General

  • Target

    ae7bca9fd9db9473d4e64f06a58a27bb

  • Size

    1.0MB

  • Sample

    240229-pc184sge5t

  • MD5

    ae7bca9fd9db9473d4e64f06a58a27bb

  • SHA1

    f0ec6791920b005de433e2da7e1a807d04ea55b2

  • SHA256

    04758eb512d567d4a5457b4fbff9eaaf50671fccbe9d87e8f398eace4726e71c

  • SHA512

    01f5d2902d42dc5de6469a412ad5989dfe8268dad053904a8bcaa870f3a433d1a6e6132d80cfcc882c7387833ef85aed6367f82b272dffa580ead72e1aad6710

  • SSDEEP

    24576:otW19pa589ZtVqgOO5kOIAPD/EDWUxL7BqH+fxe5wgLWW:otEM8jtjB5kOIyDsDWywHAxe5p

Score
7/10

Malware Config

Targets

    • Target

      tiff2pdf_cmd_v2.3/Despeckle.dll

    • Size

      82KB

    • MD5

      9955010368f458a3ceb4af9522ede338

    • SHA1

      38519be3eb45af0b6d28a1eee4c92b803f261f16

    • SHA256

      b3c15e500a113826d90732d3615ae89bc3373294fea1a9bec90b0828946e3257

    • SHA512

      ef1e78adcd88e849fe190173f6b908b51e8116567927c4e2bdd9092c6d14da835cd2a21441b3f0128084eed178e06ce93e99db2a1b300f4b7c624f43951bd837

    • SSDEEP

      1536:LTkxVVIa1KhaOMVgrRgZo9wTegE+T5R4gT+xutBMSNyqef4u0D8USbpoot8KwPtK:XkzhKoOMVsRgW9wToO+xfSNyqef4u0DN

    Score
    3/10
    • Target

      tiff2pdf_cmd_v2.3/ImgCvt.dll

    • Size

      582KB

    • MD5

      758dbde436d5becacef1d6a71fe9cdb2

    • SHA1

      ce4b7299ac5b9fb016554b29a89865c0a3fa3813

    • SHA256

      23b83c4b2289aa149d02702de68b40d7176416466b6ef32737a871d52618b02b

    • SHA512

      7efae6897a058d0c39caf1b6d862f48e3cb9b876a69ab705e2bd0d4d1328357dfac53c12964579a69f2a055ddb8da149ca34c0c105e757fcc6da3a9f4b6ac52e

    • SSDEEP

      12288:l0v4IS8EZDV+Rw5I2pycq8xtxEcXMMd6nphII0H1G0:WdREZhsnyCcI0

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      tiff2pdf_cmd_v2.3/Skewcorrect.dll

    • Size

      55KB

    • MD5

      15437b84f67241d2f8b6c7248edce935

    • SHA1

      9f40d0cee723f41b66b9cb6766040bd26e31c76f

    • SHA256

      949a309016775180ea57368b357891df06311e1c0bac029b8c0750942fd8b849

    • SHA512

      c8a3874ae7367b24b7e3b924c4430027a5d268e65d12b5f721d7ea1b8d7ce89cee21e9a4295ca1b73a7503acde2e00b0c6acb1330f9d65f861cd59d927c836a3

    • SSDEEP

      1536:BZS4bLeWYt5tm9NYD/aihiJAkOYoDkVl:BtLBay9eD/aiQJAZYoO

    Score
    1/10
    • Target

      tiff2pdf_cmd_v2.3/help.html

    • Size

      35KB

    • MD5

      044187e0f2123b7eddb46509344d1ee3

    • SHA1

      0d61932aa134ca21e859c25b81546a65baf4aba3

    • SHA256

      9d2608aa00951068b372ebee5b98a72736f40f3429e2130b94dc986e07fbe2a7

    • SHA512

      9e2d01381925dec1329ed234667ad0dd17d15e39165039f99141cb063b5fd20650336637494f807e705a4c4878afce64984fd90eeb059c643da89d61ba9f0b7f

    • SSDEEP

      192:0mLc4H75wH5AhdhE+p0spD8bpTaB0Jtp1UEJFx5f4TEupNb0eeeFezr0V5Tp+73K:0QNFfibbqqxoJTXD

    Score
    1/10
    • Target

      tiff2pdf_cmd_v2.3/tiff2pdf.exe

    • Size

      373KB

    • MD5

      a849e467ce2b71909ee150db2c644f99

    • SHA1

      2551938275fbb5811c31f6e8fc26e12f7d2014f3

    • SHA256

      6b808725a538526633433b73fd9ac7f2e65457e48fd3e80b5e41fe2c0387ce84

    • SHA512

      3b3f66bd9bf27394daa0fc20c3be13d103e7f341519c43272398fee19c117a063678c0824b664f570a9c193480642c57f295399f23ab516cb3801f542f70eaf4

    • SSDEEP

      6144:b5ttIrrez/ZKqIqdYCpchgbkBVqG84Lo3A1LeYEeK81SD39FlMvv+D9u7xmYx:vtk4gq79c1fD9SXhVxYv+Z4

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks