General
-
Target
Solara BETA.zip
-
Size
25.1MB
-
Sample
240506-wpsk3ach5z
-
MD5
b01706fce30238749b36bc34c4fab943
-
SHA1
10c52e6a6c15e6c8d07502223d2ca942d9d6c97e
-
SHA256
3347e2c1118b827092b642296a28272145791bd62448a4e3dead412ecaa52935
-
SHA512
b1081cb30963e987bec0d1b3d6d042a190f1a904a754ab2e43f578adcfb0684fb21ae25036931b46987268fe6256677b0f94db119506e81c813aab3b182cc5c9
-
SSDEEP
786432:Wk6c/C8jBZwAIhaUUWjmpdugGoFmOaUWM6mW:Wk6c/C8d+The+cGoBobP
Malware Config
Targets
-
-
Target
Solara/Microsoft.Web.WebView2.Core.dll
-
Size
488KB
-
MD5
851fee9a41856b588847cf8272645f58
-
SHA1
ee185a1ff257c86eb19d30a191bf0695d5ac72a1
-
SHA256
5e7faee6b8230ca3b97ce9542b914db3abbbd1cb14fd95a39497aaad4c1094ca
-
SHA512
cf5c70984cf33e12cf57116da1f282a5bd6433c570831c185253d13463b0b9a0b9387d4d1bf4dddab3292a5d9ba96d66b6812e9d7ebc5eb35cb96eea2741348f
-
SSDEEP
12288:W/TcW1virB3ye+iKzORFNgeA+imQ9pRFZNIEJdIElxPrEIgcvLcglxMwCepM1STy:W/1C4I
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Legitimate hosting services abused for malware hosting/C2
-
Drops file in System32 directory
-
-
-
Target
Solara/Microsoft.Web.WebView2.WinForms.dll
-
Size
37KB
-
MD5
4cf94ffa50fd9bdc0bb93cceaede0629
-
SHA1
3e30eca720f4c2a708ec53fd7f1ba9e778b4f95f
-
SHA256
50b2e46c99076f6fa9c33e0a98f0fe3a2809a7c647bb509066e58f4c7685d7e6
-
SHA512
dc400518ef2f68920d90f1ce66fbb8f4dde2294e0efeecd3d9329aa7a66e1ab53487b120e13e15f227ea51784f90208c72d7fbfa9330d9b71dd9a1a727d11f98
-
SSDEEP
768:SNGbP6+wTftcZDgcEST3p4Jjrjh2jJFSUyauYv1JKia5/Zi/WGQKVu6bRaMBo0wx:OGm+otcZDgcEST3p4JjrjaJFSUyau01U
Score1/10 -
-
-
Target
Solara/Microsoft.Web.WebView2.Wpf.dll
-
Size
43KB
-
MD5
34ec990ed346ec6a4f14841b12280c20
-
SHA1
6587164274a1ae7f47bdb9d71d066b83241576f0
-
SHA256
1e987b22cd011e4396a0805c73539586b67df172df75e3dded16a77d31850409
-
SHA512
b565015ca4b11b79ecbc8127f1fd40c986948050f1caefdd371d34ed2136af0aabf100863dc6fd16d67e3751d44ee13835ea9bf981ac0238165749c4987d1ae0
-
SSDEEP
768:1n/WlAKj4s0TV09797+nXDheteXBxc78OSW3Z8lcDP/ryEH0UBy4JjrD1h2j5h3E:1+msYXR3sZ8lcDP/ryEH0UBy4JjrD1aU
Score1/10 -
-
-
Target
Solara/Monaco/index.html
-
Size
10KB
-
MD5
88c656c8a5ed79b224e394b9a99859b7
-
SHA1
659580a2145a21f2d1930069752aff3bd5feae73
-
SHA256
4f6e391eb77f7ae226b76329265bcb8e93b9426bde9e6f8f0711501fb6837514
-
SHA512
b38c5840f2defc47c867b63ad474da594dcbb5f286e4d02cfcac67bbc8b6f11e71b5f8c6d9bfa8cafab3e01ba4518648fd7eed01dbed386e7e3764317c6edd13
-
SSDEEP
192:oI8JikbXF3Jv/8fbVBg7BH1OYKloqdZGUuJBn2jVBfcNs+TIDQvnoaQLK:2JxtabVBJjVBd+TI6noaQLK
Score6/10-
Legitimate hosting services abused for malware hosting/C2
-
-
-
Target
Solara/Monaco/min/vs/base/common/worker/simpleWorker.nls.de.js
-
Size
869B
-
MD5
2cc7c26de2c6539d92e48df01c747212
-
SHA1
2f412a8c084f7d4007f597775137ed0f6b30aca6
-
SHA256
1ea09d107089dc1e8bc0ba408fefcbdcbf366c697ba216f88da49330130e0514
-
SHA512
f7d1e655ac538b8179296c4a84f56a8eb37e6b18d44aced642f46d49377763526af51b314bfbe36533f97a7a16585820a3b44cb86851ae131a4ada74fd9ca139
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/base/common/worker/simpleWorker.nls.es.js
-
Size
890B
-
MD5
be65596cf447f87b15945adec9ab6031
-
SHA1
23d8a0d0ad6f13b2cb9cd360d4e0731846242219
-
SHA256
56341c7827241a6bf388660a020b45e3f5a191b7da46f7a9bc30fbcc61ff2ebb
-
SHA512
0b86df2585d1a9abca9a7581d91a77b1ff343a9f4db2d35ce809c6106dc78be3a604ef8e27380c57bd82dfd2400bdb66328e96b94435dcd8089f2f4d6f92f971
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/base/common/worker/simpleWorker.nls.fr.js
-
Size
904B
-
MD5
0e0b9d2cd1250ef30f3b462af8600c3f
-
SHA1
3899fcf4cfa7250bbb0a2e943fc288d40a94bf68
-
SHA256
4a3afc911e223f70f2ffe4febd392fffff6011607cc9752c4313e951121bc36a
-
SHA512
602747fa05c86af14e6f11242b0fd2bef2474cec77f6cad2cca9923bac9c0389ae5a970c86c89cb6ff83467446c13b401d529780d86425540f5b1839d2f64704
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/base/common/worker/simpleWorker.nls.it.js
-
Size
879B
-
MD5
40dcef8a9c3999ffa8b95f6f4f594f38
-
SHA1
0c60a08a17b25ac85ef27b06e73f552b5f166669
-
SHA256
74886ff47cb9ba5dcb72e223887ba3fc91b19f9818aeb9cbfc64a56203f22993
-
SHA512
75349033883604dc20a0ce9ea3bdd025915971bc09deb01d71ff4bdace16d5cf81affc0ba41831d3900ce7e39ec737c6b881d6b04f34bb8ad5f9932e5234518b
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/base/common/worker/simpleWorker.nls.ja.js
-
Size
1KB
-
MD5
621f9baeccd7c53c86593a0ab55eac65
-
SHA1
9499604d5fc342a0dd505b7c661fc3304a5cac67
-
SHA256
04b190db7bc19af7dd6d28069b0a8fbb2baeedcdbead5356773444049eb2e524
-
SHA512
7f1737822ab9f2e4216a0488f40d59d48fcdfa4c709140ff16e7accb6a4da3e9bfa2b18533c731e38f570a9c0f1f71c64682fad0a6076b9df5c15febb4216791
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/base/common/worker/simpleWorker.nls.js
-
Size
832B
-
MD5
b726874ad2f46ba88f950832850542b4
-
SHA1
c813dfb6185d59b00aafe2a98c7632ae67de6a2f
-
SHA256
a7b212e2cd848787a8af48fc99c5ce82dee49a8534de42ff4833024e93ca4d19
-
SHA512
633dd4c826e485f21f81a6b57dc50810abbd8072c58f540715207406a667df8c7ec074caf64ccc8e3867dd1bbc9ae8d67f3f6837b51bd6fb1fe7104a3cca417c
