Overview

overview

3

Static

static

3

Tundra.zip

windows10-2004-x64

1

Tundra/ExploitDLL.dll

windows10-2004-x64

1

Tundra/Fas...ox.dll

windows10-2004-x64

1

Tundra/Tundra.exe

windows10-2004-x64

1

Tundra/scr...ts.lua

windows10-2004-x64

3

Tundra/scr...ld.lua

windows10-2004-x64

3

Tundra/scr...lf.lua

windows10-2004-x64

3

Tundra/scr...le.lua

windows10-2004-x64

3

Tundra/scr...ed.lua

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Tundra.zip

  • Size

    449KB

  • Sample

    240225-er315sbh3z

  • MD5

    8c31d838f230c9527af62c495df3afa6

  • SHA1

    bff66c44b1ed49e039cbd8ba8e468c6df3dca416

  • SHA256

    ce9f6a5ef001e835f9e572de81693e2e81c877d1e7ae8424202b69c5742705ee

  • SHA512

    b8fa7772a90c3be312256c580870e1b237b4e4e09785b87f8064546ccaca38109a853ea21a4983f7ba69463d0508c32e98172ec909f1aa662ebd019206249776

  • SSDEEP

    12288:9UTEHAAWcYKZ3U/2JRJXHS9SWOtOujMikDnFkZ:+S7xYKtUO5kOUujMduZ

Score
3/10

Malware Config

Targets

    • Target

      Tundra.zip

    • Size

      449KB

    • MD5

      8c31d838f230c9527af62c495df3afa6

    • SHA1

      bff66c44b1ed49e039cbd8ba8e468c6df3dca416

    • SHA256

      ce9f6a5ef001e835f9e572de81693e2e81c877d1e7ae8424202b69c5742705ee

    • SHA512

      b8fa7772a90c3be312256c580870e1b237b4e4e09785b87f8064546ccaca38109a853ea21a4983f7ba69463d0508c32e98172ec909f1aa662ebd019206249776

    • SSDEEP

      12288:9UTEHAAWcYKZ3U/2JRJXHS9SWOtOujMikDnFkZ:+S7xYKtUO5kOUujMduZ

    Score
    1/10
    behavioral1

    • Target

      Tundra/ExploitDLL.dll

    • Size

      162KB

    • MD5

      3a916305630d88241809557668a46eac

    • SHA1

      ae1108922e4c84f0a82bbf5d0927930369b91643

    • SHA256

      7d66520ef9acfdeec4170efd23de10a69db05eaa07fbc41a8ec6d2bd8088bc60

    • SHA512

      e64cfda81fc410472d1d32a388cac2e271d368be303461c04fd2cd5f459fd396c7efd5f488f3be437b957487dab4c09343df1cca14805fab6a67c3941dadcd59

    • SSDEEP

      3072:N7mUFqMKMO9k9xTBHdj37vqcDlYMdItS:VmUlvqcDw

    Score
    1/10
    behavioral2

    • Target

      Tundra/FastColoredTextBox.dll

    • Size

      323KB

    • MD5

      8610f4d3cdc6cc50022feddced9fdaeb

    • SHA1

      4b60b87fd696b02d7fce38325c7adfc9e806f650

    • SHA256

      ac926c92ccfc3789a5ae571cc4415eb1897d500a79604d8495241c19acdf01b9

    • SHA512

      693d1af1f89470eab659b4747fe344836affa0af8485b0c0635e2519815e5a498f4618ea08db9dcf421aac1069a04616046207ee05b9ed66c0a1c4a8f0bddd09

    • SSDEEP

      6144:0R0J4lx4/7BA4xvNdcwCOg04j0y5mwZkdmsqmLDi5eNH+Dl1SIP0:0R0J48lAovNd7CO34D4b4eNO

    Score
    1/10
    behavioral3

    • Target

      Tundra/Tundra.exe

    • Size

      377KB

    • MD5

      7cbc5915698f95ffdec2122fb8eda7d7

    • SHA1

      237c7cd54302c0a1083fd7114572b6f6ec67883e

    • SHA256

      943c28f6cb1d7cb2020fb246aaebd5760c159bb455dc944adedc52aa2125f5d0

    • SHA512

      a077f6bca84e27112287dfdb4f98e8c8ebfd3633bf4cf9f1f5e30f630e7614435a4627e9d2bc6d864f3c8bd1002390065b2b7dbcbdfaf15276fa5be68a9ecaf7

    • SSDEEP

      6144:DYac7RzReNzny1BH2faX7RzReNzny1BH2:3qR99TrR99

    Score
    1/10
    behavioral4

    • Target

      Tundra/scripts/BreakJoints.lua

    • Size

      62B

    • MD5

      ba7b15575ddfeebdc80dea7ef9d311df

    • SHA1

      dcb598d3e0cb3e36c68951f6692c05285f0b6914

    • SHA256

      6c87453249a8ead7c9d8f5529dce801d98fb7095212e6481be08a4f23413cb9c

    • SHA512

      47a25bad2318beffbf71d0a5f796e052eef5ca73764bc46192d6829b9b4156f488ba506224b8fbbab07241143335e6547ac46b116d96e02f2c0bb85f6f8f673a

    Score
    3/10
    behavioral5

    • Target

      Tundra/scripts/Infinite Yield.lua

    • Size

      96B

    • MD5

      35c5cb88d98851ccbcf96829dcaac710

    • SHA1

      6345e4621c06c238b84e8f18fd8e215f190d96e3

    • SHA256

      f1d3c6491d5614428d99bdc12e1ca5f3b9aeebfd919606162c0d838a4fb21ffa

    • SHA512

      71aaeb5c53ca848011a1fa5427c062cb22a0821ea72909559e76c52abb35edf5bac9eefbe69682f6c1e14d3c10d3a982d8ee56468ab818b441404e738e03cc64

    Score
    3/10
    behavioral6

    • Target

      Tundra/scripts/Kick Yourself.lua

    • Size

      87B

    • MD5

      3ad2f7a3dc84669fbadeae3d37252ae3

    • SHA1

      e24542ffaf87ab9176a2793604e6ba43efe1148f

    • SHA256

      35c4bcb2bb6a9f95bb0e27fd62a155bb10132efd1fae76ecdbaa616bd79b2010

    • SHA512

      915a0cc37088c1d65944649dcc9eaa7c74c43d1ea3baac72e6a6f9c0cd5d2234ee27cb4d56f58bff120ba16d234f8a58d1233ccebe652645611515646ee7d981

    Score
    3/10
    behavioral7

    • Target

      Tundra/scripts/Saving File.lua

    • Size

      62B

    • MD5

      ba7b15575ddfeebdc80dea7ef9d311df

    • SHA1

      dcb598d3e0cb3e36c68951f6692c05285f0b6914

    • SHA256

      6c87453249a8ead7c9d8f5529dce801d98fb7095212e6481be08a4f23413cb9c

    • SHA512

      47a25bad2318beffbf71d0a5f796e052eef5ca73764bc46192d6829b9b4156f488ba506224b8fbbab07241143335e6547ac46b116d96e02f2c0bb85f6f8f673a

    Score
    3/10
    behavioral8

    • Target

      Tundra/scripts/Walkspeed.lua

    • Size

      54B

    • MD5

      c91b1596f3bc9b33c7a5e2a1aae8a37d

    • SHA1

      6598e80b5fa64d16448e3e932fab0ce7b2e3a43e

    • SHA256

      0ca79e6c16a5b598de0b89da948c297046f2a117f90097644796cbf5ba3c4137

    • SHA512

      e881f367d927938e048bb0a6ccaf26af7eadc30f9188bad47707c4337404f793ebf4e1df79b8fd6c909ebd567217d3573ed22d9f5f62b4d2e88c7bb1755216a0

    Score
    3/10
    behavioral9

MITRE ATT&CK Enterprise v15

Tasks