General

  • Target

    0849989e8709c10c7fe4c5e5ad3b67263b2686d5c09c40c8ee1e47cdd8c79fca

  • Size

    8.3MB

  • Sample

    240527-3xtawseg2y

  • MD5

    1cd9aaddbdd802f52210c8da9cba6ce7

  • SHA1

    fbec423e9db85cb0aa694391e7e0170a03ddff8d

  • SHA256

    0849989e8709c10c7fe4c5e5ad3b67263b2686d5c09c40c8ee1e47cdd8c79fca

  • SHA512

    91ffb903dc79c3eeffccbd56a1c4c05f022dd3ad0f97ab5876f82fb758ebd26b6c6c19163128f6f2436df52ca11c6dfaf24544f837e9c6d581ccf2df236d3be5

  • SSDEEP

    196608:oMBjtpOnKe953ksnBXkRqkrMzs7zCGm4DM1q40FCfg/9JJW:o8xpO/kMXkISMzs7GGNDRuOvJW

Score
7/10

Malware Config

Targets

    • Target

      AipSdk.dll

    • Size

      89KB

    • MD5

      3acff0b1578bd68f1b76367f86dbecb9

    • SHA1

      010167a782c7d4a408fa00c204974e5f6721ade5

    • SHA256

      cc9c4a007449b430a9a7c512643fb3a5dfba6c61837729a4af87dc9ee25e0679

    • SHA512

      b29962fb54ffdd4afe6a4e6fbfeb546d6464efa25e1cbb2128f6325b7907d262ca1e1d87a1cd696591f208b55df642a6c022dc2f2c543a9244537f956c4e4733

    • SSDEEP

      1536:xIjDUJARZjHqjNwEmmlZbnEtPfSiJTJeT311kFCs3sTi9epzPPImOPE:wUJArCw79+PPImOPE

    Score
    1/10
    • Target

      NPOI.dll

    • Size

      2.0MB

    • MD5

      7ff9e4bda050705d327c112cc8b21ace

    • SHA1

      aed9c01637bf08747b4fbf8c8b6b60492c9b3018

    • SHA256

      8256547dc9b88e39a576eb25949f5e892b9cf740637f66ceaed28d4b825a3784

    • SHA512

      5de7a01478a9e114330edfad45d3efff491e5e99af8a0b2060e3f0cc17d2af8fae50b1f7acd5fa00f8db6e5be79090e55887f3e47e9437832bd4ae949482e476

    • SSDEEP

      24576:bA+UxRWEd3VqW7vBSQ2aNGIsSo7Ek/InX3n7CrFutgoxvtNuhYouz3Cjd:XUxfKaNGIsS6Ek/KnAFsgodtNNz3Cjd

    Score
    1/10
    • Target

      Newtonsoft.Json.dll

    • Size

      638KB

    • MD5

      f33cbe589b769956284868104686cc2d

    • SHA1

      2fb0be100de03680fc4309c9fa5a29e69397a980

    • SHA256

      973fd70ce48e5ac433a101b42871680c51e2feba2aeec3d400dea4115af3a278

    • SHA512

      ffd65f6487bc71c967abcf90a666080c67b8db010d5282d2060c9d87a9828519a14f5d3a6fe76d81e1d3251c2104a2e9e6186af0effd5f331b1342682811ebf4

    • SSDEEP

      12288:WvS56CuBAXYxeeNvWHc3oY2osSeBTdb+:K07SAIxOhAVeBTdS

    Score
    1/10
    • Target

      PdfiumViewer.dll

    • Size

      113KB

    • MD5

      82e7c3a1caad77137d7fa643e652a9bd

    • SHA1

      2c4114d52a151ef6a7b104e808bcf9a1564c6b1c

    • SHA256

      65f1fcbf4a836cf37a0e8ca32badc0fb81b9387014ce141cc05e5da711486ba8

    • SHA512

      e3c7b7aa595f5cb510011d13e27824d48011ff7cbfcfdffa3ecd1b8bef3e0c2726601ce013668095ca94ef27618320e099b40fdf6a63e84498644da76e26958a

    • SSDEEP

      3072:TzrynKP/Cc02SLypyF4PCUW8nDki1UTChSilHd:T3sKXGLypQqfqip

    Score
    1/10
    • Target

      Xceed.Document.NET.dll

    • Size

      384KB

    • MD5

      28a40953a7cdb514ff59f5a59062dbc7

    • SHA1

      b8fc32129990682c4d428b767cc7b35ecf6cedd0

    • SHA256

      d156e569b42916d9cdf49a438ff0e77cade7c02314c9a273291655a80cae9565

    • SHA512

      564564311b5ffb94ac5f2ce8bb82791f887a3c398b81b9091f5047202a752de6878e4d35d6d67b61a95c51313411eefcc804368d42e94b33df08e0e91264b897

    • SSDEEP

      6144:nxjzi8JJwBK5Rjd+f9n9PlEwdRxhLm9Ae23TaIeNiQTRQ:nM8Qow7Lm52m1TRQ

    Score
    1/10
    • Target

      Xceed.Words.NET.dll

    • Size

      12KB

    • MD5

      679d92af28cf4a905ac647143d7d844c

    • SHA1

      1db1764517d788ba9d5e0133dc4f5e7847c9dea2

    • SHA256

      e77d01f1223580b1fbf0594cbfc2fa855c88542747988dafebf01888ee5f5ee5

    • SHA512

      07b4cabdaa1236c786ef03d60e29a69b93660f372dd326bcd5d3eecda5f04c64649098c23fab32e026543ccb424866fecc1d4e9e99a7ac21879a0b741703a5ef

    • SSDEEP

      192:f/jnEuo1fVGjJrwirDBi/Pd6jsd9Mo4Po85Z1ralC6:fLFoKjJrwirDgAjsPf4Po0ZE

    Score
    1/10
    • Target

      dotNetFx45_Full_setup.exe

    • Size

      982KB

    • MD5

      9e8253f0a993e53b4809dbd74b335227

    • SHA1

      f6ba6f03c65c3996a258f58324a917463b2d6ff4

    • SHA256

      e434828818f81e6e1f5955e84caec08662bd154a80b24a71a2eda530d8b2f66a

    • SHA512

      404d67d59fcd767e65d86395b38d1a531465cee5bb3c5cf3d1205975ff76d27d477fe8cc3842b8134f17b61292d8e2ffba71134fe50a36afd60b189b027f5af0

    • SSDEEP

      24576:3idS2cRQNb9dUcyezFSja7zEwA2BH6SEUVGDKX68zuQm6wwr5mAPepC:SQ2cRQh9GexmCxBxVV56CmWQax

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Target

      pdfium.dll

    • Size

      13.0MB

    • MD5

      79c950394d3b6fc5ea93fbee2e70de2f

    • SHA1

      16b229f1f6755c814adaa1ab9352fc9e98f996d2

    • SHA256

      8d301086740272454c6a92e3c98426617fa4ed11114989f06913c2127a4a23e2

    • SHA512

      7e1952d022ea6f99a1b9e74c0fa1f7ade73276d4e809ab81827174fe80762b90fc900b64e952fad71a47ff58570a0174a1cf0989c9d319d96a0864cc63bee424

    • SSDEEP

      393216:zrn43oIXzWXQUgjVDj4RH9tXSZsg8dfeqrJ:zrn43oIXzWXoY0ZsTdf5

    Score
    3/10
    • Target

      Сʶͼv1.7.exe

    • Size

      508KB

    • MD5

      cb85150f4447aa29c91c603e87130088

    • SHA1

      7588100251cc2dbcd1dd9811f2bdce4af28b6849

    • SHA256

      78bd29b94960245897b05bb5ac3eba7d5f1aa048bded16a4ef9f4eec90935571

    • SHA512

      b457679828f4f7219dd95bc83551f81fcc1785a0a9578c4eb8d78454f6591ac621ca6be3037b67fa957d1923ce2ace86cd9a797f39effcb0b537f630359d02d7

    • SSDEEP

      12288:mZ1BpJaTljrvWqXFvmFrH1d0uMN2mx2V2jVm3f3f0pc3:+Js9qr1euDw3jV4f0p

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks