Overview
overview
7Static
static
3AipSdk.dll
windows7-x64
1AipSdk.dll
windows10-2004-x64
1NPOI.dll
windows7-x64
1NPOI.dll
windows10-2004-x64
1Newtonsoft.Json.dll
windows7-x64
1Newtonsoft.Json.dll
windows10-2004-x64
1PdfiumViewer.dll
windows7-x64
1PdfiumViewer.dll
windows10-2004-x64
1Xceed.Docu...ET.dll
windows7-x64
1Xceed.Docu...ET.dll
windows10-2004-x64
1Xceed.Words.NET.dll
windows7-x64
1Xceed.Words.NET.dll
windows10-2004-x64
1dotNetFx45...up.exe
windows7-x64
7dotNetFx45...up.exe
windows10-2004-x64
7pdfium.dll
windows7-x64
3pdfium.dll
windows10-2004-x64
3Сʶͼv1.7.exe
windows7-x64
1Сʶͼv1.7.exe
windows10-2004-x64
1General
-
Target
0849989e8709c10c7fe4c5e5ad3b67263b2686d5c09c40c8ee1e47cdd8c79fca
-
Size
8.3MB
-
Sample
240527-3xtawseg2y
-
MD5
1cd9aaddbdd802f52210c8da9cba6ce7
-
SHA1
fbec423e9db85cb0aa694391e7e0170a03ddff8d
-
SHA256
0849989e8709c10c7fe4c5e5ad3b67263b2686d5c09c40c8ee1e47cdd8c79fca
-
SHA512
91ffb903dc79c3eeffccbd56a1c4c05f022dd3ad0f97ab5876f82fb758ebd26b6c6c19163128f6f2436df52ca11c6dfaf24544f837e9c6d581ccf2df236d3be5
-
SSDEEP
196608:oMBjtpOnKe953ksnBXkRqkrMzs7zCGm4DM1q40FCfg/9JJW:o8xpO/kMXkISMzs7GGNDRuOvJW
Static task
static1
Behavioral task
behavioral1
Sample
AipSdk.dll
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
AipSdk.dll
Resource
win10v2004-20240426-en
Behavioral task
behavioral3
Sample
NPOI.dll
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
NPOI.dll
Resource
win10v2004-20240426-en
Behavioral task
behavioral5
Sample
Newtonsoft.Json.dll
Resource
win7-20240221-en
Behavioral task
behavioral6
Sample
Newtonsoft.Json.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral7
Sample
PdfiumViewer.dll
Resource
win7-20240508-en
Behavioral task
behavioral8
Sample
PdfiumViewer.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral9
Sample
Xceed.Document.NET.dll
Resource
win7-20231129-en
Behavioral task
behavioral10
Sample
Xceed.Document.NET.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral11
Sample
Xceed.Words.NET.dll
Resource
win7-20240508-en
Behavioral task
behavioral12
Sample
Xceed.Words.NET.dll
Resource
win10v2004-20240426-en
Behavioral task
behavioral13
Sample
dotNetFx45_Full_setup.exe
Resource
win7-20240221-en
Behavioral task
behavioral14
Sample
dotNetFx45_Full_setup.exe
Resource
win10v2004-20240426-en
Behavioral task
behavioral15
Sample
pdfium.dll
Resource
win7-20240419-en
Behavioral task
behavioral16
Sample
pdfium.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral17
Sample
Сʶͼv1.7.exe
Resource
win7-20240508-en
Behavioral task
behavioral18
Sample
Сʶͼv1.7.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
AipSdk.dll
-
Size
89KB
-
MD5
3acff0b1578bd68f1b76367f86dbecb9
-
SHA1
010167a782c7d4a408fa00c204974e5f6721ade5
-
SHA256
cc9c4a007449b430a9a7c512643fb3a5dfba6c61837729a4af87dc9ee25e0679
-
SHA512
b29962fb54ffdd4afe6a4e6fbfeb546d6464efa25e1cbb2128f6325b7907d262ca1e1d87a1cd696591f208b55df642a6c022dc2f2c543a9244537f956c4e4733
-
SSDEEP
1536:xIjDUJARZjHqjNwEmmlZbnEtPfSiJTJeT311kFCs3sTi9epzPPImOPE:wUJArCw79+PPImOPE
Score1/10 -
-
-
Target
NPOI.dll
-
Size
2.0MB
-
MD5
7ff9e4bda050705d327c112cc8b21ace
-
SHA1
aed9c01637bf08747b4fbf8c8b6b60492c9b3018
-
SHA256
8256547dc9b88e39a576eb25949f5e892b9cf740637f66ceaed28d4b825a3784
-
SHA512
5de7a01478a9e114330edfad45d3efff491e5e99af8a0b2060e3f0cc17d2af8fae50b1f7acd5fa00f8db6e5be79090e55887f3e47e9437832bd4ae949482e476
-
SSDEEP
24576:bA+UxRWEd3VqW7vBSQ2aNGIsSo7Ek/InX3n7CrFutgoxvtNuhYouz3Cjd:XUxfKaNGIsS6Ek/KnAFsgodtNNz3Cjd
Score1/10 -
-
-
Target
Newtonsoft.Json.dll
-
Size
638KB
-
MD5
f33cbe589b769956284868104686cc2d
-
SHA1
2fb0be100de03680fc4309c9fa5a29e69397a980
-
SHA256
973fd70ce48e5ac433a101b42871680c51e2feba2aeec3d400dea4115af3a278
-
SHA512
ffd65f6487bc71c967abcf90a666080c67b8db010d5282d2060c9d87a9828519a14f5d3a6fe76d81e1d3251c2104a2e9e6186af0effd5f331b1342682811ebf4
-
SSDEEP
12288:WvS56CuBAXYxeeNvWHc3oY2osSeBTdb+:K07SAIxOhAVeBTdS
Score1/10 -
-
-
Target
PdfiumViewer.dll
-
Size
113KB
-
MD5
82e7c3a1caad77137d7fa643e652a9bd
-
SHA1
2c4114d52a151ef6a7b104e808bcf9a1564c6b1c
-
SHA256
65f1fcbf4a836cf37a0e8ca32badc0fb81b9387014ce141cc05e5da711486ba8
-
SHA512
e3c7b7aa595f5cb510011d13e27824d48011ff7cbfcfdffa3ecd1b8bef3e0c2726601ce013668095ca94ef27618320e099b40fdf6a63e84498644da76e26958a
-
SSDEEP
3072:TzrynKP/Cc02SLypyF4PCUW8nDki1UTChSilHd:T3sKXGLypQqfqip
Score1/10 -
-
-
Target
Xceed.Document.NET.dll
-
Size
384KB
-
MD5
28a40953a7cdb514ff59f5a59062dbc7
-
SHA1
b8fc32129990682c4d428b767cc7b35ecf6cedd0
-
SHA256
d156e569b42916d9cdf49a438ff0e77cade7c02314c9a273291655a80cae9565
-
SHA512
564564311b5ffb94ac5f2ce8bb82791f887a3c398b81b9091f5047202a752de6878e4d35d6d67b61a95c51313411eefcc804368d42e94b33df08e0e91264b897
-
SSDEEP
6144:nxjzi8JJwBK5Rjd+f9n9PlEwdRxhLm9Ae23TaIeNiQTRQ:nM8Qow7Lm52m1TRQ
Score1/10 -
-
-
Target
Xceed.Words.NET.dll
-
Size
12KB
-
MD5
679d92af28cf4a905ac647143d7d844c
-
SHA1
1db1764517d788ba9d5e0133dc4f5e7847c9dea2
-
SHA256
e77d01f1223580b1fbf0594cbfc2fa855c88542747988dafebf01888ee5f5ee5
-
SHA512
07b4cabdaa1236c786ef03d60e29a69b93660f372dd326bcd5d3eecda5f04c64649098c23fab32e026543ccb424866fecc1d4e9e99a7ac21879a0b741703a5ef
-
SSDEEP
192:f/jnEuo1fVGjJrwirDBi/Pd6jsd9Mo4Po85Z1ralC6:fLFoKjJrwirDgAjsPf4Po0ZE
Score1/10 -
-
-
Target
dotNetFx45_Full_setup.exe
-
Size
982KB
-
MD5
9e8253f0a993e53b4809dbd74b335227
-
SHA1
f6ba6f03c65c3996a258f58324a917463b2d6ff4
-
SHA256
e434828818f81e6e1f5955e84caec08662bd154a80b24a71a2eda530d8b2f66a
-
SHA512
404d67d59fcd767e65d86395b38d1a531465cee5bb3c5cf3d1205975ff76d27d477fe8cc3842b8134f17b61292d8e2ffba71134fe50a36afd60b189b027f5af0
-
SSDEEP
24576:3idS2cRQNb9dUcyezFSja7zEwA2BH6SEUVGDKX68zuQm6wwr5mAPepC:SQ2cRQh9GexmCxBxVV56CmWQax
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
-
-
Target
pdfium.dll
-
Size
13.0MB
-
MD5
79c950394d3b6fc5ea93fbee2e70de2f
-
SHA1
16b229f1f6755c814adaa1ab9352fc9e98f996d2
-
SHA256
8d301086740272454c6a92e3c98426617fa4ed11114989f06913c2127a4a23e2
-
SHA512
7e1952d022ea6f99a1b9e74c0fa1f7ade73276d4e809ab81827174fe80762b90fc900b64e952fad71a47ff58570a0174a1cf0989c9d319d96a0864cc63bee424
-
SSDEEP
393216:zrn43oIXzWXQUgjVDj4RH9tXSZsg8dfeqrJ:zrn43oIXzWXoY0ZsTdf5
Score3/10 -
-
-
Target
Сʶͼv1.7.exe
-
Size
508KB
-
MD5
cb85150f4447aa29c91c603e87130088
-
SHA1
7588100251cc2dbcd1dd9811f2bdce4af28b6849
-
SHA256
78bd29b94960245897b05bb5ac3eba7d5f1aa048bded16a4ef9f4eec90935571
-
SHA512
b457679828f4f7219dd95bc83551f81fcc1785a0a9578c4eb8d78454f6591ac621ca6be3037b67fa957d1923ce2ace86cd9a797f39effcb0b537f630359d02d7
-
SSDEEP
12288:mZ1BpJaTljrvWqXFvmFrH1d0uMN2mx2V2jVm3f3f0pc3:+Js9qr1euDw3jV4f0p
Score1/10 -