943dca3d7e1706c3591075832729b9709f49a44070ca9f3baf23fd36766d09d3

Sharing

Copy URL

Twitter E-mail

General

Target

To.The.Core.zip
Size

128.5MB
Sample

240802-we8vasycqc
MD5

c874ce50d658cce07dff1a21ec24362b
SHA1

88498062fb858a881589b76ee9d598cb1b1a6f87
SHA256

943dca3d7e1706c3591075832729b9709f49a44070ca9f3baf23fd36766d09d3
SHA512

4ebd56fd6929520fb743777547ed05980684b78a8c23cf88c84fe6b95769c73e7031ca7e2cccc109a8411d16c89d748bf65b6bd7336a5b31e783ab82d3ab165b
SSDEEP

3145728:84yg6LopC4zLC/eObxlE/4V+Wh9BssefxTf06296J2Lu:pyF+C4SGUV+M9BsseZTf0620J2Lu

Score

3^/10

execution

Malware Config

Targets

- Target
  
  To.The.Core/ToTheCore/MonoBleedingEdge/etc/mono/4.5/DefaultWsdlHelpGenerator.aspx
- Size
  
  59KB
- MD5
  
  f7be9f1841ff92f9d4040aed832e0c79
- SHA1
  
  b3e4b508aab3cf201c06892713b43ddb0c43b7ae
- SHA256
  
  751861040b69ea63a3827507b7c8da9c7f549dc181c1c8af4b7ca78cc97d710a
- SHA512
  
  380e97f7c17ee0fdf6177ed65f6e30de662a33a8a727d9f1874e9f26bd573434c3dedd655b47a21b998d32aaa72a0566df37e901fd6c618854039d5e0cbef3f5
- SSDEEP
  
  768:6CEPutHjvpMgMwP9h5Ij7khsp/6JtEZwMXVtkUI3t3CXyEyk3VbNbqDvJ4oT1y:/r6CdsCOZwMX3k5dWyklh+Dvbw
Score

3^/10

execution
behavioral1 behavioral2
- Target
  
  To.The.Core/ToTheCore/ToTheCore.exe
- Size
  
  638KB
- MD5
  
  c6ed4713cba59a382ce512f0ed6b8805
- SHA1
  
  3857392f8ca007ae3136798dfb1de8ebe7b3a6fb
- SHA256
  
  95b99bc95bc58ffacf172a2404af1f74f74495f3e3765b982feb81075e2805e0
- SHA512
  
  ab876bbc1c44ae0b4e56433dc3b911512739ec1d666f8f2c8c1ccf11822b0ce9fa5f115c3495d5b0d9443f54993504471faa9cf2feca9cb75ec213551bf208e9
- SSDEEP
  
  1536:4C79gXAX271lcBzqEY2lkCswVxYDXosWkd09dlPaUGXk3+:tgXpJozm2lkCsuYDbM9Z73+
Score

1^/10
behavioral3 behavioral4
- Target
  
  To.The.Core/ToTheCore/ToTheCore_Data/Managed/Assembly-CSharp.dll
- Size
  
  117KB
- MD5
  
  332a1d5db160453ea6d306c55301f5e2
- SHA1
  
  bea88e322c38ef6b01521387eee795a9ad22eb80
- SHA256
  
  3175aa44a1de6734a83e59de421ca863a0b1daf967e483fbf4533ac8a785440a
- SHA512
  
  d5a36b0ff75d0db4f931d4b8f95acd5fffc977def0c0901f89217de517c771217482c6c05c4f1bebeaa41782a64a78aae15c4c4083d037e00660283a06f97637
- SSDEEP
  
  1536:N4n9ZF7kNtNvEGsOLzdiNJVyYk+slQoK4+e0MgpnY0oK64K4+xJaBkJq5:N49z7k3OOLzdiNJzk+hL9zGcK4+CBk0
Score

1^/10
behavioral5 behavioral6
- Target
  
  To.The.Core/ToTheCore/ToTheCore_Data/Managed/Mono.Security.dll
- Size
  
  303KB
- MD5
  
  f7acab1e09deaa11c9bdd0d723363016
- SHA1
  
  e940058cff5dc584c11dc6e4b111e85a3f6ca06e
- SHA256
  
  8c47b23389f9eede068683ed8b64b5a466f986499112983290778b30accfd1ba
- SHA512
  
  ec73a3c841358113a33829b50ea14ec860ccaee883c327515b369d08e3979643466fb57dfd550c62eb1468b6c92c0cb03ffb07505ec77e62bb83fafcd51b2894
- SSDEEP
  
  6144:Buca+sTOwf+31OE5FXNywY1URfxArXj5of:9Ui9kgxY
Score

1^/10
behavioral7 behavioral8
- Target
  
  To.The.Core/ToTheCore/ToTheCore_Data/Managed/System.ComponentModel.Composition.dll
- Size
  
  242KB
- MD5
  
  7cfe714806f245e2571e58be288ea10e
- SHA1
  
  4820ec4a7558e18aa1ea151d22cf1920b82b23a7
- SHA256
  
  596500c15e90d4b63573a19da292009c95b02e05005f48077d7fc0850dd220fd
- SHA512
  
  9e5808152c5921b69f1080644ff84a1ecbf1358475c4c28191bd07a061e504c72264854777c2be38dadb7c250d890285f55d94a394edf8277692a83fe9d79bf7
- SSDEEP
  
  3072:DdpvT15KXwrqrkRixoK47Sr73v/1fLExXEGgDX/EOoRlKPW10QgFLqRRRRRqqS6h:DrvTmUTTOoRlKPk5gF3HoJ0XtCeaK0w
Score

1^/10
behavioral10 behavioral9
- Target
  
  To.The.Core/ToTheCore/ToTheCore_Data/Managed/System.Configuration.dll
- Size
  
  42KB
- MD5
  
  03eebfd284afbf258972a0842caffa8d
- SHA1
  
  0203d182a21c17ce3323a0cf50b4661505182bdc
- SHA256
  
  b91c29f2c5ac5acd76ad365bb27d7a188b695a62d3246745b3e712b385d05646
- SHA512
  
  45266555a4d0fbe816beabad148f6999c0af98cf8db3bfb6cf7833aefd215ee461c900197aa0f28abd11fa0fd63c120386cbd9a896417211f710f21024e7b9f8
- SSDEEP
  
  384:pC2yuMNMMZJN56g8mKo/hjp0r4ourMVSzciDqnjdiaFg9/Ses93HE7LDaXTSv/fj:pyP1Sm3ScrMdWgdVl93kZAarx2ZJkO5
Score

1^/10
behavioral11 behavioral12
- Target
  
  To.The.Core/ToTheCore/ToTheCore_Data/Managed/System.Core.dll
- Size
  
  1.0MB
- MD5
  
  caf99bab07df42b6e4544ae64dc4d908
- SHA1
  
  cac81132ef8a76cc0bee99dfa5ffc2096c02b848
- SHA256
  
  2d702d211d34e9b94ca18a5ef10a6c2b0fa40fb2cb09751348c7d5bd4dffed02
- SHA512
  
  312ae4f3baa0bbae11173961f99d4ca1ff35473fa7432076c36fe07ede4f16b882e03d5dc4216f20091b47763e269be113fe95af9f31927b789c3bf953569c19
- SSDEEP
  
  12288:7HJ2eJWqejMiMRDm3l2fo+5HcXILaRbm57iNC/UB1658SYd5kcowul:7HFGoqCUXAYdecowul
Score

1^/10
behavioral13 behavioral14
- Target
  
  To.The.Core/ToTheCore/ToTheCore_Data/Managed/System.Data.dll
- Size
  
  1.9MB
- MD5
  
  d314b95fb863cdd6119abc7e28e7c1fa
- SHA1
  
  5996b5c782631a2e7f276f5f660809c421810916
- SHA256
  
  23dae8379e8c412f69caa0668be411c87672a775ce473e18faf01f56c114e079
- SHA512
  
  bd74f8a6d19bbf45ae67117ad3fa8eafc397c16657197eb4dcbad3829ffa6096fc29c692b7dc8649a75c9d6078c8ed123806de27db290a9ecf445143187801a9
- SSDEEP
  
  24576:+etFgYwMkru3rrFdx0dkR9VUJLdaD7y7X5bLid1EB80o6Dpc:HFLwirZ0CUJL4f1EB80jp
Score

1^/10
behavioral15 behavioral16
- Target
  
  To.The.Core/ToTheCore/ToTheCore_Data/Managed/System.Diagnostics.StackTrace.dll
- Size
  
  6KB
- MD5
  
  1fbb019db62578427a660fdca39139fe
- SHA1
  
  6c5cee9a58dcf493f94df27b7de17f19bdf021e3
- SHA256
  
  4701e843059674accc1c87038ec41f3cecbadce2a65755f527c8b65b0cebc8ce
- SHA512
  
  7571a6b15a03b2ac408d219b798b964d90cea0b58ec9cacc2709c1495dd4edd24fd35327e496e945e297f1fc976f128db6ee6a75e1d22752adc7a79a65f3d4dc
- SSDEEP
  
  96:Z5SzrdBy6UFfVGJfFPlcaxvtV6gOCua5fpbe1xa0:Z5QfnUF9GBFPl5xFVsCFTe18
Score

1^/10
behavioral17 behavioral18
- Target
  
  To.The.Core/ToTheCore/ToTheCore_Data/Managed/System.Drawing.dll
- Size
  
  180KB
- MD5
  
  1afff3a67c365aed5c2603e9c69d8c51
- SHA1
  
  9a95855ddf016638e72c3bba8749823969fcd9e7
- SHA256
  
  41d7f9907c43d1c9dda3cd4a9eda76c836dcc7daf7f657ba993f6b6d9c146ae1
- SHA512
  
  9252dba52939c852f8377a58b2f0ff673775f409f41d5efb463c50cde72da8d1c6ef595f3d1ef94db3351d3b41a66711dc6ed299a8fd1b5a880c04af25614c7a
- SSDEEP
  
  3072:EigawrUmay+yV3XOe3QpYbh+q6FR3F7lx:v2VnOppYbh9Oxl
Score

1^/10
behavioral19 behavioral20
- Target
  
  To.The.Core/ToTheCore/ToTheCore_Data/Managed/System.EnterpriseServices.dll
- Size
  
  32KB
- MD5
  
  c6b13f2a7fa2c6db51dbb66c1d6cf2d8
- SHA1
  
  51e34ec5d37a79d46cd697283580c6c20c13cc3e
- SHA256
  
  dfafa9f383c9f105c2bc7fc6eacf0ec803f72c8cebf741758f650d61dabba967
- SHA512
  
  4f655fb8e05c0305dc4c2946e28fb7956d14faf3db9ea3fc1825c59459594ca451907e9367ce63250aabe02b40111d52e1c86b8f673bdbebd347805d4c76b7d0
- SSDEEP
  
  768:GFDPgwXPjXVB1SeXbtjfLWifV1jmadK/wDS1ubnXkQK:GRPgwXPjXVB1vXbIifbm8KoS1urXkQ
Score

1^/10
behavioral21 behavioral22
- Target
  
  To.The.Core/ToTheCore/ToTheCore_Data/Managed/System.Globalization.Extensions.dll
- Size
  
  6KB
- MD5
  
  f09c5ddef200f21725e5fde17d3b9016
- SHA1
  
  44bff1f24b235f742f84e4f152e912fa0452ec9f
- SHA256
  
  4e8c5ad3450450ba6bc6a474300f2445094870f2bcc9ca16472fb2f3adb88ebd
- SHA512
  
  d966eede100800f13f6c759a59410758b137379aae5ad4f770e705197fd02b6b7e7ea26f08a9bddc10fbf5e01948117e3721248603d5e40756f458f20edbf6dc
- SSDEEP
  
  96:ZA4ggaqpBVwEw8xv1lOH2OARPtcRQKRWen0R/0:llLxXOZARPCRpRWen0R/
Score

1^/10
behavioral23 behavioral24
- Target
  
  To.The.Core/ToTheCore/ToTheCore_Data/Managed/System.IO.Compression.FileSystem.dll
- Size
  
  22KB
- MD5
  
  f9a07c1ef58c863f89e74f11a3b21447
- SHA1
  
  b80979949b817d26afe0a8a8b0358f704ece82b2
- SHA256
  
  221abe4eea00347c51ac7409b47ba7b08ccfdaae8e36e706a8ee0d4de6ceb87a
- SHA512
  
  280f846d9d769a3244a6689c72758024639d867bb5f272ed54577ffb3a6f6bd29fc22ac9dff0010f04524c352b76cc7703325c11cdcb63aed5412d96881d091f
- SSDEEP
  
  384:6930DrKcLQhPZcNgndNzytVTl0qRbli3ESmMadMMtDBEb/gYFf0B7a:60D1Lhs6ve6
Score

1^/10
behavioral25 behavioral26
- Target
  
  To.The.Core/ToTheCore/ToTheCore_Data/Managed/System.IO.Compression.dll
- Size
  
  96KB
- MD5
  
  bd03377bb478fe581834bb237b4c6725
- SHA1
  
  c3ae3bcd5c8d9af77cc579e1d335f8cf6d2a2415
- SHA256
  
  6045d16e65834f67b2604359a137a4b74434293813ccab0d86b34c5f7b1785fa
- SHA512
  
  7cd60c00a40e4dcb5b4fbcbd71ed2249d0e2baef48aafd2a72cf95040c653187109b85f96167bb8e550d38b630129dd7df597d104e3284a6ade425c480f25501
- SSDEEP
  
  1536:mVYlTkwzl46ORXHNopHEJo5JK1/E9ITZOBLOTX8MHujjHs67b:mVYZH5460XNopgo5JK1s9NCTXFHuXTP
Score

1^/10
behavioral27 behavioral28
- Target
  
  To.The.Core/ToTheCore/ToTheCore_Data/Managed/System.Net.Http.dll
- Size
  
  112KB
- MD5
  
  f97636a8f0bf9b5bd9acdf22db3776ed
- SHA1
  
  5705201ef90269dcbe269f31b93a0f78190252f1
- SHA256
  
  7122ed956be9bc78947c893605f35e77506652c61c9cced2ba14156edf7ee7d5
- SHA512
  
  34e0f1dd8d1d36e4a5ab9dc9335b1fcf11a887147f96583ec3bed98f486dbdeeb6ad35cf1e025f736029c0a53874f08201d5d7874d8a4eae2f6f10cbfb892d50
- SSDEEP
  
  3072:RfD9Io+eSMu71DTCSgjM4Oskz/X8Pb4zPc:RfBI5edu7939
Score

1^/10
behavioral29 behavioral30
- Target
  
  To.The.Core/ToTheCore/ToTheCore_Data/Managed/System.Numerics.dll
- Size
  
  111KB
- MD5
  
  885b5345047df2ed6298401f3acf3159
- SHA1
  
  e271ce9efe4e140a8a5489202992bf80fbf45986
- SHA256
  
  01d3b2dd6375da4378b8c9951a6bbb4997dd6a0651753e5736aa1b0587015f35
- SHA512
  
  7bfbdbd52f044e1c4504111a4ec93b62ee0711ca9299884b1f073f0521250231caaf8e33142b6d5ce5b1f4e40a25b82b6059236b87afe070cddd73215e29cdb5
- SSDEEP
  
  1536:2tbXi3q2X2T+jc5o9SQMhhuiVEptn+igiqW0NzN9CXI0pVzDtPrXpNPRGH0d9cW:r3qKc5oEhzVKtfg7W0NXlG3tPrnl/
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32