dbde8a4bd71bb1fbc0511cdb657dfeffdaedc513aa425f856043532a7cba6fce

Resubmissions

22/05/2024, 15:19

240522-sqj4jaff59 7

22/05/2024, 15:15

240522-sndhzafe8s 3

Sharing

Copy URL Twitter E-mail

General

Target

FileZilla_3.66.5_win64_sponsored2-setup (1).exe
Size

12.2MB
Sample

240522-sqj4jaff59
MD5

861c54a22491b35880f4ec629cfd699f
SHA1

71a32e0d99f6d6a36770bf60686c4ac04eb9d70c
SHA256

dbde8a4bd71bb1fbc0511cdb657dfeffdaedc513aa425f856043532a7cba6fce
SHA512

e34d2a9769bc03f87851b81a88bdb1edbff17725170f6b50bde12a3eb092b221b685160b3b979ca77d249172d2137e7ac9463f2fd8b86296bdd1fa0841a9783c
SSDEEP

393216:TAJ8PZ1g/3inKFsdoSpsK1RVryLx9FPeN:TAJ8P8/yKF+oSpsKPtux9teN

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  FileZilla_3.66.5_win64_sponsored2-setup (1).exe
- Size
  
  12.2MB
- MD5
  
  861c54a22491b35880f4ec629cfd699f
- SHA1
  
  71a32e0d99f6d6a36770bf60686c4ac04eb9d70c
- SHA256
  
  dbde8a4bd71bb1fbc0511cdb657dfeffdaedc513aa425f856043532a7cba6fce
- SHA512
  
  e34d2a9769bc03f87851b81a88bdb1edbff17725170f6b50bde12a3eb092b221b685160b3b979ca77d249172d2137e7ac9463f2fd8b86296bdd1fa0841a9783c
- SSDEEP
  
  393216:TAJ8PZ1g/3inKFsdoSpsK1RVryLx9FPeN:TAJ8P8/yKF+oSpsKPtux9teN
Score

4^/10
behavioral1
- Target
  
  $PLUGINSDIR/INetC.dll
- Size
  
  24KB
- MD5
  
  640bff73a5f8e37b202d911e4749b2e9
- SHA1
  
  9588dd7561ab7de3bca392b084bec91f3521c879
- SHA256
  
  c1e568e25ec111184deb1b87cfda4bfec529b1abeab39b66539d998012f33502
- SHA512
  
  39c6c358e2b480c8cbebcc1da683924c8092fb2947f2da4a8df1b0dc1fdda61003d91d12232a436ec88ff4e0995b7f6ee8c6efbdca935eaa984001f7a72fea0a
- SSDEEP
  
  384:wv1j9e9dEs+rN+qFLAjNXT37vYnOrvFhSL+ZwcSyekzANZBJ:w1AvEs3HBLzYn29vYh
Score

3^/10
behavioral2
- Target
  
  $PLUGINSDIR/StartMenu.dll
- Size
  
  7KB
- MD5
  
  a8c86996c4230c2209f5927f21321377
- SHA1
  
  45ce0ab93cb6a3a594e54878cce05df724024393
- SHA256
  
  110545415a59402635e1c9439acba15b44bab268ed02ad2a262ce12604a47855
- SHA512
  
  69ee73496b916777936b0dddd2cc4a4f916e393f7d0b167cba77a4a239ee1e3f645d9b90dee1627c42a23eb6c3403e4d086546b9f78b3a2e4999c8f92f6a3bc3
- SSDEEP
  
  96:mIt3J2Gl0eVe0+Cfo0UkXt6+o69UiGdPh5/utta/23lkCTcaqHCI:bhE+A0+sF6piUFkAylncviI
Score

3^/10
behavioral3
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  12KB
- MD5
  
  4add245d4ba34b04f213409bfe504c07
- SHA1
  
  ef756d6581d70e87d58cc4982e3f4d18e0ea5b09
- SHA256
  
  9111099efe9d5c9b391dc132b2faf0a3851a760d4106d5368e30ac744eb42706
- SHA512
  
  1bd260cabe5ea3cefbbc675162f30092ab157893510f45a1b571489e03ebb2903c55f64f89812754d3fe03c8f10012b8078d1261a7e73ac1f87c82f714bce03d
- SSDEEP
  
  192:VjHcQ0qWTlt7wi5Aj/lM0sEWD/wtYbBjpNQybC7y+XZv0QPi:B/Qlt7wiij/lMRv/9V4bvr
Score

3^/10
behavioral4
- Target
  
  $PLUGINSDIR/UAC.dll
- Size
  
  14KB
- MD5
  
  adb29e6b186daa765dc750128649b63d
- SHA1
  
  160cbdc4cb0ac2c142d361df138c537aa7e708c9
- SHA256
  
  2f7f8fc05dc4fd0d5cda501b47e4433357e887bbfed7292c028d99c73b52dc08
- SHA512
  
  b28adcccf0c33660fecd6f95f28f11f793dc9988582187617b4c113fb4e6fdad4cf7694cd8c0300a477e63536456894d119741a940dda09b7df3ff0087a7eada
- SSDEEP
  
  192:DiF6v2imI36Op/tGZGfWxdyWHD0I53vLl7WVl8e04IpDlPjs:DGVY6ClGoWxXH75T1WVl83lLs
Score

3^/10
behavioral5
- Target
  
  $PLUGINSDIR/UserInfo.dll
- Size
  
  4KB
- MD5
  
  d458b8251443536e4a334147e0170e95
- SHA1
  
  ba8d4d580f1bc0bb2eaa8b9b02ee9e91b8b50fc3
- SHA256
  
  4913d4cccf84cd0534069107cff3e8e2f427160cad841547db9019310ac86cc7
- SHA512
  
  6ff523a74c3670b8b5cd92f62dcc6ea50b65a5d0d6e67ee1079bdb8a623b27dd10b9036a41aa8ec928200c85323c1a1f3b5c0948b59c0671de183617b65a96b1
Score

3^/10
behavioral6
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  1d8f01a83ddd259bc339902c1d33c8f1
- SHA1
  
  9f7806af462c94c39e2ec6cc9c7ad05c44eba04e
- SHA256
  
  4b7d17da290f41ebe244827cc295ce7e580da2f7e9f7cc3efc1abc6898e3c9ed
- SHA512
  
  28bf647374b4b500a0f3dbced70c2b256f93940e2b39160512e6e486ac31d1d90945acecef578f61b0a501f27c7106b6ffc3deab2ec3bfb3d9af24c9449a1567
- SSDEEP
  
  96:o4Ev02zUu56FcS817eTaXx85qHFcUcxSgB5PKtAtoniJninnt3DVEB3YsNqkzfFc:o4EvCu5e81785qHFcU0PuAw0uyGIFc
Score

3^/10
behavioral7
- Target
  
  $PLUGINSDIR/nsis_appid.dll
- Size
  
  3KB
- MD5
  
  19071761e91c43c115a16b52458869b7
- SHA1
  
  75ddb807157f1aa31a08f87be0270f60990bcbbc
- SHA256
  
  e9e1ba410636698d666b328eea71346b8287248d262e44da07ce8b5fa24c5e5f
- SHA512
  
  bc0eab51cf27f657cd3fd62a47894ee13f3f561feaa565f16ba15088be39be73c9839a3cf35b538219ec83a03d48970b89258c5f20c37bcaf76438998437786c
Score

3^/10
behavioral8
- Target
  
  $R0
- Size
  
  33KB
- MD5
  
  d02454e5e342d3f825b57137aa92a345
- SHA1
  
  6dbbf9164a54963198affcbf4c5928fdd29afd99
- SHA256
  
  b425a8e076dfccf9245d724d3a228500bf128aea9fb24795ee3c6020d2e9df6a
- SHA512
  
  625ab607ce7c5e56a29ce9a8eef9dae0d92fc8ac947bb074ea8ad14bb40a6bb79d72c53f4c99a13e6dcd8054fdb95f0b93abcc246442bcccdf82168938e6d63a
- SSDEEP
  
  768:82/5ZWpdwrGUxnyiehH/kZjGyxUUyg8GENAMx49:zBZWpvWaGj7UjNXxM
Score

1^/10
behavioral9
- Target
  
  $R2/NSIS.Library.RegTool.v3.$_106_.exe
- Size
  
  5KB
- MD5
  
  48b4f7d95dbff3dfc74fe3d9e41524b8
- SHA1
  
  7bfc27a6eac4796029e841f9d5a61d37de6b34be
- SHA256
  
  fc6f7befdd834ccf59aa660497f197d85776f3d95736337d1b9f4417e1db8d6e
- SHA512
  
  c51d21f3d76d915086324ecaf54f6da7b4fcd2aec9161812fde63e70f6aa1b30709cc6ae5d30abfcfe9141edd6e9e44d49de83a06753cbc5d37ad0d658cc740d
- SSDEEP
  
  96:qBg4ARDDMDQB4dtVfhxr+qOspqME3zpHC5:isDDcQWd/hxaq/sMsC5
Score

1^/10
behavioral10
- Target
  
  $_36_
- Size
  
  947KB
- MD5
  
  610f4eb991ae0db08785dc4a6c1b1fb2
- SHA1
  
  0b28c35f1569eec2dd1cd6c8cfdabb349f6e0866
- SHA256
  
  6872cf401483b46c9b0456f676cc6f7e810fe11b7831567b187c6228ec4c0857
- SHA512
  
  327647555d35f4dcf567579c4750299d8fe8ead866bfc304efd7f2b855bfd659da407c344c8077041310e214d0395d2f0c85c7d504ecf0403b970aca72496f7a
- SSDEEP
  
  24576:Wo6hPUFdvQDqO6gNuSzRsK9WPIOg3Gm39ZJ4N9RMe:WNPUfYDqkWPIOg3Gm39ZJMRMe
Score

1^/10
behavioral11
- Target
  
  GPL.html
- Size
  
  15KB
- MD5
  
  11e176c5e0120ee94e365f999084bce8
- SHA1
  
  a612f6d40d0d2ae045d80b60bce6fb6f81a811ef
- SHA256
  
  f7e89c1edbbef8bc837b47c48113a2416f1af0cfc2b2218da39085465ea1045c
- SHA512
  
  d0532df4fe5e995df49f3e58127f5fc9637fc4f1afbb29e92ad16897c1055f77963277f5143458b9a294d1c24559bc594e0ae5469271ece639c8e66a5555d5a3
- SSDEEP
  
  192:tiMUzQS+LrQWJz6Z6q6pdPIK8kV6AWRzdbDaz0pmN1rMbkBJ9R8/CmBHf3KWkc:tZUz5irJq6jIuV6fRzd3c0pmbMCzRLw7
Score

1^/10
behavioral12
- Target
  
  filezilla.exe
- Size
  
  4.0MB
- MD5
  
  4851a345bfe906884e0aa95eaefd2a99
- SHA1
  
  3ee4d00880c523a8de9aa2919c45ca36e45a5788
- SHA256
  
  f23586077288f615dbc1bacf7b1ebbe4ae266d2e0e1e2b4bc2961762102719f7
- SHA512
  
  437443490c76ae0dfcd3654e43fd86bd037e261ab4e1457a4eab8dfd0dd80173dfb11536ca2af6fa4d75fb0413793b97158f347778b7d79e2796416ec2bf1499
- SSDEEP
  
  49152:pukt9OFd6BI2qQkt1B5LP8/QJBt9wyuaG7QI7UhQ0es5DIWhyR8VtS6JSIF+bcLY:oqQ2qdzRLS6JSC5U
Score

7^/10

spyware stealer
- Reads data files stored by FTP clients
  Tries to access configuration files associated with programs like FileZilla.
  spyware stealer
behavioral13
- Target
  
  fzputtygen.exe
- Size
  
  355KB
- MD5
  
  f202d64a47456e50acba6dffef26c65c
- SHA1
  
  edad917fb2e07fbdcc77ddd46b85cf268546bf0c
- SHA256
  
  e71cf3010e46db0922f0c25251885d1317f2e695e3f7e4fecc035f0d3d987fe5
- SHA512
  
  3eccc1aa9bdedff9c066409c0dccb4479af50afb3a9e0739b187ff5f930d17b92821f45bb31902c25146a1f301faf40fd7f0e02e512cf3449ee89c4a9a7cf57b
- SSDEEP
  
