Overview

overview

8

Static

static

1

Go Daddy R...G2.crt

windows7-x64

1

Go Daddy R...G2.crt

windows10-2004-x64

1

Hellenic A...15.crt

windows7-x64

1

Hellenic A...15.crt

windows10-2004-x64

1

Hellenic A...11.crt

windows7-x64

1

Hellenic A...11.crt

windows10-2004-x64

1

Hellenic A...15.crt

windows7-x64

1

Hellenic A...15.crt

windows10-2004-x64

1

Hongkong P... 1.crt

windows7-x64

1

Hongkong P... 1.crt

windows10-2004-x64

1

Hongkong P... 3.crt

windows7-x64

1

Hongkong P... 3.crt

windows10-2004-x64

1

ISRG Root X1.crt

windows7-x64

1

ISRG Root X1.crt

windows10-2004-x64

1

IdenTrust ... 1.crt

windows7-x64

1

IdenTrust ... 1.crt

windows10-2004-x64

1

IdenTrust ... 1.crt

windows7-x64

1

IdenTrust ... 1.crt

windows10-2004-x64

1

Izenpe.com.crt

windows7-x64

8

Izenpe.com.crt

windows10-2004-x64

8

Kano Creds.crd

windows7-x64

1

Kano Creds.crd

windows10-2004-x64

3

Microsec e...09.crt

windows7-x64

1

Microsec e...09.crt

windows10-2004-x64

1

Microsoft ...17.crt

windows7-x64

1

Microsoft ...17.crt

windows10-2004-x64

1

Microsoft ...17.crt

windows7-x64

1

Microsoft ...17.crt

windows10-2004-x64

1

NAVER Glob...ty.crt

windows7-x64

1

NAVER Glob...ty.crt

windows10-2004-x64

1

NetLock Ar...ny.crt

windows7-x64

1

NetLock Ar...ny.crt

windows10-2004-x64

1

Resubmissions

30-08-2024 17:58

240830-wkhv3axbkh 8

30-08-2024 17:38

240830-v7p28axcnp 3

30-08-2024 17:34

240830-v5fe1awcrh 1

30-08-2024 17:29

240830-v2wykswbrf 8

30-08-2024 17:24

240830-vywteawape 8

30-08-2024 17:19

240830-vvtvmsvhlg 8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    More certs.zip

  • Size

    271KB

  • Sample

    240830-v2wykswbrf

  • MD5

    8c0db7cae4c7bfaa4206a7001caf8b98

  • SHA1

    c94d76644237d67bb78d1f7d807801f542e62b6d

  • SHA256

    66262cd24479f4ad1812508bc71ddc21ea04b168ecf7ca8ca942459e1bc6b1e6

  • SHA512

    d42ed046fcdc69efbbc8ebfe62315919e0f7b6a174b5c28dddc31cd471e17159f342204cfe6c45c19773c692329263dfd1dc323a2076106f499022da5c9961e1

  • SSDEEP

    6144:2NTyjVmz9xh12smp75E0Aw62wB2rMk5b5+DY5hMq7f95LU:s+ajj8XrMkP+DQyq7c

Score
8/10

Malware Config

Targets

    • Target

      Go Daddy Root Certificate Authority - G2.crt

    • Size

      969B

    • MD5

      803abc22c1e6fb8d9b3b274a321b9a01

    • SHA1

      47beabc922eae80e78783462a79f45c254fde68b

    • SHA256

      45140b3247eb9cc8c5b4f0d7b53091f73292089e6e5a63e2749dd3aca9198eda

    • SHA512

      c509cd5452659ae94c673a47b68e2c0aa8ad177804c8ae2949306e9232b70ab5b5334d1abe53a25ecaf0c609871b33849773b4edf277dd346069038f695d76fb

    Score
    1/10
    behavioral1behavioral2

    • Target

      Hellenic Academic and Research Institutions ECC RootCA 2015.crt

    • Size

      711B

    • MD5

      81e5b417ebc2f5e14b0d417b4992feef

    • SHA1

      9ff1718d92d59af37d7497b4bc6f84680bbab666

    • SHA256

      44b545aa8a25e65a73ca15dc27fc36d24c1cb9953a066539b11582dc487b4833

    • SHA512

      94d3908c98a126887a1893fdd73a789856782db42f6a547e77c9cb8f6cab2ea88a763c7aa3c2f62d8c542e8fce0a6d5a66faeaba9ab59bf33d0e08f61cefee20

    Score
    1/10
    behavioral3behavioral4

    • Target

      Hellenic Academic and Research Institutions RootCA 2011.crt

    • Size

      1KB

    • MD5

      739f4c4b735b79e9faba1cef6ecbd5c9

    • SHA1

      fe45659b79035b98a161b5512eacda580948224d

    • SHA256

      bc104f15a48be709dca542a7e1d4b9df6f054527e802eaa92d595444258afe71

    • SHA512

      17359ae5a85f3ba6d21e35272bd328083e2cf2d86a7f67a7a62f50c2951fb2bb14ccdccbd119f909d1e40be24367a3efaf73563a2ef4015cbefeb322a0b9048b

    Score
    1/10
    behavioral5behavioral6

    • Target

      Hellenic Academic and Research Institutions RootCA 2015.crt

    • Size

      1KB

    • MD5

      caffe2db03d9cb4be90fad84fd7b18ce

    • SHA1

      010c0695a6981914ffbf5fc6b0b695ea29e912a6

    • SHA256

      a040929a02ce53b4acf4f2ffc6981ce4496f755e6d45fe0b2a692bcd52523f36

    • SHA512

      0c21dd57a3e3ea2b64cb24f552599f1dd3f8c3bd7d4f2fe6018155fb6ef2636e2a61014dab45693f98dbeff64518bc77787e11bbdbd1e6e306235cc3efdcb1bb

    Score
    1/10
    behavioral7behavioral8

    • Target

      Hongkong Post Root CA 1.crt

    • Size

      820B

    • MD5

      a80d6f3978b9436d77426d985acc23ca

    • SHA1

      d6daa8208d09d2154d24b52fcb346eb258b28a58

    • SHA256

      f9e67d336c51002ac054c632022d66dda2e7e3fff10ad061ed31d8bbb410cfb2

    • SHA512

      f69a1373a8ae79e7a3a6cf5d2b093a263a4e31c7b5bb3c870d5e88353dd9a96582a16328ff65d0475fdc20c9ac3393a90508dd4b9a16ea65c42e444fc01a57ec

    Score
    1/10
    behavioral10behavioral9

    • Target

      Hongkong Post Root CA 3.crt

    • Size

      1KB

    • MD5

      11fc9fbd7330028afd3ff358b9cb20f0

    • SHA1

      58a2d0ec2052815bc1f3f86402244ec28e024b02

    • SHA256

      5a2fc03f0c83b090bbfa40604b0988446c7636183df9846e17101a447fb8efd6

    • SHA512

      1a5228c37806dca563066ed37b12f879d0ab266b5b19d26b9e08aa10243d09872312a72a37e604938b40cf60cd22e6fbfe758739cdef15d61eb22e212d4e37d4

    Score
    1/10
    behavioral11behavioral12

    • Target

      ISRG Root X1.crt

    • Size

      1KB

    • MD5

      0cd2f9e0da1773e9ed864da5e370e74e

    • SHA1

      cabd2a79a1076a31f21d253635cb039d4329a5e8

    • SHA256

      96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6

    • SHA512

      3b40f27e828323f5b91f8909883a78a21c86551761f27b38029faaec14af5b7aa96fb9f9cc93ee201b5eb1d0fef17b290747e8b839d2e49a8f36c5ebf3c7c910

    Score
    1/10
    behavioral13behavioral14

    • Target

      IdenTrust Commercial Root CA 1.crt

    • Size

      1KB

    • MD5

      b33e777375eea0d3e37e49634959bbc7

    • SHA1

      df717eaa4ad94ec9558499602d48de5fbcf03a25

    • SHA256

      5d56499be4d2e08bcfcad08a3e38723d50503bde706948e42f55603019e528ae

    • SHA512

      bdd04f042da010284fc5a4ee8d9f3560d354340f1d8b8d6cbf6b0dd8850f51e9d1c047db68a41d931878eb903f22614d4cf58f77fb27a3f0d35c99bd99647cbb

    Score
    1/10
    behavioral15behavioral16

    • Target

      IdenTrust Public Sector Root CA 1.crt

    • Size

      1KB

    • MD5

      3706a5b0fc899dbaf46b8c1a64cdd5ba

    • SHA1

      ba29416077983ff4f3eff231053b2eea6d4d45fd

    • SHA256

      30d0895a9a448a262091635522d1f52010b5867acae12c78ef958fd4f4389f2f

    • SHA512

      9d10299a1ac5500d0eac51e08857d089545667037fcae40250008e14a549b24e3a1856bb5713bc84bcd9656c7d01977b15e3e9be1b82ecc978cae4c28d3ced90

    Score
    1/10
    behavioral17behavioral18

    • Target

      Izenpe.com.crt

    • Size

      1KB

    • MD5

      a6b0cd8580da5c5034a339902f556773

    • SHA1

      2f783d255218a74a653971b52ca29c45156fe919

    • SHA256

      2530cc8e98321502bad96f9b1fba1b099e2d299e0f4548bb914f363bc0d4531f

    • SHA512

      3e9adc81fa64fcd7d3475d06eed5eadb113a8aba20060cfe2833b839e8c9f6b9bc4e42f6bb9143fbf346db41d4152c73c9d170183984dd9ba3fdcde2ccbee802

    Score
    8/10

    • Blocklisted process makes network request

    behavioral19behavioral20

    • Target

      Kano Creds.crd

    • Size

      11KB

    • MD5

      025e3791f085fbadf92c303f9d922ca3

    • SHA1

      785e8233910718b2b9d028c856e2e9a61aa66f78

    • SHA256

      bfce60b28793b2c0ef05d83307c4c7347f481c0b2d70ca380566c819e98dcbc7

    • SHA512

      4e572dc77ace7e0778f436f374221babdc666a4e2667df7756e6b32a1a91e26ec37cf871d46316dca8049f980f7961a5133d21559b000aba24200bd324a63c40

    • SSDEEP

      192:ABCuUlbOZW6VkVXxjcmJwT2Mster4qHePnLy8JqwjNw+/AeTiRJ58oIu:ABCuqb2mXxjcMVUr8JqwjNw+/DTk58vu

    Score
    3/10
    behavioral21behavioral22

    • Target

      Microsec e-Szigno Root CA 2009.crt

    • Size

      1KB

    • MD5

      f849f403bc442d83be48697d2964fcb1

    • SHA1

      89df74fe5cf40f4a80f9e3377d54da91e101318e

    • SHA256

      3c5f81fea5fab82c64bfa2eaecafcde8e077fc8620a7cae537163df36edbf378

    • SHA512

      226df6c1b69b2c0b9593d848f5761ba6bc27f7d516c421ffafcc952c32eaebfc510feadfbd53b633eef1ef768e58adc2779abf4d0aeadd795bd66b1a0719e6f8

    Score
    1/10
    behavioral23behavioral24

    • Target

      Microsoft ECC Root Certificate Authority 2017.crt

    • Size

      605B

    • MD5

      dda103e64a9310d1bff01942cbfeed67

    • SHA1

      999a64c37ff47d9fab95f14769891460eec4c3c5

    • SHA256

      358df39d764af9e1b766e9c972df352ee15cfac227af6ad1d70e8e4a6edcba02

    • SHA512

      6eac0a72c05dad76c20014b95d02b0c99711ce992f9934dd658d7b0242a912e51d22283207ef07b6d546883523f82e0cb798c674ad35d96d7ee6406901a8be6b

    Score
    1/10
    behavioral25behavioral26

    • Target

      Microsoft RSA Root Certificate Authority 2017.crt

    • Size

      1KB

    • MD5

      10ff00ffcfc9f8c77ac0ee358ec90f47

    • SHA1

      73a5e64a3bff8316ff0edccc618a906e4eae4d74

    • SHA256

      c741f70f4b2a8d88bf2e71c14122ef53ef10eba0cfa5e64cfa20f418853073e0

    • SHA512

      57cbd4141b368269f775322af3596b8c775811a1bc00a711e783a5e817311a26363161f29b6748c7cc5aa2b2a4ae14aaef6e975afc415ceeb35e5adeaa7a4e93

    Score
    1/10
    behavioral27behavioral28

    • Target

      NAVER Global Root Certification Authority.crt

    • Size

      1KB

    • MD5

      c87e41f6253bf509b317e8463dbfd09b

    • SHA1

      8f6bf2a9274ada14a0c4f48e6127f9c01e785dd1

    • SHA256

      88f438dcf8ffd1fa8f429115ffe5f82ae1e06e0c70c375faad717b34a49e7265

    • SHA512

      b6c2545a20a95f5fdff172e74b73eca0817821ccd0a2373323bd2f42071bd164558dab5909e5a323dba22d1a1e26bb5a094b51bcce20d7d9eeab0a1d29d84aac

    Score
    1/10
    behavioral29behavioral30

    • Target

      NetLock Arany (Class Gold) Főtanúsítvány.crt

    • Size

      1KB

    • MD5

      c5a1b7ff73ddd6d7343218dffc3cad88

    • SHA1

      06083f593f15a104a069a46ba903d006b7970991

    • SHA256

      6c61dac3a2def031506be036d2a6fe401994fbd13df9c8d466599274c446ec98

    • SHA512

      6a98ce09583d0b4fc7a0c2d97ab6c732ca1a9c676e513429b15c5998f4838a98157081445c9f53e5f32b83c65d445c69a648c1c45ec8454c1dfa545d2be384ef

    Score
    1/10
    behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks