Overview

overview

7

Static

static

3

d618921099...a0.exe

windows7-x64

7

d618921099...a0.exe

windows10-2004-x64

7

$APPDATA/�...�!.lnk

windows7-x64

3

$APPDATA/�...�!.lnk

windows10-2004-x64

3

$APPDATA/�...�!.lnk

windows7-x64

3

$APPDATA/�...�!.lnk

windows10-2004-x64

3

$DESKTOP/�...�!.lnk

windows7-x64

3

$DESKTOP/�...�!.lnk

windows10-2004-x64

3

$FAVORITES...�!.url

windows7-x64

1

$FAVORITES...�!.url

windows10-2004-x64

1

$PLUGINSDI...RL.dll

windows7-x64

3

$PLUGINSDI...RL.dll

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$SMPROGRAM...վ.lnk

windows7-x64

3

$SMPROGRAM...վ.lnk

windows10-2004-x64

3

$SMPROGRAM...�!.lnk

windows7-x64

3

$SMPROGRAM...�!.lnk

windows10-2004-x64

3

$SMPROGRAM...�!.lnk

windows7-x64

3

$SMPROGRAM...�!.lnk

windows10-2004-x64

3

155�...վ.lnk

windows7-x64

3

155�...վ.lnk

windows10-2004-x64

3

CI4.exe

windows7-x64

1

CI4.exe

windows10-2004-x64

1

bass.dll

windows7-x64

1

bass.dll

windows10-2004-x64

1

gamedone.html

windows7-x64

1

gamedone.html

windows10-2004-x64

1

newgames.html

windows7-x64

1

newgames.html

windows10-2004-x64

1

order.html

windows7-x64

1

order.html

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d618921099f3913b985beb1550eeb3a0

  • Size

    20.5MB

  • Sample

    240319-phdd8sbh44

  • MD5

    d618921099f3913b985beb1550eeb3a0

  • SHA1

    17b1b426f2765225f06820e3cf7aa8e5091d37f8

  • SHA256

    0ecb58eff1dd7994f3af2aa57dafb3f86cc802c7cd152b9f19cdfe7e5aea9cc9

  • SHA512

    b7547c63ed0327cdeee1df31128115f9054ebc156224bf3563d4c7b1c49c34147d33924f6b036e30ee759a1c89b1d095ce8b363ee684acc098062fb89448256d

  • SSDEEP

    393216:XNWRBr9l2RYjlwsT93fdWEQjW07IJIGgIp4gZFtXuFPbBv9+3ybgh:XsQOn1FWEQjoqGgIp4AneJlv95G

Score
7/10

Malware Config

Targets

    • Target

      d618921099f3913b985beb1550eeb3a0

    • Size

      20.5MB

    • MD5

      d618921099f3913b985beb1550eeb3a0

    • SHA1

      17b1b426f2765225f06820e3cf7aa8e5091d37f8

    • SHA256

      0ecb58eff1dd7994f3af2aa57dafb3f86cc802c7cd152b9f19cdfe7e5aea9cc9

    • SHA512

      b7547c63ed0327cdeee1df31128115f9054ebc156224bf3563d4c7b1c49c34147d33924f6b036e30ee759a1c89b1d095ce8b363ee684acc098062fb89448256d

    • SSDEEP

      393216:XNWRBr9l2RYjlwsT93fdWEQjW07IJIGgIp4gZFtXuFPbBv9+3ybgh:XsQOn1FWEQjoqGgIp4AneJlv95G

    Score
    7/10

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $APPDATA/ȫַ!.lnk

    • Size

      362B

    • MD5

      9656c04d91ae3066cc07235e06fa0b32

    • SHA1

      b2fcbbaaee9cdfe744909a5b6b20f88fd26ae118

    • SHA256

      b5ed69a6cd004197ebef1742aa3c27d5d7d78cdb15b3129957ec89fe65666f0a

    • SHA512

      93a28b9d2f0b99bc56001837183f69f7ceebe372b44ed1640c5fe35ba6b3c5616aea04326e865ae206868f0c12e04b42c1b183b19d90f0d6d65fb841340dcf63

    Score
    3/10
    behavioral3behavioral4

    • Target

      $APPDATA/Ա-!.lnk

    • Size

      500B

    • MD5

      6d5e090f3cf01999d9921ae2f9ed5b1b

    • SHA1

      43bd9e6cb19fdbe394f982ee64d5585c1b4b3d87

    • SHA256

      22ef9ca32e153a7093377dd10be2fa2f6eb5367113866a71fcbda6d3bb6aba1a

    • SHA512

      f6b0757fe9f7135137be9718384655562f59122413fafd486a51aacd21433de3f55dfec2465f331c802821ffeb3c61fee63cb355c2a9fd93976b930fe981b683

    Score
    3/10
    behavioral5behavioral6

    • Target

      $DESKTOP/Ա-!.lnk

    • Size

      500B

    • MD5

      6d5e090f3cf01999d9921ae2f9ed5b1b

    • SHA1

      43bd9e6cb19fdbe394f982ee64d5585c1b4b3d87

    • SHA256

      22ef9ca32e153a7093377dd10be2fa2f6eb5367113866a71fcbda6d3bb6aba1a

    • SHA512

      f6b0757fe9f7135137be9718384655562f59122413fafd486a51aacd21433de3f55dfec2465f331c802821ffeb3c61fee63cb355c2a9fd93976b930fe981b683

    Score
    3/10
    behavioral7behavioral8

    • Target

      $FAVORITES/Ա-!.url

    • Size

      330B

    • MD5

      eca1681f3f404376917a87dd3ee9950f

    • SHA1

      3a0a7808cba454e32f8c23cce153604b86763aae

    • SHA256

      ab71745d6b354ab9895cec3e6089e3f371f9e4b8bbdb06626fd74b9de02980a7

    • SHA512

      10227eda9d10af9a551adb29ecec2b7968a7e0a1437020d8e476e0a92ba165935bc28b28bf6ed4feb9235257f370b68ad0c8b21042c76098557170958f408994

    Score
    1/10
    behavioral10behavioral9

    • Target

      $PLUGINSDIR/BrandingURL.dll

    • Size

      4KB

    • MD5

      71c46b663baa92ad941388d082af97e7

    • SHA1

      5a9fcce065366a526d75cc5ded9aade7cadd6421

    • SHA256

      bb2b9c272b8b66bc1b414675c2acba7afad03fff66a63babee3ee57ed163d19e

    • SHA512

      5965bd3f5369b9a1ed641c479f7b8a14af27700d0c27d482aa8eb62acc42f7b702b5947d82f9791b29bcba4d46e1409244f0a8ddce4ec75022b5e27f6d671bce

    Score
    3/10
    behavioral11behavioral12

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      14KB

    • MD5

      325b008aec81e5aaa57096f05d4212b5

    • SHA1

      27a2d89747a20305b6518438eff5b9f57f7df5c3

    • SHA256

      c9cd5c9609e70005926ae5171726a4142ffbcccc771d307efcd195dafc1e6b4b

    • SHA512

      18362b3aee529a27e85cc087627ecf6e2d21196d725f499c4a185cb3a380999f43ff1833a8ebec3f5ba1d3a113ef83185770e663854121f2d8b885790115afdf

    • SSDEEP

      192:86d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jwK72dwF7dBEnbok:86UdHXcIiY535zBt2jw+BEnbo

    Score
    3/10
    behavioral13behavioral14

    • Target

      $SMPROGRAMS/Chicken Invaders 4 Ultimate Omelette/155ɫվ.lnk

    • Size

      350B

    • MD5

      2eefc9c46f6597c7b8e425f8c2130e64

    • SHA1

      4dbcb7c15a8624c9054debd1261963a35ccf8d74

    • SHA256

      7756423e3de11499438968c53aeb575285995045b33832d601612512dc9e2424

    • SHA512

      2226a924ccebfa75d3e6927d64c58917e27b57ae2af3fc658126902f511c3ea3c4f362306a7eeb6073445d3de48b125453756121d1ed3e694b5e44a5fdc23efc

    Score
    3/10
    behavioral15behavioral16

    • Target

      $SMPROGRAMS/ȫַ!.lnk

    • Size

      362B

    • MD5

      9656c04d91ae3066cc07235e06fa0b32

    • SHA1

      b2fcbbaaee9cdfe744909a5b6b20f88fd26ae118

    • SHA256

      b5ed69a6cd004197ebef1742aa3c27d5d7d78cdb15b3129957ec89fe65666f0a

    • SHA512

      93a28b9d2f0b99bc56001837183f69f7ceebe372b44ed1640c5fe35ba6b3c5616aea04326e865ae206868f0c12e04b42c1b183b19d90f0d6d65fb841340dcf63

    Score
    3/10
    behavioral17behavioral18

    • Target

      $SMPROGRAMS/Ա-!.lnk

    • Size

      500B

    • MD5

      6d5e090f3cf01999d9921ae2f9ed5b1b

    • SHA1

      43bd9e6cb19fdbe394f982ee64d5585c1b4b3d87

    • SHA256

      22ef9ca32e153a7093377dd10be2fa2f6eb5367113866a71fcbda6d3bb6aba1a

    • SHA512

      f6b0757fe9f7135137be9718384655562f59122413fafd486a51aacd21433de3f55dfec2465f331c802821ffeb3c61fee63cb355c2a9fd93976b930fe981b683

    Score
    3/10
    behavioral19behavioral20

    • Target

      155ɫվ.lnk

    • Size

      350B

    • MD5

      2eefc9c46f6597c7b8e425f8c2130e64

    • SHA1

      4dbcb7c15a8624c9054debd1261963a35ccf8d74

    • SHA256

      7756423e3de11499438968c53aeb575285995045b33832d601612512dc9e2424

    • SHA512

      2226a924ccebfa75d3e6927d64c58917e27b57ae2af3fc658126902f511c3ea3c4f362306a7eeb6073445d3de48b125453756121d1ed3e694b5e44a5fdc23efc

    Score
    3/10
    behavioral21behavioral22

    • Target

      CI4.exe

    • Size

      2.9MB

    • MD5

      9ac7d3e6c274ae3b0333578ddd2c6a48

    • SHA1

      47bd6bbf413a89b5e442cd70ca68dc72ab494684

    • SHA256

      6693050a073c4254e3b32bd0301446d2f24ca630ccfeb8ceee5216d5ecb7ef3a

    • SHA512

      4c2995e1acddf63ad1d24905d7ebc12ca774ba9092fc40da83f146001222d60afa8aab5f71a8703d4440394dbdf9a0aa91c86f94fa7302046a210749ee447e64

    • SSDEEP

      49152:wrZOO5LZgpeuvoCAzLJ73x7iasUbrEEiWbeghKhvna3Boa2reCP0PLSm4RFJjj7:+OO5L8k7masUvtYh/a38aiYSPJj

    Score
    1/10
    behavioral23behavioral24

    • Target

      bass.dll

    • Size

      96KB

    • MD5

      8741c1669550d89bc781dfa5ac11da8b

    • SHA1

      d083e66010aa0f884ad80823384e7f50c3eaaf68

    • SHA256

      91dabc42430075dd6b29a143a6cbed02e2135b3db9f76bd90ddd7621a13da54d

    • SHA512

      e7d0a0bf6852eb9ec24bf1e9e7546276469e6445437e949507facfc22009e3dc82994d6e9ed9aaeff9fc90c89507f325e47344d22d00d04238205873ce24fb01

    • SSDEEP

      1536:jYcrMnh/DhwDXL0vhRZ9KEsgAL6OeUko/wToQUe4E8Gf6cp5WDXLbfYEjr/9:s+Mh/dzZg5gfTgSoq4PGScpkLbh

    Score
    1/10
    behavioral25behavioral26

    • Target

      gamedone.html

    • Size

      321B

    • MD5

      095367474d0801403161e195fe734e33

    • SHA1

      73d5c4bf8ff536e7d51338335ea2297465b134a4

    • SHA256

      80853d6c6637ebaf83bfbaf72f425a1d54aece52aa342e2531b4be697f9b595f

    • SHA512

      743aa5c40a6e85bc5624184b052532b6787aa1ddf6e49734316170bd82004b01cd3445b8f1a7edf9b036ae87aa7ca883c0050401ca1cd8be6d9adbc3ca0491a3

    Score
    1/10
    behavioral27behavioral28

    • Target

      newgames.html

    • Size

      226B

    • MD5

      a6a529b451231026923bd49a4150426f

    • SHA1

      42a29d0bb7cd455c47739a86f4b75f04f5f7b57a

    • SHA256

      4a0f715447de0c3ac83e1f43aee8edf6255c20f5abc0c946f657d9a3a6ac173e

    • SHA512

      6293bbf84a44c8fff51723f3b979a2b034f357e31c672e91095481365dc76d73012d55ed934c284c67b7f296ae6a235b61a1a42a0d3167734ddb4a68da4a8853

    Score
    1/10
    behavioral29behavioral30

    • Target

      order.html

    • Size

      219B

    • MD5

      97ff27eb7eee33bde6ff4374057712aa

    • SHA1

      68f88a03bf842b8d5b3f65343e924a817bd84216

    • SHA256

      c4aebd4e5dfc74dd5d13cd6506964aba92df8aa223617221fe11134f7a909635

    • SHA512

      2d8b032c337cb05c83cb8e05c8a6d7d56ea05efe57394e6f92588e01029e20602981824c2bc0b488db4154984fb7da91f019924d0b6004969f108abeead60007

    Score
    1/10
    behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks