170740ce72172c7d607b46f58d391bff57ac1cb7090625fa53e73b2798437466

Resubmissions

02/08/2024, 18:55

240802-xkzn9a1bkg 3

Sharing

Copy URL

Twitter E-mail

General

Target

Bootsrapper (2).rar
Size

715KB
Sample

240802-xkzn9a1bkg
MD5

4697a477cc3a00ec9976f18e03b84a26
SHA1

43ee4ac8e9b96a1b7469b5c479836c8245b7354d
SHA256

170740ce72172c7d607b46f58d391bff57ac1cb7090625fa53e73b2798437466
SHA512

8e33a2d710812656e3b5bf012155b9f063299dbcbc17e9c8f25b9d8ff8eb9d9a807bb602e14cc076133988fecc54eab1151abbd216e7ca67bc60e3b057910083
SSDEEP

12288:PzK/DP6aCDusJuKBle0ckNGox2cyIjhGrYXOMRtRsi7l/00oTk/Luin/c3ylqe:PzjPXJJG0cXcyIjHO6750/SLjncI

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  Bootsrapper (2).rar
- Size
  
  715KB
- MD5
  
  4697a477cc3a00ec9976f18e03b84a26
- SHA1
  
  43ee4ac8e9b96a1b7469b5c479836c8245b7354d
- SHA256
  
  170740ce72172c7d607b46f58d391bff57ac1cb7090625fa53e73b2798437466
- SHA512
  
  8e33a2d710812656e3b5bf012155b9f063299dbcbc17e9c8f25b9d8ff8eb9d9a807bb602e14cc076133988fecc54eab1151abbd216e7ca67bc60e3b057910083
- SSDEEP
  
  12288:PzK/DP6aCDusJuKBle0ckNGox2cyIjhGrYXOMRtRsi7l/00oTk/Luin/c3ylqe:PzjPXJJG0cXcyIjHO6750/SLjncI
Score

3^/10
behavioral1 behavioral2
- Target
  
  Release/Microsoft.Bcl.AsyncInterfaces.dll
- Size
  
  26KB
- MD5
  
  ff34978b62d5e0be84a895d9c30f99ae
- SHA1
  
  74dc07a8cccee0ca3bf5cf64320230ca1a37ad85
- SHA256
  
  80678203bd0203a6594f4e330b22543c0de5059382bb1c9334b7868b8f31b1bc
- SHA512
  
  7f207f2e3f9f371b465bca5402db0e5cec3cb842a1f943d3e3dcedc8e5d134f58c7c4df99303c24501c103494b4f16160f86db80893779ce41b287a23574ee28
- SSDEEP
  
  384:cOJWqnwCBbNAP0VES2j0cX6dAl+NWpVzrdcoquWeP/WxR5kHRN7dDFcYR9zPrf8O:culwCBhdVv2wK5fdcUtFFn9zT8pY
Score

1^/10
behavioral3 behavioral4
- Target
  
  Release/Microsoft.Bcl.AsyncInterfaces.xml
- Size
  
  30KB
- MD5
  
  1fc4bc74b30d484c24b04de5c0a38f5e
- SHA1
  
  aa0f9f8db757d37f1f92473a57ad53f20615460a
- SHA256
  
  3d06c35d7b0eca37abe2d135cfe12d1012816a99e5e92e0cf4e8501e1b540aae
- SHA512
  
  6ba26c5d6edf273cfae5e637ef1623fa37b171d8927bfd9fa8c85dcc27eb6a4fbbf8427e08cc61746604dd0e75e4ba31fcfc661349966fc5aa48da8d5b5f6045
- SSDEEP
  
  384:XgOpngSae6jWuTPP/xM2fB8qnmltJ5XZzRzgqW81Fu3DRmfCh7sE+siDBQsFJIss:0FQJNTR7TIcXI
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  Release/SharpCompress.dll
- Size
  
  577KB
- MD5
  
  6487b26639165817e722cbf5fbe9ad45
- SHA1
  
  3ec649bc6cfed24d13671ce573e492ddd1b0a3b5
- SHA256
  
  72ed7e48ce1c2551321fd88d7ab24e1bdd641c3dab187eb050bbee4e61dacb84
- SHA512
  
  191a9bfc32240cf08eb97aa8bfd81e8fe50cd2d40c9bcd2d17013f5b4c19ee01faa8bd4df3ec963bdb5c314dfc7730856c127c17e9943931bc09dda2fd3261cf
- SSDEEP
  
  6144:jrbjNTLCP2RC+2LaNQNbEaCiHbQFi0kksd7DWW+pDVQ9112kjW2PqDn15UwwM4Zw:JC/LaNeF8i17DWfpDC11tInjUnN
Score

1^/10
behavioral7 behavioral8
- Target
  
  Release/System.Buffers.dll
- Size
  
  20KB
- MD5
  
  ecdfe8ede869d2ccc6bf99981ea96400
- SHA1
  
  2f410a0396bc148ed533ad49b6415fb58dd4d641
- SHA256
  
  accccfbe45d9f08ffeed9916e37b33e98c65be012cfff6e7fa7b67210ce1fefb
- SHA512
  
  5fc7fee5c25cb2eee19737068968e00a00961c257271b420f594e5a0da0559502d04ee6ba2d8d2aad77f3769622f6743a5ee8dae23f8f993f33fb09ed8db2741
- SSDEEP
  
  384:/rMdp9yXOfPfAxR5zwWvYW8a2cyHRN7vCvlbLg:/rMcXP6N6e
Score

1^/10
behavioral10 behavioral9
- Target
  
  Release/System.Buffers.xml
- Size
  
  3KB
- MD5
  
  1c55860dd93297a6ea2fad2974834c3a
- SHA1
  
  7f4069341c6b62ecfc999a6c2d8a2d5fb59d44f6
- SHA256
  
  2ec7fb12e11f9831e40524427f6d88a3c9ffdd56ccfa81d373467b75b479a578
- SHA512
  
  37fa5d4553ca3165f10e2ffef38fefc0dba4a2dbfa05ab9f09ab87b5f71f30e6d965d2f833f58b50b3bc2529ebe8fb5cc431c264f7b47ad026f5c5a874a6ada1
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  Release/System.Memory.dll
- Size
  
  138KB
- MD5
  
  f09441a1ee47fb3e6571a3a448e05baf
- SHA1
  
  3c5c5df5f8f8db3f0a35c5ed8d357313a54e3cde
- SHA256
  
  bf3fb84664f4097f1a8a9bc71a51dcf8cf1a905d4080a4d290da1730866e856f
- SHA512
  
  0199ae0633bccfeaefbb5aed20832a4379c7ad73461d41a9da3d6dc044093cc319670e67c4efbf830308cbd9a48fb40d4a6c7e472dcc42eb745c6ba813e8e7c6
- SSDEEP
  
  3072:nUGrszKKLB8a9DvrJeeesIf3amN32AW/rcyw/s:OB8l3/aK32qU
Score

1^/10
behavioral13 behavioral14
- Target
  
  Release/System.Memory.xml
- Size
  
  13KB
- MD5
  
  add19745a43b2515280ce24671863114
- SHA1
  
  cf44e6557fde93288ff2567a002a69279965caba
- SHA256
  
  d5714c96607eb1a9d0f90f57ca194d8a9c3ede0656a1d1f461e78b209f054813
- SHA512
  
  8d7e564fa61411b5c28f29b07855dd112687edcb39b991803c7c7de67b6894b309102ac9b52409b56b7bb5c9101eb4cdfb21fcfbf5d835e4a153e188cb97cc87
- SSDEEP
  
  192:19SSrAVfjSE0wxiMiLiLiXdCjticiciAiJiziPNjNei5i9zhi+ipOUTJ:1gbXKKXppPmcPi6LmJ
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  Release/System.Numerics.Vectors.dll
- Size
  
  113KB
- MD5
  
  aaa2cbf14e06e9d3586d8a4ed455db33
- SHA1
  
  3d216458740ad5cb05bc5f7c3491cde44a1e5df0
- SHA256
  
  1d3ef8698281e7cf7371d1554afef5872b39f96c26da772210a33da041ba1183
- SHA512
  
  0b14a039ca67982794a2bb69974ef04a7fbee3686d7364f8f4db70ea6259d29640cbb83d5b544d92fa1d3676c7619cd580ff45671a2bb4753ed8b383597c6da8
- SSDEEP
  
  1536:nPOw0SUUKw+GbgjMV+fCY1UiiGZ6qetMXIAMZ2zstK/hV+sUwS:nWw0SUUKBM8aOUiiGw7qa9tK/bJS
Score

1^/10
behavioral17 behavioral18
- Target
  
  Release/System.Numerics.Vectors.xml
- Size
  
  179KB
- MD5
  
  95dd29ca17b63843ad787d3bc9c8c933
- SHA1
  
  1a937009a92b034edb168cfac0ec1c353be8f58e
- SHA256
  
  ae2c3de9ad57d7091d9f44dcdee3f88eccf2ba7cb43adc9bb24769154a532dc7
- SHA512
  
  8e9397816d3435ccf79f1bf07b482473a7dd3b570bce003639f2e9fa1c5fe31c4b9400b68f191a36251a59c0253ef9e09039fdd63ba2205d379b3c582e603499
- SSDEEP
  
  1536:azQgQfMzpKGPqMGFY3lF8YzA2HrYJtJZJ9JaGf4AscoqrbuC4BqaiaIacasa7c1E:azafMDl4LfX3MIg+QDB
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  Release/System.Runtime.CompilerServices.Unsafe.dll
- Size
  
  17KB
- MD5
  
  c610e828b54001574d86dd2ed730e392
- SHA1
  
  180a7baafbc820a838bbaca434032d9d33cceebe
- SHA256
  
  37768488e8ef45729bc7d9a2677633c6450042975bb96516e186da6cb9cd0dcf
- SHA512
  
  441610d2b9f841d25494d7c82222d07e1d443b0da07f0cf735c25ec82f6cce99a3f3236872aec38cc4df779e615d22469666066ccefed7fe75982eefada46396
- SSDEEP
  
  384:EybU8ndrbbT9NWB2WL/uPHRN7bhlsQVryo:Ey5ndvWbMPVryo
Score

1^/10
behavioral21 behavioral22
- Target
  
  Release/System.Runtime.CompilerServices.Unsafe.xml
- Size
  
  20KB
- MD5
  
  c782e92abbfc0531226f735c6ac56498
- SHA1
  
  2586fdbeb6d1e11d4cecd5b3e8387a18c7b4d350
- SHA256
  
  39c2d4a63a186d423e9c866f4d3e9a6acba0103398f20baf8b92a38744894215
- SHA512
  
  a12b6807695c9c626de9602abc6df72bcc5e869a29c7111e956034f321436e7c50ea36ed5ec5b6f93a639ae0f7aea93953e91ae557bf423a749b036c7252a7b9
- SSDEEP
  
  384:Y/uXukudyvmB0fmkcdZKyQe1EyriJriurs8rsF9vVwFaFDJOeOtOEKFzUxRkj1r:Y/ApEwmafmkcdZbQe1EyriJriurs8rsR
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  Release/System.Text.Encoding.CodePages.dll
- Size
  
  748KB
- MD5
  
  2c9e9cd5c6f31ebfdc8155efdc20f4f7
- SHA1
  
  05495290dbb34a7b8b7117b0870be948e1604464
- SHA256
  
  b77ee852824a6e8098fbade000beb42ce9df32fa4189a00d5e7f472f6c6a5030
- SHA512
  
  e30a0d63aa428f699e57d4e5d9d252a4c60f579ef0910954048a9ed1044f0b505942d938407fb6d34d0c8139d06e6fca610e19bd22fd18187fb6423feed9f580
- SSDEEP
  
  12288:GSz57xn7kZQ6kliVreJIHHr0tRYbKr2KtG9VKABC6rPI/:1zF9km6k/IwRYbiBeKGCR/
Score

1^/10
behavioral25 behavioral26
- Target
  
  Release/System.Text.Encoding.CodePages.xml
- Size
  
  2KB
- MD5
  
  c1bed46594fd83112d7e77050eb0e874
- SHA1
  
  cc5c4d051678e7de0ffe9d7354556f421699c04a
- SHA256
  
  2aa6e789fa4827267fcf178cadc9f1eb9772e45fb6d8a1fa631343e221b2c5bc
- SHA512
  
  b616a7782e297b70b063413cb103cfbcff7a5dda8e074937232650ac7ab05dbd6fcd541b203ea639e75eeb6dfd24e6ecbac2fc9038505e15d738e018ab9e765c
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  Release/System.Threading.Tasks.Extensions.dll
- Size
  
  25KB
- MD5
  
  e1e9d7d46e5cd9525c5927dc98d9ecc7
- SHA1
  
  2242627282f9e07e37b274ea36fac2d3cd9c9110
- SHA256
  
  4f81ffd0dc7204db75afc35ea4291769b07c440592f28894260eea76626a23c6
- SHA512
  
  da7ab8c0100e7d074f0e680b28d241940733860dfbdc5b8c78428b76e807f27e44d1c5ec95ee80c0b5098e8c5d5da4d48bce86800164f9734a05035220c3ff11
- SSDEEP
  
  384:1R973o62/KqcAnb05J3w0I5eUGef8s72XBWdvVW2JW8aJcyHRN7WEimpplex:1RZ4nNxnYTb6Blha
Score

1^/10
behavioral29 behavioral30
- Target
  
  Release/System.Threading.Tasks.Extensions.xml
- Size
  
  9KB
- MD5
  
  c89e735fcf37e76e4c3d7903d2111c04
- SHA1
  
  3c0f1f09c188d8c74b42041004ece59bbd6f0f56
- SHA256
  
  975a9555f561b363c3e02fd533f6bf7083aa11bbc7cbf2b46c31df3d3696b97b
- SHA512
  
  debdd8d0ed2ff6ad7b175acfeb1681b1a68eeedd6d717e20e6ac5e0d11c13a1219b4d60f9319939c63bf4b53456328531369f4a9fff5b201475858310e385007
- SSDEEP
  
  192:1/elWY3f207pbNcYDLna8MMOOXzHMfHuHoLob+OoMuJkfYSiffiWje0seJme0seM:1/2d207pbNc2na8MMOOXzHMfHQoLob+N
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32