b5dd09954ef1c867c411499f4536ef619cdc04917f3d2595b9d2c5b57e80b6c6

General

Target

Controller-UI.zip
Size

310KB
Sample

240430-lfs55aha75
MD5

e9224041221ae612b2ca47732b4acefd
SHA1

ebfce5c813c60f78034af96999a237e72d9fafd5
SHA256

b5dd09954ef1c867c411499f4536ef619cdc04917f3d2595b9d2c5b57e80b6c6
SHA512

648f14ac779a3f49a32303b78c3bc1f03bd63ed6706aadbca3e67b67e7d2bfcce41485e9081002f6626f3a446220941f7dd5a58d1e39703fcf4a62420d0f51b2
SSDEEP

6144:If1owxfjSbaimjB42Rd9OxaiYd2eM6PzIyFMre3A92RzHxRT3SYPFCGHrUuen+SA:IvjSbNQCobOxai9v6PzxFMrEA92RzRR7

Score

6^/10

Malware Config

Targets

- Target
  
  Controller-UI/Controller.deps.json
- Size
  
  422B
- MD5
  
  0d6da1d86ba6a2bc2a822df7b0bca80b
- SHA1
  
  2647f37775e0fd2d84491b586b026605b3a16589
- SHA256
  
  48e1d39d2cbddffcda3f52d02f258cd842529f1277c1fe3ff662f8d2064f88a3
- SHA512
  
  07f0e3260a2d0547755c1e848bce8c224705cb74c84736b5f64916c9cf5507e2168f4089498b12d24e815c045073ef2bfdc011acde2070e7e6e5b21f738a79de
Score

3^/10
behavioral1
- Target
  
  Controller-UI/Controller.dll
- Size
  
  440KB
- MD5
  
  73c5de4ce5489e7a7b46d31e6ae783ea
- SHA1
  
  dd92129a2954be34d6c62f94a19c72bfaeaad0d8
- SHA256
  
  ff3c3d0e874beccc03f6f3217667d3660e85f4f6891740e270c923223ac54ff2
- SHA512
  
  cf82ed17dfc86289472b7cc563c3af92b0a2d0533aa84db1ed353046f5e387573cf4c5afda043b70d75c571f596e82aa06b592abfe392b8cb8781fcfa7c32429
- SSDEEP
  
  3072:gv3G+KcEQ5SJuRRR1Zw6iDKTh12D5oIKWto91lNEAvA+lDiTu12BkoIKWto91lNT:wEQvRRR1K6iuid4EAvA+lGn+4
Score

1^/10
behavioral2
- Target
  
  Controller-UI/Controller.exe
- Size
  
  325KB
- MD5
  
  59acf53306748e9d819b05a2a446e374
- SHA1
  
  bf995541ecc615896bf8ea9e2558b290af1a166d
- SHA256
  
  076352c68a282c2bf6171ee2d1f476e62986a41a1ed5085c2880500174a00eeb
- SHA512
  
  45d2fa680bdc373a78b9ca8add0279647e4394e255a4f46ba08a3e6642e23ec41e678b13d81ac91c00524a00cc1d3b976e59155accc75f6f1dd2ac944a6979ea
- SSDEEP
  
  6144:HiS4ompBUS3BZC0C1G78IVEcKctUiuid4:HyBlCI78IVd/W
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral3
- Target
  
  Controller-UI/Controller.pdb
- Size
  
  17KB
- MD5
  
  86f3b55a252e008c1c24b352f18ea4a4
- SHA1
  
  e65f7ca480a82fa542337f39b609abdc5be7b215
- SHA256
  
  a72b951731374ab0c1dca2ecd6a645e4f549745ed0913866d454543befc26839
- SHA512
  
  c49bc91a9552324bbab3c8635f78b00bbd146f2dca957ee4aa9abefebfd828618ba6bd8244d9fc041a309eb2c185ec33436211fc6edaa3c152720e654c8b065d
- SSDEEP
  
  384:MK+cBhPio2kO4slX+A60a09v2osS0HZtOGjBO7QUMbyBkPMg/cpX4rfH8f6Awb3H:4cBhPioC4TTOUeGbyBk0gEUBAed
Score

3^/10
behavioral4
- Target
  
  Controller-UI/Controller.runtimeconfig.json
- Size
  
  386B
- MD5
  
  186a65581e2f29258f54d396660409fa
- SHA1
  
  6f998d3be2e85cb5419205f867135874f27c0a3a
- SHA256
  
  e1e0974d0e8833375024eb7c78521b3b5cad4228aad22b23d506cbe702445844
- SHA512
  
  7dea87b523aab01ea3c794779b71bc0b52179e1d5e7b9a45539ddd39c775969ef22853c4c193699aec1e3fa3cbe26e90e3a4881226c52a3aacae1eac260ff896
Score

3^/10
behavioral5
- Target
  
  Controller-UI/Liquid_API.dll
- Size
  
  67KB
- MD5
  
  3f5d1be732aff68535d18cb43529b772
- SHA1
  
  c561472a4a9649769cd5e5f62165a68a8f01227f
- SHA256
  
  d1d6dab93da2b936bd1983690972168b1b0ead42bcdcf5ed0741dedc27227e64
- SHA512
  
  cbe6f0cd47b5460f26d344808272c4b34d9902465e38f01739e8420f23978b317bd7c9ea34296612baca90da315a624cb0db72fd6a39f2959c8ac6a27afc109d
- SSDEEP
  
  768:TdXs5Ca7X0hyebVODPB/+pCh4mBYdfYqO6z+AIm:qCiyy+2PB/J4mBYdfYDHm
Score

1^/10
behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1

T1012

System Information Discovery

2

T1082

Lateral Movement

Collection

Command and Control

Web Service

1

T1102

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6