4b5352a03ce3ad5ff4f896191197576e95a4d03bb3a775b1c933b47a274a309b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4b5352a03ce3ad5ff4f896191197576e95a4d03bb3a775b1c933b47a274a309b.exe
Size

20.9MB
Sample

240213-c6bjbsdb93
MD5

4b8899e35d6501c19f28a09fc53ef133
SHA1

bab28aaf76bc68e9d17700cdeb35868c376bd184
SHA256

4b5352a03ce3ad5ff4f896191197576e95a4d03bb3a775b1c933b47a274a309b
SHA512

7b5a522d9e2c5b243182939dc3ffb9f478f329949a40ef3f2f159a5d82a4f3291ec589b552ed7b578e74b95300e3c837599f40db270ddc994ec01b9aa0fb32f1
SSDEEP

393216:ItIXTtWHu5YaCI0tLQ7F5gcQoUxXWou8V6F0a+pWjHPGLpXubWa4qA7XOfzw6pyv:IKXygYjt8T4D0BNTjAhuia4vyzw6p8Ig

Score

10^/10

discovery

Malware Config

Targets

- Target
  
  4b5352a03ce3ad5ff4f896191197576e95a4d03bb3a775b1c933b47a274a309b.exe
- Size
  
  20.9MB
- MD5
  
  4b8899e35d6501c19f28a09fc53ef133
- SHA1
  
  bab28aaf76bc68e9d17700cdeb35868c376bd184
- SHA256
  
  4b5352a03ce3ad5ff4f896191197576e95a4d03bb3a775b1c933b47a274a309b
- SHA512
  
  7b5a522d9e2c5b243182939dc3ffb9f478f329949a40ef3f2f159a5d82a4f3291ec589b552ed7b578e74b95300e3c837599f40db270ddc994ec01b9aa0fb32f1
- SSDEEP
  
  393216:ItIXTtWHu5YaCI0tLQ7F5gcQoUxXWou8V6F0a+pWjHPGLpXubWa4qA7XOfzw6pyv:IKXygYjt8T4D0BNTjAhuia4vyzw6p8Ig
Score

9^/10

discovery
- Detects Windows executables referencing non-Windows User-Agents
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/FileInfo.dll
- Size
  
  598KB
- MD5
  
  4913f47f1075039f41f594cb3d48a6c9
- SHA1
  
  1a99783e9561d0fb9e64954f2d22dc3ea8d460f2
- SHA256
  
  21272e2a8251bfcc227d2a8ae785b6a1cfa2ec8255a69c1ccc7b1f771aa36b3b
- SHA512
  
  d13fc5de31263a4dd1e25cbc79a5c6c240969e5dcb9a381b91256f5673734bdd604da1a43e0b1f440916898a778d698e66a9dbc6f84c3e2b9d68ae886104bfa3
- SSDEEP
  
  12288:es/dNrEo1Ld/iQQYDukddaL+B0dGCH7kg7mM3XvlUlqSaKdT/iqMVt53z:eej1RVukfB0Z7JnDyT/7MVt53z
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/RCWidgetPlugin.dll
- Size
  
  3.4MB
- MD5
  
  f99579cc679c0f543b6f7b430c464b20
- SHA1
  
  b46d7ca0fd6fc079c62c74d8665d24561c4274e2
- SHA256
  
  5235fbc732315cc4a4c1da97bee31f71ca33592797678e6dc3f6ccf4ebaaa10f
- SHA512
  
  c68d11fab12c84d233c0b15d1e7933fa6380f2600557064aa0c7e5f87e23b0afadab0055da1b568b59cda0128b998922b301cd23100c9b4e311f3d00421e8683
- SSDEEP
  
  49152:Pdozt+13K2pb9XbkXtDE1NcZTpaGtX/hw0RRsjGspPi6JJ+4BobW2xGE:1ozwHpbWtDE1NGPhw0PUPfJC
Score

1^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  27KB
- MD5
  
  a568feaa357f44dd50c5e447fa8ee1b2
- SHA1
  
  5c765fad342b756d5ea522087c6f7567b5f3ed57
- SHA256
  
  57947a15ad3215185c7e15a5f0da393570845a13ab7b184a07fcefbf97537e48
- SHA512
  
  7c8c36c0123de839e677beeba65c1af56c5e85d8f1ff2c94950aed33e026dff3fbda8c49859012862110117977c928b814c0d91c477583a2b8f83d73f3cdf174
- SSDEEP
  
  384:ixoXlBT3SaMINWf52+4kb1VunYPLb2O1MnnDGaO5C8JN77hh+uA:iypSvIWb3Jko/MnDGxP3hoF
Score

3^/10
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/libcurl_x86.dll
- Size
  
  2.1MB
- MD5
  
  a26e75c0407c87786eea42febdb32532
- SHA1
  
  27e52fdca023cb8f031cd55ac37965d93f7f7da7
- SHA256
  
  635f988beb849c6510f54f681387bf810c2266bd27834c5a9c160cbfe6df44d4
- SHA512
  
  fdd9760442579ad2a3df4f31464f9e66bc19a4390fa1c81afb516cce817097b5324024f712d9c1bf1a11ad30324f5a8aa83c72a732e1197e8804ab806d3859e6
- SSDEEP
  
  49152:nGUR9r6hl8IXBPZ68L20v/SU8Y7NriOPquwgtJIpT:nGUR9r6b8IbBLjv/SUp7NriSg
Score

3^/10
behavioral10 behavioral9
- Target
  
  KeanPdfMain.exe
- Size
  
  233KB
- MD5
  
  8bf30ad150d66cc03c33d7af5514fe5e
- SHA1
  
  a09439d9dfa4fc378e85cf70dfa9ba5ab0e53761
- SHA256
  
  4ec7bc49bb42050cd8c25404dc1f7808e8916f1b6f9ac7cede5a5a2feec55d9f
- SHA512
  
  e32635d8fc84978a4c1c83c92876b736b3a77d9975d56c66f56913cd68fc5ba9dd42d0397a9b44ccf208807ec4d46e0b20a72302792b8d004f7d1a3d01be2041
- SSDEEP
  
  3072:KflnbjmBD//bRAsnzb7asloiOo+flOFTGlDbVxZ86jX887dMBvbfxVc1dcaxR:KPiDbNbfzOyQlfzZ8qsydIQMy
Score

3^/10
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12