0d8ea62f062e14bdded875879212a3162fd0c08737ba38332fdce0ef1eebcd83

Sharing

Copy URL

Twitter E-mail

General

Target

rCubed-2.0.0-64bit.zip
Size

23.2MB
Sample

240408-3gsdnafa49
MD5

0a41d164553e6b128aaf534ef8e45d18
SHA1

d41849a4772dc7fa1f21293f4706027b3894ae7f
SHA256

0d8ea62f062e14bdded875879212a3162fd0c08737ba38332fdce0ef1eebcd83
SHA512

5dc06a051cc6b71a023f6bae0da15206be0d5e7359ae97b219e16f500de9759afec473580b922390a62d3029a0c71c24eee4fe92e3a44b92807b42d361f89304
SSDEEP

393216:WtvrtlNp9wtqkvYYqonDOa9yDkHvkoHFpL0Cwpg4ydLrQ6ePC9/VhFpA0CRW6XQ4:UtP/wtjpDpADkHRFFVwW4ydDIC91+0Cj

Score

3^/10

Malware Config

Targets

- Target
  
  R3Air.2.0.0.Release.64/Adobe AIR/Versions/1.0/Adobe AIR.dll
- Size
  
  19.9MB
- MD5
  
  4561661d3df1ebcd6823e7592f8cc233
- SHA1
  
  94fe04b01d36fbff427d91686cb227ee61aac43b
- SHA256
  
  e9fb88df973afeb78c28fb35fa5bba80ea459e00aa3aa054aa839ad3bf4f7023
- SHA512
  
  9062af4b89e734569ab7a8497ca6030474964cb026fc2c980d3d8383d6edf144d992ebe4a8ca20b3f88c3c0edd622f3b1898fb2fd5b4b281e930940b8ff00fe6
- SSDEEP
  
  196608:A3XhOzQeiK/hSKsJ3gQ5tMBIf3txX7K8qGs/JfD/X6MpTP+i:A3XhOzQE/hSKsJwQ5tMc3z7WGSfHT2i
Score

1^/10
behavioral1 behavioral2
- Target
  
  R3Air.2.0.0.Release.64/Adobe AIR/Versions/1.0/Resources/CaptiveAppEntry.exe
- Size
  
  92KB
- MD5
  
  f83c68d45b82a6537424b7ad2fb918ab
- SHA1
  
  4f3b475663833e01a8d17f884a6a83def8bb98a5
- SHA256
  
  8861747abc1b60c6d9b263567f026c20e950cca17204c5e5b3a6d8fc5f82fb27
- SHA512
  
  c980f9c54619913ce4bf68b7677bdc7fbe007b7a569b78c96a0612cef15ce887c40278deea6b89afc82d625f9e652dfa2d88891bcc531c51a3a6f50fdb68d2bb
- SSDEEP
  
  1536:4056I2XWkwizzr4mLo0Pdg/k+DefogN3rsWufd09dl+EMbIVSK6z2b:H569XWkwazEmk+a/k+DewA3U1MIvbIVJ
Score

1^/10
behavioral3 behavioral4
- Target
  
  R3Air.2.0.0.Release.64/Adobe AIR/Versions/1.0/Resources/NPSWF32.dll
- Size
  
  45KB
- MD5
  
  cb3140c7124595bbda8fb813ce5bf026
- SHA1
  
  c5bed48ba3edca248e662fd84d4514d8a6149895
- SHA256
  
  b99a91d965af4e4941a26ae785713e12bb86f010d1adc6079bdd3ffdc896a69d
- SHA512
  
  c1cd119462ba4366f81c8ed0547b2238fd353eefa4b58a5433bcafc6e23c01d63aac51032a1208e1ad42d44e9cfbd52924474f38043efa518659ad855c3daec6
- SSDEEP
  
  384:ce61wzgQcJSIumB3DHlctUWDfKCdzH7/z3ZsHLkOgRPnh9L5I:ceYEtIlzmthDfK2foRgdh9Lu
Score

3^/10
behavioral5 behavioral6
- Target
  
  R3Air.2.0.0.Release.64/Adobe AIR/Versions/1.0/Resources/NPSWF64.dll
- Size
  
  46KB
- MD5
  
  71e5ea41bf9d2b3f86d926fd43296edd
- SHA1
  
  31613922fe87172ea569d05dcc10c0a4c7768e79
- SHA256
  
  a6f05dc1f9e24e79dbdc87f35b57b9a49eab03b1ac057df0bae669a60fb24e60
- SHA512
  
  fc1044c5a8a5b462c7db7cec051043e32f2c65a3352825ffe657d3c2c66cc6c3addc49d9a2765c506c9be9473a8f983df6b991c123f4b4dddd297ff3a7252448
- SSDEEP
  
  384:Ed+w6XFoRXFF7uCvpEB3DHlctUWDfKCdy7/z3ZsHLkXPnhM:E/6XFo177uCvpCzmthDfK2QoahM
Score

1^/10
behavioral7 behavioral8
- Target
  
  R3Air.2.0.0.Release.64/Adobe AIR/Versions/1.0/Resources/WebKit.dll
- Size
  
  7.3MB
- MD5
  
  4ed09ae7d12cafd09eae4eccc1c9e510
- SHA1
  
  b4b8f31aae9fcc09785256d5fd8faf57c515588f
- SHA256
  
  66c3b89b33c43dfb1c0ec6fb7085c2442c98c27683a943f3115fb77c9d45e705
- SHA512
  
  0f1fbb5046b070191e7549eefa27a5567bef823decdfb0f1db8adb6e69d9b0799dae7ba87577b59efaca4b12c7bf5969a0f39aa15b12b7829d56858c81ae10f5
- SSDEEP
  
  98304:fcvFc2Vi+zLlApdmBtY48y+9+c6h8F61y/xwYp86uyPJdLyq:foC2VtzLqdmBtY48ys+c6h8F61U1WA
Score

1^/10
behavioral10 behavioral9
- Target
  
  R3Air.2.0.0.Release.64/R3.exe
- Size
  
  108KB
- MD5
  
  c8973d954de8bdfbc8eaf142ddad467a
- SHA1
  
  75c9af2e68035c3b6a582bbf133edb2be85091db
- SHA256
  
  343f4bca3c8006251bcb4aec1efc2f61d2263418cea6660f1763240af821d6c1
- SHA512
  
  bd1d89818c4879ac52ca5e66826d4539fd5b47d27a1e46fcb8339092e8d55af266b70480e567975cdd206aaac9700fcb3da33f7325939699b4610700ee45690b
- SSDEEP
  
  3072:/569XWkwazEmk+a/k+DewA3U1MIvbxVSK6NxCwxw:8RwaIJ+glDsUvD8xCb
Score

1^/10
behavioral11 behavioral12
- Target
  
  R3Air.2.0.0.Release.64/R3Air.swf
- Size
  
  12.0MB
- MD5
  
  10049e4b660bb0814e2d929f17a99262
- SHA1
  
  e0d4f10d6fe1c12d48ababe4b8a6ac74576b91e5
- SHA256
  
  bd7ba2530b9fc1f16d2784aba9ea89ac7b1b3623ab68bd2d0009b151fcc85d85
- SHA512
  
  4cde7fcfb59bac137477643c959348999657f1514a7cd94346f49b81e80dc1213778c9d4bc139763200cf8258d0ce92f809c2a982b565ea265ceb97df48ae79d
- SSDEEP
  
  393216:5oHFpL0Cwpg4ydLrQ6ePC9/VhFpA0CRW6XQw48:8FFVwW4ydDIC91+0CRn48
Score

3^/10
behavioral13 behavioral14

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

Install Root Certificate

T1553.004

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14