7046fd42341d1105c85474a078c30c3fe1d4acdca91dc59a3ab30fd215605bb5 | Triage

Resubmissions

22/08/2024, 18:26

240822-w3jkbatfkr 4

Sharing

Copy URL Twitter E-mail

General

Target

New Compressed (zipped) Folder.zip
Size

1.2MB
Sample

240822-w3jkbatfkr
MD5

3390a6309e23bf03a05057e85faf3aa7
SHA1

ab314fa147c72323131ef8370114e5179876601d
SHA256

7046fd42341d1105c85474a078c30c3fe1d4acdca91dc59a3ab30fd215605bb5
SHA512

6a9ba413e05136e7cc9f5f80234c41877e951535e047077cef4d6b7e560ebeb8f8d63783265401e7338d6daee605f4cb537e578405f526803903cececf2a5f8e
SSDEEP

24576:qgLJZqRAKTPXelwUAS13df5+5u9m2/atuoKvE9qqH45fRa88z6t:FLJZ8ftUASfxQXnJlH4P26t

Score

4^/10

discovery

Malware Config

Targets

- Target
  
  Wind/libcurl.dll
- Size
  
  546KB
- MD5
  
  2024156665356070ea193498d076ea7e
- SHA1
  
  304fd6c02e788ce55404560e88ecc45d78961d1f
- SHA256
  
  815e4160ca9fcf4f6bf2b44b004a35cdb5988103d1204102eb7320ce2146a9bb
- SHA512
  
  dec6441fe2fe25e5c2bce8f916d58d3be2bb218f2e82d27e346bce5100caac239c484f4e10f0fdfdc152fda209b066ac04d89b62bdcbe5cfe0393734beb16962
- SSDEEP
  
  12288:TIEuXoN7eLmPPIy/KN2nalkLPrEOkTR1VcTo/w4l8DJCLd:EEAoleL2PIyyNrlkLPG1VcTo/w4l8DJs
Score

4^/10

discovery
behavioral1 behavioral2
- Target
  
  Wind/windinject.exe
- Size
  
  1.3MB
- MD5
  
  084186408c3a3c3cbce4239b8d979cd9
- SHA1
  
  a918568f552d4245d47482dd80494623e267b987
- SHA256
  
  0ce9a490c10e426b0d442480d75d3327967a063daf0b2a409671d8c239d2db43
- SHA512
  
  03e0adcfd58e1482885cec3e7256570778f725a0e72d2553634cbb514e9591fabeebfa700ea610d84e295fa57506696a26273f46cd44f085d38b1c114ce12ca1
- SSDEEP
  
  24576:cY3tjSqaCv8laDZ1fOnYKqZlypz2a0jZAqM/9wnaDIjCcccemf4yP4LLVjOxIR:1dlawnaDIjImf4Fq
Score

1^/10
behavioral3 behavioral4
- Target
  
  Wind/xxhash.dll
- Size
  
  45KB
- MD5
  
  fd4a9c28c2b7b7f7cae985eed789f0ce
- SHA1
  
  44b51dd9a141f3dfcc090549e6c90071f8b55fb4
- SHA256
  
  dc354e7ea9046cadbed8645e4666975a523463500c877574f8e8306d958b7304
- SHA512
  
  b3ae3d523a1a2de93f05cfa856ac6984d444ee5180f862f0046be3acd02fb499400909449c7e47f764aea2d7d3863e42c7029b0cfc8803b79a91c9f56f3b8bc1
- SSDEEP
  
  768:f9otvM7DZ1LMDJdj+LVvgFlJus4zBYdXK3QDV:f9UEDLMDJxKM0scCXKA
Score

1^/10
behavioral5 behavioral6
- Target
  
  Wind/zlib1.dll
- Size
  
  87KB
- MD5
  
  46b86e47c082b3ca753e264538c6b9ba
- SHA1
  
  aafa06e387ab9eddc120de3fc0127332cdb8fe1d
- SHA256
  
  cf0bf2746b40710452df596fabd497df250f7693db652c13971aee7c69226c18
- SHA512
  
  31a396fe4349c81067f1936b92e68b058dea5fee2faf972c3bb39d7e2c6ce48292eac5bbc5b43545e07e8aac03f299fb504bfe651b3e432b64e302c651f3d81b
- SSDEEP
  
  1536:47wjHHWwn1rhEzjEp70E2thqlzY2qIOcIOZIelMbHi:4cjH2w1EjEpIqa24SZICMri
Score

1^/10
behavioral7 behavioral8
- Target
  
  Wind/zstd.dll
- Size
  
  639KB
- MD5
  
  91032907f8dc67be99885b0b1169837a
- SHA1
  
  63b6cd2442d68907ae64bdf72095ad08f0b4d00e
- SHA256
  
  ab04353fdcf07994a048ad4dbec1579436066f047fdd63d36e4e29f4b1dd6a2b
- SHA512
  
  83ab14249829f9d98d41363a7a6b5b7be8dfda5f51a017145da7930e42cc9de2ce79a524960d115dc533343b62bfdefdce817d95d0c779687e5ee15f2347856f
- SSDEEP
  
  12288:AlNqGONdPaszBp/I3MV4IIdsdVWoRpEn/x:AfazBpw3MV4RdsdVWoRpE
Score

1^/10
behavioral10 behavioral9

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10