9be2103d3418d266de57143c2164b31c27dfa73c22e42137f3fe63a21f793202

Resubmissions

16/05/2024, 15:29

240516-sw7f1sbd29 10

16/05/2024, 15:22

240516-srzwdaag4v 7

16/05/2024, 15:17

240516-spb2jaah24 7

Sharing

Copy URL Twitter E-mail

General

Target

FileZilla_3.67.0_win64_sponsored2-setup.exe
Size

12.2MB
Sample

240516-spb2jaah24
MD5

e4acf0e303e9f1371f029e013f902262
SHA1

180f686f2afe1ad0ac6f3498e70af910fcbce620
SHA256

9be2103d3418d266de57143c2164b31c27dfa73c22e42137f3fe63a21f793202
SHA512

fcf7ae7c539b199446085337173cee8ce61cda86b8defc46b008ff487563da33adfdaf45bc78b2b75aaa9785323c5391969f93d38a3f52919dc45f38d7adf2fc
SSDEEP

393216:9A0WSaIgUnOIJAqcFzXqvbyz7UWVompJJHU5ccGW2IV3:9A3JIuZbUMTHGWWJ5

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  FileZilla_3.67.0_win64_sponsored2-setup.exe
- Size
  
  12.2MB
- MD5
  
  e4acf0e303e9f1371f029e013f902262
- SHA1
  
  180f686f2afe1ad0ac6f3498e70af910fcbce620
- SHA256
  
  9be2103d3418d266de57143c2164b31c27dfa73c22e42137f3fe63a21f793202
- SHA512
  
  fcf7ae7c539b199446085337173cee8ce61cda86b8defc46b008ff487563da33adfdaf45bc78b2b75aaa9785323c5391969f93d38a3f52919dc45f38d7adf2fc
- SSDEEP
  
  393216:9A0WSaIgUnOIJAqcFzXqvbyz7UWVompJJHU5ccGW2IV3:9A3JIuZbUMTHGWWJ5
Score

4^/10
behavioral1
- Target
  
  $PLUGINSDIR/INetC.dll
- Size
  
  24KB
- MD5
  
  640bff73a5f8e37b202d911e4749b2e9
- SHA1
  
  9588dd7561ab7de3bca392b084bec91f3521c879
- SHA256
  
  c1e568e25ec111184deb1b87cfda4bfec529b1abeab39b66539d998012f33502
- SHA512
  
  39c6c358e2b480c8cbebcc1da683924c8092fb2947f2da4a8df1b0dc1fdda61003d91d12232a436ec88ff4e0995b7f6ee8c6efbdca935eaa984001f7a72fea0a
- SSDEEP
  
  384:wv1j9e9dEs+rN+qFLAjNXT37vYnOrvFhSL+ZwcSyekzANZBJ:w1AvEs3HBLzYn29vYh
Score

3^/10
behavioral2
- Target
  
  $PLUGINSDIR/StartMenu.dll
- Size
  
  7KB
- MD5
  
  a8c86996c4230c2209f5927f21321377
- SHA1
  
  45ce0ab93cb6a3a594e54878cce05df724024393
- SHA256
  
  110545415a59402635e1c9439acba15b44bab268ed02ad2a262ce12604a47855
- SHA512
  
  69ee73496b916777936b0dddd2cc4a4f916e393f7d0b167cba77a4a239ee1e3f645d9b90dee1627c42a23eb6c3403e4d086546b9f78b3a2e4999c8f92f6a3bc3
- SSDEEP
  
  96:mIt3J2Gl0eVe0+Cfo0UkXt6+o69UiGdPh5/utta/23lkCTcaqHCI:bhE+A0+sF6piUFkAylncviI
Score

3^/10
behavioral3
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  12KB
- MD5
  
  4add245d4ba34b04f213409bfe504c07
- SHA1
  
  ef756d6581d70e87d58cc4982e3f4d18e0ea5b09
- SHA256
  
  9111099efe9d5c9b391dc132b2faf0a3851a760d4106d5368e30ac744eb42706
- SHA512
  
  1bd260cabe5ea3cefbbc675162f30092ab157893510f45a1b571489e03ebb2903c55f64f89812754d3fe03c8f10012b8078d1261a7e73ac1f87c82f714bce03d
- SSDEEP
  
  192:VjHcQ0qWTlt7wi5Aj/lM0sEWD/wtYbBjpNQybC7y+XZv0QPi:B/Qlt7wiij/lMRv/9V4bvr
Score

3^/10
behavioral4
- Target
  
  $PLUGINSDIR/UAC.dll
- Size
  
  14KB
- MD5
  
  adb29e6b186daa765dc750128649b63d
- SHA1
  
  160cbdc4cb0ac2c142d361df138c537aa7e708c9
- SHA256
  
  2f7f8fc05dc4fd0d5cda501b47e4433357e887bbfed7292c028d99c73b52dc08
- SHA512
  
  b28adcccf0c33660fecd6f95f28f11f793dc9988582187617b4c113fb4e6fdad4cf7694cd8c0300a477e63536456894d119741a940dda09b7df3ff0087a7eada
- SSDEEP
  
  192:DiF6v2imI36Op/tGZGfWxdyWHD0I53vLl7WVl8e04IpDlPjs:DGVY6ClGoWxXH75T1WVl83lLs
Score

3^/10
behavioral5
- Target
  
  $PLUGINSDIR/UserInfo.dll
- Size
  
  4KB
- MD5
  
  d458b8251443536e4a334147e0170e95
- SHA1
  
  ba8d4d580f1bc0bb2eaa8b9b02ee9e91b8b50fc3
- SHA256
  
  4913d4cccf84cd0534069107cff3e8e2f427160cad841547db9019310ac86cc7
- SHA512
  
  6ff523a74c3670b8b5cd92f62dcc6ea50b65a5d0d6e67ee1079bdb8a623b27dd10b9036a41aa8ec928200c85323c1a1f3b5c0948b59c0671de183617b65a96b1
Score

3^/10
behavioral6
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  1d8f01a83ddd259bc339902c1d33c8f1
- SHA1
  
  9f7806af462c94c39e2ec6cc9c7ad05c44eba04e
- SHA256
  
  4b7d17da290f41ebe244827cc295ce7e580da2f7e9f7cc3efc1abc6898e3c9ed
- SHA512
  
  28bf647374b4b500a0f3dbced70c2b256f93940e2b39160512e6e486ac31d1d90945acecef578f61b0a501f27c7106b6ffc3deab2ec3bfb3d9af24c9449a1567
- SSDEEP
  
  96:o4Ev02zUu56FcS817eTaXx85qHFcUcxSgB5PKtAtoniJninnt3DVEB3YsNqkzfFc:o4EvCu5e81785qHFcU0PuAw0uyGIFc
Score

3^/10
behavioral7
- Target
  
  $PLUGINSDIR/nsis_appid.dll
- Size
  
  3KB
- MD5
  
  19071761e91c43c115a16b52458869b7
- SHA1
  
  75ddb807157f1aa31a08f87be0270f60990bcbbc
- SHA256
  
  e9e1ba410636698d666b328eea71346b8287248d262e44da07ce8b5fa24c5e5f
- SHA512
  
  bc0eab51cf27f657cd3fd62a47894ee13f3f561feaa565f16ba15088be39be73c9839a3cf35b538219ec83a03d48970b89258c5f20c37bcaf76438998437786c
Score

3^/10
behavioral8
- Target
  
  $R0
- Size
  
  33KB
- MD5
  
  c0280971a69869d7a1f3b35793c839f3
- SHA1
  
  946356173bdd7d575db1d1b3fb04ed81353e098a
- SHA256
  
  c085caea2677b0eeaeecb9afe7e0bad83c2a94fc78d5c3f7819bc7314e54ec69
- SHA512
  
  cdd1530aec393c9c07574e9a32214af8fb5eef85a5be02db68e24e05c5e1d88449f064e280d2bcd21aa6921c7545f30965a6724ce810960001964a3c558370ba
- SSDEEP
  
  768:i2/5ZWpdwrGUxnyiehH/kmjGyhYlaygOENAMxjI:RBZWpvWa5jrYlNixjI
Score

1^/10
behavioral9
- Target
  
  $R2/NSIS.Library.RegTool.v3.$_106_.exe
- Size
  
  5KB
- MD5
  
  48b4f7d95dbff3dfc74fe3d9e41524b8
- SHA1
  
  7bfc27a6eac4796029e841f9d5a61d37de6b34be
- SHA256
  
  fc6f7befdd834ccf59aa660497f197d85776f3d95736337d1b9f4417e1db8d6e
- SHA512
  
  c51d21f3d76d915086324ecaf54f6da7b4fcd2aec9161812fde63e70f6aa1b30709cc6ae5d30abfcfe9141edd6e9e44d49de83a06753cbc5d37ad0d658cc740d
- SSDEEP
  
  96:qBg4ARDDMDQB4dtVfhxr+qOspqME3zpHC5:isDDcQWd/hxaq/sMsC5
Score

1^/10
behavioral10
- Target
  
  $_36_
- Size
  
  947KB
- MD5
  
  610f4eb991ae0db08785dc4a6c1b1fb2
- SHA1
  
  0b28c35f1569eec2dd1cd6c8cfdabb349f6e0866
- SHA256
  
  6872cf401483b46c9b0456f676cc6f7e810fe11b7831567b187c6228ec4c0857
- SHA512
  
  327647555d35f4dcf567579c4750299d8fe8ead866bfc304efd7f2b855bfd659da407c344c8077041310e214d0395d2f0c85c7d504ecf0403b970aca72496f7a
- SSDEEP
  
  24576:Wo6hPUFdvQDqO6gNuSzRsK9WPIOg3Gm39ZJ4N9RMe:WNPUfYDqkWPIOg3Gm39ZJMRMe
Score

1^/10
behavioral11
- Target
  
  GPL.html
- Size
  
  15KB
- MD5
  
  11e176c5e0120ee94e365f999084bce8
- SHA1
  
  a612f6d40d0d2ae045d80b60bce6fb6f81a811ef
- SHA256
  
  f7e89c1edbbef8bc837b47c48113a2416f1af0cfc2b2218da39085465ea1045c
- SHA512
  
  d0532df4fe5e995df49f3e58127f5fc9637fc4f1afbb29e92ad16897c1055f77963277f5143458b9a294d1c24559bc594e0ae5469271ece639c8e66a5555d5a3
- SSDEEP
  
  192:tiMUzQS+LrQWJz6Z6q6pdPIK8kV6AWRzdbDaz0pmN1rMbkBJ9R8/CmBHf3KWkc:tZUz5irJq6jIuV6fRzd3c0pmbMCzRLw7
Score

1^/10
behavioral12
- Target
  
  filezilla.exe
- Size
  
  4.0MB
- MD5
  
  79cef3c9de232d1f58f0e26292376584
- SHA1
  
  2dd2ab98e8fcf5c720bf3618a3a0b84666ca191d
- SHA256
  
  26d717e65101b0ccd5d491c406f76a216381410890508d3d154d5aa073698887
- SHA512
  
  2378c3ea857cbf0ff8b14c7984a0237613533c7f6451bed1ba8e09aeb71ab4c35b7f37f7298259a67467d40925cad4a4e8baf556444215ab84ec9ea4856246c4
- SSDEEP
  
  49152:o7BUd0rZmYl3zoN/SXsS9BsF91aVi5WgLli6RbJjwKwam6+I8qzPqS6RxC5UIcOM:gZE/cBstwjein2Vj8B
Score

7^/10

spyware stealer
- Reads data files stored by FTP clients
  Tries to access configuration files associated with programs like FileZilla.
  spyware stealer
behavioral13
- Target
  
  fzputtygen.exe
- Size
  
  356KB
- MD5
  
  7e208d8c27326712eeeed291ba350c3c
- SHA1
  
  529cc45b918ff8fc980ea826a430f6a4b947196a
- SHA256
  
  06f3610b7582ab8c906a81c0a9ac8199ca738e89a37e05021625c4ad9f7dd95a
- SHA512
  
  87788c865845ed4fd2a969e3a5b970d43c9a6de783ec38ef8237d8aa515644605dd94146eec738d750157ba96befb16dbfadf933e8cab94788f5c35af17271b4
- SSDEEP
  
  6144:4dSNRhY3pH7OehnYmHxlCuNNZRCuFECqColZTRcMR4N+:uSNRC9dtRxlC8ZRiC8lZNhRC+
Score

1^/10
behavioral14
- Target
  
  fzsftp.exe
- Size
  
  648KB
- MD5
  
  1035e5d9386199763a1f683ec4644bf4
- SHA1
  
  e9b9045c29e645ec3bc157d18f83ab94fa280a49
- SHA256
  
  bd4270c0fb61378b8c8f6720e5bb55921783d9255144d34cd13dd575b5c2b41b
- SHA512
  
  a87012f6340fa7be396bb50af880efa57dc3494aabac698cde7d369a4bc2693986763da3946fa279c39012b661b29970e5d801373d00e88c104bfb6a91868080
- SSDEEP
  
  12288:bTZBJ97RLnrlh6wqGX/DA8RYxQzaQ15uypHmZD747fHJ:bTZz3Lnrlh68DlYxa7HmZD87fHJ
Score

1^/10
behavioral15
- Target
  
  fzstorj.exe
- Size
  
  9.8MB
- MD5
  
  978c159cf2df761b4a353925b50da3f4
- SHA1
  
  b79b0ad32795fe1c7a510a2ddb71e49f2aabc555
- SHA256
  
  39eb51c18ac730861c96ddd4b2a73dbc2b7c70ae8411f9f4f5b841e391222820
- SHA512
  
  cee6d0e9afe9445d48bbf7e39a002708c858949edeb7cca058edf3a4a21b5c5ae1b226422d13ef86afdda49e991ef897175e9b0a574ac9ef2e65b3c209971e0c
- SSDEEP
  
  196608:J474PITB45BLtG9sCkvf2C/2RrHxvZuNw5EstcMqkhYpuFQk2:Y4Per8
Score

1^/10
behavioral16
- Target
  
  libfilezilla-43.dll
- Size
  
  937KB
- MD5
  
  85bd74a17c53eec4cd39fc4fadadc3c6
- SHA1
  
  1f5e48cada5a99b1a0d4364e4091489d4504c606
- SHA256
  
  bdc1ea011a343b36b19411cbab592936432ecec8f0d91ec6f74e10f4f10ddb09
- SHA512
  
  27b4668cad4a30a25f22ac57d35e91609ccf1558a499292ea7637a4829228a9f2a01f918e082a50680a5d4d158e25deb3eca7b1dbc20d1ca6dfeddd418bc14b5
- SSDEEP
  
  12288:0pmXs0Uq6WoUwjfW/BNaYRGKfhEmrsF1q1t7owYaDC09XymDtQeYS8:04fT1GfW/HaYopmY0imDtQeYS8
Score

1^/10
behavioral17
- Target
  
  libfzclient-commonui-private-3-67-0.dll
- Size
  
  611KB
- MD5
  
  bcb38d316fbaea52928113c15d34e4f9
- SHA1
  
  aa9acb9b154e9e9bc9142fd72f395b2c5ec6c645
- SHA256
  
  204f83f6bbdb707ddad08949403512035f30c10dea6f034b2d41c065f0255f3e
- SHA512
  
  d962d466ab4af8d9434d4ed1888331effaf6a1a0dc5d091c01a054c50283c7a739bfb615b762e1e806a9a70f8451d08e5ffdaba3393fabf6f2a6c878fa4e19f0
- SSDEEP
  
  6144:7c1+MmxFlHVyQdpwaWJ8eho2e3zrJ2gLo4MVnmmaPyq8ub0LqDnKw37gn4+tc1Hp:+mxFl1yQpSgJgjVmPPygUoKw37f+tcCE
Score

1^/10
behavioral18
- Target
  
  libfzclient-private-3-67-0.dll
- Size
  
  1.4MB
- MD5
  
  492f5c5d895b5c6df72cce4a3cffd081
- SHA1
  
  e3bcdf4c1c4d383f0aab7a6f362e91edbd1eb072
- SHA256
  
  b563c8e74a44ee3303f45f5fe4c992d82dc259653636f49ca681bf34fb7e794f
- SHA512
  
  d23d831b9745d15b9db9d22bbdd010c4e4b6ef655e2d4b681f367e62f285a83f57d3ebd58d165ab8d53ff42bd38ea95d07b8ff95572e747f8e3ddaacbff1f297
- SSDEEP
  
  12288:pn2yJ17ck4UfcFnP58SWv5sKNosAvF7lZFcwSE/PsX7zVtepQ5C5mCKMxWb2a2ca:p3wNUIBC5lWhViE34l55RNQ+2XcgzH
Score

1^/10
behavioral19
- Target
  
  libgcc_s_seh-1.dll
- Size
  
  115KB
- MD5
  
  3fed2de912b37afefa8288cf6d287570
- SHA1
  
  3e215b74b3fee54771301dedf7e118af9e67b2ec
- SHA256
  
  7b108e6a2ac50fb4599940058be5c6eed8b74691cdfe4c082aa6d47b341ade67
- SHA512
  
  edf83e3485235a4f7655b8c8f1e15e3382fdd34e1241a84a8d555d16fe339fb55c12cad5b87b0884ff55c4cc6b1920d57c5a74972296740a7beb48efe1471e19
- SSDEEP
  
  1536:aglQqu9+fvPh1sbMuEZ5Ox65AP7FopvcRJ3n0ubJ6AZg2JCZIPkjX0wyLNix3:yLkfvvsbMBZuwyycRh0hA2K8jXpgNG
Score

1^/10
behavioral20
- Target
  
  libgmp-10.dll
- Size
  
  635KB
- MD5
  
  8c379d5323f086363f0d0f85410e029c
- SHA1
  
  63a390ec2046a8dfe6fc10366690f08df95c2d97
- SHA256
  
  dcfe75f06ff67b0e94035831f8a7f5e23757535235ffea2350b64783841a8f27
- SHA512
  
  a922242f45acb0640ededde1d4991a564c75ab742310a48b77f8366d3c299674c61108d1befbe1d90b97dd7cb6a52673b5d5bf29eaba39594fc13ab4076bbcfc
- SSDEEP
  
  6144:0ebcmt5c/2jZLGvCO4y5iqIJuYuvTwN0to09U0OSMgAY/rzknw30sP9aVOOP46y5:jcmt5OEL4lr3m0EpCiOaOKy3yQs/Io2t
Score

1^/10
behavioral21
- Target
  
  libgnutls-30.dll
- Size
  
  2.0MB
- MD5
  
  a88c50c2ec280701c1b391fb0e251b57
- SHA1
  
  09b4546ef9e50fd67789efc2b35bd11b4aeb097f
- SHA256
  
  3b3ac6b039cbf6013dae1dac0d4d8394535994bd4b97cc2ee3de546f0891df92
- SHA512
  
  af5fa49f913145a54f84f7196938ee59a75330bce3bfa6e6a1f344fe2c14a9fd21dd995bc24c1879a4d0031004f29d260a1258444ea1478ff869cdafc63d609d
- SSDEEP
  
  49152:p9UBlTKnOv2NDDobIFaE/+LX7BjgTQt3CJRnvR032R9S7zjOGtlqnus5T8APXk2u:pyBljaDA7MWYRnvgE9mjxsMO8
Score

1^/10
behavioral22
- Target
  
  libhogweed-6.dll
- Size
  
  268KB
- MD5
  
  81ff0445ef95824de5e2667bee1bc664
- SHA1
  
  208b25b576b4db478a50dd701b392d46380cf94f
- SHA256
  
  3dcef7e1f8a7d6b89d32f5d7ee79d085c1a51a2b9adbe9862cc2bc88a72a3b36
- SHA512
  
  ec572e73aa61d43b15d8c4a8d0582d2aa8e52f663adf3e5f515532ddf66badcab63fb2dc79e73a47b37a81fbef83280b7c97d8144d68e64b55d703dcf607d63c
- SSDEEP
  
  6144:MExBQVThIgKaZ0ElKZfwDsp+p5+gAHurSV8rpkrkNU:HQJhIXRElofAMu57AIJ+mU
Score

1^/10
behavioral23
- Target
  
  libnettle-8.dll
- Size
  
  321KB
- MD5
  
  a93be40ca4bef4f6295ce732a0547739
- SHA1
  
  e020157060b2040c67b5c074307f1ec003eabdc8
- SHA256
  
  173ddb2a966a153d9e21cba1b222d3ba3e461ea4793bbd6f8bbbc9447a59cc81
- SHA512
  
  73efee1e08a0848d7e4cc3585aaca065aff7af8741a2280481af332ad48bf6ce2800e8925ed266872e7851b3fd3b855d7bb4f5165708236d79be7321bd935970
- SSDEEP
  
  6144:tJnQCpTG9+lmGaNAgDPHTqqDoN6FDwVDLNA:hpTVmLNfHOqA6uA
Score

1^/10
behavioral24
- Target
  
  libpng16-16.dll
- Size
  
  235KB
- MD5
  
  0ff719ab13a1cf91cde12b50b6cc0d49
- SHA1
  
  47f9e148f4b754d68d0ab7050da1e74cd1ae54f9
- SHA256
  
  66141f686a865780e8e6e240ccba68b4442b5fb50faa0a9297f1e42dda20f752
- SHA512
  
  d43f4f7cabf47462869bdc637f8dc5df1b8257ceb29d81192898e36b231beb04fba5bd2704ee36a9b830c13dbe547373bde67dbffb903846f5396cde798378d0
- SSDEEP
  
  6144:9nClFOtV9yvLwdZRLFfn4lShPNEoDHHpwpFLhvNO:9BVQgRLFfPh1E+HpelO
Score

1^/10
behavioral25
- Target
  
  libsqlite3-0.dll
- Size
  
  1.2MB
- MD5
  
  f027b75ee14492d9cd45002ac949615b
- SHA1
  
  be10480065d7bf0461940f618393528ec0b51092
- SHA256
  
  10562c70d79f84541a10158b22ba2d0be587551235a27ae7c1028f58e6d8f521
- SHA512
  
  c0fdb6a09614d3189b727869c20198d3a88be542b2555302d65e18e2b185d7bfa135fb93a93df0786902dee75d67d16c2f7c27ff62038566a3753d170932334c
- SSDEEP
  
  24576:XjI5ALcbs7Y+GjUa33J8/yt9rgLqLMfKyN1vCQ8tZl15R42C8iF2f7f6QINU:X85ALGs7zGjUa33FdMSyN16Q8n96tu
Score

1^/10
behavioral26
- Target
  
  libstdc++-6.dll
- Size
  
  1.9MB
- MD5
  
  e6b89548cc7dc9f9dad16e285110a45b
- SHA1
  
  189a2bd6672bc7321371f76e6d29a06fe1e885c7
- SHA256
  
  d1bc20acf8dffd5d682badf966dd884a3f4373abf509995ebc24f8fb7b15a30d
- SHA512
  
  0fdee53763751bd47560a6147b915e95bc629c6f79cd821dd13e48df50899d61822a5a7cd089ef0190b3ab25ff90d5adead488687b2c8093b125daa7b7db695f
- SSDEEP
  
  24576:YLbdOi6HQ1JkJUyue0AyCeNyeX2Xm9Q90QEaMDYnhSMXlrCYIEl0b4xw:YLbdbGQ1JZe0AyCeNyy/qEayYD2
Score

1^/10
behavioral27
- Target
  
  wxbase32u_gcc_custom.dll
- Size
  
  1.7MB
- MD5
  
  5cc9be3f1890c173c9c63410f356c09a
- SHA1
  
  2eeb5a4f53c669cd324254fe7aa2876d1626f695
- SHA256
  
  a89efa9a7bd855e2063246ed6d60c3d84330ccdaba98904720587a2c24c9dd31
- SHA512
  
  19da61eea609e243490ee3e2aa8bef2d665fd9f028897be7f9e7334becf1efbe2d7d89091d43ae6bc0d5ccd521b5b0fd7d20257e2826aa665ae29d7a8423cc0f
- SSDEEP
  
  49152:DJzSD9uhNgwwxViXaNYmPubyKK/0QXcD0nne/9IvypSHdoVuP:DIIkbiX41
Score

1^/10
behavioral28
- Target
  
  wxbase32u_xml_gcc_custom.dll
- Size
  
  235KB
- MD5
  
  8bd725973fb63685557cb0a90addf0a9
- SHA1
  
  124b6eba99e87a77ce7ebd349e05ac7423166f3c
- SHA256
  
  85f7a0df6b7ebaa46f6a255de0db92f939441fd509c5dbd605d01b6c1bc98115
- SHA512
  
  37799a8e7366b55cbe8689a4b560421b4adbb731de893705c71367c54f4848de1351fa4d93b531cb134cc155ffb4a16117dc619687a96f6d6df3f50d2e0bec3d
- SSDEEP
  
  6144:209pUfAcsqaPNhtEgTAFlLUytZo78adNH:79pUJsV16hjsH
Score

1^/10
behavioral29
- Target
  
  wxmsw32u_aui_gcc_custom.dll
- Size
  
  494KB
- MD5
  
  17f252efa82208ac31378e3a4f333ed9
- SHA1
  
  d722f47111f8dd81e0891c433a9cfc583ff76589
- SHA256
  
  17305a8db2b3d3c65dda7a22e918f13fec041e95feb56715c46d1fa20569fdb2
- SHA512
  
  8ea148d881309bd08bf99d8f39f5b01dcd4d779388b40d168576b5cdaed422b0cc5a23e4f4f65ac8820ca7bc8c22ba49590223579da3be17481812f18dd57f11
- SSDEEP
  
  12288:Abh0657xTMfcuG5ilyJTfHRe23cV+QwqBFd1FpQTzXaQU12p4jGLyyy6Ug:whl7xTl2eTc23cV+QwqBFd1FpQTzXaQR
Score

1^/10
behavioral30
- Target
  
  wxmsw32u_core_gcc_custom.dll
- Size
  
  5.0MB
- MD5
  
  90a9eb91e52116843329b5a75c93c08e
- SHA1
  
  874534a834d59a1955a467860fc66c908627f039
- SHA256
  
  5a8d63246000f4e53a60612ee34613d7f54e5ac9e8bace7d0c71737ace30f653
- SHA512
  
  defd32468af25905e7cbf35ebe14db25dc1cb886793afeb0faeb867716f65f8b9ee321d06001e2c1af19a07b83d5c9b325d4b6ca5f864e1aa3050077b6787d37
- SSDEEP
  
  49152:x4uQ+nH0hJo8dOy5JnbnzoZO8XR0HHorxl47j+lwV/UWPo26rVQ07Pw3X7GunseC:xTsony5JbnzfARmkwcWPow0gTrq
Score

1^/10
behavioral31
- Target
  
  wxmsw32u_xrc_gcc_custom.dll
- Size
  
  728KB
- MD5
  
  923e97f86b22abcb602f6ab16d2b0293
- SHA1
  
  b14cd14ce8b2c4cd2fe29395679210ba662cd26e
- SHA256
  
  95e36f082ac1bd2ee75c7c3d7371c8332cd5f36b3af0e4146689ee8790e7f244
- SHA512
  
  d4ddbaaccb26c2e531437b16162489fa0690ab704d711dc3fb99746835cac12f5289eab1d099582acd2d333f8c1a85f096002f0ea10713311b43c38598fea21e
- SSDEEP
  
  12288:tdsnZCtwZgmLZDUY8D4110i0GKpPYds5lrc30aSAJGXucjGsywTl:tdGC3w9UY8W0FpPY+lrc30aSAJGXucjT
Score

1^/10
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

T1552

Credentials In Files

T1552.001

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Data from Local System

T1005

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Reads data files stored by FTP clients

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32