Overview

overview

7

Static

static

3

a5bdc87d80...d4.exe

windows7-x64

7

a5bdc87d80...d4.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$TEMP/sepulcher.dll

windows7-x64

1

$TEMP/sepulcher.dll

windows10-2004-x64

3

uninst.exe

windows7-x64

7

uninst.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a5bdc87d809ec95ac5116727b79c3f5c4cdfc89d8a08aee9259d5f124e140dd4

  • Size

    178KB

  • Sample

    240624-k4p8psxhmq

  • MD5

    366df6c00eaa7118149138f3e4e4847a

  • SHA1

    9c4e2b680f714b8e01f289bb900ee0d05ad5e68a

  • SHA256

    a5bdc87d809ec95ac5116727b79c3f5c4cdfc89d8a08aee9259d5f124e140dd4

  • SHA512

    2e56258c7fa3ba43f63026c7a7e4060a3ce5e86870b22737c27a49806c627698d0c7169642e0a6acb88b9892f7be56ae826509b01b6d85db97697653c4f0c12d

  • SSDEEP

    3072:74lVWhF/NXkUuOJBXJJ345fWC68LmP7R3EkIxq3wUJEAXYw6smIiIE+vo3LH:74A/NX3BH31UcdiMJEfqmm1aH

Score
7/10

Malware Config

Targets

    • Target

      a5bdc87d809ec95ac5116727b79c3f5c4cdfc89d8a08aee9259d5f124e140dd4

    • Size

      178KB

    • MD5

      366df6c00eaa7118149138f3e4e4847a

    • SHA1

      9c4e2b680f714b8e01f289bb900ee0d05ad5e68a

    • SHA256

      a5bdc87d809ec95ac5116727b79c3f5c4cdfc89d8a08aee9259d5f124e140dd4

    • SHA512

      2e56258c7fa3ba43f63026c7a7e4060a3ce5e86870b22737c27a49806c627698d0c7169642e0a6acb88b9892f7be56ae826509b01b6d85db97697653c4f0c12d

    • SSDEEP

      3072:74lVWhF/NXkUuOJBXJJ345fWC68LmP7R3EkIxq3wUJEAXYw6smIiIE+vo3LH:74A/NX3BH31UcdiMJEfqmm1aH

    Score
    7/10

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      3f176d1ee13b0d7d6bd92e1c7a0b9bae

    • SHA1

      fe582246792774c2c9dd15639ffa0aca90d6fd0b

    • SHA256

      fa4ab1d6f79fd677433a31ada7806373a789d34328da46ccb0449bbf347bd73e

    • SHA512

      0a69124819b7568d0dea4e9e85ce8fe61c7ba697c934e3a95e2dcfb9f252b1d9da7faf8774b6e8efd614885507acc94987733eba09a2f5e7098b774dfc8524b6

    • SSDEEP

      192:OPtkumJX7zB22kGwfy0mtVgkCPOsX1un:/702k5qpdsXQn

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/nsDialogs.dll

    • Size

      9KB

    • MD5

      b3070cf20db659fdfb3cb2ed38130e8d

    • SHA1

      aa234b0620bebddde1414ff6b0840d883890b413

    • SHA256

      f2c1409faf2952c1c91f4b5495158ef5c7d1a1db6eea4a18f163574bd52fcad0

    • SHA512

      4849a4cf24ea8a26cd04eb132d479cc093d4e204ed3866a77646d03778f4c128e20722a0c3cd62ea98a37deea4ce505fe632420158c71a10b0c8c5e32b38e3f1

    • SSDEEP

      96:oEqZ4zC5RH3cXX1LlYlRowycxM2DjDf3GEst+Nt+jvDYx40qndYHnxss:oEq+CP3uKrpyREs06YxEdGn

    Score
    3/10
    behavioral5behavioral6

    • Target

      $TEMP/sepulcher.dll

    • Size

      60KB

    • MD5

      8d21d2b7336838a0359e7c794ec0967b

    • SHA1

      3a39fd89311980b910f54a7353e3c0313d93374d

    • SHA256

      89506acc2bb672c1e4a8e6ae9e4a3b2e23231bf0d96a64efe5615594d8e5fd81

    • SHA512

      1e83a1d0371b0dcdaf1a68436eaaa677a8ceec56a8f83bb85a97ebffe39d04e948eb452081d248f02f7ee353ca4dbb9a9075f17115457d359b5cc15f6dacc2d0

    • SSDEEP

      1536:99/bmEvubWdrPSsTS7z11ie1HyW20eZdK:z/PYOrPSsTS7ZhPs

    Score
    3/10
    behavioral7behavioral8

    • Target

      uninst.exe

    • Size

      48KB

    • MD5

      a6aa583c54db1d002164883147d22094

    • SHA1

      a917124e61bd4e2e1b0dcada235051644b7bc58d

    • SHA256

      a86fd888cc84a98b1c54d0e593ab1e56a7b213dccf0cee144f334a6729f640d7

    • SHA512

      8d2b6ec88cf641c99a80d3ddfb64c3bc37cd48afe77a7bc8a8d76bfa7ba71a008042039e4c07a9c485b8f315060e1bd8defc75bdc50776c71fc323ef7d4d1118

    • SSDEEP

      1536:74lVqauhF/NXcLUv8OFal8JBXJeUHgdLeAyNliW9LV:74lVWhF/NXkUuOJBXJJHceA5W9LV

    Score
    7/10

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral10behavioral9

MITRE ATT&CK Enterprise v15

Tasks