7d1bb1dfc913e59a89efe29e76b7baf7d36892cb733d9d555957c5ca37cf73ba

General

Target

krnl v1 beta.zip
Size

2.5MB
Sample

240821-pf8scsxhlf
MD5

9a97c647ebaaecb5190098afe8d2eb6c
SHA1

cbd822504c12cecb55451ef72a8157f4c4ac281c
SHA256

7d1bb1dfc913e59a89efe29e76b7baf7d36892cb733d9d555957c5ca37cf73ba
SHA512

fba6d08b5d81d8d094c161476a25df9c00633d7502297678463f6ed4fb6c654c87e955864af884ff2f8e1d5b74626ce9316bb92bfbb8fff5cb5e28972ab6da27
SSDEEP

49152:HvpmPxBuLu/Dq2yUr2dxPT3d+aA6cvwIhYiMhwFFiLZuDova7WAdwR5xP:HvEpBmu/DqeOZLA6cvwvhCFDZ4R5t

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  ForlornApi.dll
- Size
  
  403KB
- MD5
  
  345a2e050427efe42070208e3a4cf263
- SHA1
  
  4954188b7310aa2c42432ddf774472fa4bacdbd7
- SHA256
  
  b220576036ff6148049d61ee13e58b882c0bceba00bde2988dc0cfc36ee6016a
- SHA512
  
  3dcbd60fe498c6c6862dcd3c84ac36313f3e92e8d00c9484bcbb60de3a500247d376b3adb9ca61c0548745dbec6839764180e79b7ea115ad21e7f2288d7d13e1
- SSDEEP
  
  12288:H29kpvNBi+CEGA1H3CLLD/2zqMd4G3YfHTMtpDMbllpgvprX31zmtN:HI+CEGkCY
Score

1^/10
behavioral1
- Target
  
  Krnlv1.exe
- Size
  
  758KB
- MD5
  
  b7cac4a0fd1b2512a48de5e9983415f0
- SHA1
  
  e991c6ce8a10455c712dadfdee8fe52cf5036d8a
- SHA256
  
  02f8afe1b082822a2cb328b3130f9a8217e15983a65b457aea5e0d4e19b5e03c
- SHA512
  
  fb3d701ffed5b6823b8cdb04bc6748c5301efd8bea43d1bfc536515b6317e6eba8aaa16c74d2de457a6c68cbf59fe954572dbdf82736140e2e00c7f04c1de79f
- SSDEEP
  
  12288:RnQ346WgEnlUPiMTkBHB1lPiWhS1RkLesJ21ZOe6suD32JqKShlxhdUnkXps4PpN:2BSl/MT6HBBhgKf0SeTuDmIKihEkX24/
Score

3^/10

discovery
behavioral2
- Target
  
  bin/CeleryIn.bin
- Size
  
  44KB
- MD5
  
  7b23c9ace4767546cbda102024ff9461
- SHA1
  
  414ef4cd25d0f43f4d613fac61b2991800a00e7a
- SHA256
  
  a12b8fa06552a9c6ef682b4535e23e0e2a308c59cec5b33f45ce783cbcbd70a0
- SHA512
  
  8cabdc8d4bd9ab2a5b105487eeee259244d5896d3a5fe859141edea31d6dd14fe2cb492f9019362aa2f722bafb9763e23c195fff4a11b6170fe3f57ac7d7c706
- SSDEEP
  
  384:9zLZFw6q0MEe7TJ8cB2VyNhY2G/4YbXO2CImy1TUlJE50GTLcPh2QdwIqGxr:9biXOcB80hSPXO23mmTEJOm2B
Score

1^/10
behavioral3
- Target
  
  bin/CeleryInject.exe
- Size
  
  5.4MB
- MD5
  
  f47607f244b58b35b417cb2c2ece0497
- SHA1
  
  96bbb96221675781051b5e1246e0cdef108a69f0
- SHA256
  
  fac8d8abc400067e321e405293331e4d50eaec61289b02c160a52d086851fd06
- SHA512
  
  edfb1759c0239b3fa1062ca66540d1c33e8862cc8f74d49e4acbf9bdf13feff69308360312056e5d14e7fa764561090978ea4be86f4ffdcef32f93663f5790bf
- SSDEEP
  
  49152:chITlFM218wzEqBOxfesB2tMoQppJDGjywl9H53PVz16zJu+TsGdn8dnndn+dneU:c+fzPsAVvIZ
Score

1^/10
behavioral4
- Target
  
  bin/ForlornApi.dll
- Size
  
  403KB
- MD5
  
  345a2e050427efe42070208e3a4cf263
- SHA1
  
  4954188b7310aa2c42432ddf774472fa4bacdbd7
- SHA256
  
  b220576036ff6148049d61ee13e58b882c0bceba00bde2988dc0cfc36ee6016a
- SHA512
  
  3dcbd60fe498c6c6862dcd3c84ac36313f3e92e8d00c9484bcbb60de3a500247d376b3adb9ca61c0548745dbec6839764180e79b7ea115ad21e7f2288d7d13e1
- SSDEEP
  
  12288:H29kpvNBi+CEGA1H3CLLD/2zqMd4G3YfHTMtpDMbllpgvprX31zmtN:HI+CEGkCY
Score

1^/10
behavioral5

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5