8c5805bfc8cd8bf691cfbf49b0c1eeb2b92b3cc32b1b23370ca969f6655b9714

Resubmissions

08/06/2024, 15:16

240608-snmrmsdf83 7

08/06/2024, 15:15

240608-sm889acg7w 3

08/06/2024, 15:14

240608-smthssdf75 3

08/06/2024, 15:13

240608-sl169acg6v 3

Sharing

Copy URL

Twitter E-mail

General

Target

whaTARE YIOUYASD.zip
Size

1002KB
Sample

240608-snmrmsdf83
MD5

66763bed573aa4f67d097e9ecdd0d318
SHA1

d8763d225a284059c7b82a840e571afa16a57cd0
SHA256

8c5805bfc8cd8bf691cfbf49b0c1eeb2b92b3cc32b1b23370ca969f6655b9714
SHA512

ecf6294a4f8ba0815a85f37f3c736f4dfd79d226c27326df0223de4bdcbb5611880e372a331e16c957534de568a4687af9a86ad044b2cf8855013778202f2f8c
SSDEEP

24576:vvjZcuQiKuolRTJF14GKaMhulAoTFhldkntqZbGl:vv1JhkLdF17KilA0hld1ZS

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  whaTARE YIOUYASD.zip
- Size
  
  1002KB
- MD5
  
  66763bed573aa4f67d097e9ecdd0d318
- SHA1
  
  d8763d225a284059c7b82a840e571afa16a57cd0
- SHA256
  
  8c5805bfc8cd8bf691cfbf49b0c1eeb2b92b3cc32b1b23370ca969f6655b9714
- SHA512
  
  ecf6294a4f8ba0815a85f37f3c736f4dfd79d226c27326df0223de4bdcbb5611880e372a331e16c957534de568a4687af9a86ad044b2cf8855013778202f2f8c
- SSDEEP
  
  24576:vvjZcuQiKuolRTJF14GKaMhulAoTFhldkntqZbGl:vv1JhkLdF17KilA0hld1ZS
Score

1^/10
behavioral1
- Target
  
  dxwebsetup.exe
- Size
  
  288KB
- MD5
  
  2cbd6ad183914a0c554f0739069e77d7
- SHA1
  
  7bf35f2afca666078db35ca95130beb2e3782212
- SHA256
  
  2cf71d098c608c56e07f4655855a886c3102553f648df88458df616b26fd612f
- SHA512
  
  ff1af2d2a883865f2412dddcd68006d1907a719fe833319c833f897c93ee750bac494c0991170dc1cf726b3f0406707daa361d06568cd610eeb4ed1d9c0fbb10
- SSDEEP
  
  6144:kWK8fc2liXmrLxcdRDLiH1vVRGVOhMp421/7YQV:VcvgLARDI1KIOzO0
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral2
- Target
  
  rblx.exe
- Size
  
  1.5MB
- MD5
  
  90fbc0c73bf12342d5270516a422ba92
- SHA1
  
  4074a2b6193603a540e81f65df4644e97b398802
- SHA256
  
  863558a986730d1d3e906b1a6a6d6551f8bbcdd32b2a0928d8e449265f9a8252
- SHA512
  
  e34ef82265a3510d077dd4586a55495332d6f6fbac41468a0f6c3350d229aeeb80e042a197bded691547936ae824ff319068aaef73dc5de8def924b6aee59534
- SSDEEP
  
  24576:Ivzkt0225NBFLPhQJ9UrnC3FbevhpREesudVv0inJ48hb5OPdwDGMnyUK5r:MzktfMNB4J9FOhnRdFrN5OGDGMne
Score

1^/10
behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Executes dropped EXE

Loads dropped DLL

Adds Run key to start application

Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3