Overview

overview

7

Static

static

3

a117703349...2f.exe

windows7-x64

7

a117703349...2f.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

TrustFighter.exe

windows7-x64

3

TrustFighter.exe

windows10-2004-x64

3

uninstall.exe

windows7-x64

7

uninstall.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    a1177033490c332ca7b53eb0af2b232f

  • Size

    894KB

  • Sample

    240224-ggmbrabh7z

  • MD5

    a1177033490c332ca7b53eb0af2b232f

  • SHA1

    eeb574dc9a3f688a2212dda8e1d053aa5af75736

  • SHA256

    bd2d87b035ec050674c8a9b2f6c3a219b2ea113bf62edc87cd4dcad456f69f55

  • SHA512

    2d782b700014e1dea1cc5c353fbb452d174aa5f2a9a62442ce079d21a5ab423e3df7b297c71bdcdfa9946e8c786d82d4a6391a53df5af712423521cadbabac11

  • SSDEEP

    24576:R7bYTUBdakOToDjlVkgKMaEAKLdsMvchxCL:RfYTUKuLUEAKBMhUL

Score
7/10

Malware Config

Targets

    • Target

      a1177033490c332ca7b53eb0af2b232f

    • Size

      894KB

    • MD5

      a1177033490c332ca7b53eb0af2b232f

    • SHA1

      eeb574dc9a3f688a2212dda8e1d053aa5af75736

    • SHA256

      bd2d87b035ec050674c8a9b2f6c3a219b2ea113bf62edc87cd4dcad456f69f55

    • SHA512

      2d782b700014e1dea1cc5c353fbb452d174aa5f2a9a62442ce079d21a5ab423e3df7b297c71bdcdfa9946e8c786d82d4a6391a53df5af712423521cadbabac11

    • SSDEEP

      24576:R7bYTUBdakOToDjlVkgKMaEAKLdsMvchxCL:RfYTUKuLUEAKBMhUL

    Score
    7/10

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      14KB

    • MD5

      0dc0cc7a6d9db685bf05a7e5f3ea4781

    • SHA1

      5d8b6268eeec9d8d904bc9d988a4b588b392213f

    • SHA256

      8e287326f1cdd5ef2dcd7a72537c68cbe4299ceb1f820707c5820f3aa6d8206c

    • SHA512

      814dd17ebb434f4a3356f716c783ab7f569f9ee34ce5274fa50392526925f044798f8006198ac7afe3d1c2ca83a2ca8c472ca53fec5f12bbfbbe0707abacd6b0

    • SSDEEP

      192:n6d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jPK72dwF7dBEnbok:n6UdHXcIiY535zBt2jP+BEnbo

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/LangDLL.dll

    • Size

      5KB

    • MD5

      a401e590877ef6c928d2a97c66157094

    • SHA1

      75e24799cf67e789fadcc8b7fddefc72fdc4cd61

    • SHA256

      2a7f33ef64d666a42827c4dc377806ad97bc233819197adf9696aed5be5efac0

    • SHA512

      6093415cd090e69cdcb52b5d381d0a8b3e9e5479dac96be641e0071f1add26403b27a453febd8ccfd16393dc1caa03404a369c768a580781aba3068415ee993f

    • SSDEEP

      48:iV6sAvmNC6iMPUptxEZK65x/AmvycNSmwVsOYJyvrpXptp/JvR0Joof5d2:2V11GED5ZTvycNSmwVsTJuftpZR0Ld2

    Score
    3/10
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/nsProcess.dll

    • Size

      4KB

    • MD5

      05450face243b3a7472407b999b03a72

    • SHA1

      ffd88af2e338ae606c444390f7eaaf5f4aef2cd9

    • SHA256

      95fe9d92512ff2318cc2520311ef9145b2cee01209ab0e1b6e45c7ce1d4d0e89

    • SHA512

      f4cbe30166aff20a226a7150d93a876873ba699d80d7e9f46f32a9b4753fa7966c3113a3124340b39ca67a13205463a413e740e541e742903e3f89af5a53ad3b

    Score
    3/10
    behavioral7behavioral8

    • Target

      TrustFighter.exe

    • Size

      812KB

    • MD5

      9c8cab22bf643f761a79cf6fd1715239

    • SHA1

      ba9a6500f480a14a561b10f8ea623b741fdc6e7c

    • SHA256

      1d85f2f01d2121bc3c0a70e836b488728ef1e5bd6a658384d51cc81a5a07ba95

    • SHA512

      98142ca418d7b81a0b9b0e25845e8ec8250f00d7d094d1a626409358c2580bdac4d6670b645e962ed949bf17b76d6a6d3be61d0891b90b244cca7fff1112d490

    • SSDEEP

      12288:4m3PM69CGe11g95UoKvMLbxOmOm/c5y+Nkhv8pKg0gKMhEK5zl6KL9csinvchY7x:7R5eONOskgw5gxgKMhEnKLOsmvcAx

    Score
    3/10
    behavioral10behavioral9

    • Target

      uninstall.exe

    • Size

      77KB

    • MD5

      9732685fe4906be555cfc51c3cb28c37

    • SHA1

      9a9975d1137dda9d45c89c274d6872bf4114a55a

    • SHA256

      08a77713b521e2d9fd79e02600546225bf29193ebaa8f8d711819938a0deaf89

    • SHA512

      bebebf56ce2e6ca5e254d57e8b52acaaf922a1b2835fd106973cdeda717a08839f2e4695915d3b1f245a36eb26d695c65aac7ffe4119a3555161c214351f4d2d

    • SSDEEP

      1536:ppgpHzb9dZVX9fHMvG0D3XJpYRN6QcIsBb1u3xhf6t8aQ:jgXdZt9P6D3XJpq44ku

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral11behavioral12

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      14KB

    • MD5

      0dc0cc7a6d9db685bf05a7e5f3ea4781

    • SHA1

      5d8b6268eeec9d8d904bc9d988a4b588b392213f

    • SHA256

      8e287326f1cdd5ef2dcd7a72537c68cbe4299ceb1f820707c5820f3aa6d8206c

    • SHA512

      814dd17ebb434f4a3356f716c783ab7f569f9ee34ce5274fa50392526925f044798f8006198ac7afe3d1c2ca83a2ca8c472ca53fec5f12bbfbbe0707abacd6b0

    • SSDEEP

      192:n6d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jPK72dwF7dBEnbok:n6UdHXcIiY535zBt2jP+BEnbo

    Score
    3/10
    behavioral13behavioral14

    • Target

      $PLUGINSDIR/nsProcess.dll

    • Size

      4KB

    • MD5

      05450face243b3a7472407b999b03a72

    • SHA1

      ffd88af2e338ae606c444390f7eaaf5f4aef2cd9

    • SHA256

      95fe9d92512ff2318cc2520311ef9145b2cee01209ab0e1b6e45c7ce1d4d0e89

    • SHA512

      f4cbe30166aff20a226a7150d93a876873ba699d80d7e9f46f32a9b4753fa7966c3113a3124340b39ca67a13205463a413e740e541e742903e3f89af5a53ad3b

    Score
    3/10
    behavioral15behavioral16

MITRE ATT&CK Enterprise v15

Tasks