5835594a7d29cc3b25e373ab04ffe6137efccf1f10f89730d18353f43e2c60c7

Sharing

Copy URL Twitter E-mail

General

Target

9.7.6.zip
Size

21.2MB
Sample

240629-b9ngmaybmb
MD5

84ff8159a2b0d4ec520b3ace24f76fe9
SHA1

59893e5c319fa69af29f26744f5598946fc32442
SHA256

5835594a7d29cc3b25e373ab04ffe6137efccf1f10f89730d18353f43e2c60c7
SHA512

bf274953f7f2f2740a9d108f9885526884ea583ef9e1d9efca24d47c1496efabd7d6883fb7280e5e236b3fbda47b3f6a00772742e8c9265b9ff6c8dc30a8d2dc
SSDEEP

393216:a3ASPdmZZ0pw4ppam/GC5DzS7WNij7ONNysIfZM/568TkAy+d4Rz/d9yljXTsBK:a3lPY0Dpa+DNzW6K7kys7/5bkAy+EmlD

Score

5^/10

Malware Config

Targets

- Target
  
  9.7.6/test.dist/tcl/word.tcl
- Size
  
  4KB
- MD5
  
  70450a0cf04ef273eff2b070053fcfa6
- SHA1
  
  47974d6c0fc986ee1273c4e13ddb9e1288cef0ff
- SHA256
  
  678f891615e2209a8ecba17857922a9723e78709adb983032e89ca706000c44d
- SHA512
  
  afd3e47324d1497cc46ac6141191fceb843977d0b0285c807ff8985dcc56fde10977f57d503d986cd2c1edc6c62f01e405a0eb483340b247b129fc8d6d9fe689
- SSDEEP
  
  96:HgTQWiZuhdFQJmuldFQofsGP3R1hF9Dl19arB0E9Dl1YoaEhHe2Gu/q1ZFyJRpqk:8iZUroxvR197ABr971h5GIqrmbqIc+b/
Score

5^/10
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  9.7.6/test.dist/tcl8/8.4/platform-1.0.19.tm
- Size
  
  11KB
- MD5
  
  a0b269d76db613c2d927efa84fee88e2
- SHA1
  
  f9c7ad375f4d4223f0668fa1e2c4e5a83cac2d03
- SHA256
  
  32348d51f3637f375b056fe99e9b4d89d85d45db907847dc370bd72812a2e2fe
- SHA512
  
  5427762147825dc2ed3feee4011bbf2100932a4d93f3242ccad15499c9dc39f42a82aeb42ed5db5839560cd7aae5d30621ac3694552ffc650a1f572cee32fa54
- SSDEEP
  
  192:rXlm2LnoZ7k2mOEhYoKVtWD2xLsmF+MNlPQ4lJ+B0O0DgryYY/+zy7go:rXlm2Lng7kvF2VtWD2xLeMNT+B0O0Urk
Score

1^/10
behavioral3 behavioral4
- Target
  
  9.7.6/test.dist/tcl8/8.4/platform/shell-1.1.4.tm
- Size
  
  6KB
- MD5
  
  8abc3029963e433d1d9865aaa7e1057b
- SHA1
  
  a88091dc98b2fd0ae3a258b59f8be43f41f04323
- SHA256
  
  0a6b4b109cfdfc4b40fbdefdb2282f9b1af3cc2f9624dd39958eebd78781afb2
- SHA512
  
  d5068375615a2200ddc13eeb852b2e21b7e4aa416fb7a0e97c98b8b106d7701792c523739e8bf266d2abe411d4298a0b5b3884cfb9df820fd4a2b61b22f9decf
- SSDEEP
  
  192:PV5U+VLnNUPVvH+knNUPVUHD5ngWftN+IgMufIdqi+g0SYiCXVDjqL:Nm6MFXN5uwq51iCFD2
Score

1^/10
behavioral5 behavioral6
- Target
  
  9.7.6/test.dist/tcl8/8.5/msgcat-1.6.1.tm
- Size
  
  34KB
- MD5
  
  bd4ff2a1f742d9e6e699eeee5e678ad1
- SHA1
  
  811ad83aff80131ba73abc546c6bd78453bf3eb9
- SHA256
  
  6774519f179872ec5292523f2788b77b2b839e15665037e097a0d4edddd1c6fb
- SHA512
  
  b77e4a68017ba57c06876b21b8110c636f9ba1dd0ba9d7a0c50096f3f6391508cf3562dd94aceaf673113dbd336109da958044aefac0afb0f833a652e4438f43
- SSDEEP
  
  768:m3xQvCzasI/rHPG2yfkZ0Kbh91iQ3Lnq5MIVYB8mbgijsPIWtw4qvUm:4xQvCzasIDHPG2yW0kJ32imXmUij6JjG
Score

1^/10
behavioral7 behavioral8
- Target
  
  9.7.6/test.dist/tcl8/8.5/tcltest-2.5.5.tm
- Size
  
  105KB
- MD5
  
  655ec828777244f9f048e0d08203482f
- SHA1
  
  790446d04fe7be12fd5dcf6e6fbd4c5a08c45c98
- SHA256
  
  35a88f56df57e6ac6f2ccc4d193210fbb9bd224ac99670603e077ddf8c5610bc
- SHA512
  
  c249caa5da76a0b0876dd1bd201ff2d249d4fcd8467992c9de51ba5a1c5471f98c10d69c46df5b25dba7941f4301b446d90cbf17bccfb8b0ed27b22bf4da20f3
- SSDEEP
  
  3072:74s6YTLsaoi4N8uBPM5PP9AlGXJL/ciBh:7N6Y9oi4N8uBPM5PP9AYXJL/ciBh
Score

1^/10
behavioral10 behavioral9
- Target
  
  9.7.6/test.dist/tcl8/8.6/http-2.9.8.tm
- Size
  
  115KB
- MD5
  
  acb85feb97b27f1362e1d76b686d498f
- SHA1
  
  92c370f838bd67c72e153fbf7ad05e26ff40a393
- SHA256
  
  7a30e7a49c1f6939537eb7a80cf2f5bc7a4969f2b2ad99ba4e26db85bbc2fcc7
- SHA512
  
  ea504863386817e1b21549376148fd05c7eaf74f91a3a8da97efcf3784530ed3cf1910df9b2431ec47d1175759cdeb1a0e9e9e02bba94ec2123eafb7cbd2b90a
- SSDEEP
  
  1536:RYY1IO/KuUhIW17zr1DLJuuBuFsj6aIsGc3e6xGxjndp72y4ebBxIQ30Ik:RbyOCuUv9r5LJmsjlxTxGxjndpCBeAQ0
Score

1^/10
behavioral11 behavioral12
- Target
  
  9.7.6/test.dist/tcl86t.dll
- Size
  
  1.7MB
- MD5
  
  b0261de5ef4879a442abdcd03dedfa3c
- SHA1
  
  7f13684ff91fcd60b4712f6cf9e46eb08e57c145
- SHA256
  
  28b61545d3a53460f41c20dacf0e0df2ba687a5c85f9ed5c34dbfc7ed2f23e3e
- SHA512
  
  e39a242e321e92761256b2b4bdde7f9d880b5c64d4778b87fa98bf4ac93a0248e408a332ae214b7ffd76fb9d219555dc10ab8327806d8d63309bf6d147ebbd59
- SSDEEP
  
  24576:+AZ2kQrvqkPY6i6ktWc2uMOxmWu1/0lglMkgshwlfjwtorWy2eMdPhOC9JlQ5ZDA:+A0W9jEoSy2nd9JlQjaq5vWHZ7XM2eDu
Score

1^/10
behavioral13 behavioral14
- Target
  
  9.7.6/test.dist/test.exe
- Size
  
  30.3MB
- MD5
  
  1ef91d417514de60af436cbbb865f4d8
- SHA1
  
  95b77490c75bb6af645e0f513cc59ade73232f32
- SHA256
  
  325a7c3aea2ddb9bf122ddc76239c21865b7ef6fa5ca2d89101d2eb8ade7ebc6
- SHA512
  
  55d95036b25f98b682616b5e000791ebee4fc696a6834f02ee19264f81a30e16bdaaf22890cca601f28105b8e7d19e8259af20c914819777bcfda2df1e3eb4de
- SSDEEP
  
  196608:GfqhRa+FRLg5ILNO5q+zd2276pYP4V3Q76DaEP:jDg5ILEq+376iPfGDa
Score

1^/10
behavioral15 behavioral16
- Target
  
  9.7.6/test.dist/tk/bgerror.tcl
- Size
  
  8KB
- MD5
  
  c5e9a2e32ae83a79df422d1145b692df
- SHA1
  
  08350f930fb97a95970122920c91fb9ced8329e9
- SHA256
  
  8822365ee279bebf7a36cfdedba1114762f894781f4635170cc5d85ff5b17923
- SHA512
  
  71420e15a3d63329560074f6ffad42cb464401284bc29d0dc8e34d83f8f77079f26bb4c5703e656a48e6931c3dbf6b873756fb212d0860483e0301b29ede1212
- SSDEEP
  
  192:RpwYLapGk1BlM4UBIHpJFVUXUziMJ5Kxyk55qxUr7Vdk5vNR:RuYfvMdOXyj+01f
Score

1^/10
behavioral17 behavioral18
- Target
  
  9.7.6/test.dist/tk/choosedir.tcl
- Size
  
  9KB
- MD5
  
  818e4f0112931f12b4fac4cad262814c
- SHA1
  
  ac7060df952f9db52c3687b8f5e6aa4adf06992e
- SHA256
  
  35b208e8570b0d1e0ca1c911d4fe02ee3b0cfe5667cf1bdec006cf9d043122ba
- SHA512
  
  0c535b6621bc83412b7a64cb6ac2ba526b8e49bb5f6bc5ebeda41d223d68deb031db9c8a31f8671bc5f327d720942e7fdae3328334b0b550ac991191f96909d6
- SSDEEP
  
  192:HKOdkMpU9YUp8UIhMYYicln9Die0luVZat3pIp5Y3sF1P8Bg8p6trIOzvKsOiCLU:HyMm9J8wPx70luex4C8Fygq6tohef+0J
Score

1^/10
behavioral19 behavioral20
- Target
  
  9.7.6/test.dist/tk/clrpick.tcl
- Size
  
  21KB
- MD5
  
  ad86e0265c307348a16e9e4b64d8f235
- SHA1
  
  66ec6726df997ee6096f642ebbbdb8c3201ba571
- SHA256
  
  d210dcfa9adb4c23e44ebf744839158cab4e21eacf9483c6ba91ba6ec4660eb8
- SHA512
  
  a0c9df815fe54c26eed69c84b29fd829eb1b7e43d2787e98c71d091607226532f6f0e9213e83ff8263fcb6da892178029d5ef475fd46d22f9bb8ab31b87bf438
- SSDEEP
  
  384:lJGidpe3JQDUd6hgp6EQstzQf+a9DPbS43/H//cO802UeeVnZmM6BA0kyVJv9Qpu:Gep6JCwQDPbLPaRCzTdMAe
Score

1^/10
behavioral21 behavioral22
- Target
  
  9.7.6/test.dist/tk/comdlg.tcl
- Size
  
  8KB
- MD5
  
  abf277e4f62423f4345b6ad65640b8c2
- SHA1
  
  e66a4e37d51c7827c9aca449a42e0966aacbc8c8
- SHA256
  
  c7da292ccf5f413e599c3491c331ffd58cf273f8477facb097e6f36cf1f32a08
- SHA512
  
  aa9f75d7c5c915b5fcd2f454856d080d186ab9ba149dc139feaf7f4ac3dc51e6769e138e3b1be45b3fec3ae744189de44db2b748f0628ff13e4e733b9cd68bd5
- SSDEEP
  
  192:u4R7+/gFw/MEN55fO7eyjt4bjC+gR8e3vwLln/+LVtUw0tXK4jA:u4l+/gFeMI55Xyjt4bjC+gOe3Ih/+LV1
Score

1^/10
behavioral23 behavioral24
- Target
  
  9.7.6/test.dist/tk/console.tcl
- Size
  
  32KB
- MD5
  
  4ca2e90a125ffd6191d0c5ac6818d18f
- SHA1
  
  855f10234fa1d65521c2508206ea58dc565e452b
- SHA256
  
  a4b21dbf699c20ea5ac334ec109f731be8eb2b8f9a34ccc2ebe538f4bf8a05f8
- SHA512
  
  ed5ae05a7f1d379f8343ff4ad7ef561c5c4d9b7e02399a7281df8b8930b924b0482fdc5b4e3f90c2214ada4f87d9a5e64db2259194c58a2135d969c01bbe64f9
- SSDEEP
  
  384:jMpwGU6OGEJemVueuR3fitsHI76Su6qKQjGCy1HyOnmTTRV+po2mBh6S5mDjbHqC:jMpdUDGEJpC6+oVeKQPjnD2jVfV/
Score

1^/10
behavioral25 behavioral26
- Target
  
  9.7.6/test.dist/tk/entry.tcl
- Size
  
  18KB
- MD5
  
  007f42fbcdc57652ac8381f11af7fb67
- SHA1
  
  1bb1b0fcad6f5633d1beb8903112f180b1c4ba7f
- SHA256
  
  65ba33a1e0b21e8e074780a51189cee6fd9926c85273e9e7633987fc212a17b2
- SHA512
  
  a27089719adafc48b5abb905e40d0c6a0a2507526223d72c1cff36ab7c15362c6f0b8ee5775181ba1730852802afa64631ee3720e624b630e3274bfb32f6a59a
- SSDEEP
  
  384:mDfyPIlBk3yrt8qLjtpa+qh+rA4rsWRWrrMUtCPnkKYNlPp64ZnCD:mDfyPIlBk3yJ8mtpaplcp6o
Score

1^/10
behavioral27 behavioral28
- Target
  
  9.7.6/test.dist/tk/focus.tcl
- Size
  
  4KB
- MD5
  
  63b219be9aff1de7de2baf0e941cae38
- SHA1
  
  a2febb31380e12ff01e6f641fe8b4f815941462f
- SHA256
  
  8872f236d7e824aec0acd4bacc00fdd7ec9bc5534814ecf2160610c10647b7c5
- SHA512
  
  057700f8fde4b7c3d7ab7cefd6c531060bf2b1b3b727cad6a37ecd42ebc557765d94b83add438bd5afa1f6f919d80ae755a8d98918981167b871f31ad42fdf5e
- SSDEEP
  
  96:J3MRZZ7HWb/6OgRKjtS6Mn9GRZZ7HWb2Y6aO6R5nh76SMoB2kd82KtTpsi2D0DSn:CRZdPul1RZdFaRf0XoB2gZKZpsi2pn
Score

1^/10
behavioral29 behavioral30
- Target
  
  9.7.6/test.dist/tk/palette.tcl
- Size
  
  8KB
- MD5
  
  4ce08a10cd9ae941654b8c679df669f3
- SHA1
  
  f1288babca698fd18c3bd221e6ae6c02f2975aae
- SHA256
  
  849b4c57e4644e51beaeaeb3ae59b7ff067e582ecd10f1b2caf6b6e72f11f506
- SHA512
  
  0f37539da3540e9b1da7b0377e3bbb359b71db4271d63bc9501e95931b4e609e8cb91dc2f7b08a6452598d4a0d58c6a2034049a215000eef0f93a9963d003632
- SSDEEP
  
  192:HWh/x+hFMyTA/CTzxFoUuliRLDm8pQrQlENPyF3o48M6C:HWL+MyTA/CTzvAiRqyEw3ok
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32