Overview

overview

7

Static

static

3

!#Fileş_#...__.zip

windows7-x64

1

!#Fileş_#...__.zip

windows10-2004-x64

1

Resource/C...tity-H

windows7-x64

1

Resource/C...tity-H

windows10-2004-x64

1

Resource/C...tity-V

windows7-x64

1

Resource/C...tity-V

windows10-2004-x64

1

Resource/C...BK-EUC

windows7-x64

1

Resource/C...BK-EUC

windows10-2004-x64

1

Resource/C...TF16-H

windows7-x64

1

Resource/C...TF16-H

windows10-2004-x64

1

Resource/C...TF16-V

windows7-x64

1

Resource/C...TF16-V

windows10-2004-x64

1

Resource/F...td.otf

windows7-x64

3

Resource/F...td.otf

windows10-2004-x64

7

Resource/F...ld.otf

windows7-x64

3

Resource/F...ld.otf

windows10-2004-x64

7

Resource/F...ue.otf

windows7-x64

3

Resource/F...ue.otf

windows10-2004-x64

7

Resource/F...ue.otf

windows7-x64

3

Resource/F...ue.otf

windows10-2004-x64

7

Resource/F...td.otf

windows7-x64

3

Resource/F...td.otf

windows10-2004-x64

7

Resource/F...ld.otf

windows7-x64

3

Resource/F...ld.otf

windows10-2004-x64

7

Resource/F...It.otf

windows7-x64

3

Resource/F...It.otf

windows10-2004-x64

7

Resource/F...It.otf

windows7-x64

3

Resource/F...It.otf

windows10-2004-x64

7

Resource/F...ar.otf

windows7-x64

3

Resource/F...ar.otf

windows10-2004-x64

7

Resource/F...ld.otf

windows7-x64

3

Resource/F...ld.otf

windows10-2004-x64

7

Resubmissions

26-07-2024 18:28

240726-w4pgyszeje 7

26-07-2024 18:14

240726-wvc3kawbml 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    !#Fileş_#!UŞe~Passw0rd__~.~260717~.~__.rar

  • Size

    15.4MB

  • Sample

    240726-w4pgyszeje

  • MD5

    5be5cdf1f9a125f3398510fcca2d301a

  • SHA1

    481dec7f1b70c0a914397a3368a82266c839c7c6

  • SHA256

    78f03756220d71d6e16b2e7a8a8ee4af46aa61d79e356554c44cf2524e00961b

  • SHA512

    71c4a651f45150d3ec6069aca910e829d1da338e70e304f996920c69713fc8273038f11ca3539dd72c47a555d6087120927fc99873c42ca345baaa011ab33bcd

  • SSDEEP

    393216:2WsTINy65o1Y/SLXsIS9DNltswcMwFpqMZ8UMFxZQrDur:UVuKLXYdSwpwFpIUMFnQrKr

Score
7/10

Malware Config

Targets

    • Target

      !#Fileş_#!UŞe~Passw0rd__~.~260717~.~__.rar

    • Size

      15.4MB

    • MD5

      5be5cdf1f9a125f3398510fcca2d301a

    • SHA1

      481dec7f1b70c0a914397a3368a82266c839c7c6

    • SHA256

      78f03756220d71d6e16b2e7a8a8ee4af46aa61d79e356554c44cf2524e00961b

    • SHA512

      71c4a651f45150d3ec6069aca910e829d1da338e70e304f996920c69713fc8273038f11ca3539dd72c47a555d6087120927fc99873c42ca345baaa011ab33bcd

    • SSDEEP

      393216:2WsTINy65o1Y/SLXsIS9DNltswcMwFpqMZ8UMFxZQrDur:UVuKLXYdSwpwFpIUMFnQrKr

    Score
    1/10
    behavioral1behavioral2

    • Target

      Resource/CMap/Identity-H

    • Size

      8KB

    • MD5

      40f5dc1383e3e8f870ed8f763ed51878

    • SHA1

      474a429de3b9feba36cfa4ce4edcd4fae3cddc5b

    • SHA256

      aae946bc17203b5df12838d07ae5cafc9e85a1d42d1b94d8475ab2d42b77a5cb

    • SHA512

      69b6d3af2ccaae9437fe4e0206c44d29ec7a51f39334826737907e1126505071ba888f4134de55a07cf14256b47daf6d29cc73bab60f3c6cd7d8bb30e24778fb

    • SSDEEP

      192:QJeSrsQrsil/3gU+uSpo4cvkikNwA+KZwOyKXuU8fy:QJhrsQrsWPsu+oVkEKZnNz8fy

    Score
    1/10
    behavioral3behavioral4

    • Target

      Resource/CMap/Identity-V

    • Size

      2KB

    • MD5

      b5084cbf0ab0c3deac97e06cd3cb2ecc

    • SHA1

      c32458cda1951cecffb69aa2f7e3a1ea8bf36251

    • SHA256

      7483db44e4449a7ae232b30d6cba0d8746592757d0e91be82ec45b646c608807

    • SHA512

      b15f65a2ab21121a4b815932a7e2dcafcf27f458bce532ae46bbcbd6b1134153027bf3e138fab42457a89bc892256b4796bbb9f1e3a85f9f4c5202015b56e3a5

    Score
    1/10
    behavioral5behavioral6

    • Target

      Resource/CMap/UCS2-GBK-EUC

    • Size

      238KB

    • MD5

      fb9d6cd4449ec7478ee8ad1bd7465bf5

    • SHA1

      3d42495890e0f2acc6b564eaa79fe020fdd2fc79

    • SHA256

      66cdcaed3aa94525c59a82a39a93b96885883bffadea1e572464d559d21443a6

    • SHA512

      259467113cda70ba8d399e233bef8a718f76bc6b977ac54c216bd53796a8003e7a7276031388e282f1f4430fc2fcd269b06341f2082a9442a65bbccdeb767eb1

    • SSDEEP

      6144:JAYrjXraHOiu06s7SSC2RGaC4J7G27r7Sbtg2j35GEE9:JAYrj7aHOip6rShXC4J7G27r7Sbtg2j0

    Score
    1/10
    behavioral7behavioral8

    • Target

      Resource/CMap/UniKS-UTF16-H

    • Size

      128KB

    • MD5

      f65c06189a55139e13885d9716bfe35c

    • SHA1

      394285fed905d0f4c2c21230da50626b0a31a037

    • SHA256

      ab87d320c81e4c761b7a4cbd342e212db4ebe169b5d10848f2f57d828874e342

    • SHA512

      caf07d2623861f60d79acfb313978b89f9cd8feea0bed0fe28d25286d197b62b9ef9a41130586d731dc43aeae817eaaa87c9cac31d9bd1fdb82591146e0fa2cb

    • SSDEEP

      3072:EbOks6xITS4gmLJpAEhFDDvBB4TS+JjXsc:jjTvIN3

    Score
    1/10
    behavioral10behavioral9

    • Target

      Resource/CMap/UniKS-UTF16-V

    • Size

      3KB

    • MD5

      aba47550affb435a1dcc6b70efab5b52

    • SHA1

      754168e2c3b58fcfcb57b3ecf5ca5eebddfa1f47

    • SHA256

      7e403dae40df21fe3f9b221f7ce750f7f5bff9cc73d82d011c4bcc48a0db60ed

    • SHA512

      d46537b67ef7137fc0b715e43f23322dd1189db352235a4a5ad89cb6af3d3fecaa51c1c93dcea2a7e8fb8d25b18c3b0f2ab2f23df7a5a76126a47389ffac00b2

    Score
    1/10
    behavioral11behavioral12

    • Target

      Resource/Font/AdobePIStd.otf

    • Size

      83KB

    • MD5

      8653bfe4c32a8528e981748e28c59570

    • SHA1

      dec8dd8cba986f5852286c8b8e45c6270aeab65a

    • SHA256

      5dbc496c0b5a12d9f9ffdb83a46b9fcda8d1fc1fcd50832c783be5e9277a698e

    • SHA512

      66e39798ca8bba9af51f44e81b77ac1703f488b6361bfb05de632fbb2726e5f1291f0210be0fc933459bea78fa433177b33e34be977c079c97c5330d6590e7fb

    • SSDEEP

      1536:PmsMC/asb+Q+fGZNbDvdtlT9Mnlx643McbQqc80U0zy26RR38e8kscXqHZ3MD4ea:BMjlINbrdFMnP6hcbQq8Bn6IPksF8E

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral13behavioral14

    • Target

      Resource/Font/CourierStd-Bold.otf

    • Size

      29KB

    • MD5

      404952ec4d0ae00dd2f58fb980a99326

    • SHA1

      2dfa0796be958109d1558b771c3c8c77049a3945

    • SHA256

      a3c25f2ec60f8d44f150cd4e478067b06cc7267fbaaf844da600ce1c31c6e5c1

    • SHA512

      e9f60c1536663b11a8d262a49bd92b80bc619e26408464350a122b4cfa149900da754c78ea7e84a314f4c914497005409cc83dc8b5f55d725bba1bd5acb2ce89

    • SSDEEP

      768:UYJufmmvVJkJ7pFIJRUQXzUKOXBdbOIYvQXGPgfJVXhU:UYJu+mvPg9eYCzUKOXBdqIWQX4gfVU

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral15behavioral16

    • Target

      Resource/Font/CourierStd-BoldOblique.otf

    • Size

      31KB

    • MD5

      6804e7413898972e05823add91b1dfc5

    • SHA1

      4dfc3cecd9d3c26afaca087a69376eb6abfedeaf

    • SHA256

      698fd9169ad62bd6faedd1c8e8637abc9cc65b3b1a5ba8698242b1447303fbee

    • SHA512

      f89a494aa7dae22022cb4bddf911c9fb8f40220c5d49bba79e5b7f97191fcc2740088437d3e56e6903e0b10aaf5535b4ce08dbe793a0e800d23038196ebf5fc6

    • SSDEEP

      768:edluzc2NPniJMT9BvYsWShVcbZks6AnkXhUZxX:edluz3piJMpusWShVcbZkfAnk2Z1

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral17behavioral18

    • Target

      Resource/Font/CourierStd-Oblique.otf

    • Size

      31KB

    • MD5

      71ec484296a30c9379607e36158ca809

    • SHA1

      6dba5afa525bfb38b653e30492d59d839dc7a0c9

    • SHA256

      c54815a2729d633e400a6835679613090c20b91da6cb40fa761aaa475efb77f5

    • SHA512

      0a53ed3ebd858d093cdfc2b2acc104453c6e211416ae24a93c2a77feb3c7a5af8e2a27ca367194f8a6d7294cf36bec84a3b0c6af1ccb8047d9b0c72622a9c8df

    • SSDEEP

      768:jhDq/ufETG+B8jqsYTvBTOYDjcXfwMXY6TnP1xaH9UzGb4dmA:jk/uf3YTpIPzo6TtxY9UzGb6

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral19behavioral20

    • Target

      Resource/Font/CourierStd.otf

    • Size

      30KB

    • MD5

      f4c2d3851e2781b2b3ff60a2e34e81ac

    • SHA1

      779f9fee6d37c37a03601ec1ab406d055e8e7692

    • SHA256

      54cb5c8e9775cb432afe32b0af688536354ad04ef9c9f1450ee7c88a73bc884d

    • SHA512

      218cf55522d6edd88ad92acaa6d440f0f7ff2a0688948a834ef21eff7ca6a915622723720dae234e412e788ee7b722261b1a238a12d05c7f63f24d854fdad43d

