General

  • Target

    R D X E 6 5.rar

  • Size

    10.7MB

  • Sample

    240802-hw6vdaxbmg

  • MD5

    bf488a28c0aa529bf8ff779b673d58fb

  • SHA1

    687f8e7164f642d746a7c7b7dd5c1c70d1e1453c

  • SHA256

    f29f8a8d5cf10644a4fecee5eefacfdad688b0b96540cd68ea4ae7058bfe327b

  • SHA512

    3c02bd2718eaf58c7cd70c6cebf1c797a5cab5a684918eaa5068e836897c5ef4091f3dca1badb1bb86557a8ad103b1de39b5e19efd60029baf67f13244e0c542

  • SSDEEP

    196608:qfMWCbdJFQ4G78fFZ0sqBCaSqLHjgIoX8ExcBjP3hIksFQQdO5:hWCJfBFZ0sCd4IoMecV/hHsOQc

Malware Config

Targets

    • Target

      R D X E 6 5.rar

    • Size

      10.7MB

    • MD5

      bf488a28c0aa529bf8ff779b673d58fb

    • SHA1

      687f8e7164f642d746a7c7b7dd5c1c70d1e1453c

    • SHA256

      f29f8a8d5cf10644a4fecee5eefacfdad688b0b96540cd68ea4ae7058bfe327b

    • SHA512

      3c02bd2718eaf58c7cd70c6cebf1c797a5cab5a684918eaa5068e836897c5ef4091f3dca1badb1bb86557a8ad103b1de39b5e19efd60029baf67f13244e0c542

    • SSDEEP

      196608:qfMWCbdJFQ4G78fFZ0sqBCaSqLHjgIoX8ExcBjP3hIksFQQdO5:hWCJfBFZ0sCd4IoMecV/hHsOQc

    Score
    3/10
    • Target

      R D X E 6 5/Client.config

    • Size

      33.0MB

    • MD5

      157bca5bfbab154797fbbe947946084f

    • SHA1

      280096391abd2ea592198d205b6e44cdd2408121

    • SHA256

      f9aae2ca83d60ae3a6e443d23c91672cda766f73003e4f3f0f99eec1f336d946

    • SHA512

      5fbbaa59d4425779ecae554372a476414a60b70fe190ca408a0505b13064866d1576e6409e657d2933cd5922a053aacdf7c01b457b3385476dabfe1c46b5c1da

    • SSDEEP

      786432:BeCve2OlHAoFfgrh96BKMZvBx9ImCrWFi6:BejjlHAopI9xABx9ErWFi6

    Score
    3/10
    • Target

      R D X E 6 5/Roblox Executor.exe

    • Size

      150.0MB

    • MD5

      2deeebca12a7ad34853fdcd49c37dce6

    • SHA1

      31b89e4dba3453b6d5586c31a38dea21ffbb8980

    • SHA256

      6f5d9fc697149670937135f56c7201bc59fcc535b6af45924b7b387fa0ce2a9d

    • SHA512

      6826aa344d3a3c6776d43912518ef350c97ac6cd4a5817562e436daebf399f2e7ea25ce36ade106915864b375a8c87377753c87f344717405902f50ad7685e6a

    • SSDEEP

      196608:5kfkfkfkfkfkfkfkfkfkfkfkfkfkfkfkfkfkfkfkfkfkfkfkfkfkfkfkfkfkfkfT:4

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Credentials from Password Stores: Credentials from Web Browsers

      Malicious Access or copy of Web Browser Credential store.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Enumerates processes with tasklist

    • Target

      $TEMP/Coated

    • Size

      67KB

    • MD5

      de6b5151716c518ca828acbeaf268392

    • SHA1

      ba5303d8b7629bdafde4fd2b115c00acf09e9086

    • SHA256

      9e8cf4d3202a7b2360c082c3a0d2424d6282b356a79f9ee4f9e8e12d83315c50

    • SHA512

      06507bd4dcf2111bc15e346ad7369faed9511d65eb7c27e539503286482f5555395bf80e8a8d05d1e6cfbc58ac1df5790d6760602676fff18c501a78d924bf4b

    • SSDEEP

      1536:ZpkpB9xouNqa8zZa3O62nnHugXZX0TRVkhbvERVY3+haF6Odm9:bkpDxlNq1zI+tnHzZX2bivYaF6h

    Score
    1/10
    • Target

      $TEMP/Extensive

    • Size

      15KB

    • MD5

      ac42d5441de0adef871954986410ba00

    • SHA1

      eb6db0d64ecead6e915f3bc0e35c83ee3601c1f4

    • SHA256

      e15447ad274539d2ca86aafdf8842bcb051a725591daac6566eccc9448a1a533

    • SHA512

      4ee4622a52e269fd8ea554b7dd47c72e34d5a609d5ba15d502c065857878149ca8bff0a2cd243ebfe2f928c57302e0e367d9e5e1c3bd3a1675d5775446044828

    • SSDEEP

      192:VNVrFl9SzdqGElsEKH/B6Te6ks3XQDyLwHV3L5hJuub:VNVr9LE/Mpf7wHZ5fr

    Score
    1/10
    • Target

      $TEMP/Franklin

    • Size

      19KB

    • MD5

      440abf8c6117a7c63d1a89907d101c82

    • SHA1

      6c8d04e413d266d9036dd0295ac81b18a807823b

    • SHA256

      87951b9b3aebda9baf38712457ff167f29a7bea7f3fda8dc504915906c0a1391

    • SHA512

      89e00cea40591d94453e637d6fa41273f95f9a1313964f8c659cb8cc522351e7896eb478dc659baa5f290dd0115fbf7b31f532087c31b4814ff9bd1c8a52602c

    • SSDEEP

      384:D+k7B/oPN72jljSKgaEVXqcBe3ASH7djM2COVtDL:Ck76PJslrmTAp7djEQtH

    Score
    1/10
    • Target

      $TEMP/Gmt

    • Size

      25KB

    • MD5

      186d64fdfc3ea4224f8e06c0edace3a1

    • SHA1

      9a49fa93c3244c4f95b9ce00e41a5f4ed1ecc9c6

    • SHA256

      828c26d76315593f0a048556f416a7800a344a9b7d28fcf4ef3af26653b31058

    • SHA512

      9b32e48d54a584fee7c9ee8315a3a25e32754954b0fc14ca36a85f578a928c1506f2a2b6beb8bcbb818ca1c1bea0c57704281faf49292f400aef472dbb81460f

    • SSDEEP

      768:B1UxoWS2u5my3L6We60gNNiOfdjxnePB/qLMH/Uo:7U6WS2uoybhxDfRYC6/p

    Score
    1/10
    • Target

      AdelaideMumbai/Dildos

    • Size

      69KB

    • MD5

      dc0f54f1316329c07c70531637b15eab

    • SHA1

      2e1a206f6a838d8e36dacb14551888551986574f

    • SHA256

      f842aa68b07dc34beaaeff3ea33a94bbfb175ea5af9c5d5c547505ac6e6dedd8

    • SHA512

      dc9d8da33fd0ef7a52369f1dc6a9676376557eec178910f20b4b276799de3836f3cbbee28a1af5f3a6440797ef8eec55fc8859fa162e3811b8c38b6fa7490ff3

    • SSDEEP

      1536:CqKH5a5htB+vTZsv5sjBz/bxvMz+LcArlNUE9TjFq9iOIXyTsJ0Oed:0Hk5B+LNBPcAvPTjFq9iOIXyTw0ld

    Score
    1/10
    • Target

      AdelaideMumbai/Earrings

    • Size

      30KB

    • MD5

      00ae46ab3aa5a92e9d238b7e6e8fb205

    • SHA1

      684eb258478e472c103c7802bc9df849e65e8285

    • SHA256

      b9c3d3cf56bdbd7a7e9e256f06dea2b359637224b885549f4f4bc3c08fc6523c

    • SHA512

      27c32b060f9f2a00e7da0f397a7ca79afbd38dd02345b095e0b44f3f0ceb678a73e6b912d812e6621dcab36c681d6110d432bb3fc1fcb2fe8f410a15f8eb0850

    • SSDEEP

      768:o0h2xmqDN2T/JW6e/Q/cXIl2EX4tXyeXxleXhb0:XoqRW1Q/c4l2xyehleXC

    Score
    1/10
    • Target

      AdelaideMumbai/Form

    • Size

      14KB

    • MD5

      a3799c30c49f427fd428e7f6a0fff003

    • SHA1

      a058a6b8273fb473f845b7c6b04d5c6a59b2a948

    • SHA256

      9d71433072845a8c14858307cef5e2ffcf8698763e5aab2af9b114c602e0b296

    • SHA512

      9ecc01c28edfc2d471da558d53ac986db0786b9bbbb6731104e60d054709349c13b9d650ae8680da3c4d1b30b5df4c5e91f44a2f3467e21c3dce4cd8b15ceca6

    • SSDEEP

      384:vR1ncfWX2mwcTVmeOwa9XyJZW06WCHAdjs1f9QrEMetI2zbLJSlvuHdUYzG6:JUMEMUnLm8dUYzr

    Score
    1/10
    • Target

      AdelaideMumbai/Pads

    • Size

      113KB

    • MD5

      52b2e6f8b4011e965ec6f7dbfe8e1b50

    • SHA1

      2129060c67c7ad95e574d0b8c7269f09c7db7330

    • SHA256

      303fe0456bc85d89424eabce9e35e34b69051a8b801f668bd6ef8e21ad5ce880

    • SHA512

      ecce3b8e27dcd5506f33a7d43fb6d633fcc85e71f4a5209c484dafb070bccba1fdf7c487655b454e1bb3fb301e07cd09eee5d6c1a95e6c3a345453ec40f4e9ea

    • SSDEEP

      3072:jiD2yrIsgeuzz0YvmOhA7kAQEcFClNdUiEhyBHhC:mVJgeuOOhA7HQBgZUiEhylE

    Score
    1/10
    • Target

      AlikeIraqi/Compatibility

    • Size

      44KB

    • MD5

      2b76a50502608718038cd1b6746f8735

    • SHA1

      9298ce71cfe475e439d93374f2f0483e143b9a0c

    • SHA256

      bd8070c986a8ac35520572712dbc54e4d0a5993593d485061cad46b69b6e54d8

    • SHA512

      5c71dc4540b0649ef8b19c6ed91fc591297cec08738d2fd14211cb3fa01b826fd2476e46f596fed85a8286d34648076ed4e27d56224031cfea232f1ef4a733fe

    • SSDEEP

      768:eGnqjVWWgvdcm2uaCcU4UZt9v4yl4qMHUPe3vKOvyJXT6K6Lx3Tbb0/bcrRI8rUA:6hgt2F9m+qMHUPe3vKsyJXT6TLx3nS4B

    Score
    1/10
    • Target

      AlikeIraqi/Establish

    • Size

      43KB

    • MD5

      f6904230a7d48c4c2edde69374b21dfc

    • SHA1

      04b03cc7343c3605c232725b0d38f976993f0394

    • SHA256

      7aaca382da383b7f4d8aef505ad4a9703890ba4f506af89a29e9627ffeb94493

    • SHA512

      38e108343408e6774b1b1b149531726f5ed317b882490dea4b6a7566b91284fae42476f3f58a31ff5c3ccaa6463c0e65d3e7cc050278bb6dbd9299ebdcb40ec8

    • SSDEEP

      768:gak7jbWyw2QH4IYkNe4yU6en8FZ++oUhPtLuyfGby2QTcBMHa9kV6tjwqLDEt27d:G7fWJhNz96en8FZ/oUhPDZcBMHa9kV6N

    Score
    1/10
    • Target

      AlikeIraqi/Negotiations

    • Size

      20KB

    • MD5

      c4def423e93ce3cfb1fc4290c1970a50

    • SHA1

      711a88306461e6135fdd4eef98cd0fce41b9642d

    • SHA256

      c09b88e1d762ba99c4a917ef5cf5e11f6daee96c8f680d6b1dad5cdff2535b77

    • SHA512

      9fbbb7629b067422d076b584ca153f3cd7fb8a75dd5691aa273c80e32dd2520d395f212c40613d21a31ddae7c484f981a358d0503c49f419141423e0912f26f2

    • SSDEEP

      384:RfEefKrelgavhytCjWoQL9dR0Xvwp52UW1l/hw50gFQTVaeCVz:mefKSlgaJyc3rE2UWb/hMjFQTVatJ

    Score
    1/10
    • Target

      AlikeIraqi/Partition

    • Size

      86KB

    • MD5

      8f84706c182e01d62deb20f6b423c735

    • SHA1

      3d8619ea24c496669b9c8bfee2be1310b09653b1

    • SHA256

      de23f07a8625a56aea5606deed7b8315f3eadb73d3bbf01d72055c4532c255cc

    • SHA512

      3aa75c4b0df72af7120933887a07b215e43f127ee4ad9c41b36a438122a4e011c88997c057c8d14157b2cbc28595ecb512c0aa317cd92bd4045e438552908711

    • SSDEEP

      1536:f6Odpn9vDVz0Ck9/+kvk1H697R0nqcziw3ZUuziTHy/1XK3:yIZtk9FMw91E1ziwJHziTHy/1XG

    Score
    1/10
    • Target

      AlikeIraqi/Racial

    • Size

      24KB

    • MD5

      7436bdf8dfb8273f5f6e1cbd7e62f99d

    • SHA1

      d3cd76a2b4a7ff3685f6771a6fef9f2db4294b4a

    • SHA256

      4b4f50e8572f19a31fa5a2843f3659142a0c3f465c643ab294d65970f763f5d0

    • SHA512

      acc4e0dd7e0b4e65738a6aa964221751c51fdb8c5bedf61463af7da2fce50af75210e03412e16313010277d0f4098359346448177e40bc721deb9a79e9c29dc8

    • SSDEEP

      384:LUFDSYm8F1V7pHpX8LNmHceGDe4tMq69MkcX/j4QOwU/sIo1OjXOsAtjp6aQ8UEa:kGY3PV7p180HcjRChcjDhU/RWEOrsaQJ

    Score
    1/10
    • Target

      AsCamera/Sharing

    • Size

      90KB

    • MD5

      99d30f06f589c3074716a74e2a64bff6

    • SHA1

      494d2d764acd9edceb5ac2d8ffb5d57173116c28

    • SHA256

      881eca41fc9d0f05c1062d1ba3c7e4024aa3e6b6f5a2b7789631fcf59a74047c

    • SHA512

      ac18a93eb0ea14ded538332deb123a94e42b1970e42b86d33643fcb0901eab2011bae4f20f75fb8442a5e8a07e82c2c030c0b9c41cfa00f950d476decdf8be3b

    • SSDEEP

      1536:5HzeQUXZVt0kR9NZK787rYmAygbF8+aej7ODovlWfr27O1Ltsw:W/B9vYmAj8ajxvl0SwLtsw

    Score
    1/10
    • Target

      DownArising/Appliance

    • Size

      39KB

    • MD5

      8f1ef900961713fd15a5485ac82e6db0

    • SHA1

      b608d5dae7a8f49f67a7e42d1fc48a0efede23a3

    • SHA256

      59540026fd83b82053725f704f45800e74d35e0603de22f518331158d4b7910a

    • SHA512

      4e3ae48b1de264b96bba06e24f59d661dfd10bc91f7cd3fbef3cce7752db2b08dddec3ec2003144f63f2bd480b6b72d044e1664f8db5a25ed362688ff5b86093

    • SSDEEP

      768:emoJd82J0Ad0bt1wtFoXwUdFWIQIirbIDzCmSV4MSoYvgF1CCGhI:Om7wrH9rbjF4vvy1CThI

    Score
    1/10
    • Target

      DownArising/Freebsd

    • Size

      113KB

    • MD5

      31deed9172c897b8875b43a8944a9fb3

    • SHA1

      a4fe387247e0de4a06e31e2d624ca362dce93816

    • SHA256

      bd337dae0d2e57a03082881145f29e283cbba37cc19457775b42b098016be0e9

    • SHA512

      7d8f3d8984c163eafbf44287696f3165e5dce1e551e85bc4dc3705dd8b126c5f9a0a8a47644efd00d140e8bfcb11916baa91807747a3e0e6409a6935ba3196aa

    • SSDEEP

      3072:wFwkfohzYHBsYXqx2+zn+5nqLP99ByPb+PaBvJGvRp:wBQeHS1xEqbv2+kaRp

    Score
    1/10
    • Target

      DownArising/Guard

    • Size

      6KB

    • MD5

      5690590aeeeea1aac5755afd16033e2d

    • SHA1

      2d148b1ce8e3d0b91d330e1bec4a37a1db1c9609

    • SHA256

      c6c575141fb0581b6f6d633358f39bac4cddc587e68e32e48f0261081e5a8556

    • SHA512

      b181cbea6e35477a3fa66bb980751cc4a6431641557a184bc8d7adbc9875dc4bbca11d381c97566aa75f78eb118768e28f50cbe56ca7c0efbe068e0932035380

    • SSDEEP

      192:dXVEVFJ84kcGNq4/C+Q3ISVSWMZMQ3KaUMGy:pVEVFJ8ZcGwGBk7/UMQ3K6

    Score
    1/10
    • Target

      DownArising/Min

    • Size

      49KB

    • MD5

      0588fd3c0eab57324dd0fa9c555375ec

    • SHA1

      6ede4fe8ba3e326c0e402adbf2d53b9ec1cf3bff

    • SHA256

      144de2255e156910e1f1eb5030627d7c3102522a3401ef750afe70797897f300

    • SHA512

      6b96d8ce363165c8accc831a8c5137e32490faacfa3b0e18a3aa4841949829c9b48b0040a752523ff06309514d175cdc092459e5ef3ad9cb643bafa90e016ce5

    • SSDEEP

      1536:yqII0RAuTtCHaVejoaLjzZU6i5HkY5RrVGyanwUhI:ufA6Gfza6iyY5tVGvHu

    Score
    1/10
    • Target

      DownArising/Perception

    • Size

      7KB

    • MD5

      0e9da9dd06e780c7d146ad6911ba03e7

    • SHA1

      6c3a6b058306c207d9b03b1f281ce7b329c579b7

    • SHA256

      4f67016250c9e8f4a94e25d3f4ee0e99e8e68dfd7583d2178c5647d2d92f9b8d

    • SHA512

      f230d8ea76b9b9da4b78fbc6a5917f8cf446dec9db4d11dc77b2f549cb6ad8f247c5970453b6c8f896eb7cacd585961a24c6011644bfc786a2570b6575b02f97

    • SSDEEP

      192:4SHSu3OzAhDhQTQtJ2GvvpXfU+T7bgOFF9NTAler96Paf1Z4rP8:FV3OaS22GnpPU+TPjNTAQJ6Pi

    Score
    1/10
    • Target

      DownArising/Phantom

    • Size

      58KB

    • MD5

      fe324ddd0dbba610f2f516fbd2d17edb

    • SHA1

      cd249f198b26392641f4e0ba5d21a731df308b4a

    • SHA256

      c1230664f8c6ea953763682f254f78507120fc29d7e8c42be1d8a6648b0e3ed6

    • SHA512

      71ff85e4fcca5d7bdd0d4aad3c7db27284a3efee71007a416c353bcf54e243fd8e18d8daddef7f80b03c574ab123f246f7a7cea08b7cb610af9b99923c411e26

    • SSDEEP

      1536:0HZnR2Uf9MoHzBxKPr3Ii7Q6YxIjZYVVSoNd6B:0HZnBfzHl8Dz5YaZYv2

    Score
    1/10
    • Target

      DownArising/Realized

    • Size

      63KB

    • MD5

      0eea7bffb1a9c205f9b4180ed85b31e9

    • SHA1

      bf69361221caad1d1904ed71988a2192f97c1109

    • SHA256

      baacb210f51fb70083b106a45ce303f33acc789be19c9185aa6490e1dc6ae5e0

    • SHA512

      dc2679f4dd5b1c805e8b9b7527b94d6607d96779340477e5c18af2a44b0fcdee32a47997f98e53562cbf689e3bee3362a6b9664ff6505559b127b260a481d44e

    • SSDEEP

      1536:AgEtEq2fG8YWqbmJYT5yXDlY9/UL4sgTNU+ufxv5iO:A9t68cCWlrss4M5iO

    Score
    1/10
    • Target

      DownArising/Serving

    • Size

      69KB

    • MD5

      8dbb85b35a2b4055cb548b7f9bdb88fd

    • SHA1

      c90d47da0fc760e9648983a206a285cfd38b9f04

    • SHA256

      c78223a5a2d3d6841f549fc49108f5253712338f8d3d6256528a4afb88d3a0c9

    • SHA512

      114b8de10fbed7a8481d62430610f1be05efaa8ef55a445a6783d563e0b06cde267bfc06fbbc9ec3890fec783782ca61336a10e49b28a89c03c182fde4fa9b4b

    • SSDEEP

      1536:mwsWcfcd0vtmgMbFuz08QuklMBNIi9u5aAwubo:neAg0Fuz08XvBNbIaAtbo

    Score
    1/10
    • Target

      DownArising/Theoretical

    • Size

      82KB

    • MD5

      388cb7d901d74749c5ced24e23f55a90

    • SHA1

      e7e7377fd08841a1dccc006ae516c48028225506

    • SHA256

      3941784811b5bbb7b44adf03f4c5232545590c9757d78b6c3e659d1a7ad3251f

    • SHA512

      8694eda3d2bcb5ed28de6d9fad4d685e2b4cf67082f4d6efdc34b278a6c6f7aa93d78c1943add0e0859b142a013e61efb419a907fa542375e8d04d2f95f98092

    • SSDEEP

      1536:oVTdTCX1YivOWPRcr0A5MRClgwIBt5pGX64veAIV0bdGY:otklY2hKr0A5MUgl3pGqaeAlbdGY

    Score
    1/10
    • Target

      ImLogin/Civil

    • Size

      14KB

    • MD5

      9c3ebc0b1ac3228eda33bc9a2c3140e1

    • SHA1

      6c1f71ea964e20ac7d3e8ecc68a8ea88282fbb73

    • SHA256

      c5b68fff5ec716c0d8e4a7a1cd6b0cbbce70282269a746df42f63f8e038bb944

    • SHA512

      0458f9280eab0bd276c8c0c94d852b4bf1dfd36b8ef81f65daea16c3fde24456fcc403f88f9613b52447a500966ef7940ef74e7c40f1c819004dafedd61e60ea

    • SSDEEP

      384:TJkWVBJV/wJFU0YH0HmZHZM5dFNketETxTUA7Mw045OTMiwsSPh:TJkWVBJV/wJFU3ZHZMwetEOA5p5yMiwv

    Score
    1/10
    • Target

      ImLogin/Destroy

    • Size

      46KB

    • MD5

      b1afddcb17d350eb4d2eb88f0a9d440a

    • SHA1

      307ef5511271ada84188bff3d8e6bc5a3ec757ae

    • SHA256

      a34b1fb0cf5d079fd4b445b5546f91bc3a2790ffb752e9e56ddc23faefd784dc

    • SHA512

      551b8d7be955ffad936440dd018cc548eafe8e522de070a6cdf6239913a5c4ed363a39a335fecc6a561896007fb24c973df2bbcadeeb8ebc62d6b11d815947dc

    • SSDEEP

      384:HQXoSpu88888888888888888888888888888zv888888NfU84444QnoooooooooV:wx/S4

    Score
    1/10
    • Target

      ImLogin/Fully

    • Size

      24KB

    • MD5

      f9582c6b9c97bb8d55ae88fcbd7feecc

    • SHA1

      8e323c259482d46a1f1fb9152e42be003a55fb64

    • SHA256

      302a4d9b3b0b7ba686ee579981ff98eee3ccc4d851d0e0535db9344d43ce58b1

    • SHA512

      00a2ba1f4dcfdbb273ffb3ac3eed97de8c5d1d546dbc70422c215b59e830919b86046519f815b0e8e0a704b5d6ea85b31c160eb1c16b63458bc9d0740258f4f9

    • SSDEEP

      384:5xgldGeI0aBpmbPjuG9MNYYuFuQ2iAWIrKsO9dFUdS/tibB5RLmWW/rSj2f6vSCo:5iILuTjuGfFVZebxdS/tgB5l6y2fKS+Y

    Score
    1/10
    • Target

      R D X E 6 5/ai.cfg

    • Size

      44B

    • MD5

      73ed0e22c8cc70ed93dfd0c1b8f81e19

    • SHA1

      f16c87ca3eb393ee34f57fb59781cd37f5963db0

    • SHA256

      db9ec7ae21d140904d44d6e6550c0c964e32ef11c055696b355835905c9c3a53

    • SHA512

      3dbe1fd660c7446c4a70c99cf6bf7909c76cd02ca24930bdeee851da094850b2fd6f6742025d215ce7dbf3348225c0b64d28e3f1ba133bdd9c7beece84d7e54f

    Score
    3/10
    • Target

      R D X E 6 5/cacert.pem

    • Size

      2KB

    • MD5

      39f89143815797c4a41c62f30f137094

    • SHA1

      39a602c37ee958e5a5779c167ea095a56f0218e4

    • SHA256

      5513aa54afe134569e08b27aa61e60e888ab31d9e112f8c5881adbaecc817678

    • SHA512

      02cfee4a3fdc728e63e5a63797c58c5a6fbd805f6f6e5c0ab4e5dbf1d1701636a6aefc94095096b627b7475e731327d620c519ddc1a65b3ee49dd41b4d219d6d

    Score
    3/10
    • Target

      R D X E 6 5/config.vdf

    • Size

      14KB

    • MD5

      bb23e26ed15c9951460513efdb0b7ac7

    • SHA1

      41e15b1f30840160ea095f0f415ac3afd6d06968

    • SHA256

      9fce8b4ac41455418615f2785199f72d7fe6ce39d8cd9182027a752c4f26d04a

    • SHA512

      f3f3e7ef4765520554fcb523b43f448b28b29fbbf150657728084b720fca4568a23a3846f37f3c57b6710fdeb3761fecc190f468944ba1a687aad0e8f7af1093

    • SSDEEP

      96:o9lCt/5KFdRBQ20LPr7U8Op3y47Zu/ZqaJOTFogkU:o9MtBKFdRBQ20LPr7U8OBlsRq8gkU

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks

static1

strela
Score
10/10

behavioral1

Score
3/10

behavioral2

discovery
Score
3/10

behavioral3

credential_accessdiscoveryspywarestealer
Score
10/10

behavioral4

Score
1/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

Score
1/10

behavioral18

Score
1/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
3/10

behavioral31

Score
3/10

behavioral32

Score
3/10