1490f24cdcae69fb3d58bf260e4598ec6dd670ecf7ece1743d17ad803c2082e5

Sharing

Copy URL Twitter E-mail

General

Target

78af0c82c31fe3287c343f648882451a
Size

9.4MB
Sample

240126-3kjwpagfb8
MD5

78af0c82c31fe3287c343f648882451a
SHA1

da16a55f70ea109ba8143d08a1c49ea2950f8a27
SHA256

1490f24cdcae69fb3d58bf260e4598ec6dd670ecf7ece1743d17ad803c2082e5
SHA512

16b5a65c22798dbc00443713b278ee4be338f79f242052f8e05cd28a12af0423828de3d992388b3fcfffb4145e9fea64d2d49da562132aade0bc883f3490fe5f
SSDEEP

196608:Mpw4Uy/7m6JgkfFzoksSfV9AU/txxcdc5axgeHVu:s4yq662Fz1sSfzAkV2/Q

Score

7^/10

Malware Config

Targets

- Target
  
  Antiarchive LITE.exe
- Size
  
  76KB
- MD5
  
  c6c1651ee07a537d5a24dd6b58e63575
- SHA1
  
  d6a15b9b4147c6b935931cc76a64e9844346bbf2
- SHA256
  
  98d5f8d075c94a434b9a6a9bc35ae9d4b9f8df380d42be30ac647f5664e571a0
- SHA512
  
  c11a97a0dd30806d65b3f0cea37975559811a957df5864ababb43846d2d252087240d2f5a2a6dfb54c210a4bd8a2403bf11b5b868f11964eb8bfc0ca20607499
- SSDEEP
  
  1536:zgQg4J2zOxvrGbauOksyKfb3j0Q8fLiF:zgQgnsjGY
Score

1^/10
behavioral1 behavioral2
- Target
  
  MSINET.OCX
- Size
  
  112KB
- MD5
  
  7bec181a21753498b6bd001c42a42722
- SHA1
  
  3249f233657dc66632c0539c47895bfcee5770cc
- SHA256
  
  73da54b69911bdd08ea8bbbd508f815ef7cfa59c4684d75c1c602252ec88ee31
- SHA512
  
  d671e25ae5e02a55f444d253f0e4a42af6a5362d9759fb243ad6d2c333976ab3e98669621ec0850ad915ee06acbe8e70d77b084128fc275462223f4f5ab401bc
- SSDEEP
  
  3072:i4QYXpLZaH+kCp1RCaSCF/6UMiySQYPfrj:i4rBfL1RCaSC0ej
Score

1^/10
behavioral3 behavioral4
- Target
  
  Protect-PassLib.dll
- Size
  
  293KB
- MD5
  
  5097f43ce9c1b71f5b3d6a5472225500
- SHA1
  
  f55e0a0e6bd8ba538ee694911b87fdb1d982acf8
- SHA256
  
  954d32e4c3f18929e057bbc237f063823e6bc394fbfa44e0bb59e46d6a4fd284
- SHA512
  
  df0114ac3a60993e8bc3d96bc1bda60d68addb3f5b4425c3c928f3ac48b33f8cb23b5caae0110da7e11f2ec2611ade210b79ebc375a5c50d5b693221d10cd1c9
- SSDEEP
  
  6144:9Y9McjnSwlhoARTDPzHqWVWuheaTBpxO/a5p:9yMeSwfoCDPPVWuheaT/f5p
Score

1^/10
behavioral5 behavioral6
- Target
  
  Try-pass.dll
- Size
  
  541KB
- MD5
  
  8c53ccd787c381cd535d8dcca12584d8
- SHA1
  
  bc7ce60270a58450596aa3e3e5d0a99f731333d9
- SHA256
  
  384aaee2a103f7ed5c3ba59d4fb2ba22313aaa1fbc5d232c29dbc14d38e0b528
- SHA512
  
  e86c1426f1ad62d8f9bb1196dee647477f71b9aacafabb181f35e639c105779f95f1576b72c0a9216e876430383b8d44f27748b13c25e0548c254a0f641e4755
- SSDEEP
  
  12288:UZY4lOHMwLwXBt+ia3htSUa/hUgiW6QR7t5j3Ooc8NHkC2eSQ:UZY4lOHMM8wiShtSj3Ooc8NHkC2eT
Score

1^/10
behavioral7 behavioral8
- Target
  
  anti-archive-pro.exe
- Size
  
  7.8MB
- MD5
  
  f880ba510a9263e1135d2c615c1bc4e6
- SHA1
  
  d0fc1f416d12d643b8ae5d70c469bb17b87d2d79
- SHA256
  
  a164a5aee3bd008dd2c7407bde3f9ab7cbff39b6528e8545e077740807564e1a
- SHA512
  
  a10784a9c0e09f731c91c2e90306d8eae0ef3b352f99f90f8801aefa326328a5cc1aa68059744f99ba0ac445abf188340d5e88f653e5b298581a997653035d2b
- SSDEEP
  
  196608:/8w0KazT2852eT9BSwESnn9ic5L5Xi1zwfm:/8Oa28Ys9BHESn9iMcNwfm
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops desktop.ini file(s)
behavioral10 behavioral9
- Target
  
  d3-acceleration.dll
- Size
  
  4.0MB
- MD5
  
  3fa06cf5079b84155d18b05c08f7131b
- SHA1
  
  fafe52876151a08f39dbb6b4aa137dd85558ba5f
- SHA256
  
  6ac4df203af419d3f3b7d9a99e14a3490ea3ad307c474bfe36baea642b1421f6
- SHA512
  
  24d29c3ffb6532da860fef4dd93e61f7532cea3af94928495a3af0231e7dff6db5cad25713451a2e722c076462b94818cd6969a1c7d8905585b0f64e12174d1e
- SSDEEP
  
  98304:DdpF8pg4HYUQpisB7+86QJxpj+p9jdIcFXZvkyIOPsmQJAax0z:ppF8pVAisL6QJxpj+p9jdIcFXZMyILAf
Score

3^/10
behavioral11 behavioral12
- Target
  
  Прочти.html
- Size
  
  15KB
- MD5
  
  921710321415236286cdd91b1b91d3be
- SHA1
  
  780b9b5239dcdfc536331b6c38513ff0b47ff25a
- SHA256
  
  74dd6d2671abba2b8edb31df5355fc2318522d85fd0c47e858948dcc0f3cde24
- SHA512
  
  de06946f604fa9fc3ce3ab8613c5231c8f4710c1e94eb1e005a829e44c453756b29f6c6acc8f322b445e49a54156bc5ff309bab9a3eea2db3fffe3a740c8dcaf
- SSDEEP
  
  192:3L7jOcO8OFOxu5LNhAZo0zyoY+kqi/OyoYDnKilOyoYXwQsinOyoYPG9imz3pJOQ:EhKzyo9i/Oyo1ilOyoxrinOyo3rZJ1X
Score

1^/10
behavioral13 behavioral14

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks computer location settings

Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14