2cdec83b8c5884194d13bf930a8c9ed0caa2eb6ce5cbec0da943735a20140ca9

Sharing

Copy URL Twitter E-mail

General

Target

anyburn_setup_x64.exe
Size

2.4MB
Sample

240826-eylqfawell
MD5

60e973899dd0f3270055f908c4e3e771
SHA1

ff28bece23b7e7432c0797832ebafb182b04e519
SHA256

2cdec83b8c5884194d13bf930a8c9ed0caa2eb6ce5cbec0da943735a20140ca9
SHA512

65ff3c04b649e062542b1aba58aa900833c22c55c0cef552f14c466ac1ace21b6637caa97f540cfcbe6fa2fa47aff91228e18cf8b4889a468c23e540bd83cfaf
SSDEEP

49152:X2DJ3Xf0wbatPe/YIPpIvUr3DnJwd8Mcd/FNFiXS:XiFhOtPGYITDnukFNUXS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  anyburn_setup_x64.exe
- Size
  
  2.4MB
- MD5
  
  60e973899dd0f3270055f908c4e3e771
- SHA1
  
  ff28bece23b7e7432c0797832ebafb182b04e519
- SHA256
  
  2cdec83b8c5884194d13bf930a8c9ed0caa2eb6ce5cbec0da943735a20140ca9
- SHA512
  
  65ff3c04b649e062542b1aba58aa900833c22c55c0cef552f14c466ac1ace21b6637caa97f540cfcbe6fa2fa47aff91228e18cf8b4889a468c23e540bd83cfaf
- SSDEEP
  
  49152:X2DJ3Xf0wbatPe/YIPpIvUr3DnJwd8Mcd/FNFiXS:XiFhOtPGYITDnukFNUXS
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1
- Target
  
  $0
- Size
  
  4.9MB
- MD5
  
  db802095321d687a7bffa70c98663396
- SHA1
  
  4d5bc07d3fc7e4f31aa7cb461bc0df5f11d6c170
- SHA256
  
  ef146e2279e1df1e95d16c485d8002cc3f8257006d2ca1a00aaa3d65555932f6
- SHA512
  
  5a3eb7723003a5c1d86c887abf21a5305b826c8a09cae4a16f48f547778d177bf6857d06ae7fd59c04be52ab143d803440491156290dc5d85a75adcbe902ffc0
- SSDEEP
  
  98304:yhYqLBHkbTw9A7C21m0alU/xU68dPk1Df:yhZLBHmw9A7C2I0alU/S68dPE
Score

1^/10
behavioral2
- Target
  
  $PLUGINSDIR/InstOpt.dll
- Size
  
  8KB
- MD5
  
  a9b4e84b5c71be9aad7cbe44506a6b4e
- SHA1
  
  d3a7b3bed2f4f3cc3edc85e202d202a1a535d62f
- SHA256
  
  313648b948243e992f08eec6e567aca26c2131ca6b9d307dd11071470521baf7
- SHA512
  
  0c78a4d8c0c129c26fd3d99e8b04e4598e5d844d0d9f213dd318ae873ffd23db1cb06c0fec636ad7ac8a6f9306dbcae58cf4d8e7d33dca2b7a3a31e6ad36bab8
- SSDEEP
  
  96:S1+HVx8GJYcudkED74Kx2otnc12lDIvyYUJjlMYXJIuT+f9yFGTp:SsPulD74uh2XUtlMwIuqEFGT
Score

3^/10

discovery
behavioral3
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  12KB
- MD5
  
  8cf2ac271d7679b1d68eefc1ae0c5618
- SHA1
  
  7cc1caaa747ee16dc894a600a4256f64fa65a9b8
- SHA256
  
  6950991102462d84fdc0e3b0ae30c95af8c192f77ce3d78e8d54e6b22f7c09ba
- SHA512
  
  ce828fb9ecd7655cc4c974f78f209d3326ba71ced60171a45a437fc3fff3bd0d69a0997adaca29265c7b5419bdea2b17f8cc8ceae1b8ce6b22b7ed9120bb5ad3
- SSDEEP
  
  192:BenY0qWTlt70IAj/lQ0sEWc/wtYbBH2aDybC7y+XB9IwL:B8+Qlt70Fj/lQRY/9VjjlL
Score

3^/10

discovery
behavioral4
- Target
  
  AnyBurn.exe
- Size
  
  4.9MB
- MD5
  
  db802095321d687a7bffa70c98663396
- SHA1
  
  4d5bc07d3fc7e4f31aa7cb461bc0df5f11d6c170
- SHA256
  
  ef146e2279e1df1e95d16c485d8002cc3f8257006d2ca1a00aaa3d65555932f6
- SHA512
  
  5a3eb7723003a5c1d86c887abf21a5305b826c8a09cae4a16f48f547778d177bf6857d06ae7fd59c04be52ab143d803440491156290dc5d85a75adcbe902ffc0
- SSDEEP
  
  98304:yhYqLBHkbTw9A7C21m0alU/xU68dPk1Df:yhZLBHmw9A7C2I0alU/S68dPE
Score

1^/10
behavioral5
- Target
  
  MACDll.dll
- Size
  
  162KB
- MD5
  
  ebc96e6a55cb41994f8c6cfc6b012ab5
- SHA1
  
  c4ac1f5bbb523d9d9a69d9f66b66ea8e73eda413
- SHA256
  
  d8434c7cf6eb19ae8efd63615f46a858dc4db681beb25e30ce4c5653d1405862
- SHA512
  
  d0c7298f0d51400db45b626d2a089ae7f7c6636ff28399b7ace2e6033ef6165993e41de1c93963ac3bbf4120f614c2fd99856b97c6f15022773dca8932a75a2e
- SSDEEP
  
  3072:nbI6YoDnmvrwuGhxAMOAKz/VsXowHswtLLxu:nZYoDnAG7CpDS4wMU
Score

1^/10
behavioral6
- Target
  
  abcmd.exe
- Size
  
  26KB
- MD5
  
  72eb1fa737fb54829d73aa9dd8f5de7b
- SHA1
  
  036bda25343867c808d47a708d2b7bfabf407712
- SHA256
  
  a0e32021954d69fedbf785523a6d5425e5dc47a04ffa02309f07ca3f9e4d0c19
- SHA512
  
  f12a4e4e57afef5ae171f31672fd6a835fd8df8f559aa0df67e6deaf1b6f8ef2dfb4d2912e88baf22b9c1df2d0d96a55037f7e2e3ee511454edc8ababb4f8e2e
- SSDEEP
  
  768:YP6vMNHQ1TYmjtuPiTZKnyTYmjtu7KiTZKl:YyWQemBu8Kn/mBuFKl
Score

3^/10

discovery
behavioral7
- Target
  
  lame_enc.dll
- Size
  
  369KB
- MD5
  
  3ddbe1ba218722dff684f83d86299807
- SHA1
  
  267b1f9829e9c2a508a9dd564a9dde6d373123f0
- SHA256
  
  89d12c8147b36344647d4ffd109ff8d237d9c0c88194048f842ca97a3b079c97
- SHA512
  
  e415d7ebc5a00e8ee4d4a7b8294924aab8eaa3cda3d0ad46d8546494a5965e28d1dfe5710c1cb0d5c3a9f5b9c1b60243227217d71ea49187077492746632cbf3
- SSDEEP
  
  6144:8cUdD9kke1LoEpkqNdnDRjX0cBPkd3zujZx7Y3eg8gAoeR1DOWtoUqoTE6LEU4Gi:8cUdD9kkKJpdnDRjX0cBPkd3zujZlY3/
Score

1^/10
behavioral8
- Target
  
  libFLAC.dll
- Size
  
  236KB
- MD5
  
  50d9d7cce1ed3422b9a2d972127ac890
- SHA1
  
  226f83bfd0ee358840edcf0402ddbae540bb1652
- SHA256
  
  fe71ca9e8ccfb7d63e2741ae090bfd9539830022912d1121b5e83caefc2042d9
- SHA512
  
  a8fdb1efba72d16a343299a72ac5764f5240b1753f0480afbc1d1a0b235965c29d99e34ad8c43249a416efa52ce09d8126ef1d21065ee3e30b39feaf914a7b4d
- SSDEEP
  
  6144:4SEfFLc0EMt9Rs9zTw3Apib2b+u97iFsOGB2gJXFwy:4SYzM9QArb+u9eta3F
Score

1^/10
behavioral9
- Target
  
  libvorbis.dll
- Size
  
  1.7MB
- MD5
  
  96a8188be8ea41b623d10fda3e2f2cdb
- SHA1
  
  776b5ccf84e323e7f77182b08104780479f42cd4
- SHA256
  
  841a000c104c5acbc8c5f10c2a3f72e9f8983b138e46543247d371fc821985f0
- SHA512
  
  95fe1c8b8b02bb91410a9d1f9168431e0fce66dee4c3ae65b8df6cdf778db3cb8e3a47762c0f17498d89e6ecff27d876cade9540f025ec352d30a6c2968954b8
- SSDEEP
  
  6144:lv0FhLxjyfx+yNFbp4RJdnrzVPdGZR032sQO:lcFhdax+yNFbSJdrRkY9T
Score

1^/10
behavioral10

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Executes dropped EXE

Loads dropped DLL

Checks installed software on the system

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10