General

  • Target

    528b7359f57113a01d4438a528c130f0N.exe

  • Size

    621KB

  • Sample

    240906-jdb3qatfjr

  • MD5

    528b7359f57113a01d4438a528c130f0

  • SHA1

    278e99d7c48c3fd2d69e368f067778e44726c962

  • SHA256

    64c42a19ca9ee836df4e48ad85298d700727019099aa85cdf1d995e298cc216c

  • SHA512

    6c014cd3ccb5f5621dd8c4343b9a72f2de235b5b6b3eefe4b7eb131d7a0ac0b44140723346390e8fb35ba6b58c8d891e5a4ad660d4a9d6f5354f4f0055e559b1

  • SSDEEP

    12288:tTf9EIl/clAlRUDbvDyQ97TOX/O+Og3Rh0x6HtbxLAucSbldUrjCcZsiG:tTfhOAfMbvms7TO2+NFtPCycw

Score
7/10

Malware Config

Targets

    • Target

      528b7359f57113a01d4438a528c130f0N.exe

    • Size

      621KB

    • MD5

      528b7359f57113a01d4438a528c130f0

    • SHA1

      278e99d7c48c3fd2d69e368f067778e44726c962

    • SHA256

      64c42a19ca9ee836df4e48ad85298d700727019099aa85cdf1d995e298cc216c

    • SHA512

      6c014cd3ccb5f5621dd8c4343b9a72f2de235b5b6b3eefe4b7eb131d7a0ac0b44140723346390e8fb35ba6b58c8d891e5a4ad660d4a9d6f5354f4f0055e559b1

    • SSDEEP

      12288:tTf9EIl/clAlRUDbvDyQ97TOX/O+Og3Rh0x6HtbxLAucSbldUrjCcZsiG:tTfhOAfMbvms7TO2+NFtPCycw

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Target

      $PLUGINSDIR/CleanChromePrefs.vbs

    • Size

      961B

    • MD5

      d6b3394667f32598e6afd9628c8b38d6

    • SHA1

      4bb72d594b492e61738f0ad787d96cf57d368ad1

    • SHA256

      7b7ec8176dee35de959f410d796bb1920f943558e26e29cc3d19b5fa25e9e290

    • SHA512

      34f9531d6d2393c4e1eb3c218d302507f0dab8c863862a5afa0dcad6d4bc83398e4e3e20f4c7e3c7a087ffe394342affe25861e1630a9af7bdf887004a32bda7

    Score
    1/10
    • Target

      $PLUGINSDIR/CleanFirefoxPrefs.vbs

    • Size

      1KB

    • MD5

      604cd27fa75d2e47a55f66cbe8f7dae9

    • SHA1

      fb784ec0eb44a6311ac57c26310b74f3aeb5c32c

    • SHA256

      5e617b87eff2e8ba0a392c29807d3a22f4e69d23e391a4362b6ee6c4ba4904df

    • SHA512

      f585f856a9cedd6751968c5d1cc6095fea81cf91ab4a05eef4451f2eed890a3f2f6fcd66b0d60523115735e8faf3c13974e37e0bdb905dfa33abb39a18e17a37

    Score
    1/10
    • Target

      $PLUGINSDIR/ExecDos.dll

    • Size

      5KB

    • MD5

      ebcf9f71d804abab3c2e5ce4c17dc22e

    • SHA1

      17d13084e75cbfa5fbfdd0025e9a0ee5772ae765

    • SHA256

      d387b725afbd2a6f9b44999278d21025fae55b391e45f7751b88dfb13511a993

    • SHA512

      5576396c2d885c039668d7f401eeee583eb4de39e8497c3aaec32d47f4417a522fe6786c111d50a5fba7570f50e84144ef3a8aea42677d170e79114343c3a4a1

    • SSDEEP

      48:qNpugCjmWaZ+rnHAUiP9JLw/RHFtly5vorpSpSi7+5HCAx31Oglt6Zlrz9QH96AD:r0W1nHAfPPORHnooAU3xYglt6WwE

    Score
    3/10
    • Target

      $PLUGINSDIR/Processes.dll

    • Size

      35KB

    • MD5

      2cfba79d485cf441c646dd40d82490fc

    • SHA1

      83e51ac1115a50986ed456bd18729653018b9619

    • SHA256

      86b302fa9c85dfa0c1c03ba000864a928365dab571f3355347dba02da22949b7

    • SHA512

      cca186a7f9c5cff3f4eca410fbe8cc13dad2514a7e36aec9b1addfbcb239ace9b9b2d8427771858e3fd11783abce7e24d43c286f98da9f8b17562ca095a4c043

    • SSDEEP

      768:uxEiycFoaj/+WSiJfmjvab7L/cUf7IIlMLRF:uxEm7sgfmjy//cgdlM/

    Score
    3/10
    • Target

      $PLUGINSDIR/StdUtils.dll

    • Size

      14KB

    • MD5

      21010df9bc37daffcc0b5ae190381d85

    • SHA1

      a8ba022aafc1233894db29e40e569dfc8b280eb9

    • SHA256

      0ebd62de633fa108cf18139be6778fa560680f9f8a755e41c6ab544ab8db5c16

    • SHA512

      95d3dbba6eac144260d5fcc7fcd5fb3afcb59ae62bd2eafc5a1d2190e9b44f8e125290d62fef82ad8799d0072997c57b2fa8a643aba554d0a82bbd3f8eb1403e

    • SSDEEP

      192:OFb8Y8oqy2mqZc9hGBQHRx39oRxmMvURkB/Fs:qb8Y8nKqohGBKxox9vURw/a

    Score
    3/10
    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      00a0194c20ee912257df53bfe258ee4a

    • SHA1

      d7b4e319bc5119024690dc8230b9cc919b1b86b2

    • SHA256

      dc4da2ccadb11099076926b02764b2b44ad8f97cd32337421a4cc21a3f5448f3

    • SHA512

      3b38a2c17996c3b77ebf7b858a6c37415615e756792132878d8eddbd13cb06710b7da0e8b58104768f8e475fc93e8b44b3b1ab6f70ddf52edee111aaf5ef5667

    • SSDEEP

      192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw

    Score
    3/10
    • Target

      $PLUGINSDIR/UserInfo.dll

    • Size

      4KB

    • MD5

      7579ade7ae1747a31960a228ce02e666

    • SHA1

      8ec8571a296737e819dcf86353a43fcf8ec63351

    • SHA256

      564c80dec62d76c53497c40094db360ff8a36e0dc1bda8383d0f9583138997f5

    • SHA512

      a88bc56e938374c333b0e33cb72951635b5d5a98b9cb2d6785073cbcad23bf4c0f9f69d3b7e87b46c76eb03ced9bb786844ce87656a9e3df4ca24acf43d7a05b

    Score
    3/10
    • Target

      $PLUGINSDIR/closebrowsers.exe

    • Size

      882KB

    • MD5

      de7c328abaca3ae0d4f8ee708170817b

    • SHA1

      369fe6d91246855d5f0420d96f4829a3b77734d9

    • SHA256

      bc4acaade74d5f41ea08e87d645f9bc0bbd813c4250918c2a6f32e2853ad056f

    • SHA512

      8f73d04939526095f935a2f95e3215d5bedabd43167d5b905f7349e244d494e0e5364ebdc004da853a8edaabb1b10cba74f18ce45f41779e375b8905708c534c

    • SSDEEP

      12288:UBYx/A8Vo/j2xat08U/16POuMD3c/0a4AqvB+O82H2IEBYo+4VCGECiTHITSKa:UBYFA8Vor2ILU/J1ba4xAIWIk77oASKa

    Score
    3/10
    • Target

      $PLUGINSDIR/inetc.dll

    • Size

      20KB

    • MD5

      4c01fdfd2b57b32046b3b3635a4f4df8

    • SHA1

      e0af8e418cbe2b2783b5de93279a3b5dcb73490e

    • SHA256

      b98e21645910f82b328f30c644b86c112969b42697e797671647b09eb40ad014

    • SHA512

      cbd354536e2a970d31ba69024208673b1dc56603ad604ff17c5840b4371958fc22bafd90040ae3fb19ae9c248b2cfce08d0bc73cc93481f02c73b86dbc0697b2

    • SSDEEP

      384:rJBJ8VnX8K+uKn2WQJdxbs3aEUhU7ya4L60Ac9khYLMkIX0+GwNyEAG:3J8+K+uK2WQJdxbsqEUhUua4L6AG

    Score
    3/10
    • Target

      $PLUGINSDIR/nsislog.dll

    • Size

      42KB

    • MD5

      e47100b70748fc790ffe6299cdf7ef2d

    • SHA1

      ad2a9cd5f7c39121926b7c131816e7ba85aeead2

    • SHA256

      271d539fe130276189e0a32b8a0bc9f08f2d92f7e17f85d88726735f14ea6144

    • SHA512

      88452a9aeff453e7979df9240ab396cbc0c5d00efecda97df1e46f2ba1e9b5bfd990921e85d503beb4b35a1de7681390ba124eeeaf896f250717892ced133e93

    • SSDEEP

      768:wCpqFQLwm2VQRIsW6z66P9dmnKyAPKoaQtt34Zt4DtV4U0Kx8xkS:XpqFQiVUfDzXmmb6mJVN0KWxN

    Score
    3/10
    • Target

      $PLUGINSDIR/nsisos.dll

    • Size

      5KB

    • MD5

      69806691d649ef1c8703fd9e29231d44

    • SHA1

      e2193fcf5b4863605eec2a5eb17bf84c7ac00166

    • SHA256

      ba79ab7f63f02ed5d5d46b82b11d97dac5b7ef7e9b9a4df926b43ceac18483b6

    • SHA512

      5e5e0319e701d15134a01cb6472c624e271e99891058aef4dfe779c29c73899771a5b6f8b1cd61b543a3b3defeaecaa080c9cc4e76e84038ca08e12084f128eb

    • SSDEEP

      48:6EyuygeHCfxwU5x+6kx/k1gONv27oBc2OkIrHHl:VeHCf2762kKsu7oGjkIrn

    Score
    3/10
    • Target

      $PLUGINSDIR/scs.exe

    • Size

      444KB

    • MD5

      cc9d0095e7c68788ff0a7a0b8d7199b0

    • SHA1

      32704f1aa6de52e4aa00c8d9f832a9e48c2c5adc

    • SHA256

      b21c4b89a42ef42da2f371f1a577896b79afadf5c848995b7e54b01bbd7c1db5

    • SHA512

      b4d5c794d0457ed7d288cf8d038741eae78ec43348a39fe4716065a8fd36b22235c4b9101bfd6c5886e2ca3ac5df72112f1df646f6f6ae0d1b6fffab963d90a1

    • SSDEEP

      12288:3OhFOLW2y59VGtow+qe5mG8dT2EIvJy5nvvKO7:3Vyn59V2ow+qeMVgRy5nL

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks

static1

Score
3/10

behavioral1

discovery
Score
7/10

behavioral2

discovery
Score
7/10

behavioral3

Score
1/10

behavioral4

Score
1/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

discovery
Score
3/10

behavioral8

discovery
Score
3/10

behavioral9

discovery
Score
3/10

behavioral10

discovery
Score
3/10

behavioral11

discovery
Score
3/10

behavioral12

discovery
Score
3/10

behavioral13

discovery
Score
3/10

behavioral14

discovery
Score
3/10

behavioral15

discovery
Score
3/10

behavioral16

discovery
Score
3/10

behavioral17

discovery
Score
3/10

behavioral18

discovery
Score
3/10

behavioral19

discovery
Score
3/10

behavioral20

discovery
Score
3/10

behavioral21

discovery
Score
3/10

behavioral22

discovery
Score
3/10

behavioral23

discovery
Score
3/10

behavioral24

discovery
Score
3/10

behavioral25

Score
1/10

behavioral26

discovery
Score
3/10