Resubmissions

General

  • Target

    php_imagick-3.7.0-8.3-ts-vs16-x64.zip

  • Size

    25.6MB

  • Sample

    240603-kpf2gshd7s

  • MD5

    3f724d1d880d594467760ed2c9eb7bbc

  • SHA1

    748df3699789e5434446c59bc6c39e67a26ab0ca

  • SHA256

    35a4c190d4d895cdb6623aa532feb0844629885558dd353b3ec0b1482f1fdd9c

  • SHA512

    ac8672b13be755ccc61282d98df62c8082c18bea08ae5569831cff526c31f9b16fc1418045a8d38b9ba86db7e853c563ebf7037aaa5094bbab34f67fc84ada6a

  • SSDEEP

    786432:Umv6Kv9cBH+BkLDIFb1cIFribcGM2Wa05nA/F3HPG8RGnC:p6AcB2WDI3cIFubcn2WawA/pHPG8Rb

Score
3/10

Malware Config

Targets

    • Target

      php_imagick-3.7.0-8.3-ts-vs16-x64.zip

    • Size

      25.6MB

    • MD5

      3f724d1d880d594467760ed2c9eb7bbc

    • SHA1

      748df3699789e5434446c59bc6c39e67a26ab0ca

    • SHA256

      35a4c190d4d895cdb6623aa532feb0844629885558dd353b3ec0b1482f1fdd9c

    • SHA512

      ac8672b13be755ccc61282d98df62c8082c18bea08ae5569831cff526c31f9b16fc1418045a8d38b9ba86db7e853c563ebf7037aaa5094bbab34f67fc84ada6a

    • SSDEEP

      786432:Umv6Kv9cBH+BkLDIFb1cIFribcGM2Wa05nA/F3HPG8RGnC:p6AcB2WDI3cIFubcn2WawA/pHPG8Rb

    Score
    1/10
    • Target

      CORE_RL_libzip_.pdb

    • Size

      172KB

    • MD5

      f5f3e8e2e8cf612b7a530cb1af5683bf

    • SHA1

      cf175f8621e7691f5f9d9c6f07b593d3c0b0d554

    • SHA256

      759c990fe17ad4652052d4a988523493fa08f8cea7b4765b54fa30140e515017

    • SHA512

      d83d9a157ee92ae9cbd5a5093d4063b55e75cee210bc300ef0784e238d3518d725ab2e322a16fa23292ea1354abd1662e54965f5fcf619c011e0048554cd4d3a

    • SSDEEP

      1536:pyuzuf/6vBjGB36Ev9dfWDbQXyQXtCIwRk+QeaVQefSeRk0PLKiQeLQezSeRk0:wuaf/6vsp6bD8XyQd4FpaVplKipLp

    Score
    3/10
    • Target

      CORE_RL_lqr_.dll

    • Size

      58KB

    • MD5

      866e0030e11887f46519ae7ebeaffe1e

    • SHA1

      eebc5ab4dde94ea8f8ea3985104d526e388ab417

    • SHA256

      a58ed487ec66cfad2de7b0f7ecb40208614d527bf2901279c7c3bc61aa6a4ffa

    • SHA512

      8e44b55e6cab713daf4afc074405c188c3b09f3589d0f9329ca869b0add87ee17717f3b0066c52ad501c8fe150366de1553aafd7cf530e69946438f854b86e8b

    • SSDEEP

      768:QQYkC3oE5mdZLDuy+97QQzUtg+XnPdlcATKqozC1iqO8yFNvFjdAOaeUBNRTlODF:EqE5qZnuywQ1PlUBcHlODEN0/pEkXuw

    Score
    1/10
    • Target

      CORE_RL_lqr_.pdb

    • Size

      100KB

    • MD5

      426adcc6da53af7cb1a7ed7c6697ccae

    • SHA1

      c69e69c0cd39103ace5a8f189733d20226f4e7ec

    • SHA256

      11040bdba7d0811ecabf86f734a43502bc7d1f35429dff6c7cfaf9c02ecd1fba

    • SHA512

      4190e8eb6da5470b61baa21c9a957849e4c71461999659cf52b92e0e0a5a4c2d7433e069ac4288374e60193339516e62e8db63a049e6b9061d12ed6df0134aca

    • SSDEEP

      768:6wfBSc/IXwfBn+QdMSILOccXKPu8YZQIksM/T1fLwfBwlWoBwfBPcW4OVc:x/IJGoWlC

    Score
    3/10
    • Target

      CORE_RL_openjpeg_.dll

    • Size

      274KB

    • MD5

      6c523ecad7c34ad78522b1a2dd2e2ab3

    • SHA1

      5684491ea28e87dbd04142cf0a7b7e185baeba4e

    • SHA256

      cedb9ba069df1e15397a2d4d87ba27bb58da4f5662422034b7502f7a93b95299

    • SHA512

      4dd579846537143bc10fa7ec9b7188b12cf4d935692c64d951f32c188351188cfc2a621570d1f4b061305a315634dd55816403492ddd5e825e65e259699c0eb2

    • SSDEEP

      6144:1tjEBRkjMHfE67DNF7UX9T+Jg6r8wkOylvVnzRc14PZ8o8IC:1tjQuMM0Pcm89hzuUC

    Score
    1/10
    • Target

      CORE_RL_openjpeg_.pdb

    • Size

      196KB

    • MD5

      6ed69be237925adff04216d721980f19

    • SHA1

      d68ed320b0c50e4267cb5f9f13876a5b9c3926f4

    • SHA256

      698425745708c58dbd393afa523cc089433addae4964b5e16a60eaa5a0f29a5e

    • SHA512

      53b32856d4e3d532b0c1085f775d947e9a3c6bc73273acf17bc9cc7d0c01ae29086011691e793a603598a1030f55aa09eb41af1ac832ba1fcc09b998c5c031ef

    • SSDEEP

      6144:Na5Nidf/KXX6g0jnr01rP/5vTZF7qhSUYdF:OiR/KXKgSr01rPJZFqpYd

    Score
    3/10
    • Target

      CORE_RL_pango_.dll

    • Size

      337KB

    • MD5

      6094f5cb79573bbdea56de1c266fde92

    • SHA1

      69bc309c37bbe959155bf56c2d8d0f36e5d58dc3

    • SHA256

      4e7086ba000602c00c8628c8e658a41bea4155df35836609e7241673324ef5a6

    • SHA512

      37ed701a02c04bf5819820f89e01fa45528d6fe37a3dd471a4cc4eae5cbc2e6a64f16d48e04091f713e09e8c27a10e346bd56c84b6250c937e6b68d6ce3cc60d

    • SSDEEP

      6144:3qhyahawg8QXls2grOc7dU6YvVWbKbaVw+VIc4r:3qhyDzlDc7UvV7baVw+VIV

    Score
    1/10
    • Target

      CORE_RL_pango_.pdb

    • Size

      316KB

    • MD5

      7044dcce702af7fb3f32c8560aa18aaa

    • SHA1

      25cf41d20404b275102367ac048e43ad29ddc2f8

    • SHA256

      78d84f2c3ecb7b04ee828424eccb2c9e3adc1b72dbae1fdc9b4eb6bdc4fcb38f

    • SHA512

      c9f802286493f91c24ea60a1eed7e308bf751c1f18b366bf42aed0e651f7ee4e7953d4cf259943e815700901f27b2c2962a77aacbeac7c1af1b5f4ed7e229086

    • SSDEEP

      6144:RGPMs9tklKC0mBeYHHwEbYRScfd4onG0yU6Kxe2q:RMMs9+lKtcHwEbYRS2+onG0IKI2q

    Score
    3/10
    • Target

      CORE_RL_png_.dll

    • Size

      189KB

    • MD5

      09c4e9b4c41b3e04a1ee825d538442ee

    • SHA1

      1b356edbb41e66767496a0b7fbcbd42db8699fde

    • SHA256

      ac91ffa979851e38a07009fabd6dae1c1de84d72fccb0f1fca60489fc96030b5

    • SHA512

      3b9aea6b6e6bd3a84ff02a275cc158213a2f13a1073d060a9a8894a880fef8684910fc12b58574e61e082d196010a5df892d487a8d42e2c4e9eb39dceb6f0353

    • SSDEEP

      3072:FgabjLx7/aA2UuqqUZNKEFatwUnhW1YYSZUT1oljvWn76wFrz8fHAYz8qTX6MJI:6uJjz2+Z6tw8h8dcUpoNOn7TFYf

    Score
    1/10
    • Target

      CORE_RL_png_.pdb

    • Size

      156KB

    • MD5

      17d8e04b1446c08430d4f6065a9fcdbe

    • SHA1

      ac86245dec4e18ef970790ef8b7aa75e5c53508a

    • SHA256

      d58608950438956f31e4735fa55f42eee1f5fcf96c28fa2f74332c01548a7e12

    • SHA512

      ede0d3b5e4d620c186c5edf3876d0634364f4a41d9629622c382ff666e11efeb1636cd6047ab7d980dc9a228c23eff763ff7575f087de4d6c6a03c3f01d761c5

    • SSDEEP

      1536:XR2p4ConBFUefB456iszAYod4P9Tc8/Z4miTcLA9TcE:XMgnBFUefC6/6y9//ZYGA9Z

    Score
    3/10
    • Target

      CORE_RL_tiff_.dll

    • Size

      417KB

    • MD5

      28ad3bfced90c153317238199684e9a0

    • SHA1

      e73c96ac293ba7059c1edaf5cb100349ec9c8d02

    • SHA256

      e291ecfcfd39e78f68afc505e126fb27b3b5542f965e9b7d1b03e63ae5f5baa1

    • SHA512

      90b349183949a9e9c7943ec067f84088a5250f1c83c08efb8f1ee2efc1e8185b3fa736a5965c97d5b55306235ee0f79764330980c3a997897dbb57229d5fbd5f

    • SSDEEP

      6144:BFM0QISRNwzkDEpxtF9sEEEEEET6u2m7rYmInhQicPmAB4QPjO1QkzR7L:BFaI+gkDEp1p5m7rehIOekzR

    Score
    1/10
    • Target

      CORE_RL_tiff_.pdb

    • Size

      212KB

    • MD5

      cd5d31154411dafd29f880dc180a2884

    • SHA1

      36874d31efb30a7b6f6072d62310f6cce8b3d9f3

    • SHA256

      1e284cc31d812f5152e792fb4831877c3aaac50850ddf1e7b8a54ab9a530da10

    • SHA512

      7762faa091d3df8b0a24ba99bb26641af3806ca1bea6ed1c66b071995f39ee4b54889886af0f3ee1d6943efbaa9ca4230dfdd0bd0311f465ef8f8db7fac3f934

    • SSDEEP

      6144:o3yh1xZ6+U2hiz1JnDQ09y1olOKBYRSoRE:lX6FJnDQ09yiOR4oC

    Score
    3/10
    • Target

      CORE_RL_webp_.dll

    • Size

      546KB

    • MD5

      33a4883e3a703e8a2a40a34cb64f5b91

    • SHA1

      3c8259cf4491f493b8a1ce5704b024dbcafe3ef9

    • SHA256

      6e4df63e2674e91e6ec68600d6b9d2f49052069fdd9c86b5efc86834dd2e93c7

    • SHA512

      41d6fca338b8e97a6023ef3e17486b9cb5809acf59b8a98b21267b1cc7bb00f1440e34becc0b68cd43ddc9aa529bbbba4b79c944c4878c2319df250c46e79a92

    • SSDEEP

      12288:A6y43AnxM85yt62H0gNJx3hXgVZtRifz3zvnXj/zXzvJrs:A6kxTyt6MtNOf6fz3zvnXj/zXzvp

    Score
    1/10
    • Target

      CORE_RL_webp_.pdb

    • Size

      268KB

    • MD5

      0ebb1a92a30af2b96d5a9133e918475b

    • SHA1

      fa6a5f114d10a017de6a8711637b841972f32dbc

    • SHA256

      4735d5a0031bd6baaea2505b8d3bc52a93b202c12d3e0d8d555819f362ac09eb

    • SHA512

      52ebc22adc18eb3bdee898c7374da560e2f065d7a94bd4ff14f8c14c04e47c74a437b36026964360e58c2cf94ddf04f4cdd8a6abae4ddf234f97be4cbcbaa66b

    • SSDEEP

      6144:07mj5jSt/v9TLNvCkCRuhDYHOixFYERwiS4Us:KthLNvC1uhDYHOiDY3P4U

    Score
    3/10
    • Target

      CORE_RL_zlib_.dll

    • Size

      83KB

    • MD5

      92db86e4e7b99117c10e5c374a05c699

    • SHA1

      54747b19c7c2965deef688385342da55dee35b07

    • SHA256

      47f1bbf418e84c4fee0fdbd256a0c1f95846fbc4974cce61c79d9f92dfa5cbea

    • SHA512

      6a66073141ad8c9c3a6ad575e29d45bfa1cbaa6e5024f720adbee9e6fff5138366f06cd09177cbdd07eca3fae131c7e17a5a508e689311590872784e11d84a2b

    • SSDEEP

      1536:QIdzs+CLrj4P7MTIuJHkh+gkJuemCOfrrnToIffAIOQIOrf0N5Jqij:DzsTLrjo7+JJHkiJNOzLTBfuGrc5JD

    Score
    1/10
    • Target

      CORE_RL_zlib_.pdb

    • Size

      100KB

    • MD5

      610708892bbbe836a82cfa6d9763de78

    • SHA1

      3020ec77c35f23e23810fae0ac6d0302e2a2b4d5

    • SHA256

      0abd81819c062f5faf51af9c172eba22bb970fa401c262734c907e0522632dd7

    • SHA512

      2cc8ee374eb4f14b25f60e617a72d1949531db80118296395b5bbd72ba8534c972b83c13e52998ca75ef772a0657f81068d35c3c34b4ee9707c0151bc5d2e32e

    • SSDEEP

      768:dQ8iWnQ811MWmY9BOZQ81Yudi7WmYV5ZDdiidi:dfEmBA4ucbKZDcic

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks