bc3fb6b49d5eb360f09971d9c35275935ad64432a54042a63512175e18e16db0

Sharing

Copy URL

Twitter E-mail

General

Target

Wexside3.0 (1).rar
Size

371.1MB
Sample

240520-wpqrgabd98
MD5

5113373f0073b65ce5f061e858474bc8
SHA1

09865afe090aa1b8f3a097b1f13a76f554208b5f
SHA256

bc3fb6b49d5eb360f09971d9c35275935ad64432a54042a63512175e18e16db0
SHA512

51142552b4307c6ff14a94f839529c3a7c79de35e2e3af0eccef46a5ce644ac3ebcef69041aad25f982f8d3f996c1d1508c6eb5be3ea1ef833ebda0adc24782a
SSDEEP

6291456:80+HwaWB9oZrjHRiBVbDE/nospIMj8/3jxvNnQHncAdNjtkCGUjQSoVV28dAvM8w:80+QaW92H4zkyMQ/11QHhFtknUeS88Mf

Score

3^/10

Malware Config

Targets

- Target
  
  jdk/WinFallbackLookup.dll
- Size
  
  209KB
- MD5
  
  f37dd567987df774e837b44ba5f3fa32
- SHA1
  
  63cc406ef45b256222b28f9b5e5263f4eb48878e
- SHA256
  
  332a8728b78a7a186c778c5d01b9ff7added45de2a4a49dd021a32b8e9959f50
- SHA512
  
  67a60d7e2ef4347b17552229abf22037031ca4fe91db79a80d53266df5a0aa3f4938bb04134d875ab6db09a8d40ad81c030b6f722a26f2b95fe8a677e4f77456
- SSDEEP
  
  3072:ANpJfl7WNo9OQSjWP/JX52WPxMafOCjY66gnuEXXK+E:AVR4AOVjSZ87/Cjz
Score

1^/10
behavioral1 behavioral2
- Target
  
  jdk/awt.dll
- Size
  
  1.7MB
- MD5
  
  f149f2c2a97796c3ae840576e7ad9e00
- SHA1
  
  317218f8a949aa78810b955897f71c10bdc31028
- SHA256
  
  45fe4f15e96cd7d8cf13598a7d8434b1416336315dc58b87b68befbcf6bce6fc
- SHA512
  
  ebe269b7c0ef9a98a817149f7641aae8206b7eda973b20dc055db7f8a6e22f1fd068503067596f3f25a6b15f3f464e906fe307981c8815a799e2b06cd723262c
- SSDEEP
  
  49152:Ky+q1U9KT+DNR4lQMogRyenckYmswoimEiztFIBOu:LSKT+r4eM3nckYmcEIzQ
Score

1^/10
behavioral3 behavioral4
- Target
  
  jdk/dt_socket.dll
- Size
  
  135KB
- MD5
  
  a54aba2c7efeaae2caea27e2c233295f
- SHA1
  
  12a6f198a0636bf62015aafbb676704e8fe98120
- SHA256
  
  721c646acac2da3894df06a5989caa8a5e0d83439fdebfd77dbf33a9a807e481
- SHA512
  
  a89cc30e40399e920b304dce4633d7a35b764802f050fd88ae72b363350f6a76d370df1d53726328d8aa1029c946a89c194c0ea245560db8eeb1ebcaf223ee8e
- SSDEEP
  
  3072:1lTJUZHrc3J74qh1XWE1kyrnV/oUFNQjeT60D/:1nqQZ3hD1k6n9
Score

1^/10
behavioral5 behavioral6
- Target
  
  jdk/fontmanager.dll
- Size
  
  775KB
- MD5
  
  0a1c67d416532895050883412edff7c1
- SHA1
  
  f4b941a69a992ed1b556af39470acfa860f8de03
- SHA256
  
  5f804c5042e5d65328cb47b99ed4f5c47d3c04edcc790d201a89be1a32afe6c2
- SHA512
  
  2068696ab11a191d74626a12aa6b1c2114d81515d5b2ccff2666b5a8d0ce59e3471a495328f92510181a492bac84e135edefd4dc1d4d4c8039b635957330ea69
- SSDEEP
  
  24576:t3o94rrphmzlaP4MXN6r31SlMchgU2FFq:t3o9Er7ms4MMJc+U2v
Score

1^/10
behavioral7 behavioral8
- Target
  
  jdk/freetype.dll
- Size
  
  619KB
- MD5
  
  3100d9530f6e6e529bb21f203aff4d72
- SHA1
  
  475cce3e374a5965b2a111ca3cdaea6c14d5d983
- SHA256
  
  82b0b98804cdceab651ccbeb76bac3cb302cac95ec007575fd31f03dda75af53
- SHA512
  
  fa208651456587ac8d070ec4820655df3d253a1527a93f88380178975dc9032fde8fc228d652d397d393e5e2312856c4ea991820d43f50d878eb9c6dd2a26803
- SSDEEP
  
  12288:4grfjC2Q2r2XiXMMLv2oJRr5TWJu+2BhltW2J3DE/OfEWmDmNYv:4ep2XiXMMzZJ7WJu3BHJhEbZm8
Score

1^/10
behavioral10 behavioral9
- Target
  
  jdk/instrument.dll
- Size
  
  147KB
- MD5
  
  29a1eaa6e58cdd04153e6b0f3a45a30f
- SHA1
  
  55c56c534171dac9ce05d685e9ee044dc8cef2cf
- SHA256
  
  b3616ebcbde898924492cb27f4c902ff315f6405fdc4fb20d3c28866b680e0a8
- SHA512
  
  657b39a65865e3036936911c5f83b0619f1b1fe4be5ddaf697c084cf5b0e99e1ab28fb412efa6c696825c497eba500127693e85ade5e0ad14f00db752382e297
- SSDEEP
  
  3072:JlYImaD28rWARCK8sTZXGVzmkL3FaEi7:JlY1cWAUjSWVC
Score

1^/10
behavioral11 behavioral12
- Target
  
  jdk/j2pcsc.dll
- Size
  
  95KB
- MD5
  
  12c95f5dff86831c9478db0a5a2fc2bb
- SHA1
  
  16f1d70ffad9e62ceb2ffe42c63a5179eab219d8
- SHA256
  
  6756e0e44f2a1b02f2f2a737afa0d7c03154b322472711b7df1041c8bc67195b
- SHA512
  
  f435677374a1c5ae3f77b6692be956a86f24190227a994c40bf155de0440e3186ed19ba9430626ce68f51637015ab37e3c97f29423927e2380a44d5e12d251d5
- SSDEEP
  
  1536:GL2hB2YWCjk0kPqdyxS/lUBCkumOtge+J0d2sWhOmd09dlWzFzL:3j2YJjkvSkxOlRkumOt+SdqZMgzF/
Score

1^/10
behavioral13 behavioral14
- Target
  
  jdk/j2pkcs11.dll
- Size
  
  175KB
- MD5
  
  49e5d64f20f09dee914e487c107cd09e
- SHA1
  
  1c1c02a4bf4fe83f1fa0d42a7bbc98a6588af53e
- SHA256
  
  1b3e4fa6c1b1e7621839ef1dfa47ad4880826f85c3db5d18f232bf78ca99d83d
- SHA512
  
  c1a5f015311e9bc79da5697155dfbd5cae807245636222788852df0f8921dfd84a4d1ee81c66f2528061779ddf047f8767e605b15471c9bcf6e0f1d09d460da0
- SSDEEP
  
  3072:HLr9M6tUzsmYG3YF80ja5h2rgfrvs1NxqmRVzuJkimGXaIo3:+WG3YF80Y6gfKDqmDz3
Score

1^/10
behavioral15 behavioral16
- Target
  
  jdk/java.dll
- Size
  
  297KB
- MD5
  
  9057d7f0190954f45e82bfd443f18647
- SHA1
  
  0e5067a5042515a2b8c37fff962e586dd31e612b
- SHA256
  
  40b673657de47fdcba4ab273e69854eb172e7bea92ddd004ba023699fe975f4a
- SHA512
  
  9265d2390ab49222d7c8b42ca0268b34ccccc2b02c960b82bbd29a7a412045e6f12dd7519a210188deac153caee0210b4547e298ba16ed5d98c45b8edbf244dd
- SSDEEP
  
  3072:jzwutDGCu/oOeAT3v/1PEBQAmGgEAkGdrE2rLJraD1blXsmNDzL/ka4ZibFbTiqv:jzjt2vfdrHBIa5+1btsODf/0iZCsdv
Score

1^/10
behavioral17 behavioral18
- Target
  
  jdk/javaaccessbridge.dll
- Size
  
  274KB
- MD5
  
  62df2b542c288baef94b74e4e60d1e15
- SHA1
  
  6cdddcdee6c2d8894972d06d3ec7d0e68302e6d6
- SHA256
  
  4f1e641b61a76a81993ba512044725c0ccfcef3dd59dc1d96a917d92b6235385
- SHA512
  
  7b809faf6ee29e12e92cb3c1f67a6d300009d05d19d80a24845e3c8e6c1e33db9f36cfe9f0993aa0ce3385ea4b7b29045da999b7359a5887b70a0978e42b356b
- SSDEEP
  
  3072:O+79Z7t8OuBe4SXIfrnKD6gCyOvERNa7BMGfClBrazOw6CEKr65LizjUu/rNI7gn:O+7Lt1a4AnACMjatTffjUAcLFxZk
Score

1^/10
behavioral19 behavioral20
- Target
  
  jdk/javajpeg.dll
- Size
  
  300KB
- MD5
  
  a61123b57497ef2bd3bcf02a76b4b4b6
- SHA1
  
  16dcc56f3f75a99f896c3f87782b27478d0fce29
- SHA256
  
  60970098b1b15a261bce4cd739ca56150f3f5b117629351cfe4c72da1295c132
- SHA512
  
  4c641c3cf4ab9284c89e76c2314db434b47b464c2b29d096bb6e8496143562599efd587d209db325131bda8d6f0f31ff1bf088aaae1a9b1444055a1c324f289d
- SSDEEP
  
  6144:qqr0VypUhV+EZsFHow/1HEIpO/iebpQ+PYn:2VfZsOAJAiK
Score

1^/10
behavioral21 behavioral22
- Target
  
  jdk/jawt.dll
- Size
  
  91KB
- MD5
  
  0907b6db139b1e1221840ce8605fe709
- SHA1
  
  66c98ed3bdf8e8215a4be9fefebbe2ab7892ac2e
- SHA256
  
  a1a97ad296c7ebd449e14f5f44773a6d8f4f8adb8735e7433b3b778f7e5fcd0b
- SHA512
  
  53ad3dfc47bf930b381419628c5cc4fd2a92616cfdf6c7df1b1bbac097bcb821e4a72313d6e3e820896b37a29e0a318a9c53842285ac46837a7577ac7ab2c4a3
- SSDEEP
  
  1536:XxodyoAuif/wNSBLCY0z+uu9AEEJw9UsWtBd09dlwhfnkck0:XxQ5Az4N8Lmiuu9Af2907Maicb
Score

1^/10
behavioral23 behavioral24
- Target
  
  jdk/jdwp.dll
- Size
  
  362KB
- MD5
  
  1429902b4415513030a1bb576f2e1eb5
- SHA1
  
  7dd09659c9c22516f3111c0cde473ed2a07c1e3d
- SHA256
  
  c5cdee7f763f190f75f8a37e2bcebe79b948bf95963d14a635026fce0ceeea03
- SHA512
  
  20c0fdc7c15ea2489e1991a2c3e4a6511c75d732d3ea0a3acf9d38e1f1778680c736da7ddb9ea57fbc7333fd0826950395f2939fd0ada672b12e9934f4417a8f
- SSDEEP
  
  6144:oNKXPXoDbZ5HQoqAgHoqmHfoROWtpnWdkmap+EMx8WwDp+ARI+eonTfeHrBBvTyM:owfoDbZ5HQoqAgHoqmHgROWtpnWdkmaS
Score

1^/10
behavioral25 behavioral26
- Target
  
  jdk/jimage.dll
- Size
  
  152KB
- MD5
  
  a14407b167980ddc74a7076721d13966
- SHA1
  
  8fea6d0d3a339d7b953eba757b5ff7a0a760a253
- SHA256
  
  35c88659cdf5a1919a68a1cfd3942d977af8669b65aaeb7a8dec870ede59f273
- SHA512
  
  c49b19cfcfd64630e2317f360caf0ce991098735f03a1feaaaef74ae97b9adbe77a6779504f173915b401254dd75a98b3ebef96b06c23443e5747f7020430093
- SSDEEP
  
  3072:y94arnWOHj703LyK4HyVyBI1KAJp6aDnOGNg:ALnWOHj707IHra1xO
Score

1^/10
behavioral27 behavioral28
- Target
  
  jdk/jli.dll
- Size
  
  246KB
- MD5
  
  08e2b1f08a537ae95f46b0780923e52f
- SHA1
  
  a411461df0e7d00673b20ae952392b949f9548c2
- SHA256
  
  28ecb0212257fe4e38f74a5f97694d581ee45beae7662381f9fadb95730bbb42
- SHA512
  
  de98b5932cb3e9a6f020a083dd2055b6453481a678f578dd242725311053cafc8dc3b03ff627c183df7e88a4a20779b61fc3c0694c338e14913c567ecae4d641
- SSDEEP
  
  6144:sjXN9cvPv33gT7wrnfd1lO5WlCDETBNXR8TT:COPv3QT7wZXOBATHK
Score

1^/10
behavioral29 behavioral30
- Target
  
  jdk/jsound.dll
- Size
  
  155KB
- MD5
  
  94bbb8ea12175e9026fae8b071d54665
- SHA1
  
  6a451836d4f0e52f8ba38fcd9458273e056bc3e9
- SHA256
  
  eb3da820d1a6c89784740517a0a046eb5384895745bd7b57033e96ae7d45fd2b
- SHA512
  
  1cd032af42697817f55bde8bb5917a91fb95d0fbe978c784d3a19be3221eb2fe8955c04d78f42b8133fe059ba21301621ffd224a77494613533b2a0755646b31
- SSDEEP
  
  3072:uUM/+GPrnHsP8MUhg9SKd73jxq6OfvMDSxCOo:J5KnfqYKBjgpx
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32