3b17d61c52d82584a4cdcf79bca6bf99255500ebabb8b375151e7cddf2978fb0 | Triage

Sharing

General

Target

3b17d61c52d82584a4cdcf79bca6bf99255500ebabb8b375151e7cddf2978fb0.exe
Size

6.5MB
Sample

240806-bx32jsyhjc
MD5

335a008131447345a4a2bc0bb97def33
SHA1

0342d05453185d6b81fcf21ffef725b8fe1f5a33
SHA256

3b17d61c52d82584a4cdcf79bca6bf99255500ebabb8b375151e7cddf2978fb0
SHA512

a851a5324ab4cc3dbdaac90ab20979dabaf795f8513aba9c1e1fb0125e697108e3e47dbb1efdfeedd31b1cc82ea7c60822e434e1a1ab46b8d616e74784ae8651
SSDEEP

98304:5RDvv8W6s6aGZw8h5REa3i5JWGuM6jiQ+r4agFKNdNT9ErGTXN/bEO:X78KqZdnCa3i5AGD93M6dNRtjSO

Score

3^/10

discovery link pdf

Malware Config

Targets

- Target
  
  3b17d61c52d82584a4cdcf79bca6bf99255500ebabb8b375151e7cddf2978fb0.exe
- Size
  
  6.5MB
- MD5
  
  335a008131447345a4a2bc0bb97def33
- SHA1
  
  0342d05453185d6b81fcf21ffef725b8fe1f5a33
- SHA256
  
  3b17d61c52d82584a4cdcf79bca6bf99255500ebabb8b375151e7cddf2978fb0
- SHA512
  
  a851a5324ab4cc3dbdaac90ab20979dabaf795f8513aba9c1e1fb0125e697108e3e47dbb1efdfeedd31b1cc82ea7c60822e434e1a1ab46b8d616e74784ae8651
- SSDEEP
  
  98304:5RDvv8W6s6aGZw8h5REa3i5JWGuM6jiQ+r4agFKNdNT9ErGTXN/bEO:X78KqZdnCa3i5AGD93M6dNRtjSO
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  $COMMONFILES/Propellerhead Software/ReWire/ReWire.dll
- Size
  
  1.4MB
- MD5
  
  72fb00be9ae93d7f445acbbaae43efb1
- SHA1
  
  9a4851fedb065e4ba7675566fc4681686010da40
- SHA256
  
  86f512094a7d87744db5cf7df629087a76e7159c0ab1fecf780b3e06abf715a7
- SHA512
  
  3b351878e99559f271877fcd7b7aed62b248f82efc0d7afe400da2a0d61827f85bebbbefb9e91520a086cef4c656ca3a0da84161930028eea52f32cc8b97d888
- SSDEEP
  
  24576:5FxEKn67lrLcZNOHMpOn/rG6V0xmPyMbNz:5o7Fg/pC2xm6yz
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $INSTDIR$_8_/Effects/Liteon/deesser
- Size
  
  15KB
- MD5
  
  51bfc9a0ed3f431a6649e4b28d342fd3
- SHA1
  
  d7091c54e679a5f8f9d62dce481021aae0c53774
- SHA256
  
  df023bba2bc642054dd9e0da3ab37d819ac3a3f0c5a8af3d91f2076a900dcd24
- SHA512
  
  26a9bd65692072509c9e455c52c64da9d277346f21db0962cdb9fe6027875a873e4d99f32c166fd2d563aedfa76762f18df82cdcfdcf0f98a0a434d6d7443c63
- SSDEEP
  
  192:S3rt1xNX7K3BHkkmYWscE/R59bBW/QrOwcvgFNm2mE9FsGFevg2i3m27FIK4E9S5:8rNVNgbcE559BWoXj959hFn9ShO7i3P
Score

1^/10
behavioral5 behavioral6
- Target
  
  $INSTDIR$_8_/Effects/Liteon/np1136peaklimiter
- Size
  
  15KB
- MD5
  
  5461cdb4d2ccb9eb411e30f47e03a1a9
- SHA1
  
  5683977a4ca816d2d71377159e1733bd00040cda
- SHA256
  
  3fa82ce9ca0e257ca9c4c2a7127aff055c658f89c57c255ed742e12bfe36380b
- SHA512
  
  08ad3b253a4b940020ef0d7872ec3465d81a5c251d1d74d9daf9b733d2913f0f618cc064b00b193dd6453712025cf70a78ad48f164645e2d709ed183230731eb
- SSDEEP
  
  192:S3rt1Sj7aA3Fr9wEmP/JNcD88U6aSGS8LUsqTs+S8nMPEYvG6wK:8r+nRhqcD88UVLUBS8nMPrvG6R
Score

1^/10
behavioral7 behavioral8
- Target
  
  $INSTDIR$_8_/Effects/Liteon/ringmodulator
- Size
  
  9KB
- MD5
  
  338f678cc0629e7c04070277de5caaa5
- SHA1
  
  ae55fbbb9db8128d90c1858114d313f48c104d01
- SHA256
  
  6f9332d8c3650c4384741fb852fe3958c79a4d9e6f66317c61f11edb3326563c
- SHA512
  
  bdfbb280a42ac46217bc7aba3374d126d17acfa5ef1c7bc96ec3c55b80ac0f3a0e2c0aa1033bfd46d3d259152a172d397b1c1dba9e7ef85e687e7b661703b353
- SSDEEP
  
  192:H3rt1aVUyTi0/gHDpsB+NIWD38bYd+Bq9kHsznjtn2xK:XrO/kuB+NIWEzk9Tn
Score

1^/10
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  c17103ae9072a06da581dec998343fc1
- SHA1
  
  b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d
- SHA256
  
  dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f
- SHA512
  
  d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/UAC.dll
- Size
  
  13KB
- MD5
  
  29858669d7da388d1e62b4fd5337af12
- SHA1
  
  756b94898429a9025a04ae227f060952f1149a5f
- SHA256
  
  c24c005daa7f5578c4372b38d1be6be5e27ef3ba2cdb9b67fee15cac406eba62
- SHA512
  
  6f4d538f2fe0681f357bab73f633943c539ddc1451efa1d1bb76d70bb47aa68a05849e36ae405cc4664598a8194227fa7053de6dbce7d6c52a20301293b3c85f
- SSDEEP
  
  384:RlNMjIH4DnFnyJ0Dt5ZtmVWsSLr4z9VwzU:RlqMYzFnD/tmQFLrSw
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/portable.dll
- Size
  
  4KB
- MD5
  
  4fc4d036afd9f98d514524216a12b61e
- SHA1
  
  2c46315be49a8d79808d5da5542bc13a6f353c36
- SHA256
  
  ffefcfd82d41555a1ae268920f0f2f814ecbbed0f143a16d7f4f03cffff4c38e
- SHA512
  
  b0181811d42919a32ce25f37bd8f18c73a258060b32d60bc5de549769a8329e75619b41cb58d9e33128c1bdbad1ee7b315a7bc791dc111dd2e3594bf7f3bdffb
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  Docs/REAPER Quick Start.pdf
- Size
  
  98KB
- MD5
  
  1bddb792fec19750ccbbb8352b2b8ffe
- SHA1
  
  dd300cb011e0d9abd57f41503e31367167fddd68
- SHA256
  
  58045223424d936adcefc09c06f635c30a1aaba0335fc5d5954b43833b53fd72
- SHA512
  
  1438030735aa9549e13b2e275210a9c6bb825329acd568d8c38f8debe04474ce01be5e44ef6b76913d47b59d33c58954615754cffbce67de04f9ccbaa8341631
- SSDEEP
  
  1536:loTqjohGkVSC9aZHu40Y7w58PxeVPM6b24k8frIP4T8m0qd4gBE:1lHfEU03kPm8m0qzBE
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  Plugins/DiracLE.dll
- Size
  
  268KB
- MD5
  
  93238672c08442d0fa2f41923e2c51cd
- SHA1
  
  98f97cbc1747a02d00116123425c45fbd86be531
- SHA256
  
  bb61ed1bf7e2b98e040c20936523bd9bd71ea2b546d6fa95ed51f1541a8910b8
- SHA512
  
  e013e3a7a25d1ccac6a4abd4980cb9e6a3f0637d7e3712d5a20e86841a338adde350a170aae978d8aec06d6764d5c018a8feb94f09e035b658f9a1b0683cb686
- SSDEEP
  
  3072:ZDkQ3hnmg5lalIXt6Wbtz+nFdor2gUbbzsl49oa/p:Z5Xt6qwFdor2gUbbzslo
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  Plugins/FFmpeg.dll
- Size
  
  1.2MB
- MD5
  
  e69eafbac54d0946b2f0d19e611f04f6
- SHA1
  
  356777223890b6846604c4d04dcdf0fc3f6c15c5
- SHA256
  
  3ad678e79f01e1d302eb2ffe6c55bf419b7c4b7b97aa40d605b9e104ad7f3eda
- SHA512
  
  47916acd669bb5d5fcc49b2e56d9c90cdd70474b66c8f9554ef5fc56dc4f6b245c198ba0fec082474e7a946b29942c6b8321b9d8617a465ffc37237a58053636
- SSDEEP
  
  24576:WavLDdCEQ15UarjvaejpdXUFJbkOmsr1HifMWDPaGQgGBfQ67HOhCcw8GZlJYZvn:gPHUJbkON2bdky
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  Plugins/FX/reacomp.dll
- Size
  
  178KB
- MD5
  
  2fe20d93f195c667acb1d9de49029eee
- SHA1
  
  45ca77fa81967f534f16a13d0d0cf5d2edfaca36
- SHA256
  
  a0d0a772518d046c2207543e3ee37268aad37055e82c54bc0ba2e4c9a0679580
- SHA512
  
  1cede694bf68e710c721d763f88abbca14e813288f80c1da32c75871ea0cb2498bccc52b11538ce5ea3a17f04579f05b56da99954cf9db84505385c9c2c149e8
- SSDEEP
  
  3072:pAx1X1o7zdjVQ4qtn/icYDWX7zywu4X1gnSfR0shvqKN888QL:p8XyHd5QjptIS/Zu4X1gSxr8
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  Plugins/FX/reacontrolmidi.dll
- Size
  
  69KB
- MD5
  
  2e3c799800b815827e92fba101b86792
- SHA1
  
  ed94834f330a3b6810995b27941795cd7bd07947
- SHA256
  
  2a4ccbdd06a95b5c6c455fa09b1224a47f83bb22d0b20926dff701e777db1141
- SHA512
  
  d0a18b60bc6518bb64901adce8eff15321141e070388176e9776c8638946bc9b73cf2f5097f84b363d17f64bda750d48b56215acde801fbf3676b75c9342ce97
- SSDEEP
  
  1536:Fq7qYuBUc9qrhWyq8YHNlnmMHpFkrBnkHsyQP:EmYuGc9qrhWyEN9UrBkMyQP
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  Plugins/FX/readelay.dll
- Size
  
  31KB
- MD5
  
  ef51039d02c97bcdd6917232008ac50c
- SHA1
  
  093e2333ce554e3aa3d4320dac96f0039a8f9b39
- SHA256
  
  42325b99eb6cb2eef0fdf49524c76ae8bcb3870061d9c160fbc693fedd3af078
- SHA512
  
  2ce047cd55984eab4a2439c23abab4b7efbc0144aeb3cb0e18196b348aa1ded38b9ac49900d97551f75bbf205ef56328589c2ec422f0c57cea5071796c57fcf0
- SSDEEP
  
  384:vL97RfXz4rztBx6Bs/0W/eeZ5qwkK9SzwYiSig6Jugg65vzIUpurOjN1WS2fi978:vzMp6bheSsm1BrQgyLt2A7Y
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  Plugins/FX/reaeq.dll
- Size
  
  126KB
- MD5
  
  758ba435be00091095963452e6c10e62
- SHA1
  
  bd14086bf85b7751f591a5b8ff5b027b7d75296b
- SHA256
  
  fca030a6e52724c0e294c851351aa32308047e5a0a70acb02f03f33350b53062
- SHA512
  
  424a1bcc1685b83a8dcf7c1e3c9a59becd0e1236755635643962e2f34866cbe3189ae95290bd57e040cb0648fe9769e41cb441e7d3935424b635f3a9c252673b
- SSDEEP
  
  1536:kYfd1kj7d9AFop+OXpgxZxrG47/N6R9zQMC+XAdY4whjo4wzw4p+VTaLGTXlotFW:31kjZeo69rfEHQdY4wicMLGOtFlxe8i
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  Plugins/FX/reafir.dll
- Size
  
  222KB
- MD5
  
  2f84a2c05adf1ff98c7993f4c27d055a
- SHA1
  
  0adbf4535a76675b0fb4886702627af828bd7541
- SHA256
  
  0c2e65868f73a6a72c944160b9d0d9ed25728117ba673efecaa97c887cc57417
- SHA512
  
  bf2e9a3dad8b074497cf4dd9ab3e53f57457f5b27d11766492ab598c85cca34781ab0e94294f65e0c1b73ef947bdb45221a1367f718b64a962b9f53bbfcccd0a
- SSDEEP
  
  3072:O878raMHPEslMWqZPkr55r4rQZVnYJk2/EYA3e0sMUUUymdnB/F0shvLPX7hEaJC:OsW4Irr4rQZVnYJktLulUT2nB/lHhCm
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32