General

  • Target

    RoAPI+Executor.zip

  • Size

    28.2MB

  • Sample

    240904-pmjrta1end

  • MD5

    189c5c461441f51cd85e27a655ced353

  • SHA1

    7f2399ebfa9935ed822a94e6d44283a4db7c5c78

  • SHA256

    d7c7414f1f3c14ef95749c866409fff30e9c431a4386c523f78d82345b76424d

  • SHA512

    5cf5e92bf6fe9c3d8af6a270f8c1ab66b75873ae29bcb08f5236552a652254eef63646d82975eb7c6eee5d808257415cc148e255f11fddc284c2e56e3525b60f

  • SSDEEP

    786432:nG6lvRN5O6wmI/6EEldW2SFL2I183ei9wYd+VwxGg:nG6nNZzdpSFUr6NFg

Score
3/10

Malware Config

Targets

    • Target

      net8.0-windows/2024 star of the night Api.dll

    • Size

      19KB

    • MD5

      94cb4cc0b7d68ee43b77dd9c0801aed2

    • SHA1

      e6221c925e43b303981b19a695920b3efa57b292

    • SHA256

      3c23c368d7ade58ab8dc19a9e04f9299f07f177cd61284da5f32e6411ceb8186

    • SHA512

      9e5e72e43d051cc5f081c177cf291f4966f5521c1e9cf4c33adfcf13853343627d43f48853538e1470ff45b0655316b6ac9a0acceacb3ce742e3089a81f9bd5e

    • SSDEEP

      384:Jzmjj5qR4+A+Psppx7hZJlmMaDCzfHbkkqJ8sr7xrPX:Jyfq4px7hnzLYr7tPX

    Score
    1/10
    • Target

      net8.0-windows/Antlr3.Runtime.dll

    • Size

      100KB

    • MD5

      12b74420b87ecfbba33b6ada0ab07ff2

    • SHA1

      551e39ff8e4d6548746d5926093b8b7730c70f6f

    • SHA256

      8c073bb62edf517b5476c68197c4742ca921bfaad423e18c3031d70336a0ec29

    • SHA512

      72b45512dedafd09439972888d4d230c515147d600198e6e937a5826e3cc56bee73c91f5715c6e66ca492bd9910e1447da5974eebe1d20e89a59ba2a84e05150

    • SSDEEP

      1536:tPWktPa7wu2+XZeqwMcyTyu3zWPyspt1w/gwuDSlJFZZ550ZC0mVSGzIuvE:BxtPaML+qJu3zWPyr/ggtYjV

    Score
    3/10
    • Target

      net8.0-windows/Bin/API.dll

    • Size

      1.3MB

    • MD5

      157fd035b2a344a94166d7db3756df0e

    • SHA1

      f221d28c1deb80b4e8d9201226435aefce6b0f75

    • SHA256

      8716c75aff75941711aff8770836f47eb9a254416089ef3571c6fc9a338b3009

    • SHA512

      fad0174fbd22f58dd4fcdaad8378c214270b4faeaca64d9cb306f50e9316072a4c417c5723c4123b8bf94a3dba6ef4e3303ec60f4a2cf0c3a54d8ab375ea717d

    • SSDEEP

      24576:ZqBSLRktEBl6blwTUMD4zB1VU2bFjYWR0pMQUAqLRAovh4bSAXVVRNRfMXZO:ZqBSLRkt8l6blSU//+2bFfvA1SQVVRNk

    Score
    1/10
    • Target

      net8.0-windows/BlazorMonaco.dll

    • Size

      222KB

    • MD5

      af76fe1f4605f7ecf324a3fd16e69987

    • SHA1

      73fba610b0fe380643f7da67fcf648bff46429be

    • SHA256

      61e87072c0dc619353b5fff194d3ac10b3d570629f2f87fc5b7526e792f4d923

    • SHA512

      370d181d91d81d6850de137ed3956ecd1ba8982f40d7b58ea3c19d1b90eb636fa0ff53dba9b23469093933e7849c7a51a175f2814672113cdcdec7fbd4fcc7e5

    • SSDEEP

      3072:CnK9Y0Kp1PaPfhHZ/nRDiroo0YkilP8oF81MLUjvwAsmTCGXLJE:CKiP8fhHZ/n5iwigMwjvwAsmTC

    Score
    1/10
    • Target

      net8.0-windows/FastColoredTextBox.dll

    • Size

      327KB

    • MD5

      daef9c4c042fdfbb3ea124527c543291

    • SHA1

      480dbb944a073f801329c6b2967152917b0d24c7

    • SHA256

      233de7664a9db9ffe5c0c3b64640cd8d5551180f1cf47a8a6f615842c8ae891b

    • SHA512

      51ed6700e2f3a61cec65cb704df4a4843bae315039a1f2d07fcd5db3f391ebf4db0691c83d173ccf8428b1eea7174b0eaf51b6e90a8b377b8dd2d1415429c960