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/base/common/worker/simpleWorker.nls.ko.js
-
Size
1KB
-
MD5
18f7182628293ba344943946cd60581b
-
SHA1
2661b387addbf8faa2af333f303cc4940ab4b9c0
-
SHA256
377f5295df6a60b920589743362fa6400e1ec8825bcd0a11d19fe873d6aaef98
-
SHA512
cfddb18da41643b6ed3ec22208cec3d8cc451302bf23e5224b6c9b3f40f4f6e3b03bdc8969cf7ad9d1dcf53175ae4d8e2040472dc28a0f851d845bdb6abac329
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/base/common/worker/simpleWorker.nls.ru.js
-
Size
1KB
-
MD5
771d91548299fd6a6276e4f7b53e3644
-
SHA1
88609ed1327f9a196489fd6325f64c2ecacdf427
-
SHA256
715d1a916bb311ffb62b9114b186d86214c70ce8720589d894859102d002fb37
-
SHA512
200e78a5864a4dd91144e3f0dcd2b118bbc7abb344a87a6d704d427a51122c2d062026c13db2b02bd5b5be4ccad1db8ad5b79c2969b236a68ba48f0d65cb45d3
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/base/common/worker/simpleWorker.nls.zh-cn.js
-
Size
1003B
-
MD5
303bb444da372adfd2f00711e2f8af5e
-
SHA1
031d648cb39c521e9c314cabf6fed9b4bbfad5eb
-
SHA256
cece19ca9db35eb58973a81ec27fc9866759920c2ba789ada2887a94400f4de5
-
SHA512
85b672818a2f3d5f7e4a6c996a683710e8bf5470cc0e28886441fe072b5a5933a1339a588346a99a46c9827f494e801cf52a130a25522ba08e97773614a0a5a9
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/base/common/worker/simpleWorker.nls.zh-tw.js
-
Size
1021B
-
MD5
441b351a58033df07839a56fe88cb3f4
-
SHA1
3dcc6c0bebd5f503fdd0b856e20e51f3f1a1c151
-
SHA256
6d06a8de18319120f905b26e564dda2e2b464359cf565b8bb13154edc9a30d7e
-
SHA512
624ddee33681f4a3476b1f19ddcf675b1344a9de87f2a7442cfaa5ccfb1d8b050bff7d76442a6cf5c0b5502ee1730f2f8b27bddb35fc3bffd19a7191ae5726f5
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/base/worker/workerMain.js
-
Size
331KB
-
MD5
f536916bb8c69485a43d531d4aee4b2f
-
SHA1
4bbf51ac452e609e283ffdb0aa69843232e519e9
-
SHA256
d3acd18994f2571c2511314d049689d1b2d649ba667ee1f7291eb0750c08494f
-
SHA512
4a3c473ed88b5c91ea041c39fa6b60be21a061288fb7341548f4c81a193ef1ca8e52d0149bcd0bc6ae9a7439e1a178d6390d06569513736f82f8fb94d6f48b7c
-
SSDEEP
6144:YD1ao/Ewqw8DWG79ynJiqWa6Amja8zgMAQ3GeS:YD1t//qWG79giqWa8ja8zgMA/eS
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/basic-languages/abap/abap.js
-
Size
14KB
-
MD5
450cebd6d2b253ea040a441f860ce09e
-
SHA1
809fcd6a391cb39ee4b7e45bba440581d3544e54
-
SHA256
69a2e9c84833412f35627b2681259fafb5602632c86a002bd819592d5280ec3b
-
SHA512
6a66709479e46566103e5a78e926ea08a7aa60ea845a28db6d8f97056e54e8d0e988f2ea3c0a81cfda730a38c011627243c8ef3112238b7434b02e2574473415
-
SSDEEP
384:GtbFlAVJmdZoL+v0gbDzhckKq9CNWrgfiJ6an:yg/mduY3hcFTNWrgf5an
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/basic-languages/apex/apex.js
-
Size
4KB
-
MD5
30c9b6d5e98544ec4c16251577bded1a
-
SHA1
fa08cf3adee30bc6c9a6e41355cd37892de516f8
-
SHA256
e24fd69a21c6193f82fa3194fd3e2902308b1624150124973ef38c98cf0e5397
-
SHA512
adf050739ee9aa2a0f26ea4cb0dc1754ff7eabf57992f4f6a73d59b878c66dbc821dea23f589375cdc8bbcdf2f34eee4ba28bc5c2b1c4ef82a78077b17005a7b
-
SSDEEP
96:pQFDHnYRs8hHV//sax+rbV1+/0V1+/mQGkIlIGEuIBV/1cHhb6z7RlwGcXRqp:G9Y3hqA+rTx1KIlIhuABuHs9liXS
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/basic-languages/azcli/azcli.js
-
Size
1KB
-
MD5
3f7eb57da423d9d030d1652b8de22e8f
-
SHA1
08e12d584a4c709192c8170647a3c5dc84166371
-
SHA256
0bcdfd620dadca6ef6b9cd908228790e82b06fbbd6607513789cea42bbf1c67f
-
SHA512
fb42510901901666d99ee3cc185e8576985049f3b7d0de857af3a8f99690370b8b26f1e06ec812b39f330ac7704e110eeba9b4fd0431a1d91d58d9ec87462acd
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/basic-languages/bat/bat.js
-
Size
2KB
-
MD5
3d5deb3a173b138998890ccddbaa876e
-
SHA1
2a9e3ee457fd313d95b981e547d5008742f23f81
-
SHA256
64c1d55e14052eb1e56f09de7380274a6cde5f6579de317d6ca7e3d27cc11a18
-
SHA512
bbe95876520dcbe9b73beff22ae911caba167f6755734c28f54aef83413bb02d1bedfd933b9a61ae92fe645b5375afd44aaf825dc416413c7b7142c06ae1903d
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/basic-languages/bicep/bicep.js
-
Size
3KB
-
MD5
4664fb176151e58a2d4796b6327fcae6
-
SHA1
61049bf36e9d26d94a439772f6b121847b483774
-
SHA256
138890bb900c772b9cd85a6a880a4c3834d4cf69fe60a7db4f0ed5ac6a6036ca
-
SHA512
253f9ec3f72d5d7b77da147361adbb1a7f3f1f3eff55454d837cefc0f49b4292b5c7ce466bb469a6ba48ef9ea8f59228b03588efc2028299d7228789b8b88456
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/basic-languages/cameligo/cameligo.js
-
Size
2KB
-
MD5
64c2f717418fcee34ddc32e4ae0aeeb5
-
SHA1
f2f8d5d092edbe8df25da12142e25dac50cf6744
-
SHA256
9c69c0623eaa0c03d7268f7b640e7b1e4a7613168fb7453e1df44d918d20d37c
-
SHA512
a0bab29f1d07c04e9980f11aa4080d6029ffa975449254b91a0f7b59272cfca72db05a261614c1bd4356e798e9dfd6a6a912add5d862aeb6769c646a7a5971cd
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/basic-languages/clojure/clojure.js
-
Size
10KB
-
MD5
a477ac7fa29fa1d433c807b0d51aa453
-
SHA1
cacc81f6218791005258647f27d4248e39529007
-
SHA256
f518edbd296f40149368695cfd50bad56c40d3e98648d4bcb24fb887df0763b6
-
SHA512
9cc4e9653f73b55b143e8ab4d9c3fced9817fdaf4d6cad45d488d409f4853567bca3f5bb1387072ca388171b8861300ffa25b239a8594d4f024d8e31ec654c2f
-
SSDEEP
192:G9YW897PKZLQ3xN//F3kxVrpHJJJbs+b9N1FhbZDbBPjwnIHUB1:Gd85PKZLQvZkxVdp3XbLhZtwnI0
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/basic-languages/coffee/coffee.js
-
Size
4KB
-
MD5
c7530c18128c1c16ee01a2c9aa5ad5cd
-
SHA1
39036d2caf933bb3208c02fdfd918fcef5366640
-
SHA256
b71fa40d1dfcf8a0a4a1d9741bdcb480ed427f6449d504039cf0d6da230cd5b9
-
SHA512
80d6ab3a7abfa49677cb01874fe621161d6428d117e597db5a6e5a4d7a3346e5fedadd0e38f77b1d74a11c3a42524946bc2ac3b57c92956d7d7a71a4ece4af60
-
SSDEEP
96:pQFDHnYRsX+/EZQI0xqmV1+/0V1+/Zq1S8YLYGbSiv5vjmtMzkJgd+fcAr6fPlZ:G9YIgqix7iiihjmtykJbcAr6fX
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/basic-languages/cpp/cpp.js
-
Size
6KB
-
MD5
5cb18f40121375f10f0a877fe2655952
-
SHA1
370cf78eafcc875d9d8e34fc8b699cea67cc2aea
-
SHA256
f6f92abe974f9338086148c8b0a60fb565ae6edd9246b676fa9d0035f4e8d9eb
-
SHA512
71bbad229eec49ffa610032a0be07a8b72df9ef819ca70fd25c1d8cf7053ced441f9125f26878d0562023417cfdc4c98bb3a31d02a6157ce4eb14276b640fd4c
-
SSDEEP
96:pQFDHnYRsNm+/ETPHSrbV1+gqVV1+/GVb9ZRC2seM6jjz1NMwVcEghhbac7bwwGp:G9YEufSrTOjVv5M6bh8hlHwiYg19c
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/basic-languages/csharp/csharp.js
-
Size
5KB
-
MD5
7c9b741f42178b079747027a06462053
-
SHA1
b3e1d9de364dd2aecd5daba0946a4aaff1a7312e
-
SHA256
28a25e9b68e5f0c3af4bd163e1aac554bab89078770dfcaba0a63a4b5b8a2543
-
SHA512
e0ca6e84440b806d853a8b38ea4154e8f9846f75e8a1d5e472f351c7358a3b3a19fecfe8133114c864c8b439df1760c04840d6542a8e7fb2fda019458220a608
-
SSDEEP
96:pQFDHnYRs8+/E8sx+rbV1+gqGV1+hmQjq1cBh8bnj8/pLxb6J994wGcKU7dYIkeC:G9Yv+rTtP1upw9SiKUJGv
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/basic-languages/csp/csp.js
-
Size
2KB
-
MD5
9968cd8d1ff81b94983401b7c5bc68cf
-
SHA1
cc830b8d497abbc54123bf31d3ba77ac6abc97f8
-
SHA256
082eb55c25cc428c596b69d8024eb8ad5932fd556d47fdb4696124086af3cb28
-
SHA512
b4d5e7a77f58d724a619430d6bd4b04384b89f6a4b98b13215d2e89c06bbf4b20264e9271d1df330c25c7070f886fd2a3874de1e57b82bc7caf860d6f88a426c
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/basic-languages/css/css.js
-
Size
5KB
-
MD5
e0809107e35a0192f33ad03c3ab08abe
-
SHA1
3c058a89df1c0a6b208d48796edd207239fd3013
-
SHA256
ed689dc48b3a5c75d3f4088b87501b28c69ea53d94bd4d195439b9d0b0125240
-
SHA512
a7d534ee62ee3381547e22eaf23b8bd9f9a12b230eeb9d6391afbea69daedf73bf0a3e2ac4fbbe3e386698db3b73674473d691f0b2ce566dd8ab012fcb5c3eee
-
SSDEEP
96:pQFDHnYRsG+/EPumYzIq+q17qcq6V1+/TMj1cqTroIrqjAfF3l5XY0JK:G9YLDYzv9CmjoMfF33XbJK
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/basic-languages/cypher/cypher.js
-
Size
4KB
-
MD5
f632f554049ce3ca0d264a0abb02906c
-
SHA1
a0a2664dd3ea31da925aa0ea68d672e648097adb
-
SHA256
9f9251788f10c3f0bb4eb811ce6a7f5ad8db7bbee057b76a77c77c2421fdaae1
-
SHA512
12f0a0327833f356ab434301dcf3d1f38628c77b10b82e1bf1dd6f0e77097bd50f396ad6d66390e24c696c8cf4ee2b1f5a48d2dd2fbc85aed0db5967b0a64d45
-
SSDEEP
96:pQFDHnYRsaL+/EQmrbV1+/mQcV1+/mQpj1jCpRrBafRVxpVC7Qsl:G9YHdrT1x1kjCLrUZL2P
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/basic-languages/dart/dart.js
-
Size
4KB
-
MD5
24e97f371a7edd0923399c3301f7d123
-
SHA1
139b20c81784b4453fdfa5bf8e364c51155865b3
-
SHA256
da7ef3dee2fa6414326ff00bfc0417d107d51baedfe57389e59058072a00020c
-
SHA512
15a737d3a531253b7cab0b9a71d5bf2d35017a63135f854237b5f1df45d50e5c0f3f944abd5bcef8bcfffec3c4f4bf9736ecbbcb42dcd55b375ef4dba02996f4
-
SSDEEP
96:pQFDHnYRsW+/EFrbV1+gqKIqHV1+hmQ1+/GuKkxLiXb6IosPt2wpc3luSW720/:G9YBrTTP4mBc2dsSW7L
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/basic-languages/dockerfile/dockerfile.js
-
Size
2KB
-
MD5
a51bae8524a9b4623e57f5b1a69dd9e1
-
SHA1
686c6f915ffb7ea23df8e3d6846288a615c144a2
-
SHA256
5bfe103714ff8153914daa7c1cc066d59dab07ca7388d15098d650149ee3be74
-
SHA512
d5070b4206dee6241f3c427caf1938781a6aa664a82f546574f3536ff97db9682d0de18a8bf46cb5a9a911b38487d16dd8c4f2aabefaa0bef34f5fd33b0dbec2
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/basic-languages/ecl/ecl.js
-
Size
6KB
-
MD5
2cd641f99d4723adca2299186e67455b
-
SHA1
5ed74d0d63e4aae25387d0111b7a33c2906d8c92
-
SHA256
9ce97ccf4768af38976d051504b59dc37b65f56d8bcb638b97d6a82cda4e1b79
-
SHA512
0306ccdfcce65a703f5115b13ce0acc56e7855579bc6ca218d0c87891e97882e21186c38b3429a077f5355fe9711e302fc3d9517c63dace2271440b1242dff2c
-
SSDEEP
192:G9Y/rTtPcbYHAcX4vLXC2/U9w+JXuHN+i56:GOrTtPcbYHvXyLcWcXuHN+i56
Score3/10 -
-
-
Target
Solara/Monaco/min/vs/basic-languages/elixir/elixir.js
-
Size
10KB
-
MD5
e0ab738dd28fb6fa3c3dfd4879a8b930
-
SHA1
4062ce2854028385d0e4507ac0ab77cb0ffaa329
-
SHA256
0494ea6b17f3f6e2e088dbc9001aaf77d742d757867263d8b0e5fb432b31a2a5
-
SHA512
0c2bd491b70afb05261fc1cdb05bfc588d82a05b9695f9c00cde6ec885858133de11f95251c8b36d5107b9b68ab94f35415a0d8d8b2d0bdcec312d100ca9ff45
-
SSDEEP
192:G9YZ+uT4pKAnTNGZ70U+6ODfDG6g4KlDItrkekkqamfP7OF/ExZKxOMy56L4dT/q:Gm+uT4n2+PPV9+DItruao2f
Score3/10 -