Overview

overview

3

Static

static

3

NetWare/Ne...er.exe

windows7-x64

1

NetWare/Ne...er.exe

windows10-2004-x64

1

NetWare/Ne...er.exe

windows7-x64

1

NetWare/Ne...er.exe

windows10-2004-x64

1

NetWare/de...ug.cmd

windows7-x64

1

NetWare/de...ug.cmd

windows10-2004-x64

1

NetWare/de...et.cmd

windows7-x64

1

NetWare/de...et.cmd

windows10-2004-x64

1

NetWare/sp...er.exe

windows7-x64

1

NetWare/sp...er.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NetWare_6.zip

  • Size

    4.4MB

  • Sample

    240511-ssv9ksgc29

  • MD5

    21e4ad06dfcfce3043ad4c1657bfbeb0

  • SHA1

    d02033d1ddf83fed0989b58c03fefdacdd75c18e

  • SHA256

    e3f4d3ddfa1da0567d74ec16bf3220c061afdaac53e8583db1672bcbee41118d

  • SHA512

    3f21a5b6c87841464a9d647c9630a44ce4752648a6420a9bf268ab37e9b2aa34579b417cea9d76fd0c18a0854a1b93095b797bf75439e52b2a28c5843c393663

  • SSDEEP

    98304:GYK3pwMf/8lHU0F1zjrxUC+zpUFQdAE96v/OESGun1XUdXiyap:a32MuHU0FpxUjUSqWE7unlUdyyap

Score
3/10

Malware Config

Targets

    • Target

      NetWare/NetWareLoader.dll

    • Size

      763KB

    • MD5

      b6d2b09a3b61d492d6987912b03aa468

    • SHA1

      f5fd45e4d6958edd037098ac773a98f163ff72a3

    • SHA256

      f4c8efb41397d022da43f49f0a4fa886b171ff0ffaac02eccc11bbc9c42af729

    • SHA512

      a65f938db70caa4783a82002d9e195394ef871fdade59dd95a5332988bda86140788ee940ed6f7d2eab5cbff1cdf6a295c36f36396b00d79279e832569857f89

    • SSDEEP

      12288:71qyp7Fdt6s0q/5YQOqluIvH/kIZbaho3R8YZRRPuUvEOLsdZp3rD4IT4YjyC9q:7Iuxd8a5VOqlJlaaBnbr8mM3PvTEC

    Score
    1/10
    behavioral1behavioral2

    • Target

      NetWare/NetWareLoader.exe

    • Size

      155KB

    • MD5

      928098e326c7d3238f13cf09003c33f9

    • SHA1

      65fdf8454a9cc3437a8fbd2186b6f68485fa7af8

    • SHA256

      79d2abf6a22db9a460c2b31ebda1640adb15e552b5714ab54bd71cdf6ae26ea5

    • SHA512

      713bb15e2ec6e4299d30ba9e7a6299a04c2ae0daa8b60abf6687ec88b81f8d1542641ba81070da6d9acf41574c176f923ea302c08e4fbb6340c75ba0f993981f

    • SSDEEP

      3072:oefQZKfOC31VwyY9egNtfNjJvjmqqF7Hb/LMm5MY3DQGMTLIqT:oDewyY9egLRePYm5x38NUq

    Score
    1/10
    behavioral3behavioral4

    • Target

      NetWare/debug/debug.cmd

    • Size

      132B

    • MD5

      6caa4107ee880d62efdcf1fd6d5f22ab

    • SHA1

      08ae45a4c1f2fbe444f1f01d308f0dd925df1622

    • SHA256

      6729d79945b9147d861f7788e0ba45f3e11cf88abfec53b24c469203d5c6cc7e

    • SHA512

      6510cf4476025998b4061fc27cb3a7ededd9fbdeb53d043fe45480784f13bf72e050fa1e5de0ca1f620ffd7a6a5df8be669a6012297ec3b00fe23e6dff7131cb

    Score
    1/10
    behavioral5behavioral6

    • Target

      NetWare/debug/install_dotnet.cmd

    • Size

      219B

    • MD5

      480f775377a8499207311424c6aab1a8

    • SHA1

      bdb61c5ffa0a0e0c8c34b6d130b33dff4f2012e4

    • SHA256

      0e5b7278398a18aba0e51b78fa0791854e5008faa41e7f2a0fe8553f004584db

    • SHA512

      4992c7281983e0f76c87e73222f433b36df1654b4f5b56d5592404f340befe3b83ab08059e2c9dfebb3381c20f83a677a729228beaf05a377730cce4c82b830d

    Score
    1/10
    behavioral7behavioral8

    • Target

      NetWare/spoofer/NetWareSpoofer.exe

    • Size

      9.3MB

    • MD5

      d738d7159af4bdbd9a163073381e8e04

    • SHA1

      f604cd9eb7276af3d9b421da0ac0520e0a401b1c

    • SHA256

      f4cc54e8ac1cc0792c42b8d243ac340c2df3b7389fdeaacbfff2022c172e9338

    • SHA512

      37270e2ac385c593807a04fcc81bcf3ddeeb26044c147b7b140f89f2d3eff84ea986c7bae1ac8d0377d15d7f191cc459220f1b5a2b49ec6cd2108c8fae97e278

    • SSDEEP

      49152:P4v39PWCMU2OIZGFd5TtA4vHqpELDvtzhlu4xynNfCwIHa9TwkxTioZMCz5EKauv:PAOZOpj1OkL9uwYpIH4Tc4EKleHvE

    Score
    1/10
    behavioral10behavioral9

MITRE ATT&CK Matrix

Tasks