06dbb81cf12b90ce241c2db1eb1413ddc00c36647ee94ee276f926c8fac9c438 | Triage

Sharing

General

Target

konfigurator-1_8_08.zip
Size

1.5MB
Sample

240513-lrv4vsgh7x
MD5

88e5ee65d5b0387648a78df6dc57179c
SHA1

29e39c511129eebc593c9450426abef33ec6a29f
SHA256

06dbb81cf12b90ce241c2db1eb1413ddc00c36647ee94ee276f926c8fac9c438
SHA512

d2e8801ae1845708a23cedceb0665f5505e1361f6eee81ee442375668c13530637d0b692df0912eac7190150091b7d5c8d142e5a7ba1c6de46e7c7cbd27796db
SSDEEP

24576:6V75GmFhj2zIpc+8VLQk+usk/brbkGGwn6ACZTxEN8Z/W5VWJ3zgtYLtSpcz/OpH:aR4IWVLQgss2QUTxJJW5wJy00pcz/OM8

Score

3^/10

execution

Malware Config

Targets

- Target
  
  konfigurator-1_8_08/inc/M200.dll
- Size
  
  527KB
- MD5
  
  4e3ca2e6822dce1bd23e300312711d1f
- SHA1
  
  2cd199828691832f280bc578c328d48a2a78eafb
- SHA256
  
  93b86cb40b5647a4b1e13fd2fc186c658721cc164a3b731ee30dfd8260dd4ece
- SHA512
  
  78379c2663029a37f6d58e1aab006dea0c946bbbef1118fa073a99b7931ce11c74cb1df89bedb29fabf952c5c78e4f75e0b1fa3ddca3f123def4bd5a269aad70
- SSDEEP
  
  6144:RyZYmiWhDG5YhrURria+hMdjg+IAtvkKnxOgT8im6/Qk:k69Yhw+hOs+IAtDfT9m6/Qk
Score

1^/10
behavioral1 behavioral2
- Target
  
  konfigurator-1_8_08/inc/M230.dll
- Size
  
  791KB
- MD5
  
  2e97b0e35c5abc39c9617aaf50119918
- SHA1
  
  53c9785eaebc9449ba4e2f27c84d2a0007f6bdb2
- SHA256
  
  fb2a494c93983ec78ca4bfeaf7f02c8f200e2a52421eaf3ce5acc8e1004226f2
- SHA512
  
  4e0b8f2b894f6578253897b547977180615c8a89a66330851c6aeb2050e8111411d288f9f2d52e2c48ef831afc117e2fb83f59e27fa474768f3c838ba2767b8a
- SSDEEP
  
  12288:kvhNjW3HGD1iaUHQdhtRfFDl7yQ8H9hztKUCz:kv3S3mD1iapdhtRPyQEzsUCz
Score

3^/10
behavioral3 behavioral4
- Target
  
  konfigurator-1_8_08/mercury.exe
- Size
  
  2.1MB
- MD5
  
  35bb72984506a3620fee6f1b067b45c6
- SHA1
  
  ccd167f90b73a4caf0c4c672c78aa5b3e6c47b7a
- SHA256
  
  c928914b7bdfba6da603cb629f1a80fb6c168bbbc64a08ecc061337c295e8386
- SHA512
  
  accc8b066ea79fd233224cb229d00b3fb7f812a85cb6428e65757e824c4e684c6fe32a3a330ba9e991b3c1a9aa25782125e43d3fe61560a573d8e0a4e9c8019f
- SSDEEP
  
  24576:HpwgINgJviCXhTJwKjMhS0QZS5L5jBSmNuzL:6NNgfKPr4mNuv
Score

1^/10
behavioral5 behavioral6
- Target
  
  konfigurator-1_8_08/report/report_33959625.html
- Size
  
  82KB
- MD5
  
  a7fe379bc8853f134ad1f799f897c751
- SHA1
  
  0e95e16301f35b0a0d598e7f0dc7ebdeb3486fe3
- SHA256
  
  8c3415168cebc34fbbe9fe3bd0dea2ff6b2b9a62b9fd2a68ff021f1944187531
- SHA512
  
  05a8ed7b890ab25b23d6a5cbca6a1e1a273b059b16f42dae857671fab9c23a7b392022b89424e8aae1f3e9b997a6e0172fad799202a3c01de19d633f1bac0616
- SSDEEP
  
  384:rmFBkzSU0JgckzSn0J63kzSq0JQIkzSB0J84kzSh0Jl4kzSF0JxHkzSm0J9fkzS0:ci
Score

1^/10
behavioral7 behavioral8
- Target
  
  konfigurator-1_8_08/res/flot/excanvas.min.js
- Size
  
  18KB
- MD5
  
  3682670784157eca627a91ae04f925b8
- SHA1
  
  367b6955bcaabc71381ee3c8436db71413894257
- SHA256
  
  f98cb332c803a746862b762c94e95379b2407d1a87af8c69299590a4e9473781
- SHA512
  
  c69ba7fb9bfd5b88941b1201f3d32762d3e481020040a1cb7bd73d2675bbe9748ebad850bfda4f6c26eaf00a2567c7fe5650a0cb9719e323dc61d0a21b05fc25
- SSDEEP
  
  384:m3gLso6/fvRhqEK/g7wgzp/8Wwg78SoFQ3uWTKuyKu+Ku2/N8tT0hr+hzPiC76TN:M69Ejp/8WWMc/N9r+AYlI
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  konfigurator-1_8_08/res/flot/gost_r_34.11.94.js
- Size
  
  16KB
- MD5
  
  9fd36a822df6459849ea5da267ce3af7
- SHA1
  
  33573b57674c54c3849639837077fe1758eb6d61
- SHA256
  
  6fd2ddebeb565d71f13ebd83ff06714d5a98b0c731d7572d6b4b8d517da35ade
- SHA512
  
  ab89e3fdecfe944639e668a801fa891c1014238bdc9f456b820927a0ff39375dfee1b67da8d183d8e6d01c0e1bd8cf28cb9ec7b81f1f033d331a9036bb0e9f93
- SSDEEP
  
  384:S3DBJ+mSXL6D0gF8Bjbm6Lr5XIHWdue4F:QD/rSXpgF8H6vF
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  konfigurator-1_8_08/res/flot/jquery.bgiframe.js
- Size
  
  4KB
- MD5
  
  a8dd35ea20e6be651adfe98712008725
- SHA1
  
  4ce1601c05ff75d5c90eef6b64c139a1237df5a0
- SHA256
  
  5a42dfbb5f9d1ffecb52b70d1b024d96ae579c1e663f7b2382223d6355841e3d
- SHA512
  
  5e33be8a431d41c576af2f73e8018262c79f7d2e5b3f2c10ad02410a8c623021673c953bbd386160f1679747d4d49c7cbfbafe52d8fa66bd94532c8ce670e840
- SSDEEP
  
  96:MvXd1tByw/EIFZ3fc7/l4LHw3NWKH6PKDbkREURVjVpugfm++k:OXntUw8IbvaiHgNWKHIK+Y+D
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  konfigurator-1_8_08/res/flot/jquery.flot.js
- Size
  
  89KB
- MD5
  
  74a20a476c61b15c61a44d590d84cd40
- SHA1
  
  f2992b0b9be9b28dd972a89d47fb2a3b756d8988
- SHA256
  
  60db184edcc2b69c5218a47e41495e687f9adc05015349abc502a8835ae03ac0
- SHA512
  
  5296ca8a9de7da489159b44d74a567898fadbe3e52c11f8b5aae700b8b9d44c6783fa4a0a232b48d8e0e48832946771564b7512b8187960621450c94dda783f6
- SSDEEP
  
  768:BLfxg/ZyYr017a0hZRZcMvvLkr8rDRtn1GDI:Blg/ZB8FZc3AxGDI
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  konfigurator-1_8_08/res/flot/jquery.flot.selection.js
- Size
  
  10KB
- MD5
  
  959e15c1cf9d6822248f7e42fa3aad9f
- SHA1
  
  89d3a052f519ac03738760d4b39f22c1f0265cd2
- SHA256
  
  9592b81f2e7574b2451ab1eaf55cb25f6c60a7473552b6ad5e77f94346ac9f62
- SHA512
  
  e1c693334023003bf96ce85c3dc8645293ba490cd1b214c22e3fd797e1ed187506f00683f3722373551e3f394f451455a5ac8be541d9c0deb03f3e97c5937348
- SSDEEP
  
  96:H1qVg0t145Hcq+eLTaWTeYTzAGq4S/wkXfo9m/6Kpxt6ZbfhXBp8hgTxPVq8PrBG:0HOHF+enGY41Q37EwVq4mi+
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  konfigurator-1_8_08/res/flot/jquery.js
- Size
  
  122KB
- MD5
  
  92d4f1412222f2dc12627ab42b66fc1c
- SHA1
  
  366ed2bfc54e404d7e5d5c46d9446da74cf85073
- SHA256
  
  b4830dd0ba4e8f8fcbe014c7891f16acf8c908c08e65044442eb920da1e55112
- SHA512
  
  995f9266e1e48a6b085cdc0cba76ebe50a05dee3e050ed4fc8eff88d886fa6a92b75c03e5fc3dc1715d526934e32bcb4bb73ee0d19ed083e57606852198161d2
- SSDEEP
  
  3072:0jEimH2VJGHCLrHYAzUmsI6iH+R9sKLU0xfhOpzK6FAioxcsiSPi6/NRpbdkva/:KmH2VJGHCLr4AzwI3KLDxfqfSNPi6/Nf
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  konfigurator-1_8_08/res/flot/jquery.tools.min (2).js
- Size
  
  136KB
- MD5
  
  b93eb4c074cf164aee940538e2a36cbe
- SHA1
  
  1caeadec2929ce4ec99cd64519442b2d6149b3e8
- SHA256
  
  771b4e92360c981dae82f73fc0ebd896ca955ce60beee3d879a45f806e636f5a
- SHA512
  
  0c15f36111d656b232471d1bad102cbe36c9b74bcbc7efa0f313152b7abf9b5d390ecc4dfa9f769d0682c150641b89736fb459d3c2e17c8988f7a17d2295250d
- SSDEEP
  
  3072:qjJjx7IpuVkRECra92Zp8+QK/lIpjbBWne5FEUoc:qRNyW2Zp8+naac
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  konfigurator-1_8_08/res/flot/jquery_1_7_2.js
- Size
  
  92KB
- MD5
  
  acc0adc6c188845a409bf158d2de4451
- SHA1
  
  881a17148bea7a96d05063d035f74bd6353fbb3e
- SHA256
  
  4332316d0fe4e2c7a9e213afa4d9cbf983ad5bf80cb47d98c9cacd5470e35889
- SHA512
  
  cf3549dcaecaaa87b2b24b0624c9ec31704bd4f84deaf62548230958c7ab4e3861d03f4aeaaaf708da9f953c8c557700f38ead32ffa4e021dbcc6a84e8cb0b6f
- SSDEEP
  
  1536:lYRKUfAjtled3TmtaFyQHGvCXseUOgRc9izzr4yff8teLvHHEjam7WuX3yzSiLnM:cUbCGvCD0932o2skAieW
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  konfigurator-1_8_08/res/flot/tooltip.js
- Size
  
  2KB
- MD5
  
  1364d40203abffae7cbcb0e6583c2dcc
- SHA1
  
  e5f98786e11dfd6b81b89dda74c925bdcb3b6fe7
- SHA256
  
  0f42513967dde31dbab58e96639b3d86ff5cd91222225bb492bf4ca386249767
- SHA512
  
  825f4d25e0cd9f9f7e4cbb5e9e97b7804bf1577043ab448ac2f9f4d715ebc6600c685b7188314ebdf35fd0304bfd7aba0d6f23def75725a2a0346f9f176e6559
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  konfigurator-1_8_08/res/overlay/jquery.tools.min.js
- Size
  
  7KB
- MD5
  
  98336fd8e909e22bd92cf8607dd8821e
- SHA1
  
  35502bc3471aaeb171ff33d8039bf34edabe0287
- SHA256
  
  56a06e60b57af7a1dd81a89082dd77bad0bf493e7770de7e43524f2ed3f3099f
- SHA512
  
  5be51e829640d7eec37db7234f0c359dce136015a0ad6d784275129986e0256dfbd2406949f62d6cc18437e63ce69563e2e7f42af8172db8d9adbc7984435f38
- SSDEEP
  
  96:ZHPA2ikAKixs1V7Q0UcGEbtLiJfRHDPCQDPU/EsZwaeC1VWZuF1WtcJyYer6a1z4:u2LH1VujK2HrCCqwaP1M2dQdBse640d
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  konfigurator-1_8_08/res/src/js/jscal2.js
- Size
  
  33KB
- MD5
  
  ef5b7e4a7202139c9fb96dd13d36f29c
- SHA1
  
  ecfbf1e4e30d017a60a643e1394d622981c29473
- SHA256
  
  f0e8311c11e617e4344852678aa1bc31812ac1dbaf550a37af7f96cdc7d0633a
- SHA512
  
  8d484f202e9069dce4bb0ef20c7eee0501b5e16f26d4de2a52338828eb075d045c2a17a1f1f740d3f87bd7f195b91f09a47a40c1bcdc6de4e9465147832ba9a3
- SSDEEP
  
  384:J6jNo8C9MpKyZyZhn6oIK4JcxxC0ogFeTTHMdxO2KraQeLpQfjabaOBMwmB+oae:ItAv4JcxxbtFXqprbpB+oae
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  konfigurator-1_8_08/res/src/js/lang/en.js
- Size
  
  1KB
- MD5
  
  6eb1bb19349dee3b93bd8f38bde95136
- SHA1
  
  5faa2fcf3b9e9979a4496be618c500362601a3a5
- SHA256
  
  1c021e9b9da83b882518981cc81af7939d5c4500368cbc2a2325dbae15ee081f
- SHA512
  
  09d094f7622ffc5be420bd33b24826c9a9c2f53e23853a8cd24552507e8c4059f4fb0a302751e71241c226f0ad4e351ccdda5300ab6c70050b837df2eac06049
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32