c0430aaf8328fb87e3d1b6f4228c37716dbc118d871af41523138dbbf3e26d1e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

sonicglyde.exe
Size

84.6MB
Sample

240425-sn4p6aca24
MD5

29e2058a516c9db2ace31861be8a251d
SHA1

9504a86154df12761eda63b87484f6685f9f139d
SHA256

c0430aaf8328fb87e3d1b6f4228c37716dbc118d871af41523138dbbf3e26d1e
SHA512

2732d0531b6352a692c03c2d2a836fa6f7e348ada593ef9a290a51fa6785f26c1a1966235b38a86b20074bfcca23ee91e2e27be0674c9a1d8492042b0d9ea2e5
SSDEEP

1572864:R4gPXMoYsO5hhuMM9oE9k9OARmmMRAKSl9S9I698t6EmBp692FVSh6gCC/Kp7:R4AckKhhuMMaE9kpRmhRAgDkh/Kp7

Score

7^/10

Malware Config

Targets

- Target
  
  sonicglyde.exe
- Size
  
  84.6MB
- MD5
  
  29e2058a516c9db2ace31861be8a251d
- SHA1
  
  9504a86154df12761eda63b87484f6685f9f139d
- SHA256
  
  c0430aaf8328fb87e3d1b6f4228c37716dbc118d871af41523138dbbf3e26d1e
- SHA512
  
  2732d0531b6352a692c03c2d2a836fa6f7e348ada593ef9a290a51fa6785f26c1a1966235b38a86b20074bfcca23ee91e2e27be0674c9a1d8492042b0d9ea2e5
- SSDEEP
  
  1572864:R4gPXMoYsO5hhuMM9oE9k9OARmmMRAKSl9S9I698t6EmBp692FVSh6gCC/Kp7:R4AckKhhuMMaE9kpRmhRAgDkh/Kp7
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2
- Target
  
  32runtime.exe
- Size
  
  164.7MB
- MD5
  
  2440c5a1f7861ce48773293ea654791e
- SHA1
  
  ae809ac55eeb51846fec0da8745c5a045966a7d7
- SHA256
  
  26b876a92956621855a53dabf2fbcb706dd9252ae1884ac0e9600d313fbf3c36
- SHA512
  
  2f78c4640f28bc6dd5998bcfb4300ba77281016b8057edaf94c64495e3e5b9babd92a1f08f4ae20bb417c1a1057f6365968e43e33f50de7a508ff2b737242949
- SSDEEP
  
  1572864:btc2cEGwGrRSREICCr3ka8YrcSAfII01aLadS5sDNd+Ipx9cF3LfxNEK2Ho8jlgY:d+CHrJIgIsV
Score

7^/10
- Loads dropped DLL
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4