83eb34d651a0062ba7b91277fcf5ffb5239f5b1bbe43e3c69e3513f6c2d388d1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

U,B, Funkeys.iso
Size

183.6MB
Sample

240110-y8mj9sfggj
MD5

4f6375f7994b0fa757324725eaa3eca2
SHA1

86431d20239b523ac06702e07b7586679749723b
SHA256

83eb34d651a0062ba7b91277fcf5ffb5239f5b1bbe43e3c69e3513f6c2d388d1
SHA512

6afe0a1cba11c12e2d9c908a1a4baacd5671e72232ecdba7731dd89e9ca1d4e0fad0141a1c6c7237af3d3e92f257eccc843498b8073ba7fbccb58a33c9c8e15b
SSDEEP

3145728:8bONIKO6wq0mz5+7MPqR04cySGQeKF3tKE8O/DlfO7tcsRW2anZ0je:8qI7g7PqSCSH7lfORj7je

Score

7^/10

discovery link pdf

Malware Config

Targets

- Target
  
  Autorun.exe
- Size
  
  359KB
- MD5
  
  54bf3808df7bdd22bc895a9c458c7a1d
- SHA1
  
  b542313b9aef121a9ee927f05386338bff25c9a6
- SHA256
  
  357139223831f0de98f9f627f6f4010f97a9529801e6120ca427e7120dfc8683
- SHA512
  
  f098246543263125cfdaf9e3fa17c751a71c13e0b057334e83dde1cd275fe7978818211aeea8522a382e9ac4c50f8a9c347b3eb3aca48e93b7e97f80bd1815af
- SSDEEP
  
  6144:SobforNwvbLtGbJQM1GMPiwzSV1pcUewdzMY/69M4Qf2RrRpPva8ioPzE0OSERl:ZbQrNsLtGeTMzg1p2sAY/4MyrRFa8iow
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  DOC/EULA.pdf
- Size
  
  1.6MB
- MD5
  
  5fca16153c2d079d6339704293f7f4ec
- SHA1
  
  703039ff9cabd5b44fc5303039d0559c970fdb17
- SHA256
  
  22993b0964266794b3284e6567792ec90d07aa21d0053d66d1a00532a469cdf4
- SHA512
  
  6e546218b7997c5c800da11321e27accecbf987f14737ebf2e0cf4884f19ce5c1a085e4359e25645c740d590185833464d9460e657987d21a3486d65dab346e1
- SSDEEP
  
  24576:KXSpVvhK1NqN868cUhLDwa3st/ysD3sY8cUhLDwQ8zqohK1TSpVjr/ys9:nThcAglBD0mlBDzohc+b9
Score

1^/10
behavioral3 behavioral4
- Target
  
  DOC/Manual.pdf
- Size
  
  19.9MB
- MD5
  
  8e474275c9278f1daed5b7469d15ae27
- SHA1
  
  5facf688057a71dea169322305b5eb54a5f1f807
- SHA256
  
  1e41c3adfc57af4736d5a388d05a908e715a0d74e7876997a1a5b69d969d1ccb
- SHA512
  
  afc9cac0e5bcdce2fa353c729f39856b6fea6738fbfeafd8a6db9469fc74250a8065abbf2f6b2528f8612e0351e95939debbda4f4131b90587d96e5acf41f628
- SSDEEP
  
  393216:vbej6rnKs4FFbej6rnKs4Fxr5bej6rnKs4FGbej6rnKs4Fc:ij6+taj6+t0j6+thj6+tW
Score

1^/10
behavioral5 behavioral6
- Target
  
  Setup.exe
- Size
  
  161.3MB
- MD5
  
  33b8dc8e78d35da840ca6be0824a6781
- SHA1
  
  21a6e7d959b9b2e601bff093bada7cebcfc11ca7
- SHA256
  
  fe24a6d0000f20f8c4df987eed36b0aeb0c767d5e78030030653ccb678310755
- SHA512
  
  7e10a35325c28bc9d555f8a8ea92c081f128a0421a0317812eaaad50bc65da10fb3478188ed7d4991b95f5fa8a068eed50da0ec3dceb9dd4e4dd8ad6c1210973
- SSDEEP
  
  3145728:dbONIKO6wq0mz5+7MPqR04cySGQeKF3tKE8O/DlfO7tcsRW2anZ0jeV:dqI7g7PqSCSH7lfORj7jeV
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8