Overview

overview

5

Static

static

3

LanxExecutor-main.zip

windows7-x64

1

LanxExecutor-main.zip

windows10-2004-x64

1

LanxExecut...config

windows7-x64

3

LanxExecut...config

windows10-2004-x64

3

LanxExecut...ner.cs

windows7-x64

3

LanxExecut...ner.cs

windows10-2004-x64

3

LanxExecut...rm1.cs

windows7-x64

3

LanxExecut...rm1.cs

windows10-2004-x64

3

LanxExecut...m1.vbs

windows7-x64

1

LanxExecut...m1.vbs

windows10-2004-x64

1

LanxExecut...ons.cs

windows7-x64

3

LanxExecut...ons.cs

windows10-2004-x64

3

LanxExecut...csproj

windows7-x64

3

LanxExecut...csproj

windows10-2004-x64

3

LanxExecut...or.sln

windows7-x64

3

LanxExecut...or.sln

windows10-2004-x64

3

LanxExecut...ts.dll

windows7-x64

1

LanxExecut...ts.dll

windows10-2004-x64

1

LanxExecut...LL.dll

windows7-x64

5

LanxExecut...LL.dll

windows10-2004-x64

5

LanxExecut...ox.dll

windows7-x64

1

LanxExecut...ox.dll

windows10-2004-x64

1

LanxExecut...is.rar

windows7-x64

3

LanxExecut...is.rar

windows10-2004-x64

3

Scripts/Ad...UI.txt

windows7-x64

1

Scripts/Ad...UI.txt

windows10-2004-x64

1

Scripts/De... V2.js

windows7-x64

3

Scripts/De... V2.js

windows10-2004-x64

3

Scripts/FP...ock.js

windows7-x64

3

Scripts/FP...ock.js

windows10-2004-x64

3

Scripts/Ki...ipt.js

windows7-x64

3

Scripts/Ki...ipt.js

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    LanxExecutor-main.zip

  • Size

    15.0MB

  • Sample

    240901-tfzxnsvgkj

  • MD5

    95159654d0b126c48b0bc3c2bdf77cbf

  • SHA1

    3caa2e14fbe3bc86bb1b3c33bcf6e8309f066c27

  • SHA256

    dd5cbd24fc6ddce54768072dabea88212e43d6610ed384d904b7c5d2d254b7d4

  • SHA512

    2157829c838a09294a2a2a9be56fe44a980f70474e0071617eb3201ceef592dadd860ec0a336ee9689bede0ac1ce95f0f81ad65a508f27ff65c361eec448c468

  • SSDEEP

    393216:z2yH3f95TtxBNztg1UDOyR4nn9NS2yH3f95TtxBNztg1UDOyR4nn9zS:z2yHPXHuWDOdnXS2yHPXHuWDOdnRS

Score
5/10
discoveryexecution

Malware Config

Targets

    • Target

      LanxExecutor-main.zip

    • Size

      15.0MB

    • MD5

      95159654d0b126c48b0bc3c2bdf77cbf

    • SHA1

      3caa2e14fbe3bc86bb1b3c33bcf6e8309f066c27

    • SHA256

      dd5cbd24fc6ddce54768072dabea88212e43d6610ed384d904b7c5d2d254b7d4

    • SHA512

      2157829c838a09294a2a2a9be56fe44a980f70474e0071617eb3201ceef592dadd860ec0a336ee9689bede0ac1ce95f0f81ad65a508f27ff65c361eec448c468

    • SSDEEP

      393216:z2yH3f95TtxBNztg1UDOyR4nn9NS2yH3f95TtxBNztg1UDOyR4nn9zS:z2yHPXHuWDOdnXS2yHPXHuWDOdnRS

    Score
    1/10
    behavioral1behavioral2

    • Target

      LanxExecutor-main/LanxExecutor/LanxExecutor/App.config

    • Size

      189B

    • MD5

      9dbad5517b46f41dbb0d8780b20ab87e

    • SHA1

      ef6aef0b1ea5d01b6e088a8bf2f429773c04ba5e

    • SHA256

      47e5a0f101af4151d7f13d2d6bfa9b847d5b5e4a98d1f4674b7c015772746cdf

    • SHA512

      43825f5c26c54e1fc5bffcce30caad1449a28c0c9a9432e9ce17d255f8bf6057c1a1002d9471e5b654ab1de08fb6eabf96302cdb3e0fb4b63ba0ff186e903be8

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      LanxExecutor-main/LanxExecutor/LanxExecutor/Form1.Designer.cs

    • Size

      12KB

    • MD5

      39742fe81a55da30a31d6f9cb6880ad5

    • SHA1

      db8e19e1698240aae9774e555a40e705e194ff99

    • SHA256

      d3a92c40e8fffa3ca25b3c4c359f14c1d430467534ddabe402cf0b767ae97e39

    • SHA512

      e2da072d5094541e1219183d2af5a970514a60d3272092dee6587074c85d1f132dded018b91a48df6b8bb5c52f6002a6337b89d5acdd7ffab543b53451666c22

    • SSDEEP

      384:mw1zc6SyAdw7i4s77i4DgoJ4MFBoslAL5ULhzyNL+T9XkpqlWarD1MTWV01D:51zXB

    Score
    3/10
    discovery
    behavioral5behavioral6

    • Target

      LanxExecutor-main/LanxExecutor/LanxExecutor/Form1.cs

    • Size

      3KB

    • MD5

      b5c9f1a8404d46e9bb8afbc1b57db781

    • SHA1

      f48364545920ea11bace6b7e496d88b25eccaad4

    • SHA256

      6cee1980af36a246ec75b6895c0655cec9d8473e08594aa01833337f38423abd

    • SHA512

      5bf0c2916a8e8bb653b597002782b2d4947ec5c3efa78ce43da6897b116d305bf8150285a3ce315a32ede9823e30fd37481729737809c1f7020a65b31e82b911

    Score
    3/10
    discovery
    behavioral7behavioral8

    • Target

      LanxExecutor-main/LanxExecutor/LanxExecutor/Form1.resx

    • Size

      361KB

    • MD5

      5081f64bc2c9e2f3df275879e33aaa6b

    • SHA1

      ed0e7bf5e4a75408fc354acb132ab35024c0f2c0

    • SHA256

      116d48bdc4cc3a397d34375fbadc7042ffd66ce4e50f0f381a3d3451fc3fcf80

    • SHA512

      bf7a148bf1db751659adb8a483db28f12929e723ab1e79a1047d3266028d527cafc38d271dc65bcfe882dc1cef59866fc995be99d337dff63061cab415a919c9

    • SSDEEP

      6144:KWeDigcqNfMIB0IL9t+gmqL5WfHTQhYubG5r7fzfpx/ojEZ7e+2RQ:KWeDVcqPfm+075u6NfrHKEX5

    Score
    1/10
    behavioral10behavioral9

    • Target

      LanxExecutor-main/LanxExecutor/LanxExecutor/Functions.cs

    • Size

      588B

    • MD5

      9474a2d7671b9a7bc68d0150bfacdd29

    • SHA1

      87d2f3c3c1f0a79e94c8807db5161de283efc619

    • SHA256

      f6416da4a2ccc9dfaa8ae597e60455168ba26f23677c04da21fb977406794419

    • SHA512

      5c93930a99177713837179f98f651ab9deacb91bc02281ea4dd220795e797f4b3eb984a185d0986adf6f67dea172486434b8407074c27494e47d87cb3016117c

    Score
    3/10
    behavioral11behavioral12

    • Target

      LanxExecutor-main/LanxExecutor/LanxExecutor/LanxExecutor.csproj

    • Size

      3KB

    • MD5

      d9a542ef8c45dfdbc29f06f392d85ed3

    • SHA1

      ee325679779c7963ceafe8769c08a09f001d1193

    • SHA256

      12c0e9d66c4822c327cd2cf42097b0d1380f1f7138de064931c0be61eebb3478

    • SHA512

      66b363f12a846c7b2a5b3455478f5463807cad130940abada3e427cdee3e8a713ffe8883adc75bdfd6b8be43ede4461024779b92aaef46a2978bf8b09711a29f

    Score
    3/10
    discovery
    behavioral13behavioral14

    • Target

      LanxExecutor-main/LanxExecutor/LanxExecutor/LanxExecutor.sln

    • Size

      1KB

    • MD5

      f4c597b89bb7f44a710369faa39c5d37

    • SHA1

      13ebf409ae615a4942c00fec18e4a43fd1b7904d

    • SHA256

      8361859ab6286c9c570aefceb21ef46088b5fda65011f587a2daee4ee0ee1156

    • SHA512

      4a9cb16c4acb167c7433239c4585e8cdd396fbb49e4732ef3beed89a75c9b40bd45f7373f040d853ebb2bc0c06a87bb945ec2cf23663540017f3ef65718bd4f4

    Score
    3/10
    discovery
    behavioral15behavioral16

    • Target

      LanxExecutor-main/LanxExecutor/LanxExecutor/bin/Debug/EasyExploits.dll

    • Size

      9KB

    • MD5

      302acca15bb4754e8645410ff7568bf9

    • SHA1

      178a0fe9059fe4ed82431ccf58ef90164850cee7

    • SHA256

      93e0715fbd974b0ef65ae341bcbfa672ed4eb28b38b079f237d451c0f5601d26

    • SHA512

      d43e89c7066f8ef102d3eadc58bcfb11987c84d66beddbdc3aaaf4aa5d024e8c8036f11ad8ad7c6cc228a8caed2b58cfadf4dd6fe9e1c60a4f7b7995be643050

    • SSDEEP

      192:N5im66FEaJFeRSz59dDjHZNZxa6HpV6K2AD:F66qavzdDj5k6Dz20

    Score
    1/10
    behavioral17behavioral18

    • Target

      LanxExecutor-main/LanxExecutor/LanxExecutor/bin/Debug/EasyExploitsDLL.dll

    • Size

      7.2MB

    • MD5

      7ee083422c1ab5a992aefede536c5e65

    • SHA1

      bc204fb9f4017cf171e7e6432c7ce8892e70ff23

    • SHA256

      45d51ecbfc495890696636f8da47d639571932ad408339976d6789cf3e8ef0f3

    • SHA512

      efa3b173573491e0fde127cf95d43a906bfa5473ccbd900905d66ac0cc27c5c7fae666efddeabbded530cc321ec81f25f929c89c1ef8bea687d10987139214fc

    • SSDEEP

      196608:sehcq0J/JXOcYenRa4bI/sbvHSl3GBMyXweXc:sehc5PXhPR5bxrLBn5s

    Score
    5/10
    discovery

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral19behavioral20

    • Target

      LanxExecutor-main/LanxExecutor/LanxExecutor/bin/Debug/FastColoredTextBox.dll

    • Size

      323KB

    • MD5

      8610f4d3cdc6cc50022feddced9fdaeb

    • SHA1

      4b60b87fd696b02d7fce38325c7adfc9e806f650

    • SHA256

      ac926c92ccfc3789a5ae571cc4415eb1897d500a79604d8495241c19acdf01b9

    • SHA512

      693d1af1f89470eab659b4747fe344836affa0af8485b0c0635e2519815e5a498f4618ea08db9dcf421aac1069a04616046207ee05b9ed66c0a1c4a8f0bddd09

    • SSDEEP

      6144:0R0J4lx4/7BA4xvNdcwCOg04j0y5mwZkdmsqmLDi5eNH+Dl1SIP0:0R0J48lAovNd7CO34D4b4eNO

    Score
    1/10
    behavioral21behavioral22

    • Target

      LanxExecutor-main/LanxExecutor/LanxExecutor/bin/Debug/unpackthis.rar

    • Size

      242KB

    • MD5

      9a8ddca1793df400c76bc721b3107d5a

    • SHA1

      d7b861c21fdb66c1eccae93b8d6a6a86a3305216

    • SHA256

      cd96b277221b0e429b8bae408441cb3934b1c076cb317552966dae03ff294f6b

    • SHA512

      04dd548374813976e6a53ad97621dc93d664562282932f441abd383b5c8a58f8d2024d3f6b348d77d10ee875a310345b2213592397662a6e1f6ac6e47bb41aa8

    • SSDEEP

      6144:iQoW3jeXfV4G80NIOAKKADxyYXmC9HFv7M:xzeXfqGNIvI5LJFg

    Score
    3/10
    behavioral23behavioral24

    • Target

      Scripts/Advanced Prison Life UI.txt

    • Size

      56KB

    • MD5

      5616c8b8f301353ec757929976b948d0

    • SHA1

      06e8206fe622d9474942ef31e278da831096c500

    • SHA256

      3248c19e0002f732503d0970277b212931176ca11105d58546ced6f78b1d3c86

    • SHA512

      01963bfd8ee19c8c8aae5900897cbc61af930e88b8c914aee8f634693643097210181374bfe53c4aae40437bd760caf8bf903a1e5cd62785a009660e8760287a

    • SSDEEP

      768:Xgt+RL+g0CfT6G1Rczm0SQxdA16wadzr0eZHSkW6RY0XUIg5NALrAZpa6HbvxbFL:JO63vqciq72nJO

    Score
    1/10
    behavioral25behavioral26

    • Target

      Scripts/Dex Explorer V2.txt

    • Size

      636KB

    • MD5

      5c3866fd535e0d8753999abad37cc58a

    • SHA1

      54b2304611d655ca2a5bb059acb7fd47d59cfc01

    • SHA256

      9cf75612842a8527d3e7c112690b5a0758fb996d536e0d2218cb6c63846a1fc0

    • SHA512

      1107c62655ef7594cdb6da0f92da96df2b5beaed306fe0d5a8aa70a560c3c5ad5b8a179897d72f53ac87dc59be3eb30aa2be2ef9d600f2149b0d46bbddcf6b00

    • SSDEEP

      6144:uJCMsX/4Mu4JKM2nw1u/oBSz/+JWoaxqX29kRCmAEkdR8hsE2CDA6q8YnegCi8MY:2w1u/oBSz/+JYTiui

    Score
    3/10
    execution
    behavioral27behavioral28

    • Target

      Scripts/FPS Aimlock.lua

    • Size

      10KB

    • MD5

      f0486d7d400d17a29f3a3a0a9ef8828c

    • SHA1

      c8fcfb2191ac66eeaae337c2813554d0ea52e744

    • SHA256

      4b16d7d4542e9c181f98cbcc60976dde82321f60da01fe0d452aaa42b446d7f2

    • SHA512

      247ce9bb77045bf6715c7f8ab4aa65d38b2f5326c5ce7602a92374c0e01afd12bafe96c72708fa31d2341e34270779596880cb642052d6060854371b4c49a35c

    • SSDEEP

      192:qPhuks3VGiGxGMGdGIDE6LgA7qjb7GaDkDvYtlwOekJaglwOekJ4L0Q0y6xmWPRI:qPhukSVDYtmXbPqjb7SDvYt2OPag2OPq

    Score
    3/10
    execution
    behavioral29behavioral30

    • Target

      Scripts/Kick Off Script.txt

    • Size

      194KB

    • MD5

      a5c2b52d2bc2d69eeac415df7a0bd486

    • SHA1

      2b447955d82620bdcc5edb0c3d0f8123ed6c6610

    • SHA256

      3e9160567ac218d4c61b42a44caa834125813b2b33225ddd6a1781312237fd90

    • SHA512

      5817ee9f5eee900c6a090878834d56e97d8193dbebb868e58f74c9aea39a27dacfb196cea5c09a0e27abc9186339a1e28639b03e62834a60dd1694a9fb7212e8

    • SSDEEP

      1536:lGMPEjQmSQLkObS90BWYsluc2axim4/VwT/oDOEXwwWVPmkLJZ:fEjWvJ2aTKOEXwwWVuu

    Score
    3/10
    execution
    behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

Score
3/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

discovery
Score
3/10

behavioral4

Score
3/10

behavioral5

discovery
Score
3/10

behavioral6

Score
3/10

behavioral7

discovery
Score
3/10

behavioral8

Score
3/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
3/10

behavioral12

Score
3/10

behavioral13

discovery
Score
3/10

behavioral14

Score
3/10

behavioral15

discovery
Score
3/10

behavioral16

Score
3/10

behavioral17

Score
1/10

behavioral18

Score
1/10

behavioral19

discovery
Score
5/10

behavioral20

discovery
Score
5/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
3/10

behavioral24

Score
3/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

execution
Score
3/10

behavioral28

execution
Score
3/10

behavioral29

execution
Score
3/10

behavioral30

execution
Score
3/10

behavioral31

execution
Score
3/10

behavioral32

execution
Score
3/10