  6144:Ltc5log92nfS9SNNRhyw6Hnsu69H8BoRZWszcMd4NN:pc5exn68fRhyw6HcH1RZxhd4b
Score

1^/10
behavioral14
- Target
  
  fzsftp.exe
- Size
  
  647KB
- MD5
  
  f0814b8ed97027f251cf76403e1a12ce
- SHA1
  
  4db14cc3f41c9ef5f72aa975626a037b03dbfe9c
- SHA256
  
  311488e3c21f1b3573bbe049f94d82135bb049a97128c26f2edded9ec6892adf
- SHA512
  
  ea48e848748258182c1a8787697eadf8725906463ac78fdd7b2f9d111b7df1446ee54b7ac817e8b634cb8bd5022f98b5860aad11b407a7fd65fe22775ef56c83
- SSDEEP
  
  12288:v0i9L2KhouhU7MhrxuJwfe4qKDVQn/d4aBrVA6ZwCOUQZbBz7G6lN:v0QL2KzhU7Mhr4mrqZ14apgUQZbBz7GA
Score

1^/10
behavioral15
- Target
  
  fzstorj.exe
- Size
  
  9.8MB
- MD5
  
  04edcdcdbae273e19e04ad0ab1116834
- SHA1
  
  7ccf4f4652fd71a35ecffdcf8f45d1942dead43d
- SHA256
  
  35cc8b5548b8b5de0f1a55afc515214df9dd109cc5133df686445d82b3ea31db
- SHA512
  
  4a0a2bc84193f42f579fd58040bb4a598d6bffb5bb1ec61c2705fc080eae605938bd2aa0f5281ad5cb3deb46c69313c5bd06b0757cdc5cf4fa9f42fa99e8734d
- SSDEEP
  
  196608:E474PITB45BLtG9sCkvf2C/2RrHxvZuNw5EstcMqkhYpuFQkce:R4PerWe
Score

1^/10
behavioral16
- Target
  
  libfilezilla-42.dll
- Size
  
  891KB
- MD5
  
  34a1e09147a3b5be04bdd3d549edd11b
- SHA1
  
  f47cdbfa3719cc7897c472c8ba0a3591c63bb110
- SHA256
  
  5a48633810356d16d96004f343df8b5ae361f2a170de9bf92cb94578e034533c
- SHA512
  
  7800c94907aeec900175e8d37f5bf7f373c0c59f80c8982b843ffdae2c2cb6549aea2c271296a3bedafa08cf03fe1753659acb3244c57b48b959e24ef242a5a7
- SSDEEP
  
  12288:yZ7Zr8KF3ksG0sn8d7cNV9MNCemcx1+C1PS0ZDu4POjjjSDtQjC4n/:y9ZrBvSn8VvNCeEz0Z3Pq/SDtQjC4/
Score

1^/10
behavioral17
- Target
  
  libfzclient-commonui-private-3-66-5.dll
- Size
  
  611KB
- MD5
  
  5e0dc1ec221d3a564be50e9e416bf43d
- SHA1
  
  2b808c44c80b9ae6b9e4bf8cb27df0b8191577af
- SHA256
  
  44b1d3616ad095d7d9ca23b3cc77e76c372ce65e5f568fe619990d34ccaaaead
- SHA512
  
  34edc6cc998cd2f92278e5bfaceb73690fe3f01323ea136f2ecc8b157e8fc1dd252073682f8f225a8eabd6ae08c2314e8d454d183359fdef7cdae55ec78299bb
- SSDEEP
  
  6144:rc1+MmxFlHVvQdpwaWJ8eho2e3zrJ2gLo4MVnmmaPyq8ub0LqDnK737xnE+/zMAe:umxFl1vQpSgJgjVmPPygUoK737++/z0x
Score

1^/10
behavioral18
- Target
  
  libfzclient-private-3-66-5.dll
- Size
  
  1.4MB
- MD5
  
  5592a615979491cdc811ecc1c277a336
- SHA1
  
  214ba2ee5e9eeb61f716c711e42e1a653715d6dc
- SHA256
  
  1bec025816c78a1c672e912f2ce218ea5c8140acbd3b5b2836491260faeecf91
- SHA512
  
  a9dc93eb5396b59a61b2a4a7fc20d9b179f71537000bbf43294af8b20ef51ea4cdd2bbf979da2a56a07a49a4f857e835e3c57d8ff923e82873abde7a6c0c91a2
- SSDEEP
  
  24576:cRdUfCM9tw8GpDtEA530sLCmfY2ijc1DF:cRdUmp+A5EsLDYrS
Score

1^/10
behavioral19
- Target
  
  libgcc_s_seh-1.dll
- Size
  
  115KB
- MD5
  
  b9c02046616ea73bc6a98a295025d684
- SHA1
  
  fa6d0f784fb20a8ff0709237cfd46627027f570c
- SHA256
  
  00cdff6714f939ff105174138eaa40bb82f6ef7b68b7901bf1736dd921fb7eea
- SHA512
  
  13d4b19c7e298dde31305a3c500fd004c85b397958375f88debe1f99bde3ca58402be83f0aec375fc883bcfd2ea624672130c83e493b68c87f69fe3aa7f91214
- SSDEEP
  
  1536:cglQqu9+fvPh1sbMuEZ5Ox65AP7FopvcRJ3n0ubJ6AZg2JCZIPkjX0wy2NXxRft:oLkfvvsbMBZuwyycRh0hA2K8jXppN3V
Score

1^/10
behavioral20
- Target
  
  libgmp-10.dll
- Size
  
  635KB
- MD5
  
  a24e5c4b71e332e6a84168913e0676c8
- SHA1
  
  4b12ca33df9c785ab30867ef95faa57d92efc19b
- SHA256
  
  a6027787b19d797917c5124a7546bd3025c2d51f3ddc13edd44ed4c42ba3d0cb
- SHA512
  
  2b10661194e427f61a75c11a5f2e09abdb9fc188854c6db8b4c5fac35965b427c1643b3d6971a0896a23d75713678bdd9a9f596e6b5c9be499611e6a0f0df3e4
- SSDEEP
  
  6144:cebcmt5c/2jZLGvCO4y5iqIJuYuvTwN0to09U0OSMgAY/rzknw30sP9aVOOP46yZ:Lcmt5OEL4lr3m0EpCiOaOKy3yQs/Ioi9
Score

1^/10
behavioral21
- Target
  
  libgnutls-30.dll
- Size
  
  2.0MB
- MD5
  
  af720a660cf5dfb7beda9e57c008bdf8
- SHA1
  
  3424cfc4e48e0de3c8837442c683f859113fdd5f
- SHA256
  
  7111a50b040da45681733c63fd993a613771d2e51a1418ca688c2722e39eab2a
- SHA512
  
  49cb5cb496c4e4aaf24db539753cf83ae44bcd977d4ac0779fde5b6359c698f33198d0ad0fa9631900da2c677ca53e7e323d1fb82c4eeff7c19608bd87e575a0
- SSDEEP
  
  49152:OdZov5+Ox/QY9xlktP2wPiKR2vB2/ebKt1RG1arBGtlqPb5F8AeXk2XAxOcf:Ozov5oK6j4B2/x9GEjbzOK
Score

1^/10
behavioral22
- Target
  
  libhogweed-6.dll
- Size
  
  268KB
- MD5
  
  e66cbf2273cc95c2d2a9374cb02aa5c8
- SHA1
  
  c231b96bb6d486a75718e11fa77c633ba0e0eccc
- SHA256
  
  a4f248e6d3e0bd8e1a9875c1e3bf997abf6a9330da58b6dcb960dbd50cb88536
- SHA512
  
  33efe8bb7864b1f812b000451f958124e670445dd6e266079b40bbbb8ef6f95b516f0c7f9afd7a23d5c2a3bfbcc8fcd5c0180c710c5684e1d5bf0cc9d8836906
- SSDEEP
  
  6144:HExBQVThIgKaZ0ElKZfwDsp+p5+gAHurSV8rpkrrNZ:OQJhIXRElofAMu57AIJ+rf
Score

1^/10
behavioral23
- Target
  
  libnettle-8.dll
- Size
  
  321KB
- MD5
  
  5c6c18591c5f7ce67808796e9b482aff
- SHA1
  
  9a82670a88c37112b9cf20f9ee54c2a6456322c8
- SHA256
  
  3349497c7b523192e090734f3001b034687b0fbfa5640e0f37e5836205b2288b
- SHA512
  
  fa5c74fb9e1ab6c9104673367f687bec88821cee38cc1b22c158bb5144b2133ce728e95140383af0a3597ccace10d72e082d7d31c9535870a57a02b2d7d77f88
- SSDEEP
  
  6144:9JnQCpTG9+lmGaNAgDPHTqqDoN6FDwVDRNG:xpTVmLNfHOqA6Gs
Score

1^/10
behavioral24
- Target
  
  libpng16-16.dll
- Size
  
  235KB
- MD5
  
  f396bfcae04ef8ebe05491784910e822
- SHA1
  
  b8ab18512697e2a93a0fda917b5ce0da18361b8e
- SHA256
  
  f57d4802b66961121b681618f2eda4e08f6205655b0e8f215137a055f41e033e
- SHA512
  
  b25faf7fd10969eded7146b989d7987986e6bd7863491bdcd401ee620c30b6756b45a95d01ecd6c9d02cd8e863dad61e7967419c1b8fa40cad639e727684a6d9
- SSDEEP
  
  6144:ZnClFOtV9yvLwdZRLFfn4lShPNEoDHHpwpFLhdN8:ZBVQgRLFfPh1E+HpedG
Score

1^/10
behavioral25
- Target
  
  libsqlite3-0.dll
- Size
  
  1.2MB
- MD5
  
  a0a2a39aa408b3267b89b433958f9b34
- SHA1
  
  f7586e9325471723f8f97b38fad202815b5f3967
- SHA256
  
  02716be5069a813438bd53a0daf653828eb71461fb8a1d12476f1db21caf909d
- SHA512
  
  1f481e81a0ebda710a9f21c9a446970e06dae55835264eb5dfde78352eb86da60764856200ab02d5a5858a7ca6a01a44f180104a9525b54e2c6a7bf6a7648f70
- SSDEEP
  
  24576:WjI5ALcbs7Y+GjUa33J8/yt9rgLqLMfKyN1vCQ8tZl15R42C8iF2f7f6QIFb:W85ALGs7zGjUa33FdMSyN16Q8n96t1
Score

1^/10
behavioral26
- Target
  
  libstdc++-6.dll
- Size
  
  1.9MB
- MD5
  
  fda1eca80aec551b364a2a5b549dbf35
- SHA1
  
  404f244c27a2dbc5e9b47ce1e005a4eed1fbaee4
- SHA256
  
  e53b48e963266ab21d235067fd06edd774d0c608f0102dec10c6e4a1d0d925c2
- SHA512
  
  4e94530f80c9cdd9487bc512413bc9585d4a948685009b34fe3718978076d013a092f14f51c25f19bf4ca6ab138d451836c5b473cdc5e290db2e4ed58e6718a7
- SSDEEP
  
  24576:2LbdOi6HQ1JkJUyue0AyCeNyeX2Xm9Q90QEaMDYnhSMXlrCYIEl0b47P:2LbdbGQ1JZe0AyCeNyy/qEayYDz
Score

1^/10
behavioral27
- Target
  
  wxbase32u_gcc_custom.dll
- Size
  
  1.7MB
- MD5
  
  ca14507f4f12394bd1aa3499d724bc65
- SHA1
  
  3396402791eb4ec04090cdca2a4ac47e85f86adf
- SHA256
  
  98ff3bad4501473ed90cdc3f8b5fa08b0bb24f10a76e0fab652685fae1b6bafd
- SHA512
  
  c075021b06ffe6888e8adcbe7ad920741566c96ea694f9a8b523384576b8b23b7fb27055ce2fbb64439f7b3bc38b0971b3e9fb40e3e4964c6b66a7e60e26ea3e
- SSDEEP
  
  49152:dJzSD9uhNgwwxViXaNYmPrbyKK/0QXcD0nne/9IvypSHdoVuR:dIIkbiX4O
Score

1^/10
behavioral28
- Target
  
  wxbase32u_xml_gcc_custom.dll
- Size
  
  235KB
- MD5
  
  b94a57a35472421eb6d85ad91fc723e3
- SHA1
  
  b75f23e75b932f654f85bbb9b4a1dffaa10279cf
- SHA256
  
  cd2775c27240df51a0788f96a74fcca1833962ff352576a20ed56dbf498607fb
- SHA512
  
  e501fedcce58f78ed234b74611c24945b6c1611045bc5cf476ded224f35bc53270b5f2d50fc521d1e03ffd5b74ba061ee7ecc2973750ce7d9cf6632a18c8a810
- SSDEEP
  
  6144:k09pUfAcsqaPNhtEgTAFlLUytZoX8aSNZ:J9pUJsV16hj9n
Score

1^/10
behavioral29
- Target
  
  wxmsw32u_aui_gcc_custom.dll
- Size
  
  494KB
- MD5
  
  ddf8d86e45314c948843f179f9fe419c
- SHA1
  
  7c12ed27d2230ba3255541ae5e744bafbb36aaed
- SHA256
  
  42176cea5d61778e838c791b7d10e3c497662ed5e016ad20cc16613835cbbd24
- SHA512
  
  2b28a5b3952ce4b8b3c648815fec5a710832f906c84a3a8ed18f72fb7c900a71757635c8981ac0fcc6f2f58e0c44ac442f73e128c069a2268afd3bc02f4d06a9
- SSDEEP
  
  12288:1bh0657xTMfcuG5ilyJTfHRe23cB+QwqBFd1FpQTzXaQU12p4jGLyyy6t4:Rhl7xTl2eTc23cB+QwqBFd1FpQTzXaQi
Score

1^/10
behavioral30
- Target
  
  wxmsw32u_core_gcc_custom.dll
- Size
  
  5.0MB
- MD5
  
  fdaacd9c1ccc76288a2d8c3070e6a1cf
- SHA1
  
  dbf6838353511946102c1b264718e20a3b55dfb7
- SHA256
  
  64c130da4bbcf563113ec697b44dd6a574c65d8010a656254c6fd9ddba285f4c
- SHA512
  
  d49f8d36521b3481292465abec20a8db4e863c6b008f056d27274c5aa8eb4e17d997b237eda966e7c5b3357f5fa94741b1f1422cc10cad920336de3f364ba298
- SSDEEP
  
  49152:74uQ+nH0hJo8dOy5JnbnzoZO8XR0HHorxl47j+lwV/UWPo26rVQ07PG3X7Gunsel:7Tsony5JbnzfARmkwcWPow0qPrZ
Score

1^/10
behavioral31
- Target
  
  wxmsw32u_xrc_gcc_custom.dll
- Size
  
  728KB
- MD5
  
  ff727a4828a89af406b83d4a768b7c02
- SHA1
  
  acbc7991a0d65222ff9ac8a6606a439636221fd9
- SHA256
  
  6f32d24290caa13caa3e656cf281f6d3ca87d00edcf66cf8098e4570b8758d9c
- SHA512
  
  5945328da346481f7195607a30065a8f21a30057612de22d413a2450f166c627102a1556ab6f5e6635eb600716448ba90419686c453d95761eb178ce421171e5
- SSDEEP
  
  12288:+dsnZCtwZgmLZDUY8D4110i0GKpPYdsFlrc30aSAJGXucjGsywGs:+dGC3w9UY8W0FpPY6lrc30aSAJGXucjJ
Score

1^/10
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Unsecured Credentials

T1552

Credentials In Files

T1552.001

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Data from Local System

T1005

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Reads data files stored by FTP clients

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32