9123a2e6c0bb2c8aa28ab062628c23cac115499216af87776fe58afcfb852a2f

Sharing

Copy URL Twitter E-mail

General

Target

SD-N Shimeji.zip
Size

6.6MB
Sample

240417-q9541aag73
MD5

732a2d2cd8e37a96274ff459abb8c10c
SHA1

db4b6d3f4cf43c50f32d66a99b5fe7b28384f1e6
SHA256

9123a2e6c0bb2c8aa28ab062628c23cac115499216af87776fe58afcfb852a2f
SHA512

be0da113e3f7b146a556abc3868b563c24da2d91ddf949428a6fe2d83ab638b17a776eea5b3ef95ed10897a3ed1f5033d6ab52a0a65ed98ebb6a0c77851c435c
SSDEEP

196608:/doRi7Fd+Kk4uiwxAE7fDvR+HzznuOgtrI:/DR3wx3DDvcT6lI

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  SD-N Shimeji.zip
- Size
  
  6.6MB
- MD5
  
  732a2d2cd8e37a96274ff459abb8c10c
- SHA1
  
  db4b6d3f4cf43c50f32d66a99b5fe7b28384f1e6
- SHA256
  
  9123a2e6c0bb2c8aa28ab062628c23cac115499216af87776fe58afcfb852a2f
- SHA512
  
  be0da113e3f7b146a556abc3868b563c24da2d91ddf949428a6fe2d83ab638b17a776eea5b3ef95ed10897a3ed1f5033d6ab52a0a65ed98ebb6a0c77851c435c
- SSDEEP
  
  196608:/doRi7Fd+Kk4uiwxAE7fDvR+HzznuOgtrI:/DR3wx3DDvcT6lI
Score

1^/10
behavioral1 behavioral2
- Target
  
  Shimeji-ee.jar
- Size
  
  366KB
- MD5
  
  59674d3f6455b3ca1d35ba7a0a9dcd1f
- SHA1
  
  c48b66a50d95033ac73e52098b2eaf9e38be0cc2
- SHA256
  
  4b524f12ab720d19bf87574686adc2536d1eb75907eb6cbba288aee83e24f80a
- SHA512
  
  a03a32d0764d93cfba95b7128729ba5200b200f7624e861c8cc6e75990a9e6d2f007f915684de750ce4c532695647138bd2e29af4eed382ce5720c927292a4a6
- SSDEEP
  
  6144:tk4BJSnxl8doEdfzJUuntqZ6vXia52BJkmaBGRx+7YgpsVjD9A:y4BQxKdbdLJZntqEvX5UAmYGRQsgpKDu
Score

7^/10

discovery
- Loads dropped DLL
- Modifies file permissions
  discovery
behavioral3 behavioral4
- Target
  
  ShimejieeLog0.log
- Size
  
  110B
- MD5
  
  2ac9a2840cea9f565301ababb9fca452
- SHA1
  
  a1f9a093d554f474525afdc59f0514daa340c4aa
- SHA256
  
  972950fd61a203e5799727d4623259b4b273a6c2368e356b82077289a47071ea
- SHA512
  
  3f8b18f6c26f51965039a4b2ae6e0bbba1c86ce2d3b466a3af4471bbc9d82bd4f382ef35824c01fe79fa432cc565a0eed75194d51c5470e9522db2fbb1459164
Score

1^/10
behavioral5 behavioral6
- Target
  
  ShimejieeLog1.log
- Size
  
  110B
- MD5
  
  2ac9a2840cea9f565301ababb9fca452
- SHA1
  
  a1f9a093d554f474525afdc59f0514daa340c4aa
- SHA256
  
  972950fd61a203e5799727d4623259b4b273a6c2368e356b82077289a47071ea
- SHA512
  
  3f8b18f6c26f51965039a4b2ae6e0bbba1c86ce2d3b466a3af4471bbc9d82bd4f382ef35824c01fe79fa432cc565a0eed75194d51c5470e9522db2fbb1459164
Score

1^/10
behavioral7 behavioral8
- Target
  
  conf/Mascot.xsd
- Size
  
  6KB
- MD5
  
  812b79398e02de77e1f0399c4037fe55
- SHA1
  
  4e9fdac56d1e7a9e1df019cb2f3c34460fd3cf04
- SHA256
  
  488355ad6c8a7eb5b708f0e531ac4487342574a0e724dd7a3f48d358894fba61
- SHA512
  
  c25cdd0c468a3d2c395a8713ba8a14777201d5ddf68fe7cd96bc511714ddd1c3efdf94945027cd9a35a821ed35f5739c63d81694fede1fd3cf19a72b75666387
- SSDEEP
  
  96:99qIrIoqJVyPsYlTBNpm5p9YWZpVJblYRKbpihjpV8E:30oqlYltQIVh
Score

1^/10
behavioral10 behavioral9
- Target
  
  conf/behaviors.xml
- Size
  
  16KB
- MD5
  
  9e44e97ce417a0a254a6626bb5a05f4f
- SHA1
  
  603b11e5bbda929efe636c5b48513a32c0f47124
- SHA256
  
  784111d07505145ed08ce47ccbce20e7fe38a89fba4159efcaf7008267b47176
- SHA512
  
  64398462d58d3b8bf56bdba25b01d8493c28b411b2de1f6ec1259b6628302ff24ea36d3218f11435e5e20a7d510300e5bec17b058d836cc3834c0d2358a31b6a
- SSDEEP
  
  192:toJAlArPWi1Ng2HwwIgF5kCXSzeDZK1ugSNzSMgpgmU:1eEMibU
Score

1^/10
behavioral11 behavioral12
- Target
  
  conf/language_ar.properties
- Size
  
  8KB
- MD5
  
  d52b83756b0172f2766eeb906f1f25fe
- SHA1
  
  f4d41f7cce98fd8a229ccdda4bf4978af5a0b411
- SHA256
  
  f0398027b68bf8f10a5e815031a919eef9ffdf5b60ca50c90ea7dc91bae21943
- SHA512
  
  6eb34831175dbb77b864e0120ab22d7956582f839e7e9b015c1b15047e5b199610606559315975f1a46d875bb86b51831e22e90db42a6187d62967fbab931875
- SSDEEP
  
  96:Q/GnDSWRHmlLo7p2vZ7Si7LNy2jctwCJ9nss0C7oOQ0YSX97twswRUEUBs6BAw92:Q/G9T70hPLNy4Mnv0CmSElV6ZpTG
Score

3^/10
behavioral13 behavioral14
- Target
  
  conf/language_de.properties
- Size
  
  7KB
- MD5
  
  c1a929ff68448b0cfe0587ee2e84e645
- SHA1
  
  30b6cdc2ca7953fff261e86695bc30a12f3b6a1c
- SHA256
  
  ee8564f632919ffb5e0d5c8e28194086d2a9f9fd12a8d00fbfa8f769ac292568
- SHA512
  
  02bb63855945666828ace779958a7cf15854ef308c4da5485d0abfedfc6f4681785fe2a99974f8710b2dfa0e0b7c2f1065acb96e55fdace838e65bde24e17895
- SSDEEP
  
  192:AFy6Z+GpRLV3Ec5R3WZt+jdN8NC17TUyE0gdSUXBZOi6EP1xV:AFy6Z+8z3EOR3WZt+jddwf
Score

3^/10
behavioral15 behavioral16
- Target
  
  conf/language_es.properties
- Size
  
  8KB
- MD5
  
  a92e358abd8a3e63ea019849d6e6cb94
- SHA1
  
  73d36c208593b0339f3dabc8960354f47738cec6
- SHA256
  
  c2d1963d494e1ac9b2ef90540245c405d2034c63289c38cef166418963974e62
- SHA512
  
  9619eb73c49a335cc4a1ebf2b9d5d4805b73a2cae2889e9382b721316c5b31230c0d8596e774c7c5b0b2e40b2a4bf14601449e82700bcbf1a250f8eb80175c7a
- SSDEEP
  
  192:h1JV2YieILurfJdyUn3TFYP7oJrY7sxsrMrWSUrSrrCi+jdFng:h3V2HPLEJdDDFYP7oJrY7sxsrMrArSrv
Score

3^/10
behavioral17 behavioral18
- Target
  
  conf/language_fr.properties
- Size
  
  9KB
- MD5
  
  1e1bc90c51236a7648046869010e1231
- SHA1
  
  d531152aaa3418b642ce687ef93c28d326f92af4
- SHA256
  
  aae6702d376282b3928b8c84b4af83c1b0f50feaa12b65792d95637d4c24aec1
- SHA512
  
  65905cdb769a8052c977775313b4c4d9de4be752d30cbf27f3bf8b6707d72a1f7ba4bf06832e472dd980b54246b81172d4d74a90c9f9115a26b4c8447edf4201
- SSDEEP
  
  192:5+1kLHuJ5wdp3SAAZHRoYSINAtLC12dSJsnGZPgGsqvLr:5+EOJidp3SAAZxo9IChesGlgGsqTr
Score

3^/10
behavioral19 behavioral20
- Target
  
  conf/language_it.properties
- Size
  
  6KB
- MD5
  
  3573e440531bb563d9db046e2e979eb4
- SHA1
  
  99e4c889f5f9e164f097a29113b2a02a15ebad18
- SHA256
  
  1d9d6f0f7eac22da91610438c02f454c5bcb9e4335396ec5464e3436ed4a9794
- SHA512
  
  9db7b332dc1cc735ef290fd89d80fe7cfb67bbd1bb6d559c9b7c6623251c7d69d7641ae08cbee9576b2eb5498644a9b4b7b5426a65b7747e13abcc32f64d167e
- SSDEEP
  
  192:nC6X3CvlNmaIyFtqgA5Mr8+8yaF/MSjGG:nC6elNmaIUqgA5MZQ/H
Score

3^/10
behavioral21 behavioral22
- Target
  
  conf/language_ko.properties
- Size
  
  9KB
- MD5
  
  23994f09c7c554f60dcc62d98b1416cc
- SHA1
  
  37eecc0a6b0f5a9df11a8124447e8cc1a3a4743a
- SHA256
  
  00f1213bb25472f4ee3d1818bda512fd7784cf22b35b81d3559e67ea4fb4b866
- SHA512
  
  136c66b51fc122892ea16150655087d66405dcf46b24029a9e694a30dc45d7087ebe627e924a03b2556e2a8a9041bcdc582a8dff362df44b93b575db99307196
- SSDEEP
  
  192:mPM8FWQP828j4V6RMuGDb6DwDquS4KRY8tA+hfj:mPM7QP85RdkiY8e+Jj
Score

3^/10
behavioral23 behavioral24
- Target
  
  conf/language_pl.properties
- Size
  
  8KB
- MD5
  
  37dc1efbd4a4cfcbb17e6e380b285c9b
- SHA1
  
  4a0a3443c2d1e77ee92dbd3070f3fd934d30b052
- SHA256
  
  36a6f88f591e8afb9a9d6b590446a93cbbfe11f9504047e9379943bc8ab0f57c
- SHA512
  
  16f47245da25a62a2ccd4d95bac2e53d1528f3e34e9dd98a23b2f079d6922336c0ac326aa462c9440d1f68e51bd05d43b6dfbd2f9eb49083cc6413bfae607f0f
- SSDEEP
  
  192:Qy96U8WlAuOMrYLXWUcOECXbASDGkx2cWYq0M3G1ASIzY:h1Dl5OMrIXWUcOEgbBGkxJWYq0M3M3r
Score

3^/10
behavioral25 behavioral26
- Target
  
  conf/language_pt_PT.properties
- Size
  
  6KB
- MD5
  
  b4a084bf89e997f54a3a7e83abfbe8a1
- SHA1
  
  259c8972b7b762223790084ec80d2b59dfa40892
- SHA256
  
  b561aed5ec8ed0b6ba51b2469a3b9af4ddf4c9e4818b4080bb3039b2b6bf9b87
- SHA512
  
  75d3b0dc9a9374680aec4e87c95f275838da5ebdc364561a24ef8e8e2e87057d49d412a8776c64e1cb93dc602523b874456efaaea7f76035d38df9c61433bb95
- SSDEEP
  
  192:8ytiX33K4gEOVaGqnx86XaceJ39rfXSjrR0+:vtcK4gRaBx7qFJ39rf2rR0+
Score

3^/10
behavioral27 behavioral28
- Target
  
  conf/language_ru.properties
- Size
  
  9KB
- MD5
  
  a17ed7fc784cfda413567a8592ea6077
- SHA1
  
  809a3dde80e0feeb43ec85904fc504d42d8468df
- SHA256
  
  9107056559246658605e21dbe052cee9ce7fd3a2405ad5a225fae64688f6ebe7
- SHA512
  
  968660c42f135b23ad7f3f8649bcefeaed39e9ed6dad30b4e63aa4f0162ea09364d1bf7f97e74122cf74c235bee1b4a7e4b4069f734fbdafd1dfa8d300aa499b
- SSDEEP
  
  192:1G3RSJm0DFJgfMupXCOsKsWs0JPrQntSSBl:s3M/FCn9h7bJ+l
Score

3^/10
behavioral29 behavioral30
- Target
  
  conf/language_vi.properties
- Size
  
  6KB
- MD5
  
  f79d6b7caa1e9359d480248382154b30
- SHA1
  
  cd4a0e33bf0a280efaf10124d5fa23e3638f52d6
- SHA256
  
  8c2d04ca3d8956fb8e2f7723569c7b8874c39b43fff1cf0dca412098877383d9
- SHA512
  
  e48ffb4fb126bfcf5634d04086c033f2c08ef34433c9af8ed7f6142fee6ac17836d5731087e564e63f2c761c55bd95b74bda59b9e15f78a728ef629dff46ae76
- SSDEEP
  
  192:ygKt1bpHKUAoHG8hqGPLFdKx3+iucy3xjVIIkxvKa/RaPfIRR0xESlWS4:yft1p7GzGKRyaWSR0NWS4
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

T1222

Modify Registry

T1112

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

Modifies file permissions

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32