    • SSDEEP

      6144:/4y/dRrwjgh6nVsSe6L6BF8VhfmGbOyijGzGbsqmLDnmeNZeMq:/4y4gcVsdMMKmGb5z4eN5

    Score
    1/10
    • Target

      net8.0-windows/Microsoft.AspNetCore.Authorization.dll

    • Size

      50KB

    • MD5

      ecbfa008de24dde011a8fb10531d29ad

    • SHA1

      ac5bc07aad307d8dd830552b699713b47fc1ccb5

    • SHA256

      a15550c4af404caedfaf2b004e5eee106ed5d7e2d6cbef38355d654ba2e8bf24

    • SHA512

      29621ac04a1beadb18a1f2ee41e661224aa61b36e43c990377fe74b133b0321d0f4c8d312174b56ea30bf4602feda3b8c24387d3798717ad33c3dc4b76952d8a

    • SSDEEP

      768:eRxLgWVBJLRlhTyQM7tAnDxlmG94DSEWj+dfDR3E2TvY0hgnm3A/i/P9zwhpg:YVgWVBJ/hTFMxAn1YGuEqIi/Vzeg

    Score
    1/10
    • Target

      net8.0-windows/Microsoft.AspNetCore.Components.Forms.dll

    • Size

      44KB

    • MD5

      18c7002c9b63bd224f040e7fc64f62f5

    • SHA1

      b261530196086303bc6fdc80257b3b1ac46862c2

    • SHA256

      305d95751a2620ebc2403b810f7748137afe5ee4bab002cdf0e7dfe76489aa03

    • SHA512

      293c18c65f6128004a7d5ce87362b7bd9d645940c7da02278ff278c5ffcce62f6e3193a0b1b69599477e271f230130ea1582a2b88b9558693b30f745c40cbe61

    • SSDEEP

      768:dWLivn1PAnfblzfw5A892vcrUu/220ro/iP9zzm:d5v1605AC2giVzC

    Score
    1/10
    • Target

      net8.0-windows/Microsoft.AspNetCore.Components.Web.dll

    • Size

      169KB

    • MD5

      9f80c3f5d996db98ff256e5c6a0bbc58

    • SHA1

      3fc75c5901174357c12c0eec932a1240203012bc

    • SHA256

      0bb217626031418839fab1fb64b22c2479519a55e4305a4b06f6191f5468676a

    • SHA512

      eecc0f5a84a3f85cc1c3358c6c61c2e465906f7a0efa3585b7095487bc9e5109ecd137fa68978859a5bf05a69b233bba9e94008fcb91addde3641474d2789323

    • SSDEEP

      3072:8G24bvRe12oZwln2tcUOZIKOVBCK/0DokEgp5ApLDOZdtz98:83YUZwN8cNOVBCK65Vm

    Score
    1/10
    • Target

      net8.0-windows/Microsoft.AspNetCore.Components.dll

    • Size

      321KB

    • MD5

      d0de0f6784a00838b6979be3b9ab1aa1

    • SHA1

      895303b09963412bf4e231d246c94298a3ce1a18

    • SHA256

      4fcd3a8f4a4262f34a6b2726bd3590a92f41a430cf63a8de2c778f7b55c4f4a2

    • SHA512

      4add3e838be5b99a6c68e4d84fee63795d2b662ee9264ce4a72c0bc9fa16ec0652fb71b1900180ff3ff9e0a8c9ef571c05800cbc79c27dac223a159519b1ddbd

    • SSDEEP

      6144:F2Ldi/iB6ejj+CmYHAMbwB1Ib24PWQJdtQH6tiHx0tmX:F2hDP+QAIbkq3Q6i7X

    Score
    1/10
    • Target

      net8.0-windows/Microsoft.AspNetCore.Metadata.dll

    • Size

      15KB

    • MD5

      55ce119364c892f986e69345134320c8

    • SHA1

      aa9618bf1cf7686b44e8c1f321a4ba5b9c99108e

    • SHA256

      56ff2376b0f40203e20babb43b54b4fabc61cdfe5dc992b52ac5facad22a0254

    • SHA512

      80d231f752ae8fec72ad636956b24a6191e28acc70eccbfe638f05485c4d8fcf5dd320e16225fbe36648b0b85e7b8920d9c7efda92e0c39b45bcc728388eabb0

    • SSDEEP

      384:yGF+EzwjWeHQWR2Tb2HRN78cYR9zd3V2y:vfg+/i8n9z/2y

    Score
    1/10
    • Target

      net8.0-windows/Microsoft.Extensions.DependencyInjection.Abstractions.dll

    • Size

      62KB

    • MD5

      38236f9c2408bda46c13efef364326fe

    • SHA1

      03178026c200fd723bb75d08b9a4b70e93f6a45c

    • SHA256

      a0106a638facae621f870eda720cb6c980c1d5d49c2f4351134e3fe043b9291b

    • SHA512

      4abadae40a459be932359d6964c30e1e5fbef300736943bab42c1d66b5fa56c45ed10910acf6b36c302c8a40bc364df444220e2af8ff5854460c6a9542ff88b7

    • SSDEEP

      1536:KCYbKF0XEQqb72cfdGWQAE389HD6dDCN6rzf:MUbQAKuj6dGNAj

    Score
    1/10
    • Target

      net8.0-windows/Microsoft.Extensions.DependencyInjection.dll

    • Size

      90KB

    • MD5

      7d40b6217fc409171015d905a22f8e85

    • SHA1

      27a31ec52498d9db2b09707ef603860a80fdb2cc

    • SHA256

      8d6e7b64cce554f0a0fbdb2ba80745895fa0b4e6cc378b9fedfe8ce86f0d8ae4

    • SHA512

      e998ab21e2a7f4df84f33c5d7bcb6d04c11481633362f4988f3a22820aa1f84744f51503947492217668b9db39e651d13cab0ef09d804b961aea2434314a3d66

    • SSDEEP

      1536:6sS1Tz5tF1bQWVsdJCKTvZEmwbyQMUiEVzz:3QH5tsWUvZEmNQMAVn

    Score
    1/10
    • Target

      net8.0-windows/Microsoft.Extensions.Logging.Abstractions.dll

    • Size

      63KB

    • MD5

      f48c45d592355ecc709677347e7f053d

    • SHA1

      3e39ab7134f3ff4d1747e2fd46734826de4787e8

    • SHA256

      29e6bfaf5ce079ad4d70dc547d966038992a7428df6e726084eb9010ec837715

    • SHA512

      7f0a48988377a1dcb49b4a56a897c05f70ead34a08788ce8584be0c326b3debe56cb8e7225710aee5e676c02a0d1c4a51160056b98189abdaf2cfd9b4a61e4b2

    • SSDEEP

      768:Uz7ouSrbVozuvi53ReiJd/zk6cuAJU/JJeUuvBtkJJQiH2hsm+YY/iDHji9zVN:vuoVozugRhTeU+AQ5+Ywi/+zVN

    Score
    1/10
    • Target

      net8.0-windows/Microsoft.Extensions.Options.dll

    • Size

      63KB

    • MD5

      2f6f0c47136e38c0587d70b71d1b14fe

    • SHA1

      67bb0af9a1ad1b273d3c2d7be753ddf4656fe38e

    • SHA256

      5f9b0e589f1ce9ca656588cd92cc0bd53803fdfad258fb2916aaa14aedce682c

    • SHA512

      2e15cb0f2f9934ac849c965b663f25b6fb15c4ce3bf674b693e481b92679e48af5f4013afda69595f0e3308803632578579bd45e01ca54037949c9f42b94367e

    • SSDEEP

      1536:GahqHoZX+NmzYUGrCUidKHPhwMEyBoXeMi0zy:GYXfFGrCLQvhwME1XewO

    Score
    1/10
    • Target

      net8.0-windows/Microsoft.Extensions.Primitives.dll

    • Size

      42KB

    • MD5

      f45226e320f41097397b1ba7468c2d1c

    • SHA1

      1181845c7d16ac4c525eec67ec3a6dcfaa78a433

    • SHA256

      446ff16e903e7479558816e213a3adee9a1c1adad65a56d853801b10933e29d7

    • SHA512

      417466f57fa8c6d942be5d86b14da5915d507dfbd7aa8d2700b4dd79a9668897a6a6abaab225be45076bdb8d86ccf4777bb3c699b4002a081e4407604f4e2f87

    • SSDEEP

      768:CKEGbmbB0QERF7v6EtkKS+1ke97a1O33ttBOP7yW5yfyqTuia+15OFyx/iCL9zRv:CpGe0QERFhkKSM7ag33ttBOP7yVfHTuu

    Score
    1/10
    • Target

      net8.0-windows/Microsoft.JSInterop.dll

    • Size

      64KB

    • MD5

      88380d4fd5eaa937d333a9b864541efe

    • SHA1

      2a1531e805e7a08bb5ed32a52ecd48547ecd8284

    • SHA256

      2a8935256a46ec5da2b0051835eaa085a27e1a7f3d6cf5c06cc66e54732df085

    • SHA512

      4637d8642617b583f9728d2852a9fe4a44f44d5cf7dbf736af98afd6cd3ea02f3d48d415397d3db279a4761eea2a817b979b21913919b8ee1731fe81aed36748

    • SSDEEP

      1536:VmF1lF/1gGpUYQXaHyYCalD04S4KfXLNioBz3:S3ozYNHTx0QKfXLXB7

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks