968604ff6b863b0290aa50e25cd5df4521d88b9eadbc91be9a371d29caa8f4a1

Sharing

Copy URL Twitter E-mail

General

Target

968604ff6b863b0290aa50e25cd5df4521d88b9eadbc91be9a371d29caa8f4a1
Size

3.9MB
Sample

240809-an2axsshnl
MD5

f8556cacc1e3e3d32474abc388769f8b
SHA1

6d66b7cea78696a51580dc2962b743d06b4b4f6a
SHA256

968604ff6b863b0290aa50e25cd5df4521d88b9eadbc91be9a371d29caa8f4a1
SHA512

ee8b0815aaced717cc29560e1b29fbd006d76d38509186e581c743f6524e9ece4c6132181894d9a37d3ee7023622ba29f0def3de39221f7216a5ccff1e46dcfa
SSDEEP

98304:lCBkfOGZpC438mZirJKDIpVF2rran4r3K2FuZ:lCBSn39irQD6affF8

Score

4^/10

discovery

Malware Config

Targets

- Target
  
  968604ff6b863b0290aa50e25cd5df4521d88b9eadbc91be9a371d29caa8f4a1
- Size
  
  3.9MB
- MD5
  
  f8556cacc1e3e3d32474abc388769f8b
- SHA1
  
  6d66b7cea78696a51580dc2962b743d06b4b4f6a
- SHA256
  
  968604ff6b863b0290aa50e25cd5df4521d88b9eadbc91be9a371d29caa8f4a1
- SHA512
  
  ee8b0815aaced717cc29560e1b29fbd006d76d38509186e581c743f6524e9ece4c6132181894d9a37d3ee7023622ba29f0def3de39221f7216a5ccff1e46dcfa
- SSDEEP
  
  98304:lCBkfOGZpC438mZirJKDIpVF2rran4r3K2FuZ:lCBSn39irQD6affF8
Score

1^/10
behavioral1 behavioral2
- Target
  
  DesktopTargetServicedCompDB_Neutral.xml.cab
- Size
  
  11KB
- MD5
  
  1e9f8675fce1c18de719c3d4718bf680
- SHA1
  
  7de32f5934b08552714be12ae06468a1858d05f1
- SHA256
  
  64442514b856b9df81c086a87fb6c70062f22d1cfe680c45f4a4044fee4784dd
- SHA512
  
  cd9a875e667647c6b4fd7d040aac4a233367cb6fe6eeb98782cbb532eacc625959107e3827d2d224333214430b9b38c644a04be00c7c80d4d901c04ecc967928
- SSDEEP
  
  192:CzAsBkYlKwme2WJWadJCsVWQ4mWnI0qXcADB6ZX01k9z3A/BmOfB:C95dLCsGI0qXcTR9zGBRfB
Score

1^/10
behavioral3 behavioral4
- Target
  
  DesktopTargetServicedCompdb_Neutral.xml
- Size
  
  30KB
- MD5
  
  e64cb219381143ac72653597803780b4
- SHA1
  
  2cbac1b834b26b5cbd08e36978e66f4192ec3c09
- SHA256
  
  1921ced0e68495621423712d0b81830f3c94d2baabaa98a55516913bb2b80c68
- SHA512
  
  599e3016fa6825b2ed079be3283d025586a4eda68f259325baf20b441ce3c9b9ff16d9621799f7da616a5361ea371537b5453fbbdfbd5a9d232084ef236bd7ec
- SSDEEP
  
  768:DgqyxmqyAxqyH8qy2fqywRqyIBqyGvqyaXqyJ2qyVaqyMVqy2/qyGDqyWLqyKvqO:DGxIADHq2dwjITGta1JYVkMv29GJWRK7
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  Mitigation.dll
- Size
  
  274KB
- MD5
  
  73ae65b6a569c43e46d357867cc015fc
- SHA1
  
  51b3fbb0b1fba412a59d8950b6cbc6bc40578b34
- SHA256
  
  e11d838623d5ff451f1aa21f0c87c3e09eeadd55e3ed666b4ee0501927192345
- SHA512
  
  f2a2354a163a94b5fd9801666d65a703097c157bd957ae9d4d8f10f2a394d4d10018e5bc6465d984749a390cabee3a64d3eb5db87bdf779f4e3b319e2a43d13e
- SSDEEP
  
  6144:8ghXtb2Ik7VTJkTmrD4y13TC9OCC54cbS1fc4:8gh9VEVTKKX4QT1Wp1fc4
Score

1^/10
behavioral7
- Target
  
  ReserveManager.dll
- Size
  
  274KB
- MD5
  
  f2b27a1ce42ac5c69a31715996a3ada8
- SHA1
  
  67dbb138dd066cdf4499ea23ab4f7c30d5f32fdc
- SHA256
  
  a8de53e744d902ebee2be6a4aa811ac8a93b488826b6109bbef23aec02df9f2f
- SHA512
  
  dbce29ce54be8ca8ca480aa79c3c06af7553377a54b38f756abd7e2fb43d3d7cea40ae28e8713ebddc3a6940d3ed9fd31cd31c38f9ab2ad76258fd8e65971fa7
- SSDEEP
  
  6144:T41mi2x/NzbxnInDEVbVWw20mkl3ZR2/0UJhJgNG5ch:Un2x/NzhI+9WYr
Score

1^/10
behavioral8
- Target
  
  TurboStack.dll
- Size
  
  812KB
- MD5
  
  e51fc1534aec8aa76216330b2c47c5e1
- SHA1
  
  f2c02ab86bb406c96c34422ce896ef6054ead67c
- SHA256
  
  f56885f0f9752af11112231c904bb11047c9a27ac32758629e5b60b23a5cc639
- SHA512
  
  c4c2680466bcc52e1dbcf1f2a4c8c893c30aaebaa7d6185969bad118e21f347392dfeba815cd60a136161b6c12df1251cacc51e3facb32c16aedee2f38fdd70e
- SSDEEP
  
  24576:Ce9ppKCzjXK3PD2QDO1bqR/eJ62EkdQtDMF7UvP6:Ce9/t2DGVbEQIDc7UvP6
Score

4^/10
behavioral9
- Target
  
  UAOneSettings.dll
- Size
  
  89KB
- MD5
  
  2f0e728d6c334f2f7dc4bc0ef45862ae
- SHA1
  
  bdeb60e8a9bd30360329ccc8da5669ae92bf4da8
- SHA256
  
  1873a06228904f122c3a1347a7c3726c67cca7b84e0f7dd505eed9825ae2783f
- SHA512
  
  b2b920741a8211e0785d49a368de42434cfbc0cb26389cc0296b8772b896853352b9b7226b191f9af51c4e2ca07b06a6f094886ff345626f68d9082f73fb0234
- SSDEEP
  
  1536:4D/vERVZrOi921a8BwTQQLbON3nnwMmvuY8VSC8FOlgfF5QgMXMHyRpEPnzb:sERfr3IwhON3nnwNvRNOleFKgMXMHkp0
Score

1^/10
behavioral10
- Target
  
  UpdateAgent.dll
- Size
  
  2.7MB
- MD5
  
  e8fd289ce6e95f5dc61aad98045246a6
- SHA1
  
  bcd75d7a69feac5d66e444cd9d820b53f3995409
- SHA256
  
  7eca57bf485e28028c5936c8fa64bfc376fdd1a40b6fd1fdce7c7bab9576144f
- SHA512
  
  e1500b36703bd60a45d6433102a0c955503316e0166eb09cae2169c39ef5bf6eea86a618616b41192187e9621a6a877c640384625402c6f1aa4282c060292e1e
- SSDEEP
  
  49152:/iD/OI9vgpahAkNY0/2B+lZkPgr63tQDgJq8ec4whpIFrjgH/HOD48qYKs8WP+P+:/4/BAHUWTIBxM
Score

1^/10
behavioral11
- Target
  
  WinREAgent.dll
- Size
  
  536KB
- MD5
  
  bf7403a96089e466bc7a0a09159ae863
- SHA1
  
  3126c43f9b4af5a7026693212066ab3f0310c2c4
- SHA256
  
  f8bd93b0ad316789b6de8f6ef376ae6233b05f72490794b5b4b3b97976ef7ed4
- SHA512
  
  a653454cbbec2b7400f6572f32f862ba7e61f47ee8465f97bfb010054dfa126b2267d836cedc074a29e791574987ee2b234e61b40d965c34ccb340f2f293c4ec
- SSDEEP
  
  12288:w77QFwqvqGAhb6toS+D5wuIV8pjHDKLICag:0uqGAhbHShujDmICag
Score

1^/10
behavioral12
- Target
  
  dpx.dll
- Size
  
  720KB
- MD5
  
  766a893f5ee8344f24df0b91e674da59
- SHA1
  
  c00a76487837ecd7d5c39faa97a468066c219c55
- SHA256
  
  646ff55b2662837f5233fe86282d42933bc6da300b53adae070aa3376bbef3dd
- SHA512
  
  0dfc6514a798991fee1551fef1f995edb883e52c3ed79cda17a8755af1117cd1aaf0a286faf1c21cdb638f95be2e68521b1da221e8b2043d17dbee76234a1835
- SSDEEP
  
  12288:XMpNOOQRj5GOe0pGmtEtYUB7DfrdmfEB5PNMlYEsyuZtO/:XMhQjhTpGftrfB5Pn8/
Score

1^/10
behavioral13
- Target
  
  wcp.dll
- Size
  
  3.7MB
- MD5
  
  692dcb2f38750b34a55c5fb05e25c589
- SHA1
  
  d350ef4f82755e16d0909d63f8744c22b6060ffb
- SHA256
  
  c9916bbdd94dbdd82d24a5ad9194599b30b79e1f7513fde3d07ee162dbde6df2
- SHA512
  
  6b3f60af976ac60a5f92db90068f61c3b58d94c40fe86fd07b9b31989ca1fa47151ab2cc90c2607fd87464dd84a61f387da781aae2e15360bb8ffe2054771ad1
- SSDEEP
  
  49152:Y3yngUC9Cs55mLHOGTuCB+qJj0qHM3JPrlRQnzvSUgM40lC5Y3mKKEd5wgmc1FmY:u/5yuGJlQ3wsQ
Score

1^/10
behavioral14

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14