13300919dfb64560a595a289627a5f12f87deb312bebb6cbc004a18ddd579574

Sharing

Copy URL

Twitter E-mail

General

Target

Release.rar
Size

17.5MB
Sample

240504-fsy91sea2z
MD5

960a3b1146dc9a028fedbea6dbc96fe0
SHA1

4288747045b790dbcfa28d28f8908dc82e70c6c5
SHA256

13300919dfb64560a595a289627a5f12f87deb312bebb6cbc004a18ddd579574
SHA512

dff8a7299d44967edc6d55c0de91e5df654a319349b22a81c3c58695e60ccabe1b9146ae8ae2eac6061833c56e2d2aab43177c8a9d6054fc36e1a7c6a5a5bf59
SSDEEP

393216:qWIQZ9sFYW4/B8hH+mhRuCUkqriXccTI2rOBa:qWIQZF1B8hemhRDUOcYIgOs

Score

7^/10

Malware Config

Targets

- Target
  
  Release.rar
- Size
  
  17.5MB
- MD5
  
  960a3b1146dc9a028fedbea6dbc96fe0
- SHA1
  
  4288747045b790dbcfa28d28f8908dc82e70c6c5
- SHA256
  
  13300919dfb64560a595a289627a5f12f87deb312bebb6cbc004a18ddd579574
- SHA512
  
  dff8a7299d44967edc6d55c0de91e5df654a319349b22a81c3c58695e60ccabe1b9146ae8ae2eac6061833c56e2d2aab43177c8a9d6054fc36e1a7c6a5a5bf59
- SSDEEP
  
  393216:qWIQZ9sFYW4/B8hH+mhRuCUkqriXccTI2rOBa:qWIQZF1B8hemhRDUOcYIgOs
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  Release/Generated Files/winrt/Windows.ApplicationModel.h
- Size
  
  180KB
- MD5
  
  558f320b9daf5c0800d87192a6ae2d4b
- SHA1
  
  4ccef6181b54c00e7c5847390fabf77cac5826d6
- SHA256
  
  a2aad34a3f3b9dad44d4ea2a100569a016c101a93bd46c5e1337a5f84766d312
- SHA512
  
  038919543a1f82011288d860ff5413f0ab9a1d747993a6d51b2729806eb021ba8488e5491e3f35b3ffa6c1d57985dbd33314a215605e6e8f108f6c8c7fa38ead
- SSDEEP
  
  768:KDXXXAI5G/55Li5HWhPq/wptcYAgSOMzNQelk4o/dYznKtZpWVapJnJQD4yRhX9l:orrtUbkLby2p0/kb
Score

3^/10
behavioral3 behavioral4
- Target
  
  Release/Generated Files/winrt/Windows.Devices.Bluetooth.GenericAttributeProfile.h
- Size
  
  371KB
- MD5
  
  b8583c1ef3ad48996eeb78a409e5849c
- SHA1
  
  1ada8515bdf66f5f38ba19c39cb67c5920a68e48
- SHA256
  
  3327699f2321596ddf6084253e659f8c3daaae07d8af8f62054377d6556a59f5
- SHA512
  
  cb2cede5aca37dd7b068aa91c3c2961364bd9a3e6424ee1abf5d77b6ad473be20976ba152a965f6b031dad55525edef6c565c8b8705fde8ddc45ef5aa2836024
- SSDEEP
  
  1536:WZNHHKGGxep7I1NgmsoOoo/kPS3qtB4VF+Ib8XuTnYWQWx9Z9dFK9C6yITpBs9ek:GHjI17i+xWsfeh0Av1
Score

3^/10
behavioral5 behavioral6
- Target
  
  Release/Generated Files/winrt/Windows.Devices.Bluetooth.h
- Size
  
  178KB
- MD5
  
  b73ad7fab2f18b8c5874a1f6f68c506d
- SHA1
  
  d5845145264b5598ab080b6271e9c3b0e5a874dc
- SHA256
  
  3c0147f9157a7653eb1aa6d6cf936fa0df92ef2e9eceaa5bba6922660b1b1220
- SHA512
  
  d41626aa1e987310604f7153f6652fff0f1c8a28ec65948815cc1fe2b2ac41d85cddeb02aec3e81cf902c1898fde3bcb41e98a60a0e2b51aebcbf0eac6fdf931
- SSDEEP
  
  768:JKvSUuMZVJyyRqoQsN8WnbedW1eNQlBeNQHW1G1RM0yB2ETQy6FFVDlXOaf41Q7D:Q7d
Score

3^/10
behavioral7 behavioral8
- Target
  
  Release/Generated Files/winrt/Windows.Devices.Perception.h
- Size
  
  230KB
- MD5
  
  93a11a4c489ea51af41bfaa2dff32be3
- SHA1
  
  82c8793889a6f2c936fe81ec820df3f26bd81436
- SHA256
  
  be039cf521986c2a72cdb6d0712594da8c4f94dc6bd1692d52f02e6549e1c673
- SHA512
  
  47b051dc02c26d58175386453342cfb5689def34956aa496476ed9bcf925f4d786f5de020ffb8e34af2c611ab59bdc8c38c1e764fcf60522dca7b46268604185
- SSDEEP
  
  768:GN3xXFNx/XHJBC2ms+QGqu5ggkt3R3ltxfSY7xAIBZ8cnL4sSaTvhj93X5iOqOqP:Ch8ORzYHXyxnzXPKVPPcvHPi
Score

3^/10
behavioral10 behavioral9
- Target
  
  Release/Generated Files/winrt/Windows.Devices.PointOfService.h
- Size
  
  581KB
- MD5
  
  5435face4d610e37a76f0d2af34bdf87
- SHA1
  
  ad3bc0bfd1b5df6f8a76201c6879426bf1d87299
- SHA256
  
  bf0726ee849f03a9198fd00dc09135f73ddb047632685695fc24e6f1f375575a
- SHA512
  
  1de783407cd79518f23466f20f49117deaa6d0e13ce7895d9fdedc04c0852da37a013349f6a7862bf340575d8dc36ab28ec6e8a3dd518578cba5745f378facda
- SSDEEP
  
  1536:aqxVvBdPlthZ91NSOswBxx0sQYYCWvtvQ6DV+kXNSVAO6TQ3PsNpM7aOEDLOm:aqxVvBdPlthZ91PsZpDV+kXNSVMQRm
Score

3^/10
behavioral11 behavioral12
- Target
  
  Release/Generated Files/winrt/Windows.Devices.Sensors.h
- Size
  
  366KB
- MD5
  
  14fb3bf640a0c985655e9e3050c79ac9
- SHA1
  
  97d9e989a0a5c7860c9f20a5991a4a983ef8772a
- SHA256
  
  27ab8c18fd731ebcc86d9f22c5c11b9b6b14deec773a9c8ed8fd35bba853edcb
- SHA512
  
  4eb1b46f67eca93c07a909e408a03925a8960bb1109b005499bd2f41492ef7d57719b2bffd8d8b67596f34755064184f579348f8dc47c3ba823faa239d944ea3
- SSDEEP
  
  6144:IT3y9U8N1SRhbbIwR1s0+cDCHcGql+e4hrBraGJafzLepN6tNPOrn:1
Score

3^/10
behavioral13 behavioral14
- Target
  
  Release/Generated Files/winrt/Windows.Devices.SmartCards.h
- Size
  
  209KB
- MD5
  
  644508a970b653c0219369c4929c5773
- SHA1
  
  7dcb01cd778e6fcaf73317a45905cf54e6083de0
- SHA256
  
  f90ea0738f242e17dd45d69b786e1211b61d8cd2b4c450935926240c4243ffe3
- SHA512
  
  7f0de576b2bd761f346a285329cedb6c6cd7e0b91f207fbc05866d459a8096e9596417979c5bc6e6f0b9c178035e78285e0dc2c0afd0d4455727ad0bc211bfc3
- SSDEEP
  
  768:T+586lfV6WBr0VDvVdsgCmqS5qabn1vHsDR2F1V5bAsSLuelS/Zd37LuiSPcKuj7:dPdP+WRpAhLz5hzFGg6zSfV3+cF0x
Score

3^/10
behavioral15 behavioral16
- Target
  
  Release/Generated Files/winrt/Windows.Foundation.Diagnostics.h
- Size
  
  183KB
- MD5
  
  8815dc990eb1dd3f772927fafd498414
- SHA1
  
  89e6e660007003b12c48662152fbd00c9c3ef9c5
- SHA256
  
  62239d88d50ede4610af7d7b1e7e1ce14dceef5dedb1e620ca6ff88f2e168bb7
- SHA512
  
  edc64380e5df1585f5a1b473736bcf27070e6ff7c42956552ea9ffc1f166c48bf8131f0599c445228ad7c89c635ffa2d7f16e39f1c9c15ad65b0c5ee205931b3
- SSDEEP
  
  768:MdGLKdGvgdG6tdGYKdOGzQ/ABz5EDsHzJioX2XevlLDL5BAYm4O4Ra1L0gztpz1l:3on93aItFOur1WmsBXBX1KEPaj5QM
Score

3^/10
behavioral17 behavioral18
- Target
  
  Release/Generated Files/winrt/Windows.Foundation.Numerics.h
- Size
  
  628B
- MD5
  
  340f436e24b1e297a61d20caad9461b1
- SHA1
  
  6c82e3686a6aa49fd865c0e4e09d9cf6c805d179
- SHA256
  
  c6c2b2dbc0d59c5adc1dc4b7947b84bd8d725d00c4718b34f0c34ad20ea28e3e
- SHA512
  
  5f7a3ae48cbc5531f6bb7cccf7a0c15c3247e0850165d50b979ed1c755057f00f96a7463720f4ca6e3b39705b05d85afc0748e75c11b30f7aa8f4c8ba2fbc2cb
Score

3^/10
behavioral19 behavioral20
- Target
  
  Release/Generated Files/winrt/Windows.Globalization.h
- Size
  
  298KB
- MD5
  
  3e6525a8870aac06f114d40529813ff2
- SHA1
  
  3c7b2ac53dc7c0ce800054865486adc2443ac617
- SHA256
  
  98e1d284fa8edb83be850400620b014a45597acb0130ac3a71515703686474c1
- SHA512
  
  c821fbb5bf3fd52d868c16a5624fcd2702adf6f8f74f28221602985f11927c09eaa838275c7def82c352f3bf8b1647562e5231bc8ef025b2ffdff18707ffafbb
- SSDEEP
  
  768:V8BTkWd9JZ4971te2tZlm7b8mBZCrZCQ0sgxSKWizY+vExrQEowG/MhkGJEnzzfY:U4tZlZ/KWizYM/ZMJSsb
Score

3^/10
behavioral21 behavioral22
- Target
  
  Release/Generated Files/winrt/Windows.Graphics.h
- Size
  
  815B
- MD5
  
  e03b51e8e4e4d20334687e672a5209bb
- SHA1
  
  c5b752a7ce592709f2a456fb7b1ef83e38e7f6b3
- SHA256
  
  102694845297b0f7d3047944932b535e71314f36e93f9c4ab4f3f25bc1da8178
- SHA512
  
  4cda5220a0fa535f63713162242495c1dc165c194f358d78bdbc57bad1ae6a0c2e3893d0e530500bba06ecc769d2a47f3569745e44d38f90693617cb2891cfae
Score

3^/10
behavioral23 behavioral24
- Target
  
  Release/Generated Files/winrt/Windows.Networking.NetworkOperators.h
- Size
  
  406KB
- MD5
  
  19f16987c8fe8b43f13b575aae9284c5
- SHA1
  
  b6ad37d0168eac9984392e61474bd1c593db36b3
- SHA256
  
  911ceb8deefe8fd9c05c102657a38d5667ba229ad138db1ee2b923b9ec53e2c4
- SHA512
  
  6bcbca1dc729fde4dbdac8ffb55bb57a7b53a51c6d206e4e0116bb46954f8f3327dea10b0887b68a548c3017320eb2079306d78398af320017ee33a7b4413069
- SSDEEP
  
  1536:XPWb5Cd7Go5Saz5Ih36myIiWpPasNQle1B/TRE71:XPWUd7Go5SazM3y
Score

3^/10
behavioral25 behavioral26
- Target
  
  Release/Generated Files/winrt/Windows.Networking.Sockets.h
- Size
  
  212KB
- MD5
  
  deca22ef7d46e6e50c561197d6f3056b
- SHA1
  
  6033918b0958bdd153f82ea5c751c8cc2b5c3370
- SHA256
  
  43edce0bd6203b2dd85f5e1768f8d3d6cb7d0cd6246a756d04a0ddacf5446cc5
- SHA512
  
  0cda86e2739a7f97d84180332f930d2a50bf304b9d233daeae6fa1f49ba377503310e3addf9ca566bd7305ae6a32261a40db9e6d2746ef84efd31d6b5fe3c772
- SSDEEP
  
  1536:lYcvDUjEk0CIyij5SsOZYWd3YYXEjnDeKx2e3S4bgeAnWGzJX6KX6H:lYcgMbn9Z
Score

3^/10
behavioral27 behavioral28
- Target
  
  Release/Generated Files/winrt/Windows.Networking.Vpn.h
- Size
  
  198KB
- MD5
  
  125f0473c65675e250798bf6c5e3782b
- SHA1
  
  7e10bdbed399843fceb4b2fe6a5dc88b1c41ec10
- SHA256
  
  658a3db21efa562298fe9db52352db8452371843ed09be617b253f70fa38fe7c
- SHA512
  
  789f56df3063d5b14e8ed35f5640c95e3b3323066c7cf12b051cbcc45e6dfa3fa5004a3cd55a1bc3b9d1346e3ce16108376d720451a4f63d763132265d6d99eb
- SSDEEP
  
  1536:BuOlQ192JDkYcnYVGqUuynIBzT/vT8htHb9V4k/:e2JDkDqUushtHbwk/
Score

3^/10
behavioral29 behavioral30
- Target
  
  Release/Generated Files/winrt/Windows.Phone.Speech.Recognition.h
- Size
  
  611B
- MD5
  
  05da956727b3752a6804a16475bd4ec8
- SHA1
  
  1d15744dc4b01dd19dc3f28ac55bd2db4c53eb99
- SHA256
  
  5c6baa08cb419c10e33168723f9ea4de78c0b3c7d6f93f9acf4b05451257c068
- SHA512
  
  8a4515219706cc248f745793b856425e72842787fc6c715403f48297cf5f0234416b736e1b48e7604d4f81e2b096778ad3acc887872648bfe1fcbdab13fb5742
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Executes dropped EXE

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32