c7c1e87f74a0a769fed8b305ce43f926bd68e02e80f40976698366baa045b0cf

User tags

Assigned on submission by the user, not by sandbox detections.

Threatview.io Proactive Hunter

Sharing

Copy URL

Twitter E-mail

General

Target

Gajim.exe
Size

83.9MB
Sample

240609-hrvljsga54
MD5

9d48c58ac4d4b89a27550f6e425d0c49
SHA1

275ca4bdade76b71b8cb796da9d06052bbe5de98
SHA256

c7c1e87f74a0a769fed8b305ce43f926bd68e02e80f40976698366baa045b0cf
SHA512

b58ba39620286183456310efb6a232dd27cd8ac10d30f4ecab05a53367c0a854a5a7f9363fbd02259fbcac5b1cdc5819dd6e1eaf2537759c92a3bb7bb59300cb
SSDEEP

1572864:EvQU9p+aYgfo6CMsXOHn2vvF/ySHTRok5AM4jbXcTONk7LKNotiGGuSi:Q1o6CPf3Nyq6jMwbXUONkPKZGZx

Score

7^/10

evasion pdf

Malware Config

Targets

- Target
  
  Gajim.exe
- Size
  
  83.9MB
- MD5
  
  9d48c58ac4d4b89a27550f6e425d0c49
- SHA1
  
  275ca4bdade76b71b8cb796da9d06052bbe5de98
- SHA256
  
  c7c1e87f74a0a769fed8b305ce43f926bd68e02e80f40976698366baa045b0cf
- SHA512
  
  b58ba39620286183456310efb6a232dd27cd8ac10d30f4ecab05a53367c0a854a5a7f9363fbd02259fbcac5b1cdc5819dd6e1eaf2537759c92a3bb7bb59300cb
- SSDEEP
  
  1572864:EvQU9p+aYgfo6CMsXOHn2vvF/ySHTRok5AM4jbXcTONk7LKNotiGGuSi:Q1o6CPf3Nyq6jMwbXUONkPKZGZx
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/LangDLL.dll
- Size
  
  8KB
- MD5
  
  1290ff92e7d5e675ca7f982942a58d0a
- SHA1
  
  b5496bf231a99f52fc2225a27cec0cf9809b5bdc
- SHA256
  
  7986be3b9a6dd3f9c3236c2de7cda25a35567709374712b6201a73ca8820edfe
- SHA512
  
  6494e6a3c29b6baf45fcdc0a9bc188351b0d5d8956aa886fb0787806abb187edea0a0b4bd149749919b080cdca6aaf8235d7caede0fa269c89e1b7439eff856c
- SSDEEP
  
  96:ltgIeKipEy315DJY1+GnUC1Z4Ie18UdKXW3xOgbTO4udUI5aH71pj:XE2y315VYsGnUlIe18CKXWpO4qij
Score

1^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/StartMenu.dll
- Size
  
  11KB
- MD5
  
  85df499c425d84fa7a32ec501beddb8c
- SHA1
  
  4d51a499059808466bf746ba4c9ffa8e838d6c46
- SHA256
  
  6f10b7e1ede900b6b1e160833ac8ef8ad9de2bfe3ea6228376dcf6febcc12458
- SHA512
  
  096360483a1f33f68e75282eb903a0026e1dcb533414c670e6cb01fc1ce7b104be2526c270dc4cb8bc7560dca36b2a4b7268cec1b57c317d2ffe038cf586cc93
- SSDEEP
  
  192:ELB7OopThbgh9Yoo6sHUzKXW1kqJIBo5Boz9c:ELB77p6h91s0zKGWoac
Score

1^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  24KB
- MD5
  
  47ba95323f37f91363eecfefb6bf88e4
- SHA1
  
  9a08ae3d832da3d7e1199afe3d41d45413cee854
- SHA256
  
  7c44c346cfc9ec199d3ec20dce30dfbec61f2c6c9accabd32780e449b5f7ff58
- SHA512
  
  91c85eb5daae4d3b4d9f9110db1019fb2d80407462b7dcef8dddde3500fdf0321c8d3eede19284c03c2c35f07face80023ce9dc9d3428ef5992fa67843734774
- SSDEEP
  
  384:0rkXjuy8uAl6LK3wEJKGuaR4bmeI1hp5kf43TU++++++++8d9khGKb5C:0XyAULK3re1Irfk4dgGKb
Score

1^/10
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  14KB
- MD5
  
  3122c5948b4ea998bca7765b1d631339
- SHA1
  
  31f152b86e9f1fcbe91059bd5962d4ffd8b35f02
- SHA256
  
  2107b714dadbd411e2e11126f350f744c20bc095cf22069b43b50cf2fa00cdf9
- SHA512
  
  6f9806b9fa76a08be66d31898c0fe40fc311b8d3d241ae7b47ed5dcc48e2f39b4c274791f9874603e5aaa1a07adc21b99ae20cd4a1dcb94dcaddd929ba0eb0a6
- SSDEEP
  
  192:LOrKRV2z1BM6CVqBdjtuL+pqxtZO+5KXW7VQ4zZblxw2azX8oRdeqe4B0:6rKRj6CVqBhtuCmtX5KGbl2RAl4m
Score

1^/10
behavioral10 behavioral9
- Target
  
  Uninstall.exe
- Size
  
  156KB
- MD5
  
  9a530d8f977c6a290fffae2de3e68e88
- SHA1
  
  dc54ce5790da3b727437dda815f4d60533a53ed3
- SHA256
  
  0555c40c097319c023c5d3358804a27f03337cef8178d64575bddb5ebfb9ad91
- SHA512
  
  2e24466484a1ee9fbc35a4c2b8b514a69e61390484de968b3f005aa16f47104ef079405cec36b317c0ceb46a801143d8af9ba87a67dba1fa15637a55d75a0a9c
- SSDEEP
  
  3072:Ker9sr1DwfgBfT0L8aV+5Ue8Uv/vyPecPmzDTWGMfMruobJtADT+:3Kr5wf0IDyEbPFPwXEfEuobJS+
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  24KB
- MD5
  
  47ba95323f37f91363eecfefb6bf88e4
- SHA1
  
  9a08ae3d832da3d7e1199afe3d41d45413cee854
- SHA256
  
  7c44c346cfc9ec199d3ec20dce30dfbec61f2c6c9accabd32780e449b5f7ff58
- SHA512
  
  91c85eb5daae4d3b4d9f9110db1019fb2d80407462b7dcef8dddde3500fdf0321c8d3eede19284c03c2c35f07face80023ce9dc9d3428ef5992fa67843734774
- SSDEEP
  
  384:0rkXjuy8uAl6LK3wEJKGuaR4bmeI1hp5kf43TU++++++++8d9khGKb5C:0XyAULK3re1Irfk4dgGKb
Score

1^/10
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  14KB
- MD5
  
  3122c5948b4ea998bca7765b1d631339
- SHA1
  
  31f152b86e9f1fcbe91059bd5962d4ffd8b35f02
- SHA256
  
  2107b714dadbd411e2e11126f350f744c20bc095cf22069b43b50cf2fa00cdf9
- SHA512
  
  6f9806b9fa76a08be66d31898c0fe40fc311b8d3d241ae7b47ed5dcc48e2f39b4c274791f9874603e5aaa1a07adc21b99ae20cd4a1dcb94dcaddd929ba0eb0a6
- SSDEEP
  
  192:LOrKRV2z1BM6CVqBdjtuL+pqxtZO+5KXW7VQ4zZblxw2azX8oRdeqe4B0:6rKRj6CVqBhtuCmtX5KGbl2RAl4m
Score

1^/10
behavioral15 behavioral16
- Target
  
  bin/Gajim-Debug.exe
- Size
  
  373KB
- MD5
  
  158d64c3ace32c0b737b5b2d1f0facfb
- SHA1
  
  8ad0a4dc769dd193647f82388399c7938fccf12a
- SHA256
  
  c3574ccafff8f36c0ea826ae699b2a16ce5af9e83e493a865f045e4bd9c195a3
- SHA512
  
  d708a8fc2672f9e181fa0a0132ad9dd00747759662a10117e5cada6bbdb6d5e4877fca15f8296b3c274da19c3ccfbecb7bcbd23e61821b31d9dd8f6391549417
- SSDEEP
  
  6144:KLY6tNR6nMFeqY+gPe8TxMm1D+9gYuHBaez0q5ItWxL+dxLaJDBjmZ88N+ZdbAiY:+tNq8eqY+gPe8TxMmx+9gYuHBLz0aIt9
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral17 behavioral18
- Target
  
  bin/Gajim.exe
- Size
  
  373KB
- MD5
  
  33a90bd70e8bf2527df9f25a0d8168f7
- SHA1
  
  e642ffbab5e091814ad21d769ab13144d651db15
- SHA256
  
  4135679db5005bd78bd9207c4c430522a1581da4a80895518deb62a987117ca6
- SHA512
  
  ce1835811133a605ce4978eed37ee63fb59f27b05bbcfb6ca1256c084cb1f0b472c76d95d4135790779d97b97fad57bd0cc8500b978130acaa10cb52e7213ece
- SSDEEP
  
  6144:oLY6SNR6nMFeqY+gPe8TxMm1D+9gYuHBaez0q5ItWxL+dxLaJDBjmZ88N+ZdbAi:ISNq8eqY+gPe8TxMmx+9gYuHBLz0aItV
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral19 behavioral20
- Target
  
  bin/avcodec-60.dll
- Size
  
  13.7MB
- MD5
  
  5a635d23a8eeedbc95c48818f6cc975e
- SHA1
  
  68ecc197eb0949782772f69eae1a887bcdccaa72
- SHA256
  
  a68f6ab87cf53025a007721fa58bc3d59871e37ec88e8e405f69cd593c79dcdf
- SHA512
  
  37410a11a28a6a7a9e34301ad24b1ed5af3ed46a9954b9de466cf99fd6cc829574315dd4a54ef05f35e33935e485d53aa501a81ecd7d3102c97ab0355f40988d
- SSDEEP
  
  196608:Jy+2y4xQz5LR5bJ4nNmr0JMB0XDvynfzpteFrky2fVXi2:JyWlqNmvOTS1telky2hX
Score

1^/10
behavioral21 behavioral22
- Target
  
  bin/avfilter-9.dll
- Size
  
  4.2MB
- MD5
  
  891dcd1f4677b4cff1ecfe11ba29cc1e
- SHA1
  
  b01fe1f4572b58973242a21e35a356746d71a7d5
- SHA256
  
  0866c984d72931a0791c11596b517c2bc1547611e867290e89519e47d780d30e
- SHA512
  
  96b8503ccdf2dd19798ceac2cb7a075fec3479b08af90d12b7434108fc634031e1d814cfc656a4ada334404f813964a49972cc33ce50dda5beeb9eee697f99de
- SSDEEP
  
  49152:O7jmY+c+YR70bho2u4z/4y2D9zWqWHSZQtlMrNrSe5MNR3ngpqYekJBQ2x5drXNy:O7jqrY47EWb3erj/DMSlWy6bgk
Score

1^/10
behavioral23 behavioral24
- Target
  
  bin/avformat-60.dll
- Size
  
  2.4MB
- MD5
  
  321347dc9891d557be1b6e368063f530
- SHA1
  
  ad9ee5fcd1a4b00c10e24d4273e2ea7662f99e7e
- SHA256
  
  bb1ec3286c9bbb2323846d25567ea7f4960e615e70f16266df6fdff3da770041
- SHA512
  
  261e1b1eec7d39425cd27e7e94e60e665f3ceb2d8bba7e835e555065b11411291fb9897dbef39674ee2910e5f236663bc94fea40bcfeb7fe966c34e1803d4070
- SSDEEP
  
  49152:cYIG7hCVxqxg44jTlZVse6xjajBgqTDFnSqsJlCC7tbfl0wPP:BIvxQl+Zye6dWgmFhsn1fl0wPP
Score

1^/10
behavioral25 behavioral26
- Target
  
  bin/avutil-58.dll
- Size
  
  1.0MB
- MD5
  
  73955237a4c280afbd671ce1f79cd983
- SHA1
  
  afcd8f89ae598cfe8becea6adbb5ac203ce31dee
- SHA256
  
  0925c55555632c38c84393fddea2e2267af81fe49e0a404fa7242ec992dac7a5
- SHA512
  
  075978e9f76408d518e1f617c8fc3c522c4d47f015a0470d8f29d1e38a4b3e3d480bf0996f658c2c7e0555e7675664d2766186076e0f4479db4d6b50a7b9a826
- SSDEEP
  
  24576:5HsvVoHNByvxOrEUHxru3JrmfxecG58z8jB8:5HsdoHjyvxOrEUH03JSpz8jB8
Score

1^/10
behavioral27 behavioral28
- Target
  
  bin/gdbus.exe
- Size
  
  54KB
- MD5
  
  8132f5681b0af0ebe7855f601905a4bc
- SHA1
  
  dfc36ecf4e9e548734bc2e985df5c9596528d459
- SHA256
  
  b92d7e3eb3dcc03979de8c279c1e30fca42f2b638addd644da7b386cd17623b3
- SHA512
  
  f96f8ed36e3ff0eb7f883527ab10d1741c69b0cdda5bfde65d30925deab42a3c98330c783eac0eaf9c0403eae7341025182f33d2eb5bc47b52f0666a9c27cf90
- SSDEEP
  
  768:n1Nve5RU7l7kSWlZ0nctGuQByzpiqEV/knWqYvqmwiamCrHdT6aG3W6LPHc4:Lew7l7kSWbtouyyzpiqona9r83W6DHH
Score

1^/10
behavioral29 behavioral30
- Target
  
  bin/gspawn-win64-helper.exe
- Size
  
  25KB
- MD5
  
  a18db97a9a6c74266e1cd7620c736948
- SHA1
  
  2567499d835bf505b97efd4cf842db526049edbd
- SHA256
  
  ac126560dbdcb032848b0015576b1d9fe00173a3d927d17aa8f2a7b61428c080
- SHA512
  
  6ad7169b891cf31c6100afd51e4a5b255263f3a3fdd41f59955b7d4c9068057569dd286f6a3d58bd7e81b4d79191be7a3aff917c9c12875d0ddeaf77bd57c4fb
- SSDEEP
  
  384:fcXH/xWzMQTsK74Mm/K0kznRyOYDB1sYbMCWp7SMlX3k:fGxbftfk1yBV1LnWp7S4X3k
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

User tags

Sharing

General

Malware Config

Targets

Loads dropped DLL

Executes dropped EXE

Loads dropped DLL

Checks computer location settings

Checks computer location settings

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32