General

  • Target

    Crystal_Acura_RELEASE.zip

  • Size

    19.9MB

  • Sample

    240613-e5rj9sthpc

  • MD5

    c091af096b77344b69de693e7d578e02

  • SHA1

    1d6bac17057b8352d4e6cac34bddf8d73ca14ed0

  • SHA256

    baa05943b6b4a4ac8291381c12bc14cbbc9550dfb09cf29a50f9d06f4ccf4e11

  • SHA512

    ca914027faa86039869e8b258c198c59dffdea3419f2e911dff0adce7d8654ef993a3d9fb175c346177623e0d2926c3f6102ef627074be4ec390ca53cdf47997

  • SSDEEP

    393216:KKWZr1K9lfQRDDttod1LSPFFIMTby3gau1BWRNl9LNyNVdLl:KBZr1AfQRP0rIFIMTby3gT1BWRr9oN5

Malware Config

Targets

    • Target

      Acura.exe

    • Size

      1.2MB

    • MD5

      a12b9eaeb350dac058adb1ed74420229

    • SHA1

      686d790fc201b1d565c19acb3cc5fd0742a89e53

    • SHA256

      a7334c7690db35b3ae2897639e53d40b699ab8894f6a28fbc7812d0e2acab7f0

    • SHA512

      f70ab61219f71bae8816497e5235fb39259f695c99528c4c6a61feedbd77428b5fecb0c54aa951e2dbd255a6c5cb2b52ed0881ba92878dbad0e2b32e21ae8e7b

    • SSDEEP

      12288:5SHPIeRQQoaiy4HLGYuXSKLqSoP/Lh7cKlz3yM8KDI3Ewepte3p1cRRje:5SHPIUdoaiy4HSjXSKLPc/VCZn0K1SJ

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks whether UAC is enabled

    • Legitimate hosting services abused for malware hosting/C2

    • Target

      Monaco/vs/loader.js

    • Size

      27KB

    • MD5

      8a3086f6c6298f986bda09080dd003b1

    • SHA1

      8c7d41c586bfa015fb5cc50a2fdc547711b57c3c

    • SHA256

      0512d9ed3e5bb3daef94aa5c16a6c3e2ee26ffed9de00d1434ffe46a027b16b9

    • SHA512

      9e586742f4e19938132e41145deec584a7b8c7e111b3c6e9254f8d11db632ebe4d66898458ed7bcfc0614d06e20eb33d5a6a8eb8b32d91110557255cf1dbf017

    • SSDEEP

      768:3J6C/c2x0cAu57XQxJRDRi+R/TvrCv3zM2GRl0VEj:Z6grH7qTXRvmDI

    Score
    3/10
    • Target

      Newtonsoft.Json.dll

    • Size

      695KB

    • MD5

      195ffb7167db3219b217c4fd439eedd6

    • SHA1

      1e76e6099570ede620b76ed47cf8d03a936d49f8

    • SHA256

      e1e27af7b07eeedf5ce71a9255f0422816a6fc5849a483c6714e1b472044fa9d

    • SHA512

      56eb7f070929b239642dab729537dde2c2287bdb852ad9e80b5358c74b14bc2b2dded910d0e3b6304ea27eb587e5f19db0a92e1cbae6a70fb20b4ef05057e4ac

    • SSDEEP

      12288:GBja5bBvR8Q0TE2HB0WLmvXbsVG1Gw03RzxNHgKhwFBkjSHXP36RMGy1NqTUO:GBjk38WuBcAbwoA/BkjSHXP36RMG/

    Score
    1/10
    • Target

      System.Buffers.dll

    • Size

      20KB

    • MD5

      ecdfe8ede869d2ccc6bf99981ea96400

    • SHA1

      2f410a0396bc148ed533ad49b6415fb58dd4d641

    • SHA256

      accccfbe45d9f08ffeed9916e37b33e98c65be012cfff6e7fa7b67210ce1fefb

    • SHA512

      5fc7fee5c25cb2eee19737068968e00a00961c257271b420f594e5a0da0559502d04ee6ba2d8d2aad77f3769622f6743a5ee8dae23f8f993f33fb09ed8db2741

    • SSDEEP

      384:/rMdp9yXOfPfAxR5zwWvYW8a2cyHRN7vCvlbLg:/rMcXP6N6e

    Score
    1/10
    • Target

      System.CodeDom.dll

    • Size

      30KB

    • MD5

      59c830ac0d99f8c906292de85f804b84

    • SHA1

      68b6740e6ce97de8b1398f3a6e320940a0e16458

    • SHA256

      e8c88b0448083663910587efeacb6a1977749fe3ffe83b263fc01f7b63d7dfd2

    • SHA512

      4028fa6b68eb3a48bb9625e6755c8e3022283694bb603905af3db54c31bc2f7291aec11f7c42a033703f84c3ff265a19416eb8798058cc42ee3c14c633e9588f

    • SSDEEP

      384:FuE8ujCiLMTPji3h8241EEqYC0iIcwBxehzsCtZ7U6r1fDMqyt5/WduWTTb2HRNq:FDBCi4TWaveEqYChzZpgRoj/iP9zgBV

    Score
    1/10
    • Target

      System.Configuration.ConfigurationManager.dll

    • Size

      89KB

    • MD5

      40af84db8d9313a6827cb5bc8dd291bb

    • SHA1

      6dc1f789fe5f8d77e2cbb4c26198afa8e14684ab

    • SHA256

      be1068d1af240549afcd48f22cfcf15ac10c4630600a5344ae025d3055029834

    • SHA512

      326c31809f38dd4614cee908c8276ba40a0f61f582e78db254ca6d054555221cd374e24370b00e830aa3a7fc2df31c84d1eeb1300403183c7c9dd6e93b3062d4

    • SSDEEP

      1536:cTbtcTllll/lslJ22X1rQNah9BhejhprStZPQ+2/NVQ8GLa0Uh55T3lEC/IOPbZd:6rZp9BheuQ+2/NVQ8GLa0Uh55T3lEC/N

    Score
    1/10
    • Target

      System.Data.Odbc.dll

    • Size

      80KB

    • MD5

      1e2a1c150dd3740868214482e793db0b

    • SHA1

      b72a5d528807fb75d1ee90613f34663e4fc90270

    • SHA256

      f4b77a404670612a8ff32415aa7cc6ead63e2be6b9734c467a154a69bed27698

    • SHA512

      eb69d73f36d239690385e7820aa530c545b23c474920714a671a685b065759f616499a1a3e32fe5142d300f24b0aa3acc4e0e098535a6894fc93a37253eb4b74

    • SSDEEP

      768:zqGag8Pgua7gDw22qDxw+1SABm4fHL9fFEY1i79zzv5dZFW+/iL5OQ9zCp:og88wdD71S14/wKiBrzWeiLzCp

    Score
    1/10
    • Target

      System.Data.SqlClient.dll

    • Size

      218KB

    • MD5

      d8fc6febb581f28cccabb8f839023f73

    • SHA1

      1c257f6ce7e595ac1d1989b299a04af6454df935

    • SHA256

      51b1d254c2e7b798359c2be9a0faebc51704efee31a170f4741203eda9681081

    • SHA512

      d52a3121d720e579c1cb26b82f3d3557d4c1369301ca1a0799daaa4d0e949805f12570e93a27e5f6f51666633a62f41235504631c5237b588218f706c5192f20

    • SSDEEP

      6144:bXFpBZBJLurBxad7/7AkGF60FhFoFmF8cjcsc4FEFbFgcbFmFiF6FhFuFBFuFDFM:7FoH60FhFoFmF8cjcsc4FEFbFgcbFmFM

    Score
    1/10
    • Target

      System.Diagnostics.EventLog.dll

    • Size

      33KB

    • MD5

      ee8331754225a84076fb7b8298f6c281

    • SHA1

      615c4dc7dea919151fe4c9c3579aa7a7c2c5e371

    • SHA256

      b8ee5c07eff6bc259fd228686db193465d7c24e2267429aa752f619bd022336a

    • SHA512

      a3670caa6a1d122a5728665196a81f23d2eca5550869d224492182faff8fef35a09a4724cbfcc80c7c10c8589a8bf12acfcfb1b5c75159b6676452a7e9a8bdcb

    • SSDEEP

      768:aL/0Q0IcyzTO3eUGfmAXOaYbHG/idL9zRiFeU:aLcQ0tBLbHmidhzUIU

    Score
    1/10
    • Target

      System.Diagnostics.PerformanceCounter.dll

    • Size

      41KB

    • MD5

      7b4d3882ffa009a1129b63f6fc4b2cd4

    • SHA1

      15a028313e5f0478abfe6a070093345f080ee655

    • SHA256

      d8cc1013703eb36c9bb5e3ad570854b26cae45c430bd944213fff402f9dec5eb

    • SHA512

      bc9b10e8eddc3c5a3bd0100bc1cfe4e0e2ff71293de0dc8166122ce13f9be7724594ae50760a53a5e91a021f5a8863fde32fcbc81b2ce275b9b092bbed797594

    • SSDEEP

      768:z56sWD7dimTIBdYrLMnnnkarDsn7Hji9zsL1Yp3:z56sWndAyrkDsnH+zsL1C

    Score
    1/10
    • Target

      System.Drawing.Common.dll

    • Size

      48KB

    • MD5

      4659204a38746b4798ad1184829e3a93

    • SHA1

      93ecd7d8ed7d81597937ec8538c0ec57d5696cbe

    • SHA256

      93d95949adf7498b33c1d4c98b0141825477a3c7e8b7dd9467986555396d61f2

    • SHA512

      f6e85818a95060271da7074502e1b1c45fdba925516594b9123d766efe3c3089958a64da97a7c046ddb0f1119f7af7d02de507c694fc7880b745cf7daff7b986

    • SSDEEP

      1536:mC+PVZf9htfRYME5O/MKzLHRgkXeC8SwRG94iMSC4dezJSZ2l:m1ZVhtfR5E5O/MKz7RaCWG94lqIt

    Score
    1/10
    • Target

      System.IO.FileSystem.AccessControl.dll

    • Size

      27KB

    • MD5

      3409c581f0c5083f0c2a93a7a5ac9790

    • SHA1

      18ea7bd41d31247148abf184527c9368a26f39e7

    • SHA256

      e6026501ad4056ff2f1655b0afdfe8923bc6e8fbad67e1e9ef56e3002f49fbb9

    • SHA512

      ae877c6fddad0e4133274e6372d783eaa4dd6bdcbbf40ab66302fb89bd2f76b215130001186b5c9a135abd16336c5bfd4d414177704d7d359539da91918e82ed

    • SSDEEP

      384:nmjoB5y+MLi9VYp/OiRc715ZkSAcE1l2Yd5zqNz8TWgVbWqdHRN7NfVlGsa9x:yCN9VYp/OiRcnZIfk8PpET

    Score
    1/10
    • Target

      System.IO.Packaging.dll

    • Size

      47KB

    • MD5

      9b70889f0c78a918849576906da1c24a

    • SHA1

      ac58ea716aec8c5de102b6362138b809eb42ea9d

    • SHA256

      e2e7b80c44ab0fe7c92aa56ec76d3d6cd53414657b7dbde8712decf2103694a1

    • SHA512

      71284fb7b831c1734e2f8946d5420883bd3f92d5ad7a9948d19e0ca1d1bec86258c300fc2e3430e9034e60d3836d47d71dbb61bf659ab67a5e7213f59b1b69fe

    • SSDEEP

      768:lil8yMaXT7gO22NvS23B1++0YfTEn61j+luv5d/U/iw9zII:lUKaX3rJvT1++O6kluv5d/0i4zX

    Score
    1/10
    • Target

      System.IO.Pipes.AccessControl.dll

    • Size

      25KB

    • MD5

      5771a66e9f4d64825aab723d115080b5

    • SHA1

      0ea487e0f4a0fa9f7721d25a320e0ed014d86919

    • SHA256

      4babe8db54f6805fa977b09d0bb51dded2205863133206edfef94bbd14510cdc

    • SHA512

      09c39233d0f4337624babc6fb68dcf2cc38f63259ce54044db711481827b5857587b7c4f103b2489f080133e003845b9c684a364a100dbed6a45f36ed527ba61

    • SSDEEP

      384:NANJdesEvbDYUgmpWrxWNPfWqxWfPsTwm0GftpBjEaQHRN7BZqlc2jCw:IclTD/yod2IwVi2LHaP

    Score
    1/10
    • Target

      System.IO.Ports.dll

    • Size

      33KB

    • MD5

      9f8f668a21905e03ead718851a14ee41

    • SHA1

      8497a890fb1b99a0824ad5d0d9061756fec26d21

    • SHA256

      83b941ad7b18fc02ab2b11fd976ee15c94ad5c4829964a32a716d10c92c1b953

    • SHA512

      33691273afc757e6d609c6e31a31820aa5c84df460ae2634253113fdf1f28985ff8cbcf66e2fd73a60d40837afdf1f19767cbeb00b39bd3ec7f9844b841be3ce

    • SSDEEP

      768:GWqENghJ0QYVqXz/jABzYHK7Cgn19fgD2+/ici9zEL:GWqXzIkz/EBzaKrn1aqeic+zEL

    Score
    1/10
    • Target

      System.Memory.dll

    • Size

      138KB

    • MD5

      f09441a1ee47fb3e6571a3a448e05baf

    • SHA1

      3c5c5df5f8f8db3f0a35c5ed8d357313a54e3cde

    • SHA256

      bf3fb84664f4097f1a8a9bc71a51dcf8cf1a905d4080a4d290da1730866e856f

    • SHA512

      0199ae0633bccfeaefbb5aed20832a4379c7ad73461d41a9da3d6dc044093cc319670e67c4efbf830308cbd9a48fb40d4a6c7e472dcc42eb745c6ba813e8e7c6

    • SSDEEP

      3072:nUGrszKKLB8a9DvrJeeesIf3amN32AW/rcyw/s:OB8l3/aK32qU

    Score
    1/10
    • Target

      System.Numerics.Vectors.dll

    • Size

      113KB

    • MD5

      aaa2cbf14e06e9d3586d8a4ed455db33

    • SHA1

      3d216458740ad5cb05bc5f7c3491cde44a1e5df0

    • SHA256

      1d3ef8698281e7cf7371d1554afef5872b39f96c26da772210a33da041ba1183

    • SHA512

      0b14a039ca67982794a2bb69974ef04a7fbee3686d7364f8f4db70ea6259d29640cbb83d5b544d92fa1d3676c7619cd580ff45671a2bb4753ed8b383597c6da8

    • SSDEEP

      1536:nPOw0SUUKw+GbgjMV+fCY1UiiGZ6qetMXIAMZ2zstK/hV+sUwS:nWw0SUUKBM8aOUiiGw7qa9tK/bJS

    Score
    1/10
    • Target

      System.Runtime.CompilerServices.Unsafe.dll

    • Size

      17KB

    • MD5

      c610e828b54001574d86dd2ed730e392

    • SHA1

      180a7baafbc820a838bbaca434032d9d33cceebe

    • SHA256

      37768488e8ef45729bc7d9a2677633c6450042975bb96516e186da6cb9cd0dcf

    • SHA512

      441610d2b9f841d25494d7c82222d07e1d443b0da07f0cf735c25ec82f6cce99a3f3236872aec38cc4df779e615d22469666066ccefed7fe75982eefada46396

    • SSDEEP

      384:EybU8ndrbbT9NWB2WL/uPHRN7bhlsQVryo:Ey5ndvWbMPVryo

    Score
    1/10
    • Target

      System.Security.AccessControl.dll

    • Size

      35KB

    • MD5

      527595c86ad17045a101d567d7d3279f

    • SHA1

      83014e2a98f7597b9a26e424a0759e5a3d2ecff1

    • SHA256

      ff14c5f628b9a6798d173aefbba0a43d61e66f715108e2576ac0d3dfab9071d0

    • SHA512

      9ebaaca1623bc8e2fc8df158f338b5e415670fa53e212bb38771e7e25af9688301cc4aee055c5b64e33f8aa24729ed896e0be8e2dbce54386583c660476c5dda

    • SSDEEP

      384:zdlIF91FhktexyvaMAdB+w3G5h9MF4YfzMfpcrqmf9wEJqIxVRvFNgfBkyN17xWI:ZlM7Ke5/WBkyN1hhMPS

    Score
    1/10
    • Target

      System.Security.Cryptography.Cng.dll

    • Size

      18KB

    • MD5

      53ea1ad3dd72ab9e6d36678aa79e45c2

    • SHA1

      e47e323d44743a5104620a9e0b0264693a64ed92

    • SHA256

      5beb0246fc8cbc617fd7d18dd1f520da8dbbb7ec820e5834d53352836a99bda1

    • SHA512

      5b912dc2c9027ab2aaaa72c03ebf9ad40a9922e70ee09d135a10a8452266f6b8ef39485c4653520bc5738270782bdf6add70cff99c8b5e4ec4c0bf2191c20780

    • SSDEEP

      384:KvFruO/q3r4YV5tEWCfWOdHRN7UlpJAlGsp:KtZS7pqdw3

    Score
    1/10
    • Target

      System.Security.Cryptography.Pkcs.dll

    • Size

      21KB

    • MD5

      243c95c7373922fc657ec9849945d9bf

    • SHA1

      6051f1b3ca0329504ab3d991e150ddc2bc7ebac3

    • SHA256

      544c9043e2da214c5bcf5d86315607940d46b5d65337d7f6debcfe1c0fadfac8

    • SHA512

      487ac07fb7af077a61c578e936aabb512eb64ff057a09e08c10f04594b33ceb98e82348c9d8e8044374afa13cbe18e4cb907007d912c8c944f9af00098b11b11

    • SSDEEP

      384:ko5xn2PwjKGrAskWY2WBTb2HRN7rNKKlO8R9ztgv:HD2IjKE5WJ/irtOQ9zK

    Score
    1/10
    • Target

      System.Security.Cryptography.Xml.dll

    • Size

      55KB

    • MD5

      f14f5a63ce6c59c59bdae1e16f1f5e7f

    • SHA1

      d2c1d298e1f08db91155a1bb34667ea7dec4e79b

    • SHA256

      02e4937a3fe88dd5a384a217da7c6206e76748491007df7e720d6002464b9270

    • SHA512

      8ea461f456a00939a8dc281a7a3d316f2426e0674cda259e7fd0373536105457ecd23fd3fe05fdc3e9793350992d367166c9e99f7e362bff818cb1c495d8dd7b

    • SSDEEP

      768:ENj9x+G0khYw7gidk2sYhZusD+6EM8HOm852lkOI5kKrVmuJFClXrEpw9zmsVo:8k2LrZll8u8lq5PQu3ibEp4zlW

    Score
    1/10
    • Target

      System.Security.Permissions.dll

    • Size

      30KB

    • MD5

      c840a9dfb8572b3a96b3bbf065c9c2a5

    • SHA1

      b194674cca66bd1fed5d856e5264c5c89feb3326

    • SHA256

      006d4d13c4c4c8327b3a94dc502d0e91114c1c495b408f6b78c6b30a3062a14f

    • SHA512

      acf35af6dbc9644aaec5a89acf2e12a775635b29c6d296e25f01c352e9189fe522ebe2a3acd397830c1fbe5e4235294d6d4c6970485b4196b7153a38bed204a9

    • SSDEEP

      768:QYEt6LvO9TJ9sJ7N4mxjP/Eue/iH8i9zEx:nEAvQ9Qxb/Z+iH8+zEx

    Score
    1/10
    • Target

      System.Security.Principal.Windows.dll

    • Size

      17KB

    • MD5

      be2962225b441cc23575456f32a9cf6a

    • SHA1

      9a5be1fcf410fe5934d720329d36a2377e83747e

    • SHA256

      b4d8e15adc235d0e858e39b5133e5d00a4baa8c94f4f39e3b5e791b0f9c0c806

    • SHA512

      3f7692e94419bffe3465d54c0e25c207330cd1368fcdfad71dbeed1ee842474b5abcb03dba5bc124bd10033263f22dc9f462f12c20f866aebc5c91eb151af2e6

    • SSDEEP

      384:cEwo6eTs14YY4cWpOW6dHRN7FYpJAlGspU:VwDdT463

    Score
    1/10
    • Target

      System.ServiceModel.Duplex.dll

    • Size

      14KB

    • MD5

      3bbcbce8fa4c1a14f57ced1860bb2760

    • SHA1

      679fd61cba1f777f2103287221a9b959b6df923b

    • SHA256

      28dee276368e2c0756f140317de1a9de747fe5dfa89e76a8021ae52ac5289483

    • SHA512

      01cf792f7f49c39036e0e79acfd95efccb23969a9d054642ea3f57a2684ac483de1896cfe70387e1b832ebc883ef3580bb4136fb57b80feea8e1371d5f3a1a8a

    • SSDEEP

      192:7FpCFxHpiJW3OWueWvcuyjS7HnhWgN7aIWh6q21eX01k9z3Ak713G:uvHpiJW3OWI7HRN7Fl8R9z35G

    Score
    1/10
    • Target

      System.ServiceModel.Http.dll

    • Size

      15KB

    • MD5

      01c04516d0867206d593de53e42f3a32

    • SHA1

      b300f0ac990d4cbea0fbdeb89ec7acd832a35675

    • SHA256

      acf1ee98893feafef0c5d1aac5704a3e45e717635d81a6dc15624a32509f52a3

    • SHA512

      215cef01e1d3f1db52f8edf96f7b75b7d69891855746fe6c36284177d8ed54fd4b77c306de19f85ef471d2ed6974203eb61199d609daac4f36023fa4bacbe8b1

    • SSDEEP

      192:0nBZsxlVWR+WJeWvcuyjS7HnhWgN7aAWh6Jq21eX01k9z3Ako2DX7:9lVWR+WJ7HRN7XJl8R9z3LX7

    Score
    1/10
    • Target

      System.ServiceModel.NetTcp.dll

    • Size

      15KB

    • MD5

      efdc51573163cef73e6da55000ca98cd

    • SHA1

      925e3e3a3eb2550b95f853e588fd8dfe5f3d50d5

    • SHA256

      483d56693d30f9c49868a2c1a1b13cc2afc7400e2adcb9974bdbfbc27a4110e2

    • SHA512

      3678ef3f9fb8058159f38eb8926ada1e1d185e9adaee366fd76fbec34f89635ddbd704c5a5f38ad3d9731c63a2ffd1de66d0b74bbd867d75f764ef11026b3784

    • SSDEEP

      192:g9DHYztEx7YJ+iWXWWGeWvcuyjS7HnhWgN7aIWh0IAKCFaqDu0K9X01k9z3A2yiW:mmtS7kWXWWA7HRN7oPCFYj9R9zVjK

    Score
    1/10
    • Target

      System.ServiceModel.Primitives.dll

    • Size

      21KB

    • MD5

      7edfe0213c6a22f18cfb6c3ce335efaf

    • SHA1

      e0d0c8385e6627415ab90ef19497e077109552a4

    • SHA256

      f7e22c4c072fc4f17b01ddb217754f18aeb5cd57c629337a0682759b0b1b18ec

    • SHA512

      2ceb7f1a78ecd99f7ea2b07b34d13ba81933531a78ac8fd9d1a5f79c94ddf72839b190d03cf5af03a64ceec81c0c5eadf93db0e9c6ad85b61259fd5339f78586

    • SSDEEP

      384:98h2IgODoeN3PKWDEWfC7HRN7HEjR9zYCWGSI:ez1zN3nluHEF9zY+Z

    Score
    1/10
    • Target

      System.ServiceModel.Security.dll

    • Size

      15KB

    • MD5

      7e55a5059a7caa87fd9d158a0178e4ec

    • SHA1

      a79970b721f3be5c47e7b7dd91a623118530c9fd

    • SHA256

      ac66020f369b9000c89d4aa2ca7471f807eb84e910733b941d918a092c08451d

    • SHA512

      90ba3aa3a7be14eaa1b7bb1018f45ce5d3432381c11eed263e9e520918a50061859a3cc15e2b89b85f1258a7a2a1203d0d8271ca22b3bae29fc28db58ab8a046

    • SSDEEP

      192:vaLffnRb7xmMYjW1gWKeWvcuyjS7HnhWgN7aIWhawNCWGaN4NhrJgX01k9z3A5G5:vGLeW1gWU7HRN7YnTN4tgR9ziGKdQ5r

    Score
    1/10
    • Target

      System.ServiceModel.Syndication.dll

    • Size

      19KB

    • MD5

      d875df738d969c1150d6371c30583c34

    • SHA1

      2f7b446740b167a02c388c363527f22b84325bd8

    • SHA256

      446dba757a184e0fd66aa51fc467cb95fc39d573e33c10eb09d8961a18c1c284

    • SHA512

      ba0d7b6bb82213681c159a6da5ac5ef4b088ec7ee9e9e1033cbcc687365703b5fef075897aea2b9e12ea56013e19f0841deb77f300216ded032676b2d3a0bcc3

    • SSDEEP

      192:POKYvQnTPz4WLfArFatd6LNWaeWs3WT56Os1HnhWgN7aIWffVkH+BEg7X01k9z32:POKYv8TPsy8LNWaeWR5kHRN7QR9zrUN

    Score
    1/10
    • Target

      System.ServiceProcess.ServiceController.dll

    • Size

      21KB

    • MD5

      bb6876478acc6b3b9c584df28406992e

    • SHA1

      bfb9654a967b6f073772cc95ca7e9b5785a876d7

    • SHA256

      72d79b3a50d2dfb47e076b3f1bc1c8dd1210d0f2b0f2b86ebd0d2e2b92cfcef5

    • SHA512

      381b8d1a9366447be56a6796b540ffb0fcfedd05c73517b8f3d3415f2f7407147f24be8950bc79f6300a1057daed7296906b75adb83cd94cc95dda9667bf2f1d

    • SSDEEP

      384:ERiNyujk2PuhGQZWvxKWiWVZupaWoTb2HRN78VwR9zP121:ERiNFk22hbZTm/i59zE1

    Score
    1/10
    • Target

      runtimes/win-x64/native/WebView2Loader.dll

    • Size

      161KB

    • MD5

      d2033aa3200206b0d44255a36686124e

    • SHA1

      e34b92f052afc26412298dde95088fd1bdf20c09

    • SHA256

      e2004ecd9ddebd1bb7edfff5fa62781fe037eca4282c2be3483dc6f78779899c

    • SHA512

      e266b16a265262447a7f4e3d2fea99b273976102206a4287e635164f9de7e40a8f9b3548da7a9a412530ca8f65a1a27e4a2c7ad55c05b9b58b78ae3f93703773

    • SSDEEP

      3072:Wcb8oTTlTRTyiuPThTNTKm81SbbMYSPLNsknZiZ2HZ5AaliiT8jFEtJ57cXS77Xj:WcFTlTRTyiuPThTNTKmFQdhsknZiMHSk

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks

static1

Score
3/10

behavioral1

evasiontrojan
Score
7/10

behavioral2

execution
Score
3/10

behavioral3

Score
1/10

behavioral4

Score
1/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

Score
1/10

behavioral18

Score
1/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10