Overview

overview

7

Static

static

3

a1673ce113...53.exe

windows7-x64

7

a1673ce113...53.exe

windows10-2004-x64

7

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

$PLUGINSDIR/rtm.dll

windows7-x64

1

$PLUGINSDIR/rtm.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a1673ce11369e685bd9b1fa3dd7a8153

  • Size

    600KB

  • Sample

    240224-ka21eaed47

  • MD5

    a1673ce11369e685bd9b1fa3dd7a8153

  • SHA1

    34bd4ccc809222345246db9f611f474f382e1b32

  • SHA256

    2335af0f1f32c4457296f40e539330a294e8b21460cdb8755e715a0fec6be859

  • SHA512

    a1e6164e7777bf7e7c169276b99d43409830bd07910b4e2866a029e844e9d8174769fa343ee335b22f8b61af6f4542188cb9077f7bdecb2240212e19215a19b6

  • SSDEEP

    12288:neHuihjaB44ZoATF87V4swu1JLb+MI7gK2YW7gPlXT:neOhu4/F8BTwu1JLbFTK2U

Score
7/10

Malware Config

Targets

    • Target

      a1673ce11369e685bd9b1fa3dd7a8153

    • Size

      600KB

    • MD5

      a1673ce11369e685bd9b1fa3dd7a8153

    • SHA1

      34bd4ccc809222345246db9f611f474f382e1b32

    • SHA256

      2335af0f1f32c4457296f40e539330a294e8b21460cdb8755e715a0fec6be859

    • SHA512

      a1e6164e7777bf7e7c169276b99d43409830bd07910b4e2866a029e844e9d8174769fa343ee335b22f8b61af6f4542188cb9077f7bdecb2240212e19215a19b6

    • SSDEEP

      12288:neHuihjaB44ZoATF87V4swu1JLb+MI7gK2YW7gPlXT:neOhu4/F8BTwu1JLbFTK2U

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/nsisunz.dll

    • Size

      40KB

    • MD5

      5f13dbc378792f23e598079fc1e4422b

    • SHA1

      5813c05802f15930aa860b8363af2b58426c8adf

    • SHA256

      6e87ecb7f62039fbb6e7676422d1a5e75a32b90dde6865dcb68ee658ba8df61d

    • SHA512

      9270635a5294482f49e0292e26d45dd103b85fe27dc163d44531b095c5f9dbde6b904adaf1a888ba3c112a094380394713c796f5195b2566a20f00b42b6578e5

    • SSDEEP

      384:KExN66Yf2xL5Q4IsjuUjUZfqRDpImexpf88FwHxXvjX3hwlHt6oIfESxSHoOO8n9:O2x64GcVpI3xC8ynToIf1SIOhW4

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/rtm.dll

    • Size

      125KB

    • MD5

      dcf5bed7cdb5677ce2eb2b53e3baf344

    • SHA1

      af8e22a2a976bd33892a5fb73548b1e5a2ae63fe

    • SHA256

      ae175ba3963a7c8d65f252266de0058630c9c7395b6e2f3b6b817a5285b8f544

    • SHA512

      30ca7aa4b7f43deafbde4c90682d9eb611551b5c26a77d92427e8d17b307842914ef0cc1f1ed50809d34d2e8408a5dae4527406dd40dbd1a323c8bed492261fd

    • SSDEEP

      3072:VScpGV1hXLzxltKeffg6mgenmpP6mD5Nu:VScAV/LVbBgFgenmxXDS

    Score
    1/10
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks