837ec0e9287fcb56331695971c618ce18f14dff0107ccd5749bd51c75bccc6d6

Sharing

Copy URL

Twitter E-mail

General

Target

Rift-2.2.1.0.zip
Size

7.3MB
Sample

240520-syxdtsgc91
MD5

fc332b7d4d15da6be0615be37e280789
SHA1

5e93ce41c14a784734c381ca49385a2c57130995
SHA256

837ec0e9287fcb56331695971c618ce18f14dff0107ccd5749bd51c75bccc6d6
SHA512

962ab673d36d3e3856fd3ec5de3671eeb9c11039e34d988b98765d42f6b75ab460ee83ad32d6bd39e21ecb01b6a0758caca19956a7a33543e25810497ddaea27
SSDEEP

196608:PwGDaaZl64V695I+yJWwbKgeX90am24lT18kR87C:P6aX6g69GJ1wUZl5R8e

Score

7^/10

upx

Malware Config

Targets

- Target
  
  IniParser.dll
- Size
  
  29KB
- MD5
  
  67e3db40d7691c18a3542c1b4e47a68c
- SHA1
  
  9c0a257de1682c6ae64896b88e0df8a3f49ba49d
- SHA256
  
  3f22348a211d53eaabbe819a7f66e8426ac7df804ff6a14547bc4120b7558019
- SHA512
  
  6a6a4e2f49dd6160439cc5ec701f516cfca1d74bd7bbb6b5a13a86f0152e9612a498002c4168d141bf3aee6f88a8f5cf4c4a35c30708aae4ac8c785db165b1f0
- SSDEEP
  
  768:m/9yGJJInDC4Tm78OAaaEPX79olkJi+Q/1xT:k9vnAaaEPX7KxT
Score

1^/10
behavioral1 behavioral2
- Target
  
  Iron.dll
- Size
  
  15KB
- MD5
  
  8ed8502a4624c6a544c06de1e9da2fe4
- SHA1
  
  1091c03fcad76a7166974667e183db2cb32dc2ee
- SHA256
  
  08be63719ff41a57d9b7617330a9117ef0309b94a7e65dc76d152388a9f5605c
- SHA512
  
  90c28e25242b4454ee54fd9afcb1e0e8317443c147a1c353cc73125b20f436760e0c59d21bb518ff97f302ec2221654673832475834c24372b6dd7301929c27b
- SSDEEP
  
  192:cdby8u0Ei6l39sqZxfrfCCp/OlZX/CvePB4rL3QZEb4bb1OQHDLE:ccdzi6lJTfGCp/OlZ1Ov3T49OQnE
Score

1^/10
behavioral3 behavioral4
- Target
  
  Microsoft.AspNetCore.Authorization.dll
- Size
  
  40KB
- MD5
  
  3af1f8205854e0a27f2d7f849ec62263
- SHA1
  
  c368a7d12883ea5ddce93e93125876713cf6eed9
- SHA256
  
  6fdafd3a7721ae25b9dc08e7efe90bd09f63b4a45af698ecb2bc9d33549f5a97
- SHA512
  
  2df0ce88d22650b6c3a56fd32f9fea816d2055713e225b2423e4b7cd20f0dd83b98e5950ed59ac5639bd2c6ae5ed2dcf3c277518a615605d22a60e0870562150
- SSDEEP
  
  768:QLlSMnkBB2xEYCkUkkpAk+kkkklk2YwxGKkJXapXn4DQbW4xGhsvT0hgim3pQrgJ:QLlm/cCkUkkpAk+kkkklk29Jwq9vG+5X
Score

1^/10
behavioral5 behavioral6
- Target
  
  Microsoft.AspNetCore.Components.dll
- Size
  
  142KB
- MD5
  
  e1eee4a7f892cc0bdcdcb4e36c622459
- SHA1
  
  e27a6f9434eba08bdf69dde6818ca28fff870adc
- SHA256
  
  627d15476bb8101a16f688726947ce7308102fa75f707f621ba98507c15cb316
- SHA512
  
  16c9c1e3bff1c66c100ac0e63ff3bd3fbdea5ce413fa53bcf131b3241eb5769150eb9a39917f9a29f47e7ce22a2613404099eeb19ac48df9a03be86248eddb6a
- SSDEEP
  
  3072:Bi8WGwG8L4A6nCk1txkwRMnrKbgT8lbgx6f/WrAJBaau:B7WGwb6CSls2/xu6
Score

1^/10
behavioral7 behavioral8
- Target
  
  Microsoft.Extensions.Configuration.Abstractions.dll
- Size
  
  24KB
- MD5
  
  bcd270ecd5f7dc482b6e7bf89536a47c
- SHA1
  
  04213c771bf8ba8f298e2a0c362534dce023929f
- SHA256
  
  a5ace0ed018dc5043fd4cc27492e6203fc75dce1a8b07142f4340c646f19cfdf
- SHA512
  
  6cf00af0c18405fb50076accc08c5befda5f2fa7e6b05cea7d7df1d9ef380e7d284ee09048e11124b400e43c771effd5fe87ee0265ddfb41dd2a3c774aa9149b
- SSDEEP
  
  384:gm++Js0963NU17qVlR9iaTG/0wEzRjz6sMCFJhOn1QWMcBcIWsFNWRQ/uPHRN7JX:Pls53W7q/yp0t0c+zM8UuRd7Y1
Score

1^/10
behavioral10 behavioral9
- Target
  
  Microsoft.Extensions.Configuration.FileExtensions.dll
- Size
  
  22KB
- MD5
  
  4be44ceb7a9598bce07153f118d90051
- SHA1
  
  36e7312243032b666dbd8fdc99f39accaf60ea12
- SHA256
  
  2a36274f7d52a5982414bf576935db2aa0fabf6cc84320bc735bc428d4023602
- SHA512
  
  306155f3d41f128bff68a3e38b55d2b0e22bc12d526930648be23066ed8dac91cdb205c9728bf432ef0644a3bde36ad3721073b1e87505e5ff28082d75b45290
- SSDEEP
  
  384:55Pj33XFCUFmLITj0SDKD5ozWqEUWXdHRN7foiFWSlGsWB:55Pj1CBI+5ocHQHP
Score

1^/10
behavioral11 behavioral12
- Target
  
  Microsoft.Extensions.DependencyInjection.Abstractions.dll
- Size
  
  44KB
- MD5
  
  6c03b239f6816e856c44dd55a0029fcf
- SHA1
  
  ff943c89b56ca0dc20e065a3356884c96ef90688
- SHA256
  
  5b293ddb35ca39ec4b46343373ef5787b1418f5ebe9b94af8dcf6b48ccc7e1f2
- SHA512
  
  6f055603f94f1d5b8b7f38fc665f8f632ce3bd8ff92fd8479d5baa83236d822c1a1a15e32a364de0cb8ff60c6cf2501f1e15c944f64fe73c59c74e327b10ca52
- SSDEEP
  
  768:Er8qSaRWBypr83cRwDakun17VRXq82YSZw0woj50iMH3EeS:AEBylweVn17VlV2YgfBaiMH3EeS
Score

1^/10
behavioral13 behavioral14
- Target
  
  Microsoft.Extensions.FileProviders.Physical.dll
- Size
  
  34KB
- MD5
  
  73e0a2a57a1c25e022fef7d7490fe326
- SHA1
  
  ac214dacd39ffa6699d88e02a28670cf1d3079ce
- SHA256
  
  238f3aa7904182a3cf5c963ee2d9a8e70d42065828b5e0b05dad13a89e560516
- SHA512
  
  8ba720db24dd388571dd8d0048ad4cacb56b62059b3b63868d8ecebedb9eb8070734cdff3d3891986fc247cc4ecc0bcd45021ca959807ac147abcba05285de37
- SSDEEP
  
  768:HgeTeHNEqCQhZqfAQkaupdU+StPEbWrGWEN:HgeT6lIsLpdULteWrGXN
Score

1^/10
behavioral15 behavioral16
- Target
  
  Microsoft.Extensions.Logging.Abstractions.dll
- Size
  
  47KB
- MD5
  
  a09eb0b6230385104c5a9a87327c4630
- SHA1
  
  2cd56db75733c2d754fc4dd14d8c6de8477d2c4b
- SHA256
  
  d79f315f3835ed31a628c93c22db36662e5ac13b9af893dcc602f8f7258ad9c2
- SHA512
  
  e22c681083fe1000aef6126315ebdf7382c01dd697f81c308df87732305874db2da2fcfe1f9f9063be64460243cc3fbf7ca94ec456733e70e94d7de807c8b1ac
- SSDEEP
  
  768:937xotVSDFeCB8ykLWdedqe46v95LIIIIIIp1OyZkVYci1kMA3In:PotKAGkagdqe46vV1fc5MoIn
Score

1^/10
behavioral17 behavioral18
- Target
  
  Microsoft.Extensions.Logging.EventLog.dll
- Size
  
  21KB
- MD5
  
  f2ae8ea0f15b71be5e657959c111a7da
- SHA1
  
  62d40278ce75f0d9fb4340edca0f51b3d2c8752c
- SHA256
  
  90afad97b29a5747fd50f2cd3bf1e0843e8f9801b858ab3a46e84f13b379b507
- SHA512
  
  21bf152054b60ab1b4c4d9261da0ae9de35d2a6fe864807316114ba0b20e74d2d4d32fdb890b45d06d7cea34c6a27c9d5ed2b8c0a2f7a7453085430223063a8e
- SSDEEP
  
  384:nraCRSV+6MrBnQUCHRafVGM53dW2E7WWdHRN7xBClGsD:nGCRrvcRRtf
Score

1^/10
behavioral19 behavioral20
- Target
  
  Microsoft.Extensions.Options.dll
- Size
  
  49KB
- MD5
  
  257beb2a2e61d95541ff34c1791dfa1c
- SHA1
  
  847771b132378679014e141831cff2279b15c3ed
- SHA256
  
  a11544ccadbd55d297c9bba46e0d75c7dee2df1b3d937ba8c1280918413e2c37
- SHA512
  
  35e503774c40f81333c4b21468fd58d5362c764d043d5539428c9b9fada5a072568f8dc2dbd46d8468edd295c8311d9a3a7a10e104080c03b38800575123adb7
- SSDEEP
  
  768:htd/yZ8bAzn33QcOg1E0Oby1Ey5hvaU+yMbrIF8BOuMtzr:qz3RbO2PfyrbeVuMtzr
Score

1^/10
behavioral21 behavioral22
- Target
  
  Microsoft.Extensions.Primitives.dll
- Size
  
  39KB
- MD5
  
  9860d478e7b4f30657f96e354d56f107
- SHA1
  
  37d683c9a9dcade1f6aa648ce47b48930bb4a28c
- SHA256
  
  c4a6e972a494a937b2f81a287f7fbf70271485e4c3861e9437a66126f3100137
- SHA512
  
  7a5794fbfa4d2c396fb87e274718ebc6982151a5fb757600f7c7f25a582fe781f92cb21315beff73c5a999f63d9c44730e50eabe6348f48bd090647c7543a5b6
- SSDEEP
  
  768:mx+oKvhhdBe+pEP3erH0OP7NWEfgwEuiEk3vj1Mz7bk:uVK7pEP3aH0OP7NxfvEuiEk/j1MI
Score

1^/10
behavioral23 behavioral24
- Target
  
  Microsoft.JSInterop.dll
- Size
  
  40KB
- MD5
  
  2207f2066d61b48138469c548f2d48a8
- SHA1
  
  fb6df07d893ebfaa8268b16a59dbb8527b0886ee
- SHA256
  
  bb8704dc553514890467b4adc33f2a2a10ce99c8430700038f105356acebb798
- SHA512
  
  6e97f0cc213e3f9443388e1a46da8da2a296d3590bdda7417cddedad7676be214752cf2b663870c6c0f399fe79568de57d95634f8b653fbdb379a1038eb772c8
- SSDEEP
  
  768:Dhw0GpW4qaMoJuF0wcCqvdqaRm6lA91HsA/E5NnpgDaX0c/Eqzr:i0GpBV3zCeqaRmQAPHsA/E5NnpgDaX0+
Score

1^/10
behavioral25 behavioral26
- Target
  
  Microsoft.MobileBlazorBindings.Hosting.dll
- Size
  
  299KB
- MD5
  
  d37481efd9e503a3758c7cd518e283b2
- SHA1
  
  fc0a87050c8133473bd9b6a83cb715630150fd28
- SHA256
  
  2c93391b8be5bede8d10c866e4f6a9181b42006bb81ebfb6b029fb74d91b5522
- SHA512
  
  dcf384f0bb6a4f569cf957241c33aa6b06b8f52ce4053d42b5f278a54178d94e7a581963ea059c75042d5637cf2c518dd066dbea7da5dc91fc84b26533505e97
- SSDEEP
  
  6144:ndaaaKF6UDBuIqdtgrA7T4Mpo4807loN2qgBUeO:daaaXUDBuIqdtgM7T4Mpo4807loN2RBU
Score

1^/10
behavioral27 behavioral28
- Target
  
  Microsoft.MobileBlazorBindings.WPF.dll
- Size
  
  58KB
- MD5
  
  698af45b0fc57ca9fa0b90859ca30a41
- SHA1
  
  474206154da5ee03203f15e328c05256e00e5392
- SHA256
  
  982078e2ca7b47e9a7a3e513fdf1a2d38272398380052cb5f650361fa6668d3f
- SHA512
  
  79eab91f388ad44be9b057e056ce28b8dcf308ff1ad878966687b6d43b2d8b282ffa54406547ae607f038f888e89903ce8f57f677d416a6c97752fbf63b2ad72
- SSDEEP
  
  1536:iDQfFUqDpagjdmJ5eieSuB91Kxh4TFf02YHsvz:0QfdDpagjdmJ5eieXB91Kxh4plQm
Score

1^/10
behavioral29 behavioral30
- Target
  
  Microsoft.Toolkit.Uwp.Notifications.dll
- Size
  
  140KB
- MD5
  
  5eaff1a4fbf02eee4dcca8a83b8aee3a
- SHA1
  
  5a049498520d69b38d8f2aedc152a81134ae51a1
- SHA256
  
  865de778f7884dad42e9746cf8de5600836151b2dfa7b836281c354a3db2820f
- SHA512
  
  45fa96c6a4f789a3afc8d8fc66afdef0c6473042bcf860ff4ba437ba10571d5b949be3967b47359c6ad5e624240ce071b6f313539ee9b9f26c814dae8590c047
- SSDEEP
  
  3072:J9Et3TIuTM0ijrzTaS+wOjM1eYLjB1+Qx7Obi:bO3Tszl+DM1NLjB1+Qx
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32