Overview

overview

6

Static

static

3

Debug/Fast...ox.dll

windows10-1703-x64

1

Debug/Rivi...or.exe

windows10-1703-x64

6

Debug/bin/...In.dll

windows10-1703-x64

1

Debug/bin/...b2.exe

windows10-1703-x64

1

Debug/ccapi.dll

windows10-1703-x64

1

Debug/oPdmSm.dll

windows10-1703-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    Debug.zip

  • Size

    1.7MB

  • Sample

    240805-nbfqcavbjk

  • MD5

    c4af46f1631ba96377bc8ba44669c7a2

  • SHA1

    72fc46c4bbeb7a5c66abaac33b47afa9f58ca58a

  • SHA256

    e89065708ce6b3724a6ce0d4eb264e5f858761ddd9d92a00143d662fee40985e

  • SHA512

    259178fa6748b05727e26825940026c8c12e9afd2591414e8ce9f60b283e8f59f9eabc962575cffb5681536d22d982f38b90b9702595359457cc5f954c0cc779

  • SSDEEP

    49152:7FSxkod/FipyN4CRLYZsULgd0fgafgjC89:7cdNF+yYmB0fDfDQ

Score
6/10
discovery

Malware Config

Targets

    • Target

      Debug/FastColoredTextBox.dll

    • Size

      285KB

    • MD5

      bd5e987f0db5e1c221f8751301e3dab3

    • SHA1

      64025e1583b6ade427e37ac6fb9cb0b1ee82c4f6

    • SHA256

      0fa9894a0316032fd47a044156bf8eeda42d3438ca4202fdebc2b56e1f50b246

    • SHA512

      4b8a272ef04c4d57dbd046fcdf6790a06b894890d6f7061388c8646c263ed041275f02a8d38dae5932a6b382366b90b7c802a859bef74617982d3af7222b1207

    • SSDEEP

      3072:fRRnCOlhWbTKQf1Nu1HamXMYQdHAE8mrpx2igF5+OGD4FKLlTW/PE6Anau9LwvXZ:ZRIvvlrEuEFZE/3aXssHNe54ZEDJoW

    Score
    1/10
    behavioral1

    • Target

      Debug/RivieraExecutor.exe

    • Size

      277KB

    • MD5

      ae22948f8bf357cb61f780555d0ab069

    • SHA1

      bc98bd77dddd8e7786b31e3c3114a59f617c78bf

    • SHA256

      71d95a4153cd4af5c0bff34e2a3fc2948b46f557ab6890e4fcc1479b47142f1c

    • SHA512

      80553f5ef4c835cfed25138215c33179c91f6fae6531325bf1cb89af74f6517a6c8b2d5fe06ae38c1b900118c400a51aac9e20f62c60867dc518ab8637b9a126

    • SSDEEP

      3072:9ZgVqr5v/02cX2nIeQOZwTzgvGe77MdD+hA7RVUl1eKAQDVNdnQ8:hrGeQsAzgvGensyhSYl1egDX

    Score
    6/10
    discovery

    • Legitimate hosting services abused for malware hosting/C2

    behavioral2

    • Target

      Debug/bin/api/CeleryIn.bin

    • Size

      44KB

    • MD5

      2682352886b9de7763dd637ff940ef97

    • SHA1

      6df1516ed9f1084bd0e7b217996353afa3babb98

    • SHA256

      eab4356a735f604b31f493f2c9f0f98448ebc2671825e348145609fed6e927e4

    • SHA512

      0799a9d1126b444992638bb16e62726d7d49753d74845114f0076fb5d1e7159c83d0f7e62a1a80a9b034a59529ef73b0fd7acfdccc754cc9c3cfd1984ae4ec3c

    • SSDEEP

      384:rVdzew6q0MEe7Tc8cZO1D9WDPAULcRUSoTYVJa51xoVMmA2QdwB5bh1r:5YiXFcZkRcZJTYVJanUNA2jj

    Score
    1/10
    behavioral3

    • Target

      Debug/bin/api/npfsjjfsaxb2.exe

    • Size

      5.0MB

    • MD5

      6b11846ac7d1cdfc7bdfb9e27210ac7f

    • SHA1

      ec2056b1a47b60a30ffd16313c07bc7e8e28bf64

    • SHA256

      c5448339124931a267dc09f9ccf41878ef64e0e9a2553a220b2cb950a7aa8f56

    • SHA512

      dbb516ed47772151d5c3b3147a419f9157a22f9f6853c9a77db4713f06f7d02eed2295a9c522721ca3d5b256972089dfb76d62d5b42bbc271fef9d22bae76264

    • SSDEEP

      49152:3esFEyhNi5PyeVuOvW/eDGjyYl2g53PaiTs9dnNdnndn+dnc81u:uzVP

    Score
    1/10
    behavioral4

    • Target

      Debug/ccapi.dll

    • Size

      460KB

    • MD5

      39647f4ab788c298f667d63e44742e1a

    • SHA1

      c29b0ae4d73140db4f4a7e599b2a80ca21ff0ec4

    • SHA256

      13d9ae9fe3dbae1c6ced7f38ce5f6cee5fb7aa9a0b92d0524151cce37ce15ccb

    • SHA512

      c5c83792e6251cef9db30ef9a478f7151aff59417a0673574fbe8ab975b3f47ebdc1b3c670ef3fe250f7ab666cd5b34da0647945b026e504075fbfe57ac947e1

    • SSDEEP

      12288:snnhILvJgwA6W792yFsy2Gkyv9OxsZmSKluSDz:snzdxKluS

    Score
    1/10
    behavioral5

    • Target

      Debug/oPdmSm.dll

    • Size

      285KB

    • MD5

      bd5e987f0db5e1c221f8751301e3dab3

    • SHA1

      64025e1583b6ade427e37ac6fb9cb0b1ee82c4f6

    • SHA256

      0fa9894a0316032fd47a044156bf8eeda42d3438ca4202fdebc2b56e1f50b246

    • SHA512

      4b8a272ef04c4d57dbd046fcdf6790a06b894890d6f7061388c8646c263ed041275f02a8d38dae5932a6b382366b90b7c802a859bef74617982d3af7222b1207

    • SSDEEP

      3072:fRRnCOlhWbTKQf1Nu1HamXMYQdHAE8mrpx2igF5+OGD4FKLlTW/PE6Anau9LwvXZ:ZRIvvlrEuEFZE/3aXssHNe54ZEDJoW

    Score
    1/10
    behavioral6

MITRE ATT&CK Enterprise v15

Tasks