5a9b6741bb818e8991570e5fe7d0b1a9f412dcb1796b9c05b44a20261539132c

Resubmissions

10/03/2024, 18:59

240310-xm5naaae9v 7

10/03/2024, 18:53

240310-xj4xksae21 7

Sharing

Copy URL

Twitter E-mail

General

Target

!@pAssW0rd_4488_$etUp!.zip
Size

50.2MB
Sample

240310-xm5naaae9v
MD5

4be8dfc06b5f69f5b9022b002541c476
SHA1

e5af8ff897f249c78f77df94f5ed2dbc8ec0ce5b
SHA256

5a9b6741bb818e8991570e5fe7d0b1a9f412dcb1796b9c05b44a20261539132c
SHA512

d169407af06edf2881b3277a4b895537d9ef10954c45f262e5e7ae8e6a6ef84aed8e5444c2341fac7eb1ccd9b985d443792ba77f6de2187203f30c12b690e80c
SSDEEP

786432:KziOBxengCBCbdcDD7qi4sqLheZ1Dv4dIHzZ9OyLx9P9EbOs4RBc:KWOBxenFdhEQZBvUIN9zx9leT4RBc

Score

7^/10

Malware Config

Targets

- Target
  
  !@pAssW0rd_4488_$etUp!.zip
- Size
  
  50.2MB
- MD5
  
  4be8dfc06b5f69f5b9022b002541c476
- SHA1
  
  e5af8ff897f249c78f77df94f5ed2dbc8ec0ce5b
- SHA256
  
  5a9b6741bb818e8991570e5fe7d0b1a9f412dcb1796b9c05b44a20261539132c
- SHA512
  
  d169407af06edf2881b3277a4b895537d9ef10954c45f262e5e7ae8e6a6ef84aed8e5444c2341fac7eb1ccd9b985d443792ba77f6de2187203f30c12b690e80c
- SSDEEP
  
  786432:KziOBxengCBCbdcDD7qi4sqLheZ1Dv4dIHzZ9OyLx9P9EbOs4RBc:KWOBxenFdhEQZBvUIN9zx9leT4RBc
Score

1^/10
behavioral1 behavioral2
- Target
  
  @!Open_Main_File#/!@pAssW0rd_4488_$etUp!.rar
- Size
  
  50.2MB
- MD5
  
  a81cc3bbcd71ca4422c255537b880455
- SHA1
  
  494dd42c7b8a83980852fbae9cdfbc9e38c46461
- SHA256
  
  725f0ee71e092a041d1584defae08061571e518cda14dafac06645314c8145dc
- SHA512
  
  81dfbf85258052e8b4aa34cd5aa186144660f97ff4c5558b1ea1d373766423ddc08f0ab64bc99b45a79c356c0de4dd9ca33e238abf49f8d284d51509bda8acf0
- SSDEEP
  
  786432:SziOBxengCBCbdcDD7qi4sqLheZ1Dv4dIHzZ9OyLx9P9EbOs4RBs:SWOBxenFdhEQZBvUIN9zx9leT4RBs
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral3 behavioral4
- Target
  
  SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/common/perftools/controls/hubControls.js
- Size
  
  210KB
- MD5
  
  8f336cb6f04513ce6b965a002ef8ad51
- SHA1
  
  cf19a6010b6aad917086865efcabe37dfd30daf5
- SHA256
  
  298796c9bcc546850db135305d4e4c56e31e06575f21a910f0919c95fda01738
- SHA512
  
  1b766e36028b71153847befb1a71a5ab955a0f2d1e228aea8185884c54fa152685570bc9e45d1ed62a68af31ee480ea9d12aa194eb67dfa1b5f93af8febb712e
- SSDEEP
  
  3072:CPR5xxz+josnXuh5ru+nAkRCAsnJGJYxMt4rDqDQd6QBxcw7TfGZDj0HWM1fwSX2:0R3R+jTqeMYXG34ino/gciAzkaEcB/+X
Score

1^/10
behavioral5 behavioral6
- Target
  
  SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/common/remoteEditStack.js
- Size
  
  2KB
- MD5
  
  cee1340ee8d22179f71d425ca228a33d
- SHA1
  
  7bb48817ab4dedfdbd9727c85a76383acb237253
- SHA256
  
  c6a9005ef221fe3ccb43c226bc0c7844b062800eef5ba5b53ee7636817650ed0
- SHA512
  
  d1b2b1cdf6f6b39df279f77ee453050edd1315d01fd16d9c88f759c0461c85aceac825b71f08b2545afd65e3f61cb728fc8e01f318747ce99e31a65b8516f564
Score

1^/10
behavioral7 behavioral8
- Target
  
  SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/common/remoteHelpers.js
- Size
  
  10KB
- MD5
  
  30201fb18ec1f0f0c711b93871ceea05
- SHA1
  
  4f9a5363399297c779e5699eda99b98aa924119b
- SHA256
  
  b6c0b43d69b7161e47be6f25f3c5fd7324ab39d3fcd4b4fa7c2d28decdbafc2f
- SHA512
  
  eb6395532c72529d8e7f87eac17372415330d2ccf01a16aeac97d66e9b29ab32fd4beb93242488b18d2997cb376ccadb091bd08041d8305cddc80bba5671440a
- SSDEEP
  
  192:6Xjj8VmqZFuTwsmRaRzfEe++qFcE+nc/dHTn9twQNRinZmgLnxjxAd:6Xjo4qruTh3EeESU97RXg1k
Score

1^/10
behavioral10 behavioral9
- Target
  
  SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/common/trace.js
- Size
  
  561B
- MD5
  
  cf68d6f484dc6f07d547cf8c23173539
- SHA1
  
  e7d1bf5834b18bdfe2eb91fa1478ea9839183731
- SHA256
  
  2529641f0347bb8f27889fcba36381db71c8b6773fb513bd31a46c2157869e52
- SHA512
  
  84a6a6f752e2dbf6cf10bfb56ee76a903f36d92d5d02b564a6453b5cb04bf09065d9923333484ccbf57a07256eeb20ca98fd949e25491a41eb2b6d08446d8ae9
Score

1^/10
behavioral11 behavioral12
- Target
  
  SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/common/uri.js
- Size
  
  14KB
- MD5
  
  f52cdf304a9049c8b9d3f90a0d8c43ff
- SHA1
  
  7f885a1a2c4131510e2fe30e01b74ee60f294948
- SHA256
  
  2f728abbb2a0f261056fc8e258ea1d0f7b70571f8944bdfe8a29e996bc39c34c
- SHA512
  
  a4fc5eb44cbf7353417f6713eaa5bf277d2f23fdc965c1fc8b6247625ef7cdc1f37c40446fc4ef084e3998389c51e20b6a73f22d38b3e380a39aa3f4b616f0ab
- SSDEEP
  
  192:pIL2KtTZ4YJNyp2uZEZefaqHskHk4JPFJPr3mb43/bFsHCsZTOB12PKAN4dLbuCv:pILsp28EgaqHskHk4Pxp6H/ZTnNyb9F1
Score

1^/10
behavioral13 behavioral14
- Target
  
  SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/console/console.html
- Size
  
  721B
- MD5
  
  62ed6ea9fdac0d8f15be284e604ca8cb
- SHA1
  
  5059079fe442b88eb8c7d1a59d0752861198cd2f
- SHA256
  
  80b5bab7fb6afda062475c9ca15849ebaeb92ef4771916ab84db5c53e8d11038
- SHA512
  
  5d03d1f6d1786dea280f88d32975931816aa611bfc5045d49640438c526b4a77c5244b55f6e915e41c349fc377431d3f3739bdd287e96d21196c54d8e038d506
Score

1^/10
behavioral15 behavioral16
- Target
  
  SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/debugger/Remote/debuggerDiagRemote.js
- Size
  
  39KB
- MD5
  
  70e4daee5ac971c06294e47000e5fcc8
- SHA1
  
  79a508bcdcb96ca3ed495e1c791a7124d10d5810
- SHA256
  
  305ca6e98819c80dd2cf64472dc60501b9e03bd39d530ff58f6c84c2507a845b
- SHA512
  
  4beee638357ef493e8adc28428ed450de85a6ff803978c04b1452a2dcac247a2a55512f89aeaa4f8c7888a1428cbe7fb8b36cffde16672e121c4f8e39db790f6
- SSDEEP
  
  768:dd0MOIAP8Qj7PMc/hkX7f+a81iBhtLQYomMnu3EBbaMwnXS+S/Si7hWKsMbeLD3+:DL+D/a8gBhtBomM8MdPh
Score

1^/10
behavioral17 behavioral18
- Target
  
  SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/debugger/Remote/debuggerRemote.js
- Size
  
  18KB
- MD5
  
  1180f52d57fc9c631107052a90269b9a
- SHA1
  
  d3b8fb29c506c10036df879ca8ca9d852849fbed
- SHA256
  
  52e516704e764491b3df66d452dff863b713dee78ab75ad1fe447bf5ce302d52
- SHA512
  
  fd92f5d1899d1b720d39b1ba735707a6a0ab0d38742464740cb809a6046c1897bb81ef9fc3d70f0fb8f9caf6deb00ecc667bc595be37ab04f98dba9b8ed544ac
- SSDEEP
  
  384:LYo044fHv04PRQ0t/5WOf3SN7y9wdzExSnsVnrbtAjjONH+huPfO:8o044fHv04PRQ0t/wOf3SN7y9wdz6Sn/
Score

1^/10
behavioral19 behavioral20
- Target
  
  SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/debugger/debugger.bundle.js
- Size
  
  439KB
- MD5
  
  cf7fa9feb3b736f56c5f4427cd949aeb
- SHA1
  
  81bb2455b88d963f58b03924bc272221d4b55702
- SHA256
  
  f281c5c9aebe74f2f672ceb211753820c7234cd95fcaa155f1c55cc70a5c9731
- SHA512
  
  36c7ae9e941d9f7eb07619776c48d639384e24c56b03ba186db2dd538aca60891e532da169a1455baa618899a1379886feb6bcb7d4e1d9f0028806a5c0d68dae
- SSDEEP
  
  6144:sQHyj3d8FMlzvnzkvTgLNNtspDlktMiIECXq1NT0wAeShxPOBtT4:7Hi96DlTiIbWcPMC
Score

1^/10
behavioral21 behavioral22
- Target
  
  SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/dom/DomExplorerMerged.js
- Size
  
  475KB
- MD5
  
  e2f0a7f84bf6a8e3fd7bd6d304a08c1d
- SHA1
  
  db33b7bfcf163c4654a9d857e4bafa173e56b691
- SHA256
  
  d09cb6d3101b18b4866396de9b9186a16fdc808969275d419bc00a233134c005
- SHA512
  
  a10ff0ce4077fd1a054f35652298a4daae22fd709ffc270147f8727f9a4d5ce62dc500a6c6214746984718440be755f738cd9d7df53f6cb5e6b906984f9d3ad9
- SSDEEP
  
  6144:dNw8ZpSJcwGd0F3X3IecHlyX08VE2yJTNDhwwjsFUB5GCoz7cdpEXTwDd8s:dWcwf3X3NnuDuwjdGCozcEXA
Score

1^/10
behavioral23 behavioral24
- Target
  
  SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/dom/DomExplorerRemote.js
- Size
  
  126KB
- MD5
  
  659ec6e7fe2c9f98f47e9c845eff103e
- SHA1
  
  4e67d90d75288229ab19582e74580ca5102ec6d5
- SHA256
  
  ea0b71c06dfe26ed656af56f28c596183d290661096d7e7b66043542a0e754de
- SHA512
  
  8ea4ffb164a0a820e83b24731de91783852fec8c2e904a6c0793d23bafcce19329e6df608e6ea7a5937f6bea40813bb326cf695f7a5b880169c33c3ebc7a3e05
- SSDEEP
  
  1536:E1D8cm80yZbEUivQGD7jcJyqrwOSWil6YcvBl3uMD8TOHvRRyOSNw3A0HWp+n3vg:2mFlI7EGlD/3A0HWlKp57Q
Score

1^/10
behavioral25 behavioral26
- Target
  
  SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/dom/inspect.html
- Size
  
  192B
- MD5
  
  324bacc88c9dc6d7ebe1424c5b528a40
- SHA1
  
  a6dfa79d656580e4b35f618265ea6dd47a53ed1e
- SHA256
  
  f845b7b32724a79564632be18e135706d4864475c2b70fb40be41d089a62ea26
- SHA512
  
  17d56dec7f1ab67618de876df5943ebb7995f2407a07b4d5c034ecb72ecbd0215fda5014a63e44ae7d6270b3a19246c60cad6ba4b6b55b45646185b43fcaaa0a
Score

1^/10
behavioral27 behavioral28
- Target
  
  SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/emulation/emulation.bundle.js
- Size
  
  57KB
- MD5
  
  45119517a11f01c616b921a8359a71d1
- SHA1
  
  912aa10c144c38c88fc74728f7bcb3cce950ccc6
- SHA256
  
  a623afb656d6ad65a2f6eb4059bbbca8690df578d3d4f1fb980c979dc5e43b03
- SHA512
  
  ca69520d499c411063f06c522fc2ac79d8c3efbce9fb60ca350cb401e1871d1f38c9afa04b2e2827b6e103366ff6dd9c2555a2061cc08a17b2f500a13bec3aa4
- SSDEEP
  
  768:NP3dh383lBI1JAE08u47UaHSZVjjSj/4HLYoXocp6dh9zL/S7+X2:NTb1JAE08u47UaHSZVjjlERcp6N/SiX2
Score

1^/10
behavioral29 behavioral30
- Target
  
  SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/emulation/emulation.html
- Size
  
  4KB
- MD5
  
  7b87b92f979112bf265261fa080cac2e
- SHA1
  
  74027b2196ae62a672b24cdaf4d9216ba1592933
- SHA256
  
  c99473ba2cad3509a329f897143993f241949e4b9b756ddc5eac05f0955b285d
- SHA512
  
  a92013cea4363ff7c9602306cc5fee0a55c4efc537466a1308bf789dbea91f6a66f5ee4a1c615cfd265d0f0abe35f7a07328f15e752d668480ed56e2aad8b308
- SSDEEP
  
  48:tbi5z/YuqqPgOP2ViW/iWCR98vzv01/sR9EXwpaVn4t8ql7Cx5:s5z/HqqPgw7git90L0lr8t8ql7Cf
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Checks computer location settings

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32