347a37180aff88da754c58afd5f956f7b353524029fa11090ccc45f926260444

Sharing

Copy URL

Twitter E-mail

General

Target

CryptMP Launcher [STARFALL DLL].rar
Size

603KB
Sample

240825-k3redawcme
MD5

32b0b29021f1b5d391e51b6bd33bf2c3
SHA1

ecc8877b71abfa1924da746c450934ca4fcf85a6
SHA256

347a37180aff88da754c58afd5f956f7b353524029fa11090ccc45f926260444
SHA512

5d0c1d561096365c1f1af50df199752e6281044c29ab547a52b6a900ae13b87e8380fa7cf95e31302b6f50ff3a0c18551057e7f98274ee17d19bbefb10ab9c12
SSDEEP

12288:B2V5mnxIhVu+pSzVpbbbQpxUWDMBrYPiIRG+57SEiw84Bo97A0GYe9lM+vc2:8V0x1+pSzbGUWAU1L5ti89jv5

Score

3^/10

Malware Config

Targets

- Target
  
  CryptMP Launcher [STARFALL DLL].rar
- Size
  
  603KB
- MD5
  
  32b0b29021f1b5d391e51b6bd33bf2c3
- SHA1
  
  ecc8877b71abfa1924da746c450934ca4fcf85a6
- SHA256
  
  347a37180aff88da754c58afd5f956f7b353524029fa11090ccc45f926260444
- SHA512
  
  5d0c1d561096365c1f1af50df199752e6281044c29ab547a52b6a900ae13b87e8380fa7cf95e31302b6f50ff3a0c18551057e7f98274ee17d19bbefb10ab9c12
- SSDEEP
  
  12288:B2V5mnxIhVu+pSzVpbbbQpxUWDMBrYPiIRG+57SEiw84Bo97A0GYe9lM+vc2:8V0x1+pSzbGUWAU1L5ti89jv5
Score

3^/10
behavioral1 behavioral2
- Target
  
  CryptMP Launcher [STARFALL DLL]/ModernWpf.Controls.dll
- Size
  
  686KB
- MD5
  
  a26d7ee8a374c0b382aec35fa94b8e39
- SHA1
  
  6a36e93bab78f89a81b1ab3044809e60bb93afe8
- SHA256
  
  f492a9bd9e523547316343ba85bbae69d093cfb6b5b91112b43506392e777dbc
- SHA512
  
  8e37f4ae5faa8da414dd526717f2b7a2c4b4744c72f3659e4636b7d0796e9b716ce94b7bcfde9452f675293d2513d2a5d64bebecd87969e8464966f74bd58f30
- SSDEEP
  
  6144:n5DWuL8s50DIG9zllC/2GFHayvm761gVyNRmD/LXdkTDXl5agWF0sRK2tqZoKm6c:5U9zETvmZVyzmvNetvBEgwgEUg1
Score

1^/10
behavioral3 behavioral4
- Target
  
  CryptMP Launcher [STARFALL DLL]/ModernWpf.dll
- Size
  
  1.5MB
- MD5
  
  d920ef07aeae9efe2da177db857117c4
- SHA1
  
  ab3d2834c5f602fff995c79d075f0e3371ef5eba
- SHA256
  
  15950333b0d6d01c11976095aef7e8da1ddcbaa22b9e5e63b009d65848d02313
- SHA512
  
  284e06b9da42af8c1dc2a37ab4e80239d37622c84357a6fd322d03ada819de3902dbf856df0594cc8091840210f158194c7ebd44bc056f248fc1b0a6d90574c0
- SSDEEP
  
  24576:FtHPkr1Dvp6qhFDDqWei7BDSkcA6eTksqjl1Sy9jl:FtHPkJ8qhFVphTksqjl1Sy9jl
Score

1^/10
behavioral5 behavioral6
- Target
  
  CryptMP Launcher [STARFALL DLL]/Redirect.dll
- Size
  
  18KB
- MD5
  
  2b6a907dc6a4d8a88a851bc4a089de24
- SHA1
  
  27504575773885426175804d7dc6e1d42c2bcad9
- SHA256
  
  5e65308b8d24b65788ad1af3a7e9f686b2cdf564ddaf2da022a0b11c3b51b0fe
- SHA512
  
  83404750c37a7278c5bbe84921f86a51e6dee5a50e0ee7e0e153df377d6cd812948e12cf158c851c81f043545ae445f4e2cde093146533bf77174116e2427977
- SSDEEP
  
  192:c5xZeB2vLaQa5aFwHaliPvjaQXoVeVfo4ZjPn2Qmb1wLwk+tToEHNcxonBo9hs:AZeMjaQ9iN3Ykfo4JQb1wLeHi9h
Score

1^/10
behavioral7 behavioral8
- Target
  
  CryptMP Launcher [STARFALL DLL]/cryp.deps.json
- Size
  
  16KB
- MD5
  
  5b068db273b38895134cf46b7383e246
- SHA1
  
  571f7db2fed59c3c6416dc45a4b7d84a333a987f
- SHA256
  
  1107fcc261f4fb35d434141a0383989245c0463969eab73c537155c2e72fd9de
- SHA512
  
  4d51f86822845f953c4c96387d6233f89909d62daa75554dddc56d0faade532ef62ebfa4efacda49c5842e768b0556d1d90343ca5bd7580f189a91df9a72960c
- SSDEEP
  
  192:YAIKaKvAaUQWEEz6C6iiIoHoGQC+eAkO1h:Y4AaUQWEEz6qiIoHoGQoAkOX
Score

3^/10
behavioral10 behavioral9
- Target
  
  CryptMP Launcher [STARFALL DLL]/cryp.dll
- Size
  
  47KB
- MD5
  
  1ddc64884d0d452556a3fb310c3541fe
- SHA1
  
  961f6f88855b2b148c708262d0892680a8c73bd8
- SHA256
  
  e6d0af8ce4fb87a9b4cc79185ff33749f8422b7aea8d52e9e2aa20371ed39009
- SHA512
  
  a8b2ea822ec96cc2f2aa25f9d2bbd470460ab22e2c49c561a2d41316961bef135bc113820695be9d8e91500afa04a935ca1bbe5f33822cd65738a81545ded0a1
- SSDEEP
  
  768:q8lwv8y4nH7/KydrQarWJZlyc84nFfZAWZH2tBhEIv6V8c5tuTpqKYh1:q8lwpQHjKCrWJJ5Z3V2tfEBuTpqKm1
Score

1^/10
behavioral11 behavioral12
- Target
  
  CryptMP Launcher [STARFALL DLL]/cryp.dll.config
- Size
  
  2KB
- MD5
  
  f9a64e9ffe708b1679868fba92f8944f
- SHA1
  
  d0f588ed45d9dcd3ca5c0b3776964a9c29fcc78d
- SHA256
  
  e3019082adb801251f0996bdd5d1965c8399b3252219db13713cff4732023dae
- SHA512
  
  9255815390aa5c002a934b051e2df8d6cad91fbcdb1369a09ebcccb8b69fb65df22a4ec215f717e3cef108ecbb1c42851bf42f0d099df280fee83950cfa3e4cf
Score

3^/10
behavioral13 behavioral14
- Target
  
  CryptMP Launcher [STARFALL DLL]/cryp.exe
- Size
  
  155KB
- MD5
  
  28afd27abba4d0cb0ef290a26bed83ec
- SHA1
  
  2563efc98ff46a8d0e7eb9223c9ab9959768b763
- SHA256
  
  0fdbdfbcd94cf0c4eed3720dff5b2fe8e6b0ce2a4ebdfb2686ab168c2a25d4c9
- SHA512
  
  5afc856f057b29b5d8a2f9812ea850f7cbaae70a6d02e3592e59644de3b783def6c312f13cd88ac6606e4bfc00bd67d003a1d816cee3bd487b7259e3a2f0e118
- SSDEEP
  
  3072:C8vbzyQ6Y1YXrbNK+3FNxacPEMk6rRQACTWLfEpZQz:CszAXNK+3FVHRQ9TWLfGQ
Score

1^/10
behavioral15 behavioral16
- Target
  
  CryptMP Launcher [STARFALL DLL]/cryp.runtimeconfig.json
- Size
  
  372B
- MD5
  
  d94cf983fba9ab1bb8a6cb3ad4a48f50
- SHA1
  
  04855d8b7a76b7ec74633043ef9986d4500ca63c
- SHA256
  
  1eca0f0c70070aa83bb609e4b749b26dcb4409784326032726394722224a098a
- SHA512
  
  09a9667d4f4622817116c8bc27d3d481d5d160380a2e19b8944bdd1271a83f718415ce5e6d66e82e36819e575ec1b55f19c45213e0013b877b8d61e6feb9d998
Score

3^/10
behavioral17 behavioral18

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18