Overview
overview
1Static
static
1Fortect.exe
ubuntu-18.04-amd64
$PLUGINSDI...er.dll
ubuntu-18.04-amd64
$PLUGINSDI...to.dll
ubuntu-18.04-amd64
$PLUGINSDIR/EnVar.dll
ubuntu-18.04-amd64
$PLUGINSDI...os.dll
ubuntu-18.04-amd64
$PLUGINSDIR/INetC.dll
ubuntu-18.04-amd64
$PLUGINSDIR/LogEx.dll
ubuntu-18.04-amd64
$PLUGINSDI...er.dll
ubuntu-18.04-amd64
$PLUGINSDI...em.dll
ubuntu-18.04-amd64
$PLUGINSDI...fo.dll
ubuntu-18.04-amd64
$PLUGINSDI...gs.dll
ubuntu-18.04-amd64
$PLUGINSDI...ON.dll
ubuntu-18.04-amd64
$PLUGINSDI...ss.dll
ubuntu-18.04-amd64
$PLUGINSDI...7z.dll
ubuntu-18.04-amd64
General
-
Target
Fortect.exe
-
Size
733KB
-
Sample
240506-2a7dkadg9z
-
MD5
62375c21e6766944cd560a7f5aecf0ca
-
SHA1
ccaf94b68f7d663f40d4d5d00604e8f90bce8a2c
-
SHA256
f54ae79fc6e93b6a316880d478dde0821db81185c5ca60c1183fbfd3356986ef
-
SHA512
06df6f0d3fc793bcbd2ddcb8c68169971e960299b6c5cea7f43f830b2a6cf2358d8707185440f52251a186c57f3fc869739293783afb188bc18399a959dfb8db
-
SSDEEP
12288:GYY60xp30hEE2l3J7vi72jRwy7z65jMk2:GYY60x8EE2lh99fz6172
Static task
static1
Behavioral task
behavioral1
Sample
Fortect.exe
Resource
ubuntu1804-amd64-20240418-en
Behavioral task
behavioral2
Sample
$PLUGINSDIR/Banner.dll
Resource
ubuntu1804-amd64-20240418-en
Behavioral task
behavioral3
Sample
$PLUGINSDIR/Crypto.dll
Resource
ubuntu1804-amd64-20240418-en
Behavioral task
behavioral4
Sample
$PLUGINSDIR/EnVar.dll
Resource
ubuntu1804-amd64-20240226-en
Behavioral task
behavioral5
Sample
$PLUGINSDIR/ExecDos.dll
Resource
ubuntu1804-amd64-20240418-en
Behavioral task
behavioral6
Sample
$PLUGINSDIR/INetC.dll
Resource
ubuntu1804-amd64-20240226-en
Behavioral task
behavioral7
Sample
$PLUGINSDIR/LogEx.dll
Resource
ubuntu1804-amd64-20240226-en
Behavioral task
behavioral8
Sample
$PLUGINSDIR/ShellExecAsUser.dll
Resource
ubuntu1804-amd64-20240418-en
Behavioral task
behavioral9
Sample
$PLUGINSDIR/System.dll
Resource
ubuntu1804-amd64-20240226-en
Behavioral task
behavioral10
Sample
$PLUGINSDIR/UserInfo.dll
Resource
ubuntu1804-amd64-20240226-en
Behavioral task
behavioral11
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
ubuntu1804-amd64-20240418-en
Behavioral task
behavioral12
Sample
$PLUGINSDIR/nsJSON.dll
Resource
ubuntu1804-amd64-20240226-en
Behavioral task
behavioral13
Sample
$PLUGINSDIR/nsProcess.dll
Resource
ubuntu1804-amd64-20240226-en
Behavioral task
behavioral14
Sample
$PLUGINSDIR/nsis7z.dll
Resource
ubuntu1804-amd64-20240418-en
Malware Config
Targets
-
-
Target
Fortect.exe
-
Size
733KB
-
MD5
62375c21e6766944cd560a7f5aecf0ca
-
SHA1
ccaf94b68f7d663f40d4d5d00604e8f90bce8a2c
-
SHA256
f54ae79fc6e93b6a316880d478dde0821db81185c5ca60c1183fbfd3356986ef
-
SHA512
06df6f0d3fc793bcbd2ddcb8c68169971e960299b6c5cea7f43f830b2a6cf2358d8707185440f52251a186c57f3fc869739293783afb188bc18399a959dfb8db
-
SSDEEP
12288:GYY60xp30hEE2l3J7vi72jRwy7z65jMk2:GYY60x8EE2lh99fz6172
Score1/10 -
-
-
Target
$PLUGINSDIR/Banner.dll
-
Size
24KB
-
MD5
f26199dd8e7cc2b8746f686b8546acde
-
SHA1
aebc8d0265774fea38d6f3d8467e1a80ac19b28f
-
SHA256
140a563d234e73ffee1ee3c2c76ae03d4966f57b7e4363622c002709eb8495ce
-
SHA512
59fdf0173c8b58364b6edc18fa9844044101169382eb7dd981d5f5f4753d45cd164ee9a09eb72eb1511de46c6d4e6ff9317e0ba951cbecb18e31472419e71b9f
-
SSDEEP
384:OCDlNyb8E9VF6IYiTPxgGnAeHzPR0TT69mTIYiMGnAeHzPyyPxh8E9VF0NyJtSXL:TdEpYiTPxxA/iYidAmPxWEXO
Score1/10 -
-
-
Target
$PLUGINSDIR/Crypto.dll
-
Size
24KB
-
MD5
5f8dddd0537cf9d33230c5f690c0eca0
-
SHA1
44cbe527b498656fd0af1c19576ec33066b8467c
-
SHA256
09140b70aa226ccd3c4eb0ea5db056e4774004a96b4a32eeb1e51ecd799fdaea
-
SHA512
0d5a4bfe5c90326b85d34aeb19a2d0ad9c5aec5892c7721177bf207fcf5c3b57ce420cbef827f18e6110ddcea72854957ddef8804fa3da772116cf74ff1b7e3a
-
SSDEEP
384:1dwKj4itsgyNyb8E9VF6IYiTPxgGnAeHzPY3d3VIYiMGnAeHzPwK7Pxh8E9VF0Nv:1dxbtwEpYiTPxxAgYidAo7PxWENy
Score1/10 -
-
-
Target
$PLUGINSDIR/EnVar.dll
-
Size
30KB
-
MD5
7de1ce9a127c326b8292cec4e0062c18
-
SHA1
ba85807962ce45aa1a521b2d7a4dc251c78fc7d4
-
SHA256
2d9d4f9362e4066ee7d216a70b4c37dfd600c20e2b8c863ff80427dd90814783
-
SHA512
6b7f31ee1a8a9c045e4f4d32c59d48a0708644456138df073ea8e3e04838faeb241d98452c238ab9b446e05a95a724e32cb50854d5651a029a284c69c8beeb0d
-
SSDEEP
768:89BoeSzNC6oEpYiTPxxA/kYidAaPxWEisM:89BnSzNr7TPxuc7yaPxW
Score1/10 -
-
-
Target
$PLUGINSDIR/ExecDos.dll
-
Size
27KB
-
MD5
f920b104c2fe5ca6fedd2b5825544ee6
-
SHA1
23116ab1316a135c6507a532839dd63509039046
-
SHA256
4cbc00b2ba0ce3052427a541d72501d45cbd93442a9a85ea249c2894df529000
-
SHA512
5aa8142ad29b630278377fc05a02437c640670e011d20f1d3c18f06144a0eaee92775a55a6489b0372f59143df88aa15638cc4b3a47ed309e8bf25e87f920739
-
SSDEEP
384:cCqAUtwYjH1cEXh2Nyb8E9VF6IYiTPxgGnAeHzPO9onIYiMGnAeHzPrMjgPxh8Ei:cFcIFheEpYiTPxxA5YidA70PxWEbW
Score1/10 -
-
-
Target
$PLUGINSDIR/INetC.dll
-
Size
45KB
-
MD5
9f3c809a6f525a8ef0c981c84113560e
-
SHA1
61770595387f4f6bceb8b7b4542730a865dffdbd
-
SHA256
4d7a2d9151e02b971f38d10ffe8937f34227ad5a2ce11e7879df094482deca72
-
SHA512
7ec73df64dcf2f4a394499601551b8d658ec11886709a4125c12a6116bd8864be2274d2b2cb54b3cd731ff75f7f969661c223832138c3243faea028cd71aba84
-
SSDEEP
768:SAvE90GuY2tO93oLrJRM7Z4EyEpYiTPxxAFKRYidAfPxWElb:5E+GjnmbM7T7TPxuC7yfPxL
Score1/10 -
-
-
Target
$PLUGINSDIR/LogEx.dll
-
Size
64KB
-
MD5
065130bd4bc3b4d769ffb0050a5464d0
-
SHA1
5997b2834e691d92cb109c808d9054e3fb43d7a7
-
SHA256
568871b5048cf3e9a9c200c6527938fc616139353e084c43d283f96ba16b4ebb
-
SHA512
9324c626714191fd6d621bded56137316ca23f8e14fa0923f7652465417523cfaca29b49ddc3d67989edaa8b88227a7ef499fdce2b2bf86d67b91158ae528b91
-
SSDEEP
768:WoaF+ATCQye/I3KWmxj00Jyb8EnovnEpYiTPxxA8QYidAG2VPxWENz4:uF+ATCNmVjj8poI7TPxu8Q7yGAPxL4
Score1/10 -
-
-
Target
$PLUGINSDIR/ShellExecAsUser.dll
-
Size
63KB
-
MD5
d0605d66200b4d77ad9ed0933ea753d3
-
SHA1
91b783ff0f56313f6849c04ddf3bdbe5c4b427d2
-
SHA256
6005e7584b52f11a5dda8ae95993dea8747b49321fd2e7632fed8a365a6e6b8e
-
SHA512
fd6f7e97460b306f7555ed6ee78752feb04774306a9beeb903d56857cddc8d09ed73af35acd8e552b4b7343ae403e64344ce5f999caa76eb695a93d8d38a8cc6
-
SSDEEP
1536:nA4CJ9OFpXf0AfNiTkIMrhdkQ7TPxQnZ7ddPx2:AhCFptfN6MrhGQfxsZRxx2
Score1/10 -
-
-
Target
$PLUGINSDIR/System.dll
-
Size
32KB
-
MD5
f64b9dfc805639380a2336bf2e803523
-
SHA1
9c0f3c905e819d4a212b225c5a23e07a5733a3cf
-
SHA256
69cae8b431d364968bb4d77352718f7d862563ef3efd1d3d18da10b0c2813b2b
-
SHA512
8cecb2915e747f0f803f4e8a153f67267a1760b6c1821dbb6d89c3e7af47888e6bf0efe9021c45a2aaec2f7afd5fd4b7d6619f4594409c88f047569cd73cb60a
-
SSDEEP
768:WiqmijmpcnEpYiTPxxAsYidAwVDPxWEZ0:TqZm2A7TPxus7ywVDPxU
Score1/10 -
-
-
Target
$PLUGINSDIR/UserInfo.dll
-
Size
24KB
-
MD5
921ae5351f80d55cce56054622f5add9
-
SHA1
081641958f39ae91fb692a6874f66a47a929ae9c
-
SHA256
eaeb1c53743c3540dbaaceeab03a57a0f16d43be593d87e16a5695298205ad04
-
SHA512
f6b4bb59703169672c5de62252f69bdb8702f4f13193df9cd632bb4d8d45aef63a25594e340b898ade3f372f47a18b995133bfbadedaf6bb9d316af7b57d89b2
-
SSDEEP
384:OWH+BNyb8E9VF6IYiTPxgGnAeHzPRmnkatIYiMGnAeHzPdZvPxh8E9VF0Ny8+Mk:OhFEpYiTPxxATaYidAMPxWEqtk
Score1/10 -
-
-
Target
$PLUGINSDIR/nsDialogs.dll
-
Size
30KB
-
MD5
793c48821589c9fbf03cfa62a919df2d
-
SHA1
b21b4ada7f689199e28984d57e5a10bf7d3f18be
-
SHA256
11832e3c0dc402ef83c17b2ebf94c58e0299b95459aa8657abeac71c47d09b3b
-
SHA512
9208c78e513ef4d60ea21e7254f8de9cf7677e3d38f9eb8bdfb9aa8573c36c32d0190b1b3bcde918e86741469312ef56f374153fec0cc2db0571ec94abc2c81d
-
SSDEEP
768:ARapMv/Agk0gEpYiTPxxA1WxYidA6wF0PxWERH:AR2Mv/Agk0p7TPxu1Wx7y6wCPxT
Score1/10 -
-
-
Target
$PLUGINSDIR/nsJSON.dll
-
Size
44KB
-
MD5
1a8bcfcdd4acb364f9e78d7e5f6e24d2
-
SHA1
b760838504044ff68516c21bb0f750a930884719
-
SHA256
29ece51c5d05c280d080dbd0ddb36abbc5b98567bf11e9d94f7c1ab619015eca
-
SHA512
2abcadb060097b91deb245b2dfa46e792f1e27d1d773c16f2af6e0234c9f03029e3ce2ebc042344c82a9f365f8ae2327e485a64010f6a69cf9c354c8ad5a0191
-
SSDEEP
768:aoZ1ZnhrTfldqk7Yyy94RxOcVQJrTwEpYiTPxxA4WYidAEPxWEML8:7pi52vOcqlTZ7TPxuP7yEPxU8
Score1/10 -
-
-
Target
$PLUGINSDIR/nsProcess.dll
-
Size
25KB
-
MD5
92e43d9e657a2366b412475683ad7b07
-
SHA1
9de0cd039d79bf90a407a09b283ecff5b511bd98
-
SHA256
1093622ea8e01f5614f343603d8c622193eafa5b35773e5bd2c2dc0911f22a48
-
SHA512
591d4bb819d5b8622dcc2be75ee78c25ac84da843a5cb6270046ad427f38e97e619dc5726a3aef2d3c202990d5ddc0bf1af1e7e7436ca3b18377871616e49181
-
SSDEEP
384:BZheNyb8E9VF6IYiTPxgGnAeHzPEZRbjUfIYiMGnAeHzPqXHQssPxh8E9VF0Nyp3:B3mEpYiTPxxATbXYidAXHGPxWE33
Score1/10 -
-
-
Target
$PLUGINSDIR/nsis7z.dll
-
Size
468KB
-
MD5
34074827fdd516e076679ad19eca3c4a
-
SHA1
87603ebb41d232c18f7d515707369e92432cc883
-
SHA256
19a6210afde4965e6609f479e557c4979f80c319c273608b7b946ed96df7d150
-
SHA512
3584b4a39ace2876e30a08bb726d2743f639d8ca8aaeeed585b332dc95c9ddf16fa11a8d5002f84b37a894b5ba39a3829ff482e11fd577e89505ff38edcacc48
-
SSDEEP
12288:0NZu4odeOo0QsjC4Fz74p87MZj/Ce/0jQX:O/KeN0Jbh74S7ObCesjQX
Score1/10 -