a9c67f83cd505979bda685030fc1e3afd31a2fcfc
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks computer location settings

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32