General
-
Target
PingCastle_3.1.0.1.zip
-
Size
3.7MB
-
Sample
240124-rfa77scca5
-
MD5
81652bfc3c89a33faf0ee49ae13666cf
-
SHA1
3b7bc6dd84916070e006d66df53488bea523e60c
-
SHA256
aee777ead4791c2d6a5420b0625e7fdea13f6d84dedcaff924a5845df5f4db94
-
SHA512
4d97673270b797ef34d5a69e644ceaf25c3a764dfdc8fd72647e9f491ba11ec6a45b2d1d3ab824cb0564e33a83c7927cf4c46b828a46bc73f928168432f52af5
-
SSDEEP
98304:oX30lRjbMTbdhlKHYJYuKKRXnfOjUnXKUWSi5Hg0tl9BiX7zU5JmYiB7:oH0lRjIdhlK5UXhvWj1vhBi0mYiB7
Malware Config
Targets
-
-
Target
PingCastle_3.1.0.1.zip
-
Size
3.7MB
-
MD5
81652bfc3c89a33faf0ee49ae13666cf
-
SHA1
3b7bc6dd84916070e006d66df53488bea523e60c
-
SHA256
aee777ead4791c2d6a5420b0625e7fdea13f6d84dedcaff924a5845df5f4db94
-
SHA512
4d97673270b797ef34d5a69e644ceaf25c3a764dfdc8fd72647e9f491ba11ec6a45b2d1d3ab824cb0564e33a83c7927cf4c46b828a46bc73f928168432f52af5
-
SSDEEP
98304:oX30lRjbMTbdhlKHYJYuKKRXnfOjUnXKUWSi5Hg0tl9BiX7zU5JmYiB7:oH0lRjIdhlK5UXhvWj1vhBi0mYiB7
Score1/10 -
-
-
Target
Active Directory Security Self Assessment v1.4.pdf
-
Size
385KB
-
MD5
356475c95e42167c8075a221e8b49afc
-
SHA1
ab4889a2432c826f095c7a24254c7a085f15d0bc
-
SHA256
7f3f063afadb8067936ebf449a24a5228587d01481fa270809a2802487b3798c
-
SHA512
84f465dcdff9f6e59b0c62f56439cdca6c632dcde9bb336979b48413f1db1ab755ae05b55b67ee5a7a8535e8731bbf894b10459b86bd9335dcde3fbb0f355feb
-
SSDEEP
6144:obZ0LYpATJeJNiHIrT+qdNheeyoKnVTuUfsPCiJJW4vLGY5Q6SJzHkvP:rLYmQJNiHIvVNhhyvnV7fsKiVvChS
Score1/10 -
-
-
Target
Newtonsoft.Json.dll
-
Size
685KB
-
MD5
081d9558bbb7adce142da153b2d5577a
-
SHA1
7d0ad03fbda1c24f883116b940717e596073ae96
-
SHA256
b624949df8b0e3a6153fdfb730a7c6f4990b6592ee0d922e1788433d276610f3
-
SHA512
2fdf035661f349206f58ea1feed8805b7f9517a21f9c113e7301c69de160f184c774350a12a710046e3ff6baa37345d319b6f47fd24fbba4e042d54014bee511
-
SSDEEP
12288:U9BzaPm657wqehcZBLX+HK+kPJUQEKx07N0TCBGiBCjC0PDgM5j9FKjc3Q5:U8m657w6ZBLmkitKqBCjC0PDgM5A5
Score1/10 -
-
-
Target
PingCastle v3.0.0.pdf
-
Size
1.6MB
-
MD5
c8f501513b29fb8194a6e02b8f16042f
-
SHA1
3f5a9b1c3ac898b9534fbfc16187723a22fd226d
-
SHA256
687592ff1ab4af1d2c4d8d249a14164cd31e79e1d7bc35c213a256904f3bd565
-
SHA512
b292310bd16a4f2813429d963f1caf6794433c961eb6fc5e521ffbe17783779315bd0ddf1ae5aca8cc1506996bfe107c43e6675a8a398a10f3e1a66ef6efa295
-
SSDEEP
24576:dpvvnQ8IbTw2YIG0+cRhKjW3WuG3gQuWlK9hlT69uhrWuQe+FAjjKva:faTw5IimhKSGuG3gQuWE68hiueF3a
Score1/10 -
-
-
Target
PingCastle.exe
-
Size
2.2MB
-
MD5
f4a84d6f1caf0875b50135423d04139f
-
SHA1
3a515551814775df0ccbe09f219bc972eae45a10
-
SHA256
7c1b1e8c880a30c43b3a52ee245f963a977e1f40284f4b83f4b9afe3821753dd
-
SHA512
314b3b995a0504bf007b0b82041e995bf18193879d614bc6ecc6c1f0dd0d2984d262577f0e5d9ba587b085f1d4716164ee93106c511bfefffabf883ddb156afb
-
SSDEEP
24576:VmI84Q+fKBCxH3TmdVxkJygeHCpPpHrll3qhN87PQOEwxBVwk1W0JYefc9Q:YIYi3ygeHYPpHLF74OPBhdJYek+
Score1/10 -
-
-
Target
PingCastle.exe.config
-
Size
5KB
-
MD5
d48e4eb4934fe37f4c9ac4338ed5033a
-
SHA1
2c7adf2d73fcff43e5dc7edf98593a91c3e62248
-
SHA256
9856160ad715d129189928f7230152046fd6da84eba9ad969375eccef64cce36
-
SHA512
16899e1e8a01ff8c5418c8abdff90e35d8d742957c85715513721b80a9288c13626837607c9737d2351443a103afe87af4c634c3ade6e5be123bde1f52949928
-
SSDEEP
96:NocMH8el3K6ypFikhckhc8aRfMLDNKhil1t5M:NoTcWypFiicikVMLDNU4jM
Score1/10 -
-
-
Target
PingCastle.pdb
-
Size
2.8MB
-
MD5
8043e887074434e6516b4c524f582821
-
SHA1
a9f85694140148ca1f4a6288c678dbbf4c13c5dd
-
SHA256
abdf1b3c68f3d2933e08e6138357cc1f921246cc4a20801511188e6598731084
-
SHA512
fa00495c221a0ce8a2a72384dfaa74c751e936eb048b0eaf0bb99ded5e839cc00ceeac0fe60b7810528caebd52f69398348cf313ea860d8416f88d4781dda30c
-
SSDEEP
12288:tZDF1+TYvuvJU0axYFSlB4R5WWuWb58sZ2Gj2LBNF4PtJb13372HwbOHhn/Hg4up:t5TtKBaxYFSb05AVBNF41Jbx2yOH5/S
Score3/10 -
-
-
Target
PingCastleAutoUpdater.exe
-
Size
46KB
-
MD5
f899acf132b27e3c0ecce2193ee04cbe
-
SHA1
fa35a2fe0ab1161d1cfe779b19bdcdb3df6a7791
-
SHA256
bc0747365dc007a1fcd127aa572e72faed4624c4521a8778e2b8e7bb3f0c38b1
-
SHA512
4e1f08f6c5364489f6d77b68d785b49d62d767133d7c6981d13d1f1fbfbf70e8ed39f007f8ed6a0396816445fa87acfc0cc9483e26b412c66a8d16650aab3b06
-
SSDEEP
768:b+5fVdfKzXqqdbVUCZNDBmbrLSKgzVN4KOpZ027T3nWNxMcHg:b+FVdfq6qdbXMH+NmB3GT
Score1/10 -
-
-
Target
PingCastleAutoUpdater.exe.config
-
Size
167B
-
MD5
2576603029cc507f8b59c2094c7bac36
-
SHA1
a0b0ab1d0db85e8af8b1a1ca43f9be3603878409
-
SHA256
73903513454576346b0a81f7d08c9687f2ff561810de13bd8bf17e30044e1226
-
SHA512
d6c7b808c81b313918111f33ace7e4bc4dc821e2e75266260bf9015ecceaebc2d3ea4cf73c7b8248731674b1d3d441525caa2882ac009a7c2598d9514ce156b1
Score1/10 -
-
-
Target
PingCastleAutoUpdater.pdb
-
Size
23KB
-
MD5
bcd63f08524588a816486e4b358b932c
-
SHA1
e5cd01e0fa25f73ee969b272623421c619c2a4ed
-
SHA256
7ccf1dd7d6e7429908aae9f544444b0a42170b7028c4ff87b0a4f06991b536c6
-
SHA512
8227687a3e8e09807ef19c053bf478c2b47dbdbf1d2ecc821fd470d109dea226dd49feef1203111da6f543b1e0068e15e3327573b5a50af15a7d03b65b04fe3d
-
SSDEEP
192:mAz0APjAPVdAPiidIidxid8cOWNu4sAa8Hd0NvPUGQUMmR5wU/JPwa2pemeHBnvU:VAsiHGUOWOAa8HyCj00x
Score3/10 -
-
-
Target
changelog.txt
-
Size
32KB
-
MD5
d88ca85ba81aa9cfd58d0cb825b9fa9c
-
SHA1
ef86ef38d4367f349543aeaa2d5ee37df83c25b7
-
SHA256
0d04567e80f4690e878eb449ba120623b77e262bbb6663f38e7704ff4edcc437
-
SHA512
47012916e1b0319578239875ea013f29939c70ef5e15cb1194422416c19d689a6ba177e3641ab0ad418cbc971d9fe6f39492e2ea38baf089081c805a3f385be1
-
SSDEEP
768:t9ZPpS4ie/cWatcq2gCozmOMgob+0v88loV+pA:X/ieytcq2QzmOMgwlod
Score1/10 -
-
-
Target
license.rtf
-
Size
10KB
-
MD5
f61fa5f261696586f194d4576e2bf3db
-
SHA1
f5e5c3ee518022e5a897c6aa0bef7271769421ff
-
SHA256
95e5df0fb2a1393e5f7e1216d5a757d1a310ce81f14ed59e13cc3487c201f112
-
SHA512
fb3098f869567a49b99bf8532fa72d9a41a5199d682e36bc960fee0bea70e55c392ed2e2bde18ca63ec72c95795f9926bb2b776633519c789eb8d27ec683b347
-
SSDEEP
192:qtAnO7ifPpXtrSpxrw7KqkGGrfLbK6pnU5F/TKwWwFBsdtskT2:qt89YxrwWzmy8PO2
Score4/10 -