ab66ae9108ab3ef95667ab1cc8ba055e8f2e3a0e04424142d82ef79442884c74 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

RADTools.7z
Size

1.0MB
Sample

240417-hytylaaa91
MD5

d04942e182795e119d32d9a30c352e7a
SHA1

3a355a7e99971c50bc4243210cf02f3bbe84340a
SHA256

ab66ae9108ab3ef95667ab1cc8ba055e8f2e3a0e04424142d82ef79442884c74
SHA512

ce259fd27c7a6339b2ab3828047d03ec95ac71cbb6645e1744257fbb32937a4c930ff3f1fe447ed750d0ff83c9fb85f7d0351a6b898c113853f732bd05a90aac
SSDEEP

24576:AxpKLwdzWdH6H7c7dZIMN0p4OWMo2DvfutcXvtVB9Mz2Wfz:AxpKLkzWdw7gd6MN4B1qUA6WL

Score

7^/10

discovery upx

Malware Config

Targets

- Target
  
  radtools.exe
- Size
  
  1.0MB
- MD5
  
  93d231ed804be5bed9ea1529e9bf952a
- SHA1
  
  12117a48524c770fa43baef18fc7f9428944c280
- SHA256
  
  ebe8215afa0910eb67f461b596176bd4f6ff1dfde84707328b5c32d68ad99185
- SHA512
  
  6c9d15423ca2b04ee52ce8ef50973b7d8536cfcc55f1fac0b038d5924487000b78041593af528fff98425a7c45e5439cd13df3a6f409dbd231dbfa1fda53397f
- SSDEEP
  
  24576:RpyJv/aTV5tDnxc4Zn9jpz78xDLGfk4Y4IxF2L7wNn2mFLJ:RsZ/aTVzjxcMnRpzwxwkFxF2Lsd2mFF
Score

4^/10

discovery
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/StartMenu.dll
- Size
  
  7KB
- MD5
  
  e98edd029f7f9f62ebb75992841817b8
- SHA1
  
  8a7054283e4386689a29c63f4e65f3ef1ea7c43f
- SHA256
  
  abf56fe9b605c8cd716a2cc59b6ef052428753d5c716aaf857c3349d74fae66c
- SHA512
  
  d6f3b151715a843a795f5a79931867031b2cc0c6406050f6af665fd07ba9d3b69557a09c720f88328b277fde0f47fffbb36a895196b7eb28d3c15ad0becc063a
- SSDEEP
  
  96:Z+dBC0x22epxPEvC4FkWE+in1/FMvsCGRfRFqCB5tlGhEl5VN:Z+/epxPE1r8/FtmCDtUg5v
Score

3^/10
behavioral3 behavioral4
- Target
  
  binkplay.exe
- Size
  
  337KB
- MD5
  
  14fe135e33a1781e8040598069cfddb1
- SHA1
  
  3bf05d1833d66e1f8b05736448a2b33da93428de
- SHA256
  
  c29354688f748494d2f6b27cf0fff08e618dbfeeebd2c94853e7546daf33ede9
- SHA512
  
  f3c3a2eff6a349f5834ce4ef709f6639339134085762ebc9dc594fa20f6d4dc158c0cc890122443f39dd9c7dc28a64bfd4184e3b797ea3d330b638b05de7c6e0
- SSDEEP
  
  6144:85H9Ej51e+D6yqmwGN8kL28FbvTMLAMlgUHwooo+RO8:85dEjrWFGNLy8FmAMlZZ+RO8
Score

1^/10
behavioral5 behavioral6
- Target
  
  radvideo32.exe
- Size
  
  231KB
- MD5
  
  2a1f547044b51927488a810ccd65cc55
- SHA1
  
  75bdb847ab03672027b0e82eb5cc697e41b274f9
- SHA256
  
  9366f072ae7efc7c40c2eea8621edae036473060a095ba6f87d58d4e01386862
- SHA512
  
  ed8501df0e6216bd4499284498d4dd96f5d7927e65114e9c8c4cb0521f7034a5c0e0ad5fbb28cbcef36c9a1d8bb3e54814cebdf09c28c41f4d102d13c1ea6e62
- SSDEEP
  
  3072:kouCTCxi+No+FykzqfmZ5YsGkfbRvo2cD4QhOCBN5dUs71hefbERgrx+BKszpaXI:tuCTCxbQ9N5hWfi5+03Oa
Score

3^/10
behavioral7 behavioral8
- Target
  
  radvideo64.exe
- Size
  
  2.2MB
- MD5
  
  e85f39b4b7c1803d4a5a318202e98469
- SHA1
  
  c0faa77d12b743990424b48c838767a6dec46207
- SHA256
  
  1de07156418db3ccbb1d586c7567ea3cc0146b03f781e7cced83c821cc12d0f4
- SHA512
  
  679c80012df7cdd037c975ac6d506461dbe81e2928a1ba39a657888e2c4f7a5decebe31491c81b32d6622dc1a93513dfd06456cb60f5cff2b1ad22f2240a3834
- SSDEEP
  
  24576:jAKlimWjid+zvD8ASPWEEUp6ESttpCmzowz8fNIypeHCqueGtNZx/PoxtPWAkcc/:VjWja+WP6ttuhNtPeWNZx/An+2Q1
Score

3^/10
behavioral10 behavioral9
- Target
  
  smackplw.exe
- Size
  
  114KB
- MD5
  
  f6fd1db5d01dd13ffc12a1bff57649a7
- SHA1
  
  0cf2337480f35076111eab65d03aa552457ed47c
- SHA256
  
  da10e9dafa87ac6e7fb78064cc1efbd887f69f186d14c7d235b505387a3cb780
- SHA512
  
  082ce51d97ab9acd4369bbfef49b8c096459aee414c53a5e77a4fc0b419d8e1bdd076d7004875e299cc951f7cd217a572cf11933d3157690e00ed41e650a38c5
- SSDEEP
  
  3072:6SQVYfVwGqXkdoBj3mto3rpjhf6IiTgM2:6SQJPAS3meNjhf6ZTn2
Score

7^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12