General

  • Target

    Client.7z

  • Size

    2.8MB

  • Sample

    240612-fnd4aa1fpf

  • MD5

    52f5ca473480fb1afd457b822e2491ed

  • SHA1

    f7acbfc2aaf13bdf648cdd0673218ea19a61b553

  • SHA256

    8e7c042916b36c843f37b748c299eac39262f52d78438fe8494178e7ac9ab25a

  • SHA512

    7ca806af4c8821ee8971edebd6e1f1aa2b2d7480123bad8fcce82b553dd15de9af025ef01f74b30f52c6c524cbae286a71e69ca6c05bc5157f266b2573fd289d

  • SSDEEP

    49152:RVNjqtla114mldntbQrysgjrBT8wKA46AG2QFxs1qPRDZdM8V5j5n0KRYTk0t0/9:jNjClar3llssiZTSM8VZd0Sak0q/9

Score
6/10

Malware Config

Targets

    • Target

      Client/Counters.exe

    • Size

      1.4MB

    • MD5

      72c38e0efa821985a54d07c32ce747e3

    • SHA1

      1be5a6434dc99822355585f9e8c7b15073c741b5

    • SHA256

      c9df304556499e2cba3eb88f18d3b4143ffe82308d85010d6c6a9817bdc2ebb8

    • SHA512

      5a53c54ed350e2bd63ddbc1dfe1dab2f9dc658419cd725654c41729c5a2d15ce3372ce0a56d3d0bb8d51607dcac41815fa0662e6838bf1e37790a5ff94d82dbb

    • SSDEEP

      24576:iwnU4TDLjU5zWPin7yvxRH9iNngvDVZLN5wbYKRS6NJMt8+4vjSa/9/jWUIb:dntTXjmWMGxRH9ig7VxN5w0KRS6Nm80d

    Score
    6/10
    • Drops desktop.ini file(s)

    • Target

      Client/DataSerialization.dll

    • Size

      5KB

    • MD5

      1204ffcddb27fc1d4f40475bf9fc0a4d

    • SHA1

      b7faeec05684994a3a074be88b1a635928b71a19

    • SHA256

      86ce2f32c1823d0c622e6b05ac03df9d5f914ee93aa4b99e2306ed91a7dcbe4e

    • SHA512

      67fefe5c5ae40cf7b9a20bc9acb61810c4125e6684313884da30e27797796c1652f0e04baf149562dafc698a4a88bb6e7cf40eb370367c2f2b5eefa1cfc372a6

    • SSDEEP

      48:6tdCtolDKYumKzk/wu/7ns56UxibvCxQwrtNSb5wv0pWuJ0xWxU8MKl/d9qZnUlZ:1s8mKQXsRWvCxJylBZEUxDZ22

    Score
    1/10
    • Target

      Client/MyUDP.dll

    • Size

      7KB

    • MD5

      5dbca95f5027c327cbcf554e6ef244e7

    • SHA1

      b89e0fb641cad1a83edb5ebf0883f174fec2a41d

    • SHA256

      0baa2f477a2883ed2277ac6d8a9f4c3bc8047421ef4318a9d7df70666b1d3bf0

    • SHA512

      99dfa33d536b450a064409f68e8216f3a17c5d3a0bd283cf4eb29048ddcc8ca6bb05f950deacecfcfb9bcb8033c380094fde1ec964550f5a2d5ac12fdae3b4ce

    • SSDEEP

      96:57y9IG+xEtJm/WIAl+5mKxsebgTTLZR8y8zbHGaXfZij0eRCHsWH0ZUEE+ciq+Z:57ycWI3xCj8yamavZ00eROUaEE/iDZ

    Score
    1/10
    • Target

      Client/NEW/Client/Client.msi

    • Size

      2.0MB

    • MD5

      f0c5524171a23a6d0bec4a502ed4ab4b

    • SHA1

      c175344018b748e3804102867598fdbd914de54b

    • SHA256

      77f041fef3d965262a80ed8ef05ee7058c4b30a16b64dce2ef62ce6458706952

    • SHA512

      7659eea5e662ba79c0d18caa111452baf82a45dcddb295b7cdef27feb3427eec890280ff0cdf76463291117eddc4fe69bc0e0c37aeb9bd816063e27489ae0c5b

    • SSDEEP

      49152:kUlYyZvpi+bwrlcX44iHan7cQSyX4jNBT6wK+J73f2:DYyZRHUlcINHkXwU0

    Score
    6/10
    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Target

      Client/registryaccess.dll

    • Size

      4KB

    • MD5

      f08acf2a266522c997f74bb4b0367749

    • SHA1

      6ab045c86f355eea5010afcc06e53fd4d559c630

    • SHA256

      fdf22790dc5c9c920f6d28ade82f26226380df3ff4b99845a7c9c65675de1080

    • SHA512

      f55fdfc5c6e1d4557a8d124c678bdf01b126455fea059a9e96c11799587b1be90389ad2d0a36d309b74a0c0e409a0c1d0d8e6bf83edd1936ecaece2a15c50d17

    • SSDEEP

      48:6Tl4lTuXl87aZv9VNOjw65WgWuJAdXchklnrzA1CpHAunW/Zlq/oZIgF:0Scl30c4ytxAMgu+e

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks