2da12b9469f2f6dfd0f0ded1dd9978d36e081bebee7e01d10b16b81492c0241d

Resubmissions

02-08-2024 17:08

240802-vnjfbssdjp 3

Sharing

Copy URL

Twitter E-mail

General

Target

Natro_Macro_v1.0.0.1.zip
Size

6.9MB
Sample

240802-vnjfbssdjp
MD5

4f32d2e2ea54c71524e3f2c77a92c91d
SHA1

a863c33cca3b3c2cf6cefa18a599ae9989f06d84
SHA256

2da12b9469f2f6dfd0f0ded1dd9978d36e081bebee7e01d10b16b81492c0241d
SHA512

690eb146832fb174a3e0a69c1cf0919c72331b1fec7791c23c4f037fb1916c520b7c954a64e847765eea4db7ac506790db3f36c24eafada174a268e4f2232374
SSDEEP

196608:vDnUR3R26Ghs3T3cN5q8DSt4aZQyPWnzkDQMxYBE1AydMPJ3o:r43RohsbJOQPozklGwAyixo

Score

3^/10

discovery execution

Malware Config

Targets

- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Allure.msstyles
- Size
  
  1.2MB
- MD5
  
  95df1e2542700dc6c45d22ad4de28c02
- SHA1
  
  5255f77ce1439cb639e8b525df911100ae64b332
- SHA256
  
  39e78b8cf604c9c98c728f28e5cb20e497de710b5ca1202d150d7d5ebd8a79f3
- SHA512
  
  362feb5b3fc6b0e87aafed2fe9f35025e31efae2452e4bda1589862c980ea77dcda475a4f729d49f5c7668ff13a13b1bd2af889b007b3b41b7931524f2c94f6b
- SSDEEP
  
  12288:ZpNrmiRwxONrTSBCKENr4qh7XxsOIwSU2myr3jSZ:mgOjg
Score

1^/10
behavioral1
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Ayofe.msstyles
- Size
  
  748KB
- MD5
  
  b6bc75ac74e2ba51a9e9870822c415b3
- SHA1
  
  63fffde4572025f4ebbb4f2f26c3e2c7612e0b03
- SHA256
  
  e6af741c1c75601a984ba00d9683e593e1efe151ea24a544a2253c7a77e2fb53
- SHA512
  
  e4934401948ff16f641e6159ade8233d7d8bebd703e9a2b852349c17f7d2caf4117e29fcd6f534aad94430de1990f42b65ca28078de7dd95a5ffebc94740b2b3
- SSDEEP
  
  12288:BCmPDw02wamPzQcVZKmPjAcX6El1feeLD3lSRjen:deeLD3lSRj
Score

1^/10
behavioral2
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/BluePaper.msstyles
- Size
  
  6.1MB
- MD5
  
  e4ad954e443a58283079f84b0e27465e
- SHA1
  
  97c700dc03a94d6828b2adc5772540e68c021696
- SHA256
  
  f181315b09138d6237100afcde1760890d3933731641bb258303b2a4a2f54939
- SHA512
  
  87fa7cb9d98514c9b44327522df4eed5906431ab7e17f6fdb5d9ac332ab26341608e952a0f1a54b01e37844e09cede48c30f6d1c6b7043c549e4a358e1e80bd2
- SSDEEP
  
  49152:qX42ZP3lTjYkJnhxPlHHyWzTtRHXFP3lTjYkJnhxPlHHyWzTtRHXR3nKnJa:D
Score

1^/10
behavioral3
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Concaved.msstyles
- Size
  
  3.3MB
- MD5
  
  f7fb5ba776ecece641f671d7f5f9d380
- SHA1
  
  57f169d12fabbfbd632eac41e71dac408f6fefe6
- SHA256
  
  ced8d4005fdd76789b41c7da560348b3339376d27571e45a6803cc7f72c7b6c7
- SHA512
  
  85d7438caa4b569feb81795f385efb967ab3b0fd996c1160ddf4a70df21e700c163d2b0d8ed9abbdc84e9dfdb0f816e01fdd1b60a9e3ddca6a6e3a641dc6eafe
- SSDEEP
  
  12288:HyJqSSmY/NBuai2gWBJqpCGqHmBuRS2C+1JqEa2a/qBuMKmy8ygC6ajja6sxEK6c:Lo6ajjahoc+E9ajjap6K
Score

1^/10
behavioral4
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Core.msstyles
- Size
  
  2.2MB
- MD5
  
  c716abd7a1c92c85afd19a063c3686ac
- SHA1
  
  3b19bc0296940b9bb7c12dcdd0db7dff42cd989a
- SHA256
  
  0f3c9165492331b8f9d398d813c6ab31207cb7bb1f1d699bfb739ffa6fc39eb0
- SHA512
  
  ec8c0a6dc0d4fc46585c9c03822865637129fddc91c220c481a30423ef275429bb24a8ca6ce0c93fd820b8832ec7736fd96b9520db4d58fcd2a07c15ebdd958a
- SSDEEP
  
  12288:qbZFWsLk+xtPBE7pcyvVKckrZRbX908+rTsVy8PZjYgvdUPMBaDLV8X:qml
Score

1^/10
behavioral5
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Cosmo.msstyles
- Size
  
  2.0MB
- MD5
  
  4e2b5754d97906a903b6fda841cb69b6
- SHA1
  
  101308746b29baf0764c3d458def39e22cb403ce
- SHA256
  
  d6d8683247179da22fa970a677a5800ae9e38f830c6366dfa01cd9a1c5318d81
- SHA512
  
  49ddec823d8d25b238fa32403d825e287f86357d29738b7d82f142af18748dc63743e430bee72f888f361e4beb55a29b27e20b0640adf1531e9f5085d6f6cda5
- SSDEEP
  
  12288:VpbFFS0yIRLd9KsaK+bF4C0g2GLdA6sYOPbFQSsxoXLdoqURkJv:
Score

1^/10
behavioral6
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Fanta.msstyles
- Size
  
  880KB
- MD5
  
  2a66e29c57c7459585fbf5ef71cf17be
- SHA1
  
  a5ad3958e13a9b124f9ed84d4d58784fec0ad21c
- SHA256
  
  63ceeac9fa52c603a9b5f0d125768521b46faab2a48935d39979897aa7e5b5f7
- SHA512
  
  aded6530582b4de6198df7b96e70413ab68bb191c76432df3b8105e3fe5be273623be5f2d1cfbcecb76c463d325ced6aeb5fc5e444b5ef2ce4254e0c347f21cd
- SSDEEP
  
  12288:DJF0JCJUVgF0aip2CEF0fiJPbGiHvN3HvjH+2pEJYdS3ufmx5mx/fmx5mxCYYqYd:AiHF3HvjHZS3R
Score

1^/10
behavioral7
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Graygray.msstyles
- Size
  
  7.4MB
- MD5
  
  6a33ddc3100e5b69a890cb393e1591c5
- SHA1
  
  2f6ec2428b55505b98ba6b16ffa87dd3e92cac23
- SHA256
  
  902f3736cf4e55d113f4529bf9ad38c09f2d1b89d75052eb84f0bf104e52f462
- SHA512
  
  04db311811d2c5c0885ec3372afbe7143c90de30550f75f37c03c9c5ee501de6379464a4c366a80a8078cdeec4f98efc16d92272b70d7ac95237c41acc98ca66
- SSDEEP
  
  196608:Y33333GY33333GL33333GY33333GG33333GY33333Gb333333t333333X33333GO:
Score

1^/10
behavioral8
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Hana.msstyles
- Size
  
  956KB
- MD5
  
  7d10d18eb56f310884a50d27a730d9ee
- SHA1
  
  b340c45a389e7bac4cd398322c5d8bdf768e182b
- SHA256
  
  c380fb11b344573b86ac56c8aa722116ba17aa323aa978eeaa4181fa082e1dce
- SHA512
  
  997e855ce3fc1551a7a473c29d68bb54773b02f526cd4c5f8e52b779712f7a28e2cf952f6ad99852cb3f82d13651bf73ed382cf26541d96ddd649dccfb873b5f
- SSDEEP
  
  6144:BG+Jxbhp5S+cO2UI4n/Jxbhp5z+lWWVR6ltJxbhp5B+n2WHD+x:BQ+cO2UI4J+lWWVR6L+n2WHD+x
Score

1^/10
behavioral9
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Invoice.msstyles
- Size
  
  848KB
- MD5
  
  404124bc6ad303ce76b09124ec683603
- SHA1
  
  4b1e94d77fca6aa8850f98784ecaa7db376b0e05
- SHA256
  
  7e4d628e843fd7b23fbc66e5926007bd85ddc050abbc421628d768c52de22b2d
- SHA512
  
  eb8226ff825c02f37624351e5314f995802447a01a0105a9db02c508b3e34130ece631457555c912125fc2ca3b4bee2ed6f4d030f20155c04f79b1f0c7fbd0d7
- SSDEEP
  
  12288:ErJLAWS/QhJLLOau/5JL+u6gdUvNv///ztvwlwTJodkHD/LzTe+78:ovNv///ztvwlwTJHbLzTe+78
Score

1^/10
behavioral10
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Lakrits.msstyles
- Size
  
  1.0MB
- MD5
  
  f66ebb5623beead2a76ceb096a506526
- SHA1
  
  3c70451def1bd015dca4e0a23bfee3bc28270d8c
- SHA256
  
  21d5f8facdb57bc81e5d6fc5d517990ecc39544c9d725677282e922b367195e9
- SHA512
  
  543485f9fadcf534daf7d8bf9972a0a65ed6d3a8d4e172294fbf86a87b45e83621a7b69a2cb0534a5da4f0b13e527a36676271ef8dbcb5c7e62f94a516c2e84a
- SSDEEP
  
  12288:xGtewS5Yx/te4qhRwAteJahUmMDNEOrjprERGho63c362C1II:PiZ
Score

1^/10
behavioral11
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Luminous.msstyles
- Size
  
  1.5MB
- MD5
  
  de3c3a1ace1989a446b9f3d593e539ac
- SHA1
  
  496d927796a1da5dc304e578428907108911e0df
- SHA256
  
  56a6736c90ca9cdd941cb8fecc6b790fe6d2290e6cd41d31c1fa2edb7d358e02
- SHA512
  
  14cea933726c33327a4ed00632b64734b9cec705767b2eb281dff8c5add88e73116c5f95dee59918bfc9799a9225e42c3d207a75ac209f96305e4f5f1cddac67
- SSDEEP
  
  12288:xo7EVlRWDk72plxkvM7wWlxisBJ/qEaayn19:UZM19
Score

1^/10
behavioral12
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/MacLion3.msstyles
- Size
  
  988KB
- MD5
  
  7698cad10ac255843867ea65080c6d5c
- SHA1
  
  bd252fe285d2f71e683d47ba1a8b7f912eb23361
- SHA256
  
  7d312b94c3fe3b0217dac9c835f678723485d3cfcd6c7b18f29b7e00dc26f09b
- SHA512
  
  957bc322c6582a70c279e8672cebd3f9fb4b7758816b1a08f3fd66e922a8f8339c204d24e970233100ee55811cee00f143cea1cccf042f1eebd75c1836796af3
- SSDEEP
  
  12288:xPZaQrfs89Zkwp98b8ZaoIEsaPcHT/jjjzArMgVyjc:TPcHTXjc
Score

1^/10
behavioral13
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Minimal.msstyles
- Size
  
  7.1MB
- MD5
  
  cc3ec2df3c12283d3b4c69c26cc4e5a8
- SHA1
  
  834ced1adc19dac0afc8157ca9d13999958afb25
- SHA256
  
  5983b59611678d194ef2a2b8767de6905515ad9a41fe679df4d8519892aaf82f
- SHA512
  
  87f51016a83059e21834f5140244c54eb883dc2ce7627d3ebb1d79f513e0b9c51f278311464aadc7fb8198407a7422c1589e1d078bddb0b9cad26550006dabc2
- SSDEEP
  
  12288:ofeN9N4EpjWllVIsAqOdttYUE8edt9YkC72lVVo8PYedNN4k6feN5NYATjWlhVon:W
Score

1^/10
behavioral14
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Museo.msstyles
- Size
  
  1.5MB
- MD5
  
  79f8a5b702487932551a7b439e86aa8a
- SHA1
  
  aa21a067f0a119f07671fd4b5cfbff886e0b7297
- SHA256
  
  d9349268b5fe495ea96c25cec1b73f49220125449cf5a8acd13bb0713ddef08b
- SHA512
  
  9422a1aace3dc024065e3e245f281d20e1f1f2acd0228d2ca96e2ac993604c204fed841ea2679743dce360294233ee95f8bd724792d208942e6b2f77a66f5b8c
- SSDEEP
  
  12288:MhCn9dfJP8Cnm9f7klCnTd/400kXmmmTmmm:
Score

1^/10
behavioral15
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/PINK.msstyles
- Size
  
  1.4MB
- MD5
  
  aa4203f8f8f7d1147a697eac6b498d76
- SHA1
  
  ee975821b9cc2aa43850002b1a0b3e9ac600cfb6
- SHA256
  
  5eafe3ff07c62658e9e314657615dcdc2e7cf86d26f8ed57aeabdda58c77d442
- SHA512
  
  48045be34189930c9e7750be7afe1419b65b376c4863b98a785e96fd5456dd1d938baa25ed6328505e2d6c71de7d341d824b7be992a095603be0e6e4fbc471ae
- SSDEEP
  
  6144:OIunUkzkZC3iICVunUkhkZPHSqoNunUkkkZz3yznkBok:OFkZC3iICykZPHSqoPkZz3yznkuk
Score

1^/10
behavioral16
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Panther.msstyles
- Size
  
  2.7MB
- MD5
  
  a0d4a5cbbd41705cb5a81eb0402ce872
- SHA1
  
  613fa2c80aa4a3eda221663e16b58f63e91993a2
- SHA256
  
  55e9aa64ef79b0e4da850afee2a2168a2bf3bb33beae917f2eb02ec56d5b59e7
- SHA512
  
  5f9f3960314fca1969e012a25a08831473c5e7c3f9c0071541f6be81e9edb0585cdceaef1e6bb3ed6fd0673c1c682115dbeb448adbc7a2f6845d3b6f2a682d8e
- SSDEEP
  
  12288:MJAMTEhmw64cK4BGNx4cqMJekYAM4UB05r4cRIhUjg4cBcpc0UAM1kBt7/4cMoR1:uPIHTUCcdR+BEWi6scd3JPIHTxGcdCB
Score

1^/10
behavioral17
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/PaperAGV.msstyles
- Size
  
  760KB
- MD5
  
  4282f85d33bd94735337abc9f4c9b2cb
- SHA1
  
  915ca749b0516177da908cfd70805f12b4191af5
- SHA256
  
  06b28b2cf51e71a63a43702aade8ead477c1f16fca156ca5fc9572e461b9488e
- SHA512
  
  41002eddd82a09910117589a0573b00498358aef6d093733f54b6be41e60e9f7fd99e8bca9f059e69599e6b46b695804a603e0b7532517251759a931ff327479
- SSDEEP
  
  12288:l1sGFguosNsGKImvhVsGw4OlpAajAEADe:lA8AEAy
Score

1^/10
behavioral18
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Relapse.msstyles
- Size
  
  5.9MB
- MD5
  
  2dc98f65afb1da057f664432f6edb717
- SHA1
  
  7e73f15bb56402ba7d80c4960cb30db6d496baf6
- SHA256
  
  27040c8b6123d1dbde2113459aec6206574f7bbdb9743b175c87807330bae238
- SHA512
  
  33165a97a50135a5409da4b9eeeba7f6bfbb7f2d5ab77e0a3937f4adb56f17f2d3d97737f2eeba5ebdafb1abd9cf27cb714af9acf243b969407132caf1c946d3
- SSDEEP
  
  12288:aBSoDedbIyyLqIdzB/js70ytXvjWGUSN4fT8PsyF4GSocOF8bdyLVwl82AjscMaD:q75EjTNe0OwdlId
Score

1^/10
behavioral19
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/SNAS.msstyles
- Size
  
  928KB
- MD5
  
  c7a0be5ad06a04b994ba57c2fd27b980
- SHA1
  
  19f68cb41abdd4f6830b8f6f261feeef17d396e3
- SHA256
  
  fc408c1f167fedf7999d0ef422982469b430dc117f476958dea1c9539e71f9f4
- SHA512
  
  daf0578c8e3aca20626b1c3ab9e8b8b39d86e29c5b2c1505e3ab8173e9235db6c73f2c742febcbef50118b84ecf4d10f15894891047f45fe340f876b5b0e563c
- SSDEEP
  
  6144:Lrwy1ZjqWXCKiQJty1ZjDWX/6KhRty1ZjdWXfKqPUain0in:PYWXCKiQJcWX/6KhRCWXfKqPUain0in
Score

1^/10
behavioral20
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Simplex3.msstyles
- Size
  
  1.5MB
- MD5
  
  2ad07570ed26e0ba100f7aa59fe9c248
- SHA1
  
  f8c4838ff6e4a7eb488d4b88d8d9ad71575c56df
- SHA256
  
  ba79cd9912db58778eefb12b988163d1334a36ae291a52cd8f4f263c62ea291e
- SHA512
  
  8b8877a2e1739efff8d17c604b65d3a84fb4316089fe9d92a913956a7b25e9ea218803cb969e8dfe8975b42db5d7cd1f8ca372e4345948672604b06b3666b08b
- SSDEEP
  
  24576:x/zzcWgbG1JWxmkWBHnzQFjvz0eft+LqImvlQMmJIcnQM0a7XGOd420SiwrvQWqj:KWgbG1JN7zrzOT
Score

1^/10
behavioral21
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Stomp.msstyles
- Size
  
  1.9MB
- MD5
  
  818a95e2376bbdc68e195c5ecf841964
- SHA1
  
  ad2c67ec7538454aa03ac613895e8d635772d39f
- SHA256
  
  3afc92844ab5ecc73d1db4e277c5c920fcc97f5135fbdaeee41853d9c238b2ef
- SHA512
  
  c8d3c10ba3f194c3c083b2ccbb17fce7b7c72d3bc5cb76a0f531658942d0ca1b37e87fe4d9a5cb0c12b8c3763045740f34bb896aa4653b662e0b2ec32a63ef21
- SSDEEP
  
  12288:TFbO7NMM9n5OrHss1FbO7NMMdn5OrHss9FbO7NMMtn5OrHssBJOhT6J/HQ:il
Score

1^/10
behavioral22
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/USkin.dll
- Size
  
  692KB
- MD5
  
  18f8b370ca79d7baadccb0c08741f43e
- SHA1
  
  c06c950255d211d94f8f61d68f93928e59925509
- SHA256
  
  9ccf45f05dc84f343d63ebcd96d2c2452257c2582ebe05c2fe317a16d62a3347
- SHA512
  
  938cdcca172a3d19600182fbd0f7140e7c50d3adbba7f381bfae4e105ac180462ae1604bfb2209505dddcc79cb659af2775eda7c35fdddc9985537281a4aa0d7
- SSDEEP
  
  6144:idW+94kXx05HD2XsU3ilunEfdMxgzi03NXG8SPycHxUihV/v+eWAOuGdNsfkj4fx:idW+94Qx05HD2cU334NhqZV/GJgfCQL
Score

3^/10

discovery
behavioral23
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/VS7.msstyles
- Size
  
  1.3MB
- MD5
  
  73100d1c00c21e275087c26a443b5190
- SHA1
  
  cce524236bd08d2271c58f49ef86e098a3a29f35
- SHA256
  
  21336eca2a21814151ae9b10752c02c300c1069bf24c8e39dd43adfea039d4a5
- SHA512
  
  f954071de1c0ff862e56363c1634f711b7fbe8616bf08d78f312d5b41f31f0aa4920a7d411048473ba74566c998bb50a385fcf0a70ad5ff97e51da6f090378e7
- SSDEEP
  
  24576:tJJ9DN77ND9J0CpEerAj+/OYkG8+4eyJr8HtVzrzRHQHAHCTdL5:cerAjqO5G8+4eyJr8NVzrzM5l
Score

1^/10
behavioral24
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/WhiteGray.msstyles
- Size
  
  1.2MB
- MD5
  
  cd7b233d71fcc5d1de2fb557eb2aeec2
- SHA1
  
  ce011c7c263cf65d3a0ff92e1f03174b5df659ec
- SHA256
  
  b248d4b3b80a3cfc586dcbe681a8ee40804e7a4e75d650f7d3d089d6411d3f97
- SHA512
  
  f70b0ed9bcd59c7f6dfcbf1161cadf847594c7239abf1fa547f48e13e850f62b94c9e95750a073c72f2ad60c8861aefc55d00e5fc816a18d8581a8d691aaae28
- SSDEEP
  
  12288:NCcbUf0Kp9DzHEMCphcbyqsvxeDz5Zk/G7cby48N98DzJ70Fz9:
Score

1^/10
behavioral25
- Target
  
  Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Woodwork.msstyles
- Size
  
  1.3MB
- MD5
  
  06021fabe8e55fd5aed9795c43393724
- SHA1
  
  d286acc7042871c4c8a368b679cdb9736f3a4ad0
- SHA256
  
  3317e333f32c3b83412a245ee8fadaa727eb23f76d38516e6c7f6a97241a046a
- SHA512
  
  bb7ec35cb6d356202f36ffb73589168a8645c7eceb45c7819d8d57d5dbb7d811abbe482062f9d3d78a7c59c421aa9589be66cf68b09064fc1e6c53319c9e0766
- SSDEEP
  
  12288:wlPX+s/5nJPX1sPvxQPXg8/RpNS0ZGfvqmZYSeZjkuNJIxlt1R:+NLG3qmfubat1R
Score

1^/10
behavioral26
- Target
  
  Natro_Macro_v1.0.0.1a/submacros/AutoHotkey32.exe
- Size
  
  957KB
- MD5
  
  8bc086a1ce0b394de31cd415a3cd0e87
- SHA1
  
  620fbfc0fce8067a9af12c0e3267f8c17c658d6a
- SHA256
  
  05fcaf6f09b9fe4b85887f75183310d34166a0b854ca0907b497808be7b8f87d
- SHA512
  
  0f989b2584fdbfde2ea01dd0ac7ff7c51da0063ab01c57053ddf15547ba7187f2795d5013beff558431fe0db0a1a0af991dbc4af455cd86ba7d4676366104237
- SSDEEP
  
  24576:UnbyRuLHeIj86TTuQbyB3+vETrGNW8NxqxYk:2yKgqEvGNW83qxY
Score

3^/10

discovery
behavioral27
- Target
  
  Natro_Macro_v1.0.0.1a/submacros/AutoHotkey64.exe
- Size
  
  1.2MB
- MD5
  
  825448610a8213a8408578df2361d5eb
- SHA1
  
  f43875855e4f02010ad6c755067b813d0fcbe68a
- SHA256
  
  37ff15a23a98f0a658298e21f1873ca896a05208810bf796f90ca212ee07c7b1
- SHA512
  
  7556143128878b2e765309db8b35cc8206d325c0c17c37b191600bd8f719a923b0f917f4c53f0946ed2d12136a9e42774246595eed78f1038779fdcbd3736eee
- SSDEEP
  
  24576:Ve1psX+O47m4ffJhxZ4rBcRyMlc/SsVNGgMxCRjU:Vek+bi4ffJhxZ4axcbHGPWj
Score

1^/10
behavioral28
- Target
  
  Natro_Macro_v1.0.0.1a/submacros/StatMonitor.ahk
- Size
  
  390KB
- MD5
  
  8649cbb189c963951a5b39cc89b8eaa7
- SHA1
  
  4000f09d0a13bf9bb22b0f693ec248ddc8ca5a6f
- SHA256
  
  2c1b6ae1ff77280aac62a11234a00d6fba89118ac21b5a3a5ca76ee4ece69e64
- SHA512
  
  4f697a6d5efc3554d12605b6b5a23aa239dbfdc64df234fc1a1d89acb72478f03e8586f942895346fc3c7694cd8ada237ed7d9ba679b66ddb39dd2d1a3f8d690
- SSDEEP
  
  12288:1Aa4bd3iEcTQApLZrHi1SOf1lZZ4n1maKKk4IK3P:abkjdZrCXP3Xk
Score

1^/10
behavioral29
- Target
  
  Natro_Macro_v1.0.0.1a/submacros/Status.ahk
- Size
  
  168KB
- MD5
  
  4d86682134757e1918cc17a17a336be2
- SHA1
  
  5f6743c856ac56f65f69320114fb7f81d81d85ac
- SHA256
  
  36f61ef7ff9bd6281ba2ea12f06e501f672f61b9f01b510201585fa7b47e5b8b
- SHA512
  
  0fb8cf4c0e524ae643f6a4afeeec1940c4e360d542deb85b3c38d0beda2092e6de07b06e2efa2c0cc7e38a2570c04c1e1937ebe3d3f46d5702027b35362851c3
- SSDEEP
  
  3072:clPe6iYUkbA33OW1t+FWNIi0CqDkEbE4TL3itn9T3zHUQZ2RbZQnR2q:M43FMHDtkn9T3/+Zhq
Score

3^/10

execution
behavioral30
- Target
  
  Natro_Macro_v1.0.0.1a/submacros/background.ahk
- Size
  
  17KB
- MD5
  
  d0faadd0ead007bf414aeb82c149578d
- SHA1
  
  3ebf6b92ba592475f0893f5079145ddcac09d714
- SHA256
  
  eef18096c141c4d1e8a7617552409032afcb28dee11d6f6e68dfa7e85dcd5312
- SHA512
  
  62c3fa3eb5d86ce1ccb6e55ded98e3e15d1937cf3c2a918a56082e789ac35febd1bd9fd5979ba0486b2134d8a5bd81cfd6d03983137664e420e3cf33e6384f22
- SSDEEP
  
  384:vKqs5KdEIgrXJOgmAoj4CjQjx+bHkS6/8FFw:Cq0K07mAoj4Cj6x+rN6/J
Score

3^/10

execution
behavioral31
- Target
  
  Natro_Macro_v1.0.0.1a/submacros/natro_macro.ahk
- Size
  
  772KB
- MD5
  
  e447a49f9b58b97037080f5190d37e0b
- SHA1
  
  18449fbdd7e733fe693af07fde1104d3c9c823b7
- SHA256
  
  09ff4d1a3eb647f7f2c0bcb98b05d62572373edae5740a6d7c1ea9509961d858
- SHA512
  
  3651fd31c224f6cae2d3afb75bb02dc92feae8e93d8a6ba61dcb053a1a0181639696045f6ec73a1d83aa4e2936e1690c2095735a58971ab7eb3fe0dc91725520
- SSDEEP
  
  12288:Hw+7uqOXODun4M5xl2Y32BZ9WPJ2rJj7Lqa83Mq:3uqAODun4M5xl2Y32BZ9WPJqq3
Score

1^/10
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

PowerShell

T1059.001

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32