41c1b689562fafc86650ed14d37f814341abb0d278c146c46e0936085396ea12

Sharing

Copy URL

Twitter E-mail

General

Target

ThunderRay.zip
Size

736.7MB
Sample

240328-d3bwcsdg5t
MD5

3539c7f4dc773504bbb41a3777e0edf2
SHA1

6b4741e888676505e88e150c7deb40175dadd561
SHA256

41c1b689562fafc86650ed14d37f814341abb0d278c146c46e0936085396ea12
SHA512

9fc3a64df18f60eb6559988bf7bd038b1dffc82cc9ae6ac200dc414d00107e9bee86f510185ba9780fcdbafe64cd46cabca704a5e0f7eedc669c9f23cbbefc6f
SSDEEP

12582912:pzPXlAgAwBEBJ5T/apLiKiZ3UzUWjKF/6OGFLsxnkWEur9Y0lkDB+Vhssseb062V:JPVAgAwBoZ/EiZEWdo4+Wprm0lkDBWGD

Score

3^/10

Malware Config

Targets

- Target
  
  ThunderRay.zip
- Size
  
  736.7MB
- MD5
  
  3539c7f4dc773504bbb41a3777e0edf2
- SHA1
  
  6b4741e888676505e88e150c7deb40175dadd561
- SHA256
  
  41c1b689562fafc86650ed14d37f814341abb0d278c146c46e0936085396ea12
- SHA512
  
  9fc3a64df18f60eb6559988bf7bd038b1dffc82cc9ae6ac200dc414d00107e9bee86f510185ba9780fcdbafe64cd46cabca704a5e0f7eedc669c9f23cbbefc6f
- SSDEEP
  
  12582912:pzPXlAgAwBEBJ5T/apLiKiZ3UzUWjKF/6OGFLsxnkWEur9Y0lkDB+Vhssseb062V:JPVAgAwBoZ/EiZEWdo4+Wprm0lkDBWGD
Score

1^/10
behavioral1 behavioral2
- Target
  
  ThunderRay/ThunderRay/MonoBleedingEdge/etc/mono/4.5/DefaultWsdlHelpGenerator.aspx
- Size
  
  59KB
- MD5
  
  f7be9f1841ff92f9d4040aed832e0c79
- SHA1
  
  b3e4b508aab3cf201c06892713b43ddb0c43b7ae
- SHA256
  
  751861040b69ea63a3827507b7c8da9c7f549dc181c1c8af4b7ca78cc97d710a
- SHA512
  
  380e97f7c17ee0fdf6177ed65f6e30de662a33a8a727d9f1874e9f26bd573434c3dedd655b47a21b998d32aaa72a0566df37e901fd6c618854039d5e0cbef3f5
- SSDEEP
  
  768:6CEPutHjvpMgMwP9h5Ij7khsp/6JtEZwMXVtkUI3t3CXyEyk3VbNbqDvJ4oT1y:/r6CdsCOZwMX3k5dWyklh+Dvbw
Score

1^/10
behavioral3 behavioral4
- Target
  
  ThunderRay/ThunderRay/ThunderRay.exe
- Size
  
  638KB
- MD5
  
  b5e9c5fc3fe9c0332a7d1f2c43353be0
- SHA1
  
  c3f972544fb500fe2688d58849fb67613c4cb133
- SHA256
  
  05aa796606a5c33eae7a805ff3c756ce6090612b62b74ad39a788e7f987c3592
- SHA512
  
  b4ba00c5168a6ab0f2c125323ac05715b7b9cde71d6c10bbdbb17e5186e8b6495c6a0c32b1e4e685c18713068fe0e159576bd16b1ffdabd92ee672fda66e7cf9
- SSDEEP
  
  12288:44eCLdM1/SJzC9tiSlAZ99Y8kbCLN69LYUf0iy1:ntM1/SJzYCC8kINYrfc1
Score

1^/10
behavioral5 behavioral6
- Target
  
  ThunderRay/ThunderRay/ThunderRay_Data/Managed/Assembly-CSharp-firstpass.dll
- Size
  
  55KB
- MD5
  
  1a75199f6ecc294f9d748b8d63c5e25d
- SHA1
  
  7019a23a7525030dbbd7c616bfe60c3f9375175a
- SHA256
  
  b8b17c16bafe1d683919baaa936f02106448378f308d94b1f852c70fb9044705
- SHA512
  
  7b7603ce3e0c2d1a62bf019af33d63eb0110c928bf88e1d8f9176508b9d37f48fc153b2371bc6480b53948e596ea0945b784f546ef9ffbe116b6aa495afa338c
- SSDEEP
  
  768:iXyKQkH6s9Y3+UMFRT4yCqzDZHxt2xlp4IuHLhKQTaVOVFiTDNvRb:iXyKQw6s9Y3litQBuHLwQT3IDz
Score

1^/10
behavioral7 behavioral8
- Target
  
  ThunderRay/ThunderRay/ThunderRay_Data/Managed/Assembly-CSharp.dll
- Size
  
  1.9MB
- MD5
  
  131501c04bd00a1456332daa8d6b5a93
- SHA1
  
  efbc9e881286b4e7152e2f6cb11bd77737cefe9b
- SHA256
  
  12ccffc9b628a548a9a983a3a225767448a4c39c894435759a2c90aa13b3f19f
- SHA512
  
  0e6c17128e65286b5f52c4a372b5fdf8228617d7617950dfef78e67a691ae7519e4136e187a5104d9fa7663b392f0effd83a50d996494075470db8179deb64d8
- SSDEEP
  
  24576:4zZ4d5cMGWITCPeLyW6PIC9AgkFNh2Sh8V1r2ICo9Evgc:4qd5cMJqyW6AY2VhA1r2ICHgc
Score

1^/10
behavioral10 behavioral9
- Target
  
  ThunderRay/ThunderRay/ThunderRay_Data/Managed/DOTween.dll
- Size
  
  170KB
- MD5
  
  3234e9cc587ecd48b41deffc593a0d9e
- SHA1
  
  0202eecd7b324a50398c61300942a0a52daa39dd
- SHA256
  
  f0833b8c3ee2bb33cd480150052a161ad5bc22137a8f5ca274fd9fe490cfbd93
- SHA512
  
  b8efa4b88f97f8274cbdcd3b92d28348148da568852ffdf113ba8bafe5ee81ff8e1b3814415df147938bfd514465d450090cfddf810edb2ebf920a024dc94e14
- SSDEEP
  
  3072:4Ov8bczoe9qHp2+pEZzhznsGk7byzyzQrl3dDXkYrv2zi+:/vhzoe9qHphpszybIyol3m8v2e
Score

1^/10
behavioral11 behavioral12
- Target
  
  ThunderRay/ThunderRay/ThunderRay_Data/Managed/DOTweenPro.dll
- Size
  
  15KB
- MD5
  
  18c37299dcf85ce12b9d53b000e7dcba
- SHA1
  
  68376804e2ab59614709e8f5592a85a3a5d80dd0
- SHA256
  
  85855ae67b9ce9a0329949b1044a4e3ea77233896a07a344056898e982bd1706
- SHA512
  
  5f3d285912d6a3068a495ca15a3c986e0fb5bdbfe7857982b11580b3777601add84026c35ff32069f2ac12d1bc78112427110b6866fdaa8604bc0f3499be6faf
- SSDEEP
  
  192:SC/uIVVq8wdIVWfPvK+QVYMCrzBGcs8KbRIfnEs7lNBQ4XB7oek1mVPW:woE8II8vZwOAbRIL7lbNNoek1mVP
Score

1^/10
behavioral13 behavioral14
- Target
  
  ThunderRay/ThunderRay/ThunderRay_Data/Managed/DataPlatformImport.dll
- Size
  
  70KB
- MD5
  
  402c37ed11286ac7f446a3411d3b412c
- SHA1
  
  37d86775c0d736aba437df19dde1e0a8984dfc4c
- SHA256
  
  5339504b0c7239338228f359549ee760b53f1dedace38212fbb8c91c0fa43aa4
- SHA512
  
  ae2dd2a0642c43fb7bfd7e4d1c26348d0f6795186b7051245113edc2279b7bdd100c1050650c6fba67f600e6236aa418bb588fa5251fe903b278bee498dc79c7
- SSDEEP
  
  1536:uBDmExzk3iSj9VE8BHlVxlDajKGmybACDy1/k5iLYahulypAcjAcLkI:uRmaC3cDy1/k5iLYahulypAcj3QI
Score

1^/10
behavioral15 behavioral16
- Target
  
  ThunderRay/ThunderRay/ThunderRay_Data/Managed/DemiLib.dll
- Size
  
  14KB
- MD5
  
  f624414946dfdfffd24d3b819f4459d8
- SHA1
  
  f907ad7459015c560ff0c160630e3e19b7c3ed59
- SHA256
  
  fd092e3260ac45bc04a1bcf4cc3f6e42df1d1b17f918a7f321c9004ed96b56b9
- SHA512
  
  4f9305c151f0527703a7cce07ac709e5d0fe9980afe140b1efbcd2c704da3730fbd3b89cad103ac46f104504f9b10291e3bcad31c6854534de7b193273365ede
- SSDEEP
  
  192:vxmce+fI7xxndxNSMowoDFUHT7zR74GMwgmxJ0DSmeNJQK4fREckMLlwrvrQZ:vxgxxgq/zv5x1NCT/LlwbMZ
Score

1^/10
behavioral17 behavioral18
- Target
  
  ThunderRay/ThunderRay/ThunderRay_Data/Managed/Elringus.SpriteGlow.Runtime.dll
- Size
  
  8KB
- MD5
  
  d893060955f85a0020af5ba19e237979
- SHA1
  
  41038d9342aa6189c94ab48b03b8e71d411a5310
- SHA256
  
  b3c33d5143b68ba9c9d10a84e50ea25f14608f6eaa4d150d710885d293573568
- SHA512
  
  c6f2431f09594ede1c7eb9477de13672c62fc60157b85960de817c9bab04a74d6661f32955e37e40db4d77de43f7330db1a15ed6b7f76d151e4cdd169ff490ac
- SSDEEP
  
  192:kC2LDmEUkwJhCmualtmfXgTAE+uTkSOozeE0:n2PmOwmmuDfXgkLSOP
Score

1^/10
behavioral19 behavioral20
- Target
  
  ThunderRay/ThunderRay/ThunderRay_Data/Managed/MarketplaceImport.dll
- Size
  
  38KB
- MD5
  
  c37b3272b01391e78e650b339a4aa065
- SHA1
  
  a4c86208340c711df06432443c0c687882feb9b5
- SHA256
  
  f5ca37c3fe16a4dcd16a2cd49e10209e6eb27168f3b2b269887546cf152844af
- SHA512
  
  44a9aec27c0196aa8104c7739e5b163ee24be212106e2070d2297d90956bc8a02c7af155db3b23a66a2dcd0ba67b060b39e49902546aa7311373d372c6deea05
- SSDEEP
  
  768:2pfMh87XQkhPKVxlYFrA01L2+45GUICOo0hQiWZvTuc+8e:2pfMh8jQkho4Ud5GmAKZvaxD
Score

1^/10
behavioral21 behavioral22
- Target
  
  ThunderRay/ThunderRay/ThunderRay_Data/Managed/Mono.Security.dll
- Size
  
  303KB
- MD5
  
  f7acab1e09deaa11c9bdd0d723363016
- SHA1
  
  e940058cff5dc584c11dc6e4b111e85a3f6ca06e
- SHA256
  
  8c47b23389f9eede068683ed8b64b5a466f986499112983290778b30accfd1ba
- SHA512
  
  ec73a3c841358113a33829b50ea14ec860ccaee883c327515b369d08e3979643466fb57dfd550c62eb1468b6c92c0cb03ffb07505ec77e62bb83fafcd51b2894
- SSDEEP
  
  6144:Buca+sTOwf+31OE5FXNywY1URfxArXj5of:9Ui9kgxY
Score

1^/10
behavioral23 behavioral24
- Target
  
  ThunderRay/ThunderRay/ThunderRay_Data/Managed/Newtonsoft.Json.dll
- Size
  
  670KB
- MD5
  
  95fabcecebe498f780caaaa33483bb2f
- SHA1
  
  c994bc5f781df8fcc8aed36f7858c9e647942000
- SHA256
  
  87fa9a30e8406b0ccee1ac7f44b529228b4d76f7a3549b1a3817fdda0f5b5b2a
- SHA512
  
  9b4ada10114c8c5c6d99aab1832682ec8bb9c9f95c0310648b1defba2873e732af70cc6f0a2c1abc23f2170073408120020feaf2b08441f137d4f590572d340d
- SSDEEP
  
  12288:judT4rkEdatCiMGYBsq85XrWIhf8vbTB8jx6nws:j84rddkCTGN7H0vXB8jxGws
Score

1^/10
behavioral25 behavioral26
- Target
  
  ThunderRay/ThunderRay/ThunderRay_Data/Managed/Rewired_Core.dll
- Size
  
  2.3MB
- MD5
  
  3675c40fb7f6b8a313f7f7bc9ad3fe34
- SHA1
  
  0ddef8ed5aeb8065dc024b4370a1403e54d31220
- SHA256
  
  4c24613834e96c3a0a622540fb8fd15f8e8380029724b9c4942c110a893c7553
- SHA512
  
  727cd98c1261a1ef1d79f7e4b152b73b15c220872a21c41d7dea706a7eb8c272a0e1f816c66075da6c44a198157f384d7c9ad31249591504194983cebbd5fb27
- SSDEEP
  
  49152:PSMwVP0hV/O7F0jRdBtGFNvVNMIK74dycjJUuG:PLwVP0hV/U0jRqNNSI
Score

1^/10
behavioral27 behavioral28
- Target
  
  ThunderRay/ThunderRay/ThunderRay_Data/Managed/Rewired_Windows.dll
- Size
  
  938KB
- MD5
  
  6e36fa5b65be95ec1c4b05a8b5cf5ee3
- SHA1
  
  8af56effa2c9f591ad7cfa3a84cea432b6fa6b24
- SHA256
  
  644f0d47804012e006acc63ecd72a5f4ba22f7963b29e1cc89dd1cd382cfeacf
- SHA512
  
  d71f4f0a0dd4f8a519bb327bf4bc67ff198bed9374532580257a774adcccf498267f9a130b0a951f761765e5f34f40c6c6b32350389d219a9d0d584597fd8345
- SSDEEP
  
  12288:AEvMnXftihC1Ax0RwhLcx8d8hePCdI3Ee9LaSP8m4YerSc1IHn+R/qn:AYMteORwhLc06d68m4Ylc1IH3
Score

1^/10
behavioral29 behavioral30
- Target
  
  ThunderRay/ThunderRay/ThunderRay_Data/Managed/Sirenix.OdinInspector.Attributes.dll
- Size
  
  37KB
- MD5
  
  ffca2148af066a75b6c55ae7efe43100
- SHA1
  
  90a69ec807df0ca8939220b066c810db6aafca4e
- SHA256
  
  288e964b65963c0c1b23f9d6f6e8d6c3d3be0023c2668ea8ba1ffa4848f1021e
- SHA512
  
  f56eced9a5d040ae83c1d40f7fdab6db165e9da0cd0aa15c05a81e8adac4cdeaa3fe72c230b6c1de278c14f4bf4f709bf21b2d3df4495b5885fab7ad01dab3ee
- SSDEEP
  
  768:pS/A+Oar/iUIV5WXj435LE6EIt6XZmOZmzjEAfTKoeU:AI+OFUq5Ojgl88OZmzjEATK7U
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32