2e1e3f75fdb08c26e41d7870db6ffea5b89b39100899fe609b3c1d0d018c87d3

Resubmissions

14-06-2024 14:23

240614-rqapesxhrn 3

17-04-2024 09:42

240417-lpnl1abc26 4

Sharing

Copy URL

Twitter E-mail

General

Target

d(41).zip
Size

127.2MB
Sample

240417-lpnl1abc26
MD5

6e732b86d5f7c8aba3406fdd26da99f4
SHA1

981e9240b55cf52b5881d94089c7f8eb07091368
SHA256

2e1e3f75fdb08c26e41d7870db6ffea5b89b39100899fe609b3c1d0d018c87d3
SHA512

1e342f31df30c0bc29e5a77ef236404f2a61f3ba5dda0de1e8a4ca499b5bf86d065dc006382be175e50ab6a85ae9401a62815ff2df33b90c11cef195d87f76df
SSDEEP

3145728:/SYsj3Vzg8hcP/bltfvB/L3Ma0qAjDkVdKEzCeDagESAKbwhbUw3QFifsrgop:/St5zRKzltfvhTMpkVQEziemUw3QFiEP

Score

4^/10

Malware Config

Targets

- Target
  
  d(41).zip
- Size
  
  127.2MB
- MD5
  
  6e732b86d5f7c8aba3406fdd26da99f4
- SHA1
  
  981e9240b55cf52b5881d94089c7f8eb07091368
- SHA256
  
  2e1e3f75fdb08c26e41d7870db6ffea5b89b39100899fe609b3c1d0d018c87d3
- SHA512
  
  1e342f31df30c0bc29e5a77ef236404f2a61f3ba5dda0de1e8a4ca499b5bf86d065dc006382be175e50ab6a85ae9401a62815ff2df33b90c11cef195d87f76df
- SSDEEP
  
  3145728:/SYsj3Vzg8hcP/bltfvB/L3Ma0qAjDkVdKEzCeDagESAKbwhbUw3QFifsrgop:/St5zRKzltfvhTMpkVQEziemUw3QFiEP
Score

1^/10
behavioral1 behavioral2
- Target
  
  d(41)/d_eu_(6).zip
- Size
  
  63.6MB
- MD5
  
  6eca0d78428d6ba047680a4123c715ef
- SHA1
  
  dc368befd46f1ec9a704b81f273da916a8f5d008
- SHA256
  
  01cd5dd3d6a5d30dad403f3a20ed3a96d978448cbb7643f52b6ef445863edea7
- SHA512
  
  9185e286b8302017bf22b0b9a735df868d1124722790d3aef956339d918833a85d7b683bfe66d44542fbd273cf32f6e088e506221b2d5c5235d845cd43e60c49
- SSDEEP
  
  1572864:uSNGscphW3Vzg8QazcP/bl2+QsmePywB/L3MaPX85sAtkqyTB9eDD3wMhqbz5KEd:uSYsj3Vzg8hcP/bltfvB/L3Ma0qAjDk3
Score

1^/10
behavioral3 behavioral4
- Target
  
  d_freebsd_arm
- Size
  
  17.6MB
- MD5
  
  853ead0d757435ca8dcdbb37ffa781c6
- SHA1
  
  dbea83d4c361060ba533b59a2f5747ad52b8413a
- SHA256
  
  8ba11c9e3d3f38a2473620579f61119be9ada9bc0e4dc37fc045017f56248473
- SHA512
  
  6d176674215fd72af0431bb6acccc490f2bbc203481e0c205e038c9f98fc275e55574390c695e2c638741bb496ec048c0dbae29722ad00dcdf88e3b54139cde7
- SSDEEP
  
  196608:r4R4tYh1bRH+2FquJSWG3TJITqnMzxMS:AtHlJc1FS
Score

1^/10
behavioral5
- Target
  
  d_freebsd_x32
- Size
  
  16.9MB
- MD5
  
  da37f312f7fb7741d97bc438750c1655
- SHA1
  
  a186d9c620041a0885c44dcd7f5c72b85030ddb1
- SHA256
  
  0e19deac3d64a33495d237ed4cdb3581813b88b6ed2afe84b8c2908201feaf91
- SHA512
  
  20922c04e477f6caacd1f900aa664471b2dbaacf7fce12fd265c7cc6f7d55db1067e04453f7201232082020a6f1a6f85aad8aa50933d1c1e7f9dbf7763b225ad
- SSDEEP
  
  98304:00dPIdO5QPuoEhsuGP9BWzyG8VQLW9heGXoTP57y+tNr65c5R7vh5uyMsdcF82Ek:/qoEJuQ9aSFh2leK+5sRuyxibH1
Score

1^/10
behavioral6
- Target
  
  d_freebsd_x64
- Size
  
  17.4MB
- MD5
  
  879719a084c1923e0ca5865c4a4a66dc
- SHA1
  
  9d2bdf46248c961fd6e75a2266b4a17d1488e372
- SHA256
  
  95375dac86bf8daf101cb8120d78f0340e6b1cdbea16b859d96d7aef946be983
- SHA512
  
  c9180cbdac166b7d13eae245500926b4e18f37d9f7a85b8120ad13b04171f1ed68a3b42de931c4e0af948fe20c115e1c13a811919a7c48f23c875599a18f1095
- SSDEEP
  
  98304:jkoWxXQ7lbL8ivR+lT4KkSKOKdv+O42MXPOEb2bS0mRy1eqoJDgESA6TIqrwU:CQ7R86o4KkSydv+O42+1b2W0YzDZn6+
Score

1^/10
behavioral7
- Target
  
  d_lin_arm
- Size
  
  18.2MB
- MD5
  
  6eef15654dd0310a0e3b440530ec0a9e
- SHA1
  
  4a4df3dde0bec5bd72442b632657111e872aaec1
- SHA256
  
  e3f229dc71ce65c1f2de05e2cfbd7ae848d330661d9b9b3fa00d594bf84f4d93
- SHA512
  
  b03a4faa48162e661e083e86866aa907f3f9a8470daa0ac4ae0cbbf50c294587e3c597d0dd8494e74d01b9ceffff0763300cbc01ecb8268316d8e4ea62ab3062
- SSDEEP
  
  196608:c5WkFm48euRcoCNKjBJI/5ZInFbuCmjoUAZUeh:UimPjoUAZUe
Score

3^/10
behavioral8
- Target
  
  d_lin_x32
- Size
  
  17.2MB
- MD5
  
  de52d4bc42671d05939e2329298a0816
- SHA1
  
  de1b3c9b5131c313f95a1a9acb4afdd17f589b6b
- SHA256
  
  307e3ea1cb140f375443ef3c9b62028dd5c6449c1bf242b83d6db5d730bd2121
- SHA512
  
  d3b22d3f353044ce142ade747895d5882d3dfc640ae0d1d9cc0a57347dcf716bc3885bef07348b722da52296ab9ae9b200a1476baa227b41cc5ab12daf2b9e17
- SSDEEP
  
  98304:imZEz5CdXrRA1nY5cygNUtkz2wRayRyQULi3Td01matM+NIfpta7BzeYefXJdO9B:viCh+YvwRayKL8WwaZmfa1UXJIQGum
Score

3^/10
behavioral9
- Target
  
  d_lin_x64
- Size
  
  18.0MB
- MD5
  
  dfa27851a5903e092126332ded4c492e
- SHA1
  
  01831949cf14e42cc59e8ca6a13f5a1c3b3e7e69
- SHA256
  
  2aaf3c08da86d5d0f6f9c00d4011991fd2cd50fa0777d51d5552b98365b15774
- SHA512
  
  5a6dcc37435efddfd499397110a0c3a9febff5c77ade9415dcabf7f3bd4dee478b1a9a9125c9018bfe6d3c4f55c19fa75394a1d74e9f337629b9b192a98fc4d7
- SSDEEP
  
  98304:31IMLO7tTCESgY+XW/uT9ZlMDluk/UFgSpMZ66cz8pOgmsqjbILJ2jLxobERGbGw:CZ8jgNXiuTJMQoSKZm8pwsGcLeLvXM
Score

1^/10
behavioral10
- Target
  
  d_mac_arm64
- Size
  
  18.7MB
- MD5
  
  7e303ba87dc7d1bfe876b6db09a55a09
- SHA1
  
  f88b78b862768b4745bed470d2c47ad826ca2834
- SHA256
  
  7ee3574b0693e78060d863a5794437960aec0614af6c1909dd075daec0bcaf92
- SHA512
  
  5a1c94372cfb25b6a35c5e4ce398cf9983803ea7191bc554e0616833f6fc9f21533749a869b4fafd9ed9c20b02b93257401ab688d2b18c0a4eb45ffdf3e1d08b
- SSDEEP
  
  196608:h/7rbOG1k9zQjBGTdQbtwxztaw+mu7VAB604Ro34oDnS4G0hK:hTWUk9zQjBKfa7mp61otDS4G0Q
Score

1^/10
behavioral11
- Target
  
  d_mac_x64
- Size
  
  18.8MB
- MD5
  
  0d5cac778ec1f9a1471e0d78742d3fe9
- SHA1
  
  311be0904207d069ac5cf139e067a46b39184608
- SHA256
  
  87cd40fbf9f363c212a8402cc8350f624fd6760799c013a0cdd301707a5bd083
- SHA512
  
  8018b630ad348cef3caed84dd87a6d14698ef7db6f6cb33e9a9638759585a8c62eff5540f819142a4b3d38f8597a86b92854e1156f927a0daf4755f91b9c2f7a
- SSDEEP
  
  196608:rRAc4Ayyglbj1si36hIVNEESkVYJAERf7sKJ:9Ac4JXbpsi362BSka7sKJ
Score

1^/10
behavioral12
- Target
  
  d_win_arm64.exe
- Size
  
  17.8MB
- MD5
  
  6729b380cef552f90c299e6dcfc3d6ef
- SHA1
  
  f8416af4af1ba799a47948045f394e853f5d451c
- SHA256
  
  0eae66824c65efe6b69937bf8427b7f28df591f2788b8088fbe9a05e8c26e077
- SHA512
  
  99ab10feccf913533a09c91022b3d6fa6de60dbafba445c2dc429a2befc7f56aa8c950fa28279b6eb6ea6fccbb7c979280eee460e40f618fd0a0f4b09956668c
- SSDEEP
  
  196608:i3B2V7lum7tpQpLIAjGTp+hNKLGtSJ7dLneWkD2s:i3wVxD7tGQTppZXy2s
Score

1^/10
behavioral13 behavioral14
- Target
  
  d_win_x32.exe
- Size
  
  18.2MB
- MD5
  
  b0b210e7c42a5423f51facac60afddfb
- SHA1
  
  e247508b0f1bffd7219f1017595dcff1470bd4bd
- SHA256
  
  b81734717f36d3cea59e5690b984333c5a6908a15883a0463d77cb20dadcec0c
- SHA512
  
  57bea2efeca1ad80a63568806a4ff588dae5cd8f11cd9399c9947f71fe25123edc6597cdc1bf6485cf322b57df05b4b0f44dd663205ad89c1fab21b8834cf8ff
- SSDEEP
  
  196608:SOVsWpl6YRitqToH+61nvMb4X7+qVR7vkHa2:SOV3k62lv8wzj7qr
Score

1^/10
behavioral15 behavioral16
- Target
  
  d_win_x64.exe
- Size
  
  18.7MB
- MD5
  
  7c1eccb1ad0747158a09b251531d87b6
- SHA1
  
  1a43a3ccda067f2954eb498abe99c81fa12aeae0
- SHA256
  
  532edcad0f1637b4cb6fe2638c84c9cee2a52786b89f8d155c910bf60f43da9c
- SHA512
  
  d1a29db031f0b2b823dc89929ad015cc5bfe4d1cf999e116d05fb1038c8538c89735e6c87e13fcb430cb81cdb7c9c48aea3414d263c41759744ccaf5ecd16392
- SSDEEP
  
  98304:8Sh7z6qkVO7/rTCge3VI+Bvgbayrb3KJSUOuiKz0atkHn2D98uEZrYyL7oVMqv2:TwuTTCge3VlYp3KJSUOcx6g8VYysM22
Score

1^/10
behavioral17 behavioral18
- Target
  
  d(41)/d_ru_(6).zip
- Size
  
  63.6MB
- MD5
  
  84765baa8afc70eb29518cee836a53d2
- SHA1
  
  ca36aabeed833e674de27eb5c9c85919e11057c3
- SHA256
  
  049d04ae25254e97761b9f8516ed85f4b0edc085144fcf9642e64079283ad729
- SHA512
  
  0be71ffae9248ae8dd330f687b5d5f14271ea221ff68b42f131d048df418cad5933b0a53c570e13d12ea7f35ceaa637976b669df85849b7c04b4cff406536257
- SSDEEP
  
  1572864:inCcM2DagEVqx5vNNApo0/RolA57hbUwqEdJCTdHifrwrmB/oM:iCeDagESAKbwhbUw3QFifsrgoM
Score

1^/10
behavioral19 behavioral20
- Target
  
  d_freebsd_arm_ru
- Size
  
  17.8MB
- MD5
  
  a315f0fd4a8e70f283ac88ee4c3bd9e0
- SHA1
  
  9e8d02264303011f84303537a813fa2aa53470b3
- SHA256
  
  23f0e9a4c41cc6255d3aa4f2205e7c3d47d6e70e27bc3ce023a9c1aa97edc083
- SHA512
  
  a30facbf7e64719f1e207ea0930f8ae1a16cae21110961733d478b5f58e342591bedd70f47a327ae1dd434a79db3180e760bd4889a8b4165fb4b18ae94f01d93
- SSDEEP
  
  98304:fQ0kF4DmJr9g5dmCqUCzEtjeVK/TZMQjPZUzM3J0UdzooDM+H:o0kImJzrVUTZXUQ3nzooDM+
Score

1^/10
behavioral21
- Target
  
  d_freebsd_x32_ru
- Size
  
  16.7MB
- MD5
  
  315f75af21c5487167770f6572978803
- SHA1
  
  e6001377d0d9753d6d94bdc958b8239c00e210e5
- SHA256
  
  481865ca58ad862b20cbc41a70a22de4771d965c84a3c87cf0e1c8f71f6cf86b
- SHA512
  
  bcab0df9a545424b175399b3463c747ded23ba923562fd63c722dba1b07a702c13fb2ced86f432c060ea2cc02ce2fff5384aefac6c41d7adbd56ee7209a1b75b
- SSDEEP
  
  98304:trq46+iNeSpNm1MnqBtGn5N9FjiKRBggjZP9uVppNydb5ukQHwIc/SOxP7lYlzM:NqZ+jSpM1Mn6UNxogd9uGuHwjSwn
Score

1^/10
behavioral22
- Target
  
  d_freebsd_x64_ru
- Size
  
  17.5MB
- MD5
  
  16486c7f424534d8e1e3f5dd5d1e0af0
- SHA1
  
  19756d00655a57c3f59d93319145bc2a31ec8a01
- SHA256
  
  196536079f99234ae169e0384bce341b4ab5b48ff959050c9a3a36c28d675186
- SHA512
  
  c5575a8517d6e2e1cf54e6ba54cc537bf2ac3b3037a23f53cbc03830c8353c9a22eb47faddc4a527a6107eb7fcad133a392bf10b9142e1b7d84d93324f0a4e5b
- SSDEEP
  
  196608:CF+lJJ6xBpfbL11gkoRxVWPpwLSoGnT0FLNa:Cmb6fpf31URxVKpkStnT0FQ
Score

1^/10
behavioral23
- Target
  
  d_lin_arm_ru
- Size
  
  18.2MB
- MD5
  
  f3712eac9c20d7981504f7682c67ac05
- SHA1
  
  fcd7fba6b46bff0e23769ad2e5943bf02baf8c4b
- SHA256
  
  3607940034b6f67f144611ba61f56aadab6b2405a365b0d238aeb73d4ff8b3b2
- SHA512
  
  825ac8c0962a280f9361c3a0d3caac72ddef3eaea09eddd31f1eca686f9abd296152b1c12f84bce40d35654416cf7096ae3ae3e3d263b1abc5a27d84b1e65c81
- SSDEEP
  
  98304:UtzJdTsyrziPyX7zHRGCMo1D8j8WwGHD6NmK4ccrZqA3xXBnv6:Utz/KUUj8WwGj6NSccrZLxX
Score

3^/10
behavioral24
- Target
  
  d_lin_x32_ru
- Size
  
  17.4MB
- MD5
  
  7af8e64432673bc7fcd0b1ed6fd43ead
- SHA1
  
  c5d40d519c8249917f2988ff4f552881d25acced
- SHA256
  
  022b72d00c7b61494cd0b4b8715edc5c495577896d97144838c631d4b0c24106
- SHA512
  
  24807a85c43870b97a9b22e2fbe74f4b71ee4752c2d8fdc204cc84d1462a25273c75ec93006959f81d5460ae854be212e0ab1f073ac32e15f15406f79ef01746
- SSDEEP
  
  98304:KsMnxbpfj8GhdzcdWA+cX6hAsjr7G9e/k4A5vXPNL6C9Iw+3X1seT5WUcnH98nIt:tOj7dQrqhCd/lL6C90VsO4OI1Kj7zK
Score

3^/10
behavioral25
- Target
  
  d_lin_x64_ru
- Size
  
  18.0MB
- MD5
  
  29f04268a3abb9555b7acd36f79184f1
- SHA1
  
  8d2e69787474aff914e7a29076b32135f0fdf04d
- SHA256
  
  86d96c25355b652748bc6a3603b94bee8f430e5b639109c4068dd45dbce1f19c
- SHA512
  
  8fa08ec2df6f28c09a1a422aaa649ad2a820c53cac522f192ad5e603c28f1cc80ac558cef9fe688f5b56ada03613b761d1214cf8b74dde965e702adf5be02f71
- SSDEEP
  
  98304:xABQYRd8aMAeZ1TvONXSzpyiV0VlX7cnfmz12wsjT7JXsgKEAUXKJfLj:ald8lZBvoXS0Q0Vx8mzAA3j
Score

1^/10
behavioral26
- Target
  
  d_mac_arm64_ru
- Size
  
  18.9MB
- MD5
  
  9c0d268bc5cd0cb2314e5d4107fa9282
- SHA1
  
  958b8f0be02e86ba7d22626627397e5d28674344
- SHA256
  
  99934f5eab176933482e32386d7f9eb9bc26ded9abdb96092924759dad40e203
- SHA512
  
  0fa55a4aeb2d38e283ddf735cc3bc322af4f21ef9dbc0011c92e45f77f7ae176b4ed24047e77c7aa18d877ec91441790bf8d8d6642faa7303d88d76ac90ba7a7
- SSDEEP
  
  196608:nMdG3B/meeyhLTw394d1nxihbpygNtySxDDfIH7:nN3B1e+3tUxDDc
Score

4^/10

evasion
behavioral27
- Target
  
  d_mac_x64_ru
- Size
  
  18.7MB
- MD5
  
  293a4f06cf6bd93ff8501bc008c1d9a7
- SHA1
  
  ced7760ff4243067244044da4bc674b1840cc878
- SHA256
  
  eb75c4461b325a51b9edc3e0a72a5be8525971d5235d9be62b6c4205da593c8c
- SHA512
  
  708d0bd19701fedc7e55efc2973967e01d607efd3d2371664ef5bf3dda127e40dbd6cd56140b0cc5c370234074526c24b3caa22f32b368038fb5b0d5b50c47e6
- SSDEEP
  
  98304:Z9cXlQI6VNQ0jUAORcCnq/lG+UAPzdNxteblbM+BUgB+YBXMEDN3uj9l/NT3dGoQ:Zq1YNQOUPRcCnqtG+Uqz3SlRBzBxZ+ng
Score

4^/10

evasion
behavioral28
- Target
  
  d_win_arm64_ru.exe
- Size
  
  17.9MB
- MD5
  
  414d622f7df6a24a5f049029abb34a23
- SHA1
  
  0b7fa8bedd89a1c7cca91ad62ea2631cea6bba32
- SHA256
  
  ebfa23f0ea5e813d7e3d442fe4c820f9fca54c05c1c7d406c8c8c24822c62883
- SHA512
  
  5c66fe30661a36bcb2fb69a1932d63735c21047d4bd1791e24dd42436d404dafdd056894e11ae10b0de55d3f74b0c0175420882f0d649dfe3f8989fc672916c4
- SSDEEP
  
  196608:PqWIHT2z/gtwbu2q2fjsRFpT4lsILQIZFWf:PqXigtwe/zpHuQIZsf
Score

1^/10
behavioral29 behavioral30
- Target
  
  d_win_x32_ru.exe
- Size
  
  18.1MB
- MD5
  
  50878f845e9318a0ef03909ca8706d3b
- SHA1
  
  de802f84a328752a2b142c2773a000a288974f88
- SHA256
  
  567606dabaa4e594646adfa6eabc1f96aad60c8bf6bee566a26c5677217f76d7
- SHA512
  
  3346b3d6c6bc7617caed4b230f37204fd76cea8dcd70d9638375280ed3edfb9ce932f444c0f6886b881637762feb5b229d99061db36cbd4b227c70b657da3c00
- SSDEEP
  
  196608:+DbyRgqvlNpp46To5LJmh64xXgJZjM/Wi:+Dh44dmI4xXgJZwu
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

T1564

Resource Forking

T1564.009

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32