a74223c266470996a8cb333f7fbf7f7c415180d1a939faa72e2207d9b2ab6992 | Triage

Sharing

General

Target

SolaraBETA_2 (extract.me).zip
Size

22.6MB
Sample

240505-a7149shc4y
MD5

845f9961e3884a934879992ad3c9c46e
SHA1

1b398fdece683dd35f1e636ac7226992c076c8e5
SHA256

a74223c266470996a8cb333f7fbf7f7c415180d1a939faa72e2207d9b2ab6992
SHA512

2c19a6a9c017d43e1d996f514de824f6c956f35f58f754e4865b00ae2d6ebf8d4601615780439c77604f1649d77d0974a71f647d40c1d90614fd3599e0548f5a
SSDEEP

393216:oFYcYaahsNT01dgbPnnQlS4nw2BXuwh/u+GzxwkdbgsH6xYkrSGsryEzKARQkdb/:oFl2O01dgbPnGnwUh/4zB93HpkmGsryG

Score

3^/10

execution

Malware Config

Targets

- Target
  
  SolaraBETA (2)/Microsoft.Web.WebView2.Core.dll
- Size
  
  488KB
- MD5
  
  851fee9a41856b588847cf8272645f58
- SHA1
  
  ee185a1ff257c86eb19d30a191bf0695d5ac72a1
- SHA256
  
  5e7faee6b8230ca3b97ce9542b914db3abbbd1cb14fd95a39497aaad4c1094ca
- SHA512
  
  cf5c70984cf33e12cf57116da1f282a5bd6433c570831c185253d13463b0b9a0b9387d4d1bf4dddab3292a5d9ba96d66b6812e9d7ebc5eb35cb96eea2741348f
- SSDEEP
  
  12288:W/TcW1virB3ye+iKzORFNgeA+imQ9pRFZNIEJdIElxPrEIgcvLcglxMwCepM1STy:W/1C4I
Score

1^/10
behavioral1 behavioral2
- Target
  
  SolaraBETA (2)/Microsoft.Web.WebView2.WinForms.dll
- Size
  
  37KB
- MD5
  
  4cf94ffa50fd9bdc0bb93cceaede0629
- SHA1
  
  3e30eca720f4c2a708ec53fd7f1ba9e778b4f95f
- SHA256
  
  50b2e46c99076f6fa9c33e0a98f0fe3a2809a7c647bb509066e58f4c7685d7e6
- SHA512
  
  dc400518ef2f68920d90f1ce66fbb8f4dde2294e0efeecd3d9329aa7a66e1ab53487b120e13e15f227ea51784f90208c72d7fbfa9330d9b71dd9a1a727d11f98
- SSDEEP
  
  768:SNGbP6+wTftcZDgcEST3p4Jjrjh2jJFSUyauYv1JKia5/Zi/WGQKVu6bRaMBo0wx:OGm+otcZDgcEST3p4JjrjaJFSUyau01U
Score

1^/10
behavioral3 behavioral4
- Target
  
  SolaraBETA (2)/Microsoft.Web.WebView2.Wpf.dll
- Size
  
  43KB
- MD5
  
  34ec990ed346ec6a4f14841b12280c20
- SHA1
  
  6587164274a1ae7f47bdb9d71d066b83241576f0
- SHA256
  
  1e987b22cd011e4396a0805c73539586b67df172df75e3dded16a77d31850409
- SHA512
  
  b565015ca4b11b79ecbc8127f1fd40c986948050f1caefdd371d34ed2136af0aabf100863dc6fd16d67e3751d44ee13835ea9bf981ac0238165749c4987d1ae0
- SSDEEP
  
  768:1n/WlAKj4s0TV09797+nXDheteXBxc78OSW3Z8lcDP/ryEH0UBy4JjrD1h2j5h3E:1+msYXR3sZ8lcDP/ryEH0UBy4JjrD1aU
Score

1^/10
behavioral5 behavioral6
- Target
  
  SolaraBETA (2)/Monaco/min/vs/base/common/worker/simpleWorker.nls.de.js
- Size
  
  869B
- MD5
  
  2cc7c26de2c6539d92e48df01c747212
- SHA1
  
  2f412a8c084f7d4007f597775137ed0f6b30aca6
- SHA256
  
  1ea09d107089dc1e8bc0ba408fefcbdcbf366c697ba216f88da49330130e0514
- SHA512
  
  f7d1e655ac538b8179296c4a84f56a8eb37e6b18d44aced642f46d49377763526af51b314bfbe36533f97a7a16585820a3b44cb86851ae131a4ada74fd9ca139
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  SolaraBETA (2)/Monaco/min/vs/base/common/worker/simpleWorker.nls.es.js
- Size
  
  890B
- MD5
  
  be65596cf447f87b15945adec9ab6031
- SHA1
  
  23d8a0d0ad6f13b2cb9cd360d4e0731846242219
- SHA256
  
  56341c7827241a6bf388660a020b45e3f5a191b7da46f7a9bc30fbcc61ff2ebb
- SHA512
  
  0b86df2585d1a9abca9a7581d91a77b1ff343a9f4db2d35ce809c6106dc78be3a604ef8e27380c57bd82dfd2400bdb66328e96b94435dcd8089f2f4d6f92f971
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  SolaraBETA (2)/Monaco/min/vs/base/common/worker/simpleWorker.nls.it.js
- Size
  
  879B
- MD5
  
  40dcef8a9c3999ffa8b95f6f4f594f38
- SHA1
  
  0c60a08a17b25ac85ef27b06e73f552b5f166669
- SHA256
  
  74886ff47cb9ba5dcb72e223887ba3fc91b19f9818aeb9cbfc64a56203f22993
- SHA512
  
  75349033883604dc20a0ce9ea3bdd025915971bc09deb01d71ff4bdace16d5cf81affc0ba41831d3900ce7e39ec737c6b881d6b04f34bb8ad5f9932e5234518b
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  SolaraBETA (2)/Monaco/min/vs/base/common/worker/simpleWorker.nls.ja.js
- Size
  
  1KB
- MD5
  
  621f9baeccd7c53c86593a0ab55eac65
- SHA1
  
  9499604d5fc342a0dd505b7c661fc3304a5cac67
- SHA256
  
  04b190db7bc19af7dd6d28069b0a8fbb2baeedcdbead5356773444049eb2e524
- SHA512
  
  7f1737822ab9f2e4216a0488f40d59d48fcdfa4c709140ff16e7accb6a4da3e9bfa2b18533c731e38f570a9c0f1f71c64682fad0a6076b9df5c15febb4216791
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  SolaraBETA (2)/Monaco/min/vs/base/common/worker/simpleWorker.nls.ko.js
- Size
  
  1KB
- MD5
  
  18f7182628293ba344943946cd60581b
- SHA1
  
  2661b387addbf8faa2af333f303cc4940ab4b9c0
- SHA256
  
  377f5295df6a60b920589743362fa6400e1ec8825bcd0a11d19fe873d6aaef98
- SHA512
  
  cfddb18da41643b6ed3ec22208cec3d8cc451302bf23e5224b6c9b3f40f4f6e3b03bdc8969cf7ad9d1dcf53175ae4d8e2040472dc28a0f851d845bdb6abac329
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  SolaraBETA (2)/Monaco/min/vs/base/common/worker/simpleWorker.nls.ru.js
- Size
  
  1KB
- MD5
  
  771d91548299fd6a6276e4f7b53e3644
- SHA1
  
  88609ed1327f9a196489fd6325f64c2ecacdf427
- SHA256
  
  715d1a916bb311ffb62b9114b186d86214c70ce8720589d894859102d002fb37
- SHA512
  
  200e78a5864a4dd91144e3f0dcd2b118bbc7abb344a87a6d704d427a51122c2d062026c13db2b02bd5b5be4ccad1db8ad5b79c2969b236a68ba48f0d65cb45d3
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  SolaraBETA (2)/Monaco/min/vs/base/common/worker/simpleWorker.nls.zh-cn.js
- Size
  
  1003B
- MD5
  
  303bb444da372adfd2f00711e2f8af5e
- SHA1
  
  031d648cb39c521e9c314cabf6fed9b4bbfad5eb
- SHA256
  
  cece19ca9db35eb58973a81ec27fc9866759920c2ba789ada2887a94400f4de5
- SHA512
  
  85b672818a2f3d5f7e4a6c996a683710e8bf5470cc0e28886441fe072b5a5933a1339a588346a99a46c9827f494e801cf52a130a25522ba08e97773614a0a5a9
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  SolaraBETA (2)/Monaco/min/vs/base/common/worker/simpleWorker.nls.zh-tw.js
- Size
  
  1021B
- MD5
  
  441b351a58033df07839a56fe88cb3f4
- SHA1
  
  3dcc6c0bebd5f503fdd0b856e20e51f3f1a1c151
- SHA256
  
  6d06a8de18319120f905b26e564dda2e2b464359cf565b8bb13154edc9a30d7e
- SHA512
  
  624ddee33681f4a3476b1f19ddcf675b1344a9de87f2a7442cfaa5ccfb1d8b050bff7d76442a6cf5c0b5502ee1730f2f8b27bddb35fc3bffd19a7191ae5726f5
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  SolaraBETA (2)/Monaco/min/vs/base/worker/workerMain.js
- Size
  
  331KB
- MD5
  
  f536916bb8c69485a43d531d4aee4b2f
- SHA1
  
  4bbf51ac452e609e283ffdb0aa69843232e519e9
- SHA256
  
  d3acd18994f2571c2511314d049689d1b2d649ba667ee1f7291eb0750c08494f
- SHA512
  
  4a3c473ed88b5c91ea041c39fa6b60be21a061288fb7341548f4c81a193ef1ca8e52d0149bcd0bc6ae9a7439e1a178d6390d06569513736f82f8fb94d6f48b7c
- SSDEEP
  
  6144:YD1ao/Ewqw8DWG79ynJiqWa6Amja8zgMAQ3GeS:YD1t//qWG79giqWa8ja8zgMA/eS
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  SolaraBETA (2)/Monaco/min/vs/basic-languages/abap/abap.js
- Size
  
  14KB
- MD5
  
  450cebd6d2b253ea040a441f860ce09e
- SHA1
  
  809fcd6a391cb39ee4b7e45bba440581d3544e54
- SHA256
  
  69a2e9c84833412f35627b2681259fafb5602632c86a002bd819592d5280ec3b
- SHA512
  
  6a66709479e46566103e5a78e926ea08a7aa60ea845a28db6d8f97056e54e8d0e988f2ea3c0a81cfda730a38c011627243c8ef3112238b7434b02e2574473415
- SSDEEP
  
  384:GtbFlAVJmdZoL+v0gbDzhckKq9CNWrgfiJ6an:yg/mduY3hcFTNWrgf5an
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  SolaraBETA (2)/Monaco/min/vs/basic-languages/apex/apex.js
- Size
  
  4KB
- MD5
  
  30c9b6d5e98544ec4c16251577bded1a
- SHA1
  
  fa08cf3adee30bc6c9a6e41355cd37892de516f8
- SHA256
  
  e24fd69a21c6193f82fa3194fd3e2902308b1624150124973ef38c98cf0e5397
- SHA512
  
  adf050739ee9aa2a0f26ea4cb0dc1754ff7eabf57992f4f6a73d59b878c66dbc821dea23f589375cdc8bbcdf2f34eee4ba28bc5c2b1c4ef82a78077b17005a7b
- SSDEEP
  
  96:pQFDHnYRs8hHV//sax+rbV1+/0V1+/mQGkIlIGEuIBV/1cHhb6z7RlwGcXRqp:G9Y3hqA+rTx1KIlIhuABuHs9liXS
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  SolaraBETA (2)/Monaco/min/vs/basic-languages/azcli/azcli.js
- Size
  
  1KB
- MD5
  
  3f7eb57da423d9d030d1652b8de22e8f
- SHA1
  
  08e12d584a4c709192c8170647a3c5dc84166371
- SHA256
  
  0bcdfd620dadca6ef6b9cd908228790e82b06fbbd6607513789cea42bbf1c67f
- SHA512
  
  fb42510901901666d99ee3cc185e8576985049f3b7d0de857af3a8f99690370b8b26f1e06ec812b39f330ac7704e110eeba9b4fd0431a1d91d58d9ec87462acd
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  SolaraBETA (2)/Monaco/min/vs/basic-languages/bat/bat.js
- Size
  
  2KB
- MD5
  
  3d5deb3a173b138998890ccddbaa876e
- SHA1
  
  2a9e3ee457fd313d95b981e547d5008742f23f81
- SHA256
  
  64c1d55e14052eb1e56f09de7380274a6cde5f6579de317d6ca7e3d27cc11a18
- SHA512
  
  bbe95876520dcbe9b73beff22ae911caba167f6755734c28f54aef83413bb02d1bedfd933b9a61ae92fe645b5375afd44aaf825dc416413c7b7142c06ae1903d
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32