    • SSDEEP

      768:px0Kx7uekYqrdC/MNVO6MFsSStwPHMjz9Qc3:j3RuexqrdGYmJStYHmz913

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral21behavioral22

    • Target

      Resource/Font/MinionPro-Bold.otf

    • Size

      205KB

    • MD5

      b3870be83f40b14cb382bd498920a137

    • SHA1

      08b27bce2db468785348f42e39b2e80d9107fb1a

    • SHA256

      6af523a01b268ddaab5177e6c0df5024f7192d72b0b1ca9523721fbaa2aa9257

    • SHA512

      0979d123ba7d84b564aa0f018ae49ed7a2c4610882e574547abade7abd2e743630ccc82dfe95c3fbe963731e33df5d34c2e307fd28a2e7670e2aacbe3b87f70e

    • SSDEEP

      6144:3z2HDNf6XZFWrRBPt2a+C5vDgtTBbhRRkBPgdG:3zaNWZFyBPONbhXkBPOG

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral23behavioral24

    • Target

      Resource/Font/MinionPro-BoldIt.otf

    • Size

      245KB

    • MD5

      a7487befbf3c7ba8c957d269d9ba24e1

    • SHA1

      75063a3db5e857b5565fe8ac9ceca74440cf2ef2

    • SHA256

      beb1ca56f9b4f89fb1549fe63a4bc578d2bd8747f967c1df26dacd3ded3f0223

    • SHA512

      1694a64790aeac2d789c75a2c664a62d19c3a487730bd368e2c76a78852046e94a158467dbed26783f8eb1c17e0d76e2c3150f6ec82131cc2bbb385ef931c1cd

    • SSDEEP

      6144:tj64FsxSslGgShJ2rgoyGgg4sB+73Lc8n+zYBYg:R6MsxS5rxglmOg

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral25behavioral26

    • Target

      Resource/Font/MinionPro-It.otf

    • Size

      246KB

    • MD5

      45e2315e99f24ab596f9d3aed29a0fc3

    • SHA1

      a73342db05275c6858984f25c0d1278e93bfbee9

    • SHA256

      90def22f2b7b3e4aa78a160084a7a2c8f28883b700abaedc004dc74cbc2d9b4c

    • SHA512

      1d479beda9f70055b0596e18d9f41dace4141defb3ba9d01f21c0262e889fe37b7d9f3558b37e7716196de5c2aa7668bb8b115a5bf4540763239f22a4d530cf9

    • SSDEEP

      6144:H5Pf8kkiiO4vviV+eehOtHU5VLO+++A3++awYHt:H5n8qrIthf5VU2Ht

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral27behavioral28

    • Target

      Resource/Font/MinionPro-Regular.otf

    • Size

      205KB

    • MD5

      a4ea2690cfd854b24c968ac6cdce9c33

    • SHA1

      efc3bc793479df1a34d76c42063997ad0e73c6b6

    • SHA256

      327cb2238a82a89176ff6601139cbd0a5cdd8f8e1e057343eae13fa9b1e10ab8

    • SHA512

      f722b32c397179b25e33b88771cb588c6f23a615533e3dcb21b34052e2930f935dab58b7ee5a3098912a41e6266b5f26b86602cf57bff41917d634e55a86c52e

    • SSDEEP

      3072:kP2Ea79vZp3MeJymLbVQbKH3L9jLU2jRM5eUlVsXGUPHTfeoAL3sBgL/4tHRkBDB:kP2h76QRMUoVsXdwsBw/kxkBgW

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral29behavioral30

    • Target

      Resource/Font/MyriadPro-Bold.otf

    • Size

      88KB

    • MD5

      e6d1585e6c81e3206948d8548d914fec

    • SHA1

      4bfa4d5ad9995bd89e2d443009e4ffb728a1f74b

    • SHA256

      2d09971801f2c18fc5a825379404113db237866073ab463a9bf0f3da8c62459a

    • SHA512

      058cf93ea2be4e98e752a4090f295e00bad37b7db9d4461cf7484409af5087853653fd82aa7475a85950b48367a1d9168cc8983791b78dabeb8af4f84397a264

    • SSDEEP

      1536:ruMpOn479vZp3MeJymLbVQbZg8Lm52cqU5mJm2Tg9gHsF+JSqyi+GGGCRqBtUwah:CU179vZp3MeJymLbVQbZ3CrqUwJmStEh

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks