Overview

overview

8

Static

static

3

setup.exe

windows10-2004-x64

8

setup.exe

windows11-21h2-x64

8

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows11-21h2-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows11-21h2-x64

3

SystemFile64.exe

windows10-2004-x64

3

SystemFile64.exe

windows11-21h2-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    setup.exe

  • Size

    2.5MB

  • Sample

    240906-xe4e9asfne

  • MD5

    e2606134f5ebabcc69ecd0ec2d8df29d

  • SHA1

    e7cfc2194d9ed72264a0949734c9167a97fa200d

  • SHA256

    775fa9dd265c0f37e11ac0f524516d566e1c7998552ab3a463ae7dabae988ece

  • SHA512

    f3d5ba18d5a55b2491ee946a43a07c350a4b14d4a5f236638734d1954679eab97cc2bc82cff626043853abc7fc93164ef3b23fc0d78b5dbd707b47400b4924e7

  • SSDEEP

    49152:yEdED2TlnfPnFNzBjCwOkkgKJEvwvKqeJF34ffLCfJZCJieQCQeQ6Nt28ojK:yHEnfPtpOEIvqqLqCyCQer728P

Score
8/10
discoveryevasionexecutionpersistence

Malware Config

Targets

    • Target

      setup.exe

    • Size

      2.5MB

    • MD5

      e2606134f5ebabcc69ecd0ec2d8df29d

    • SHA1

      e7cfc2194d9ed72264a0949734c9167a97fa200d

    • SHA256

      775fa9dd265c0f37e11ac0f524516d566e1c7998552ab3a463ae7dabae988ece

    • SHA512

      f3d5ba18d5a55b2491ee946a43a07c350a4b14d4a5f236638734d1954679eab97cc2bc82cff626043853abc7fc93164ef3b23fc0d78b5dbd707b47400b4924e7

    • SSDEEP

      49152:yEdED2TlnfPnFNzBjCwOkkgKJEvwvKqeJF34ffLCfJZCJieQCQeQ6Nt28ojK:yHEnfPtpOEIvqqLqCyCQer728P

    Score
    8/10
    discoveryevasionexecutionpersistence
    behavioral1behavioral2

    • Target

      $PLUGINSDIR/nsExec.dll

    • Size

      6KB

    • MD5

      b5a1f9dc73e2944a388a61411bdd8c70

    • SHA1

      dc9b20df3f3810c2e81a0c54dea385704ba8bef7

    • SHA256

      288100583f65a2b7acfc0c7e231c0e268c58d3067675543f627c01e82f6fd884

    • SHA512

      b9c8d71b5da00f2aff7847b9ec3bd8a588afeb525f47a0df235b52f7b2233edb3928a2c8e0b493f287c923cc52a340ad6fee99822595d6591df0e97870de92a8

    • SSDEEP

      96:p7GUxNkO6GR0t9GKKr1Zd8NHYVVHp4dEeY3kRnHdMqqyVgNQ3e:lXhHR0aTQN4gRHdMqJVgNH

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/nsProcess.dll

    • Size

      4KB

    • MD5

      05450face243b3a7472407b999b03a72

    • SHA1

      ffd88af2e338ae606c444390f7eaaf5f4aef2cd9

    • SHA256

      95fe9d92512ff2318cc2520311ef9145b2cee01209ab0e1b6e45c7ce1d4d0e89

    • SHA512

      f4cbe30166aff20a226a7150d93a876873ba699d80d7e9f46f32a9b4753fa7966c3113a3124340b39ca67a13205463a413e740e541e742903e3f89af5a53ad3b

    Score
    3/10
    discovery
    behavioral5behavioral6

    • Target

      SystemFile64.exe

    • Size

      5.9MB

    • MD5

      1d7c380a28a428b67b72bcb7d1c28d6c

    • SHA1

      3f00a6e1e95f09690456ee8e1ae05d3964432fa4

    • SHA256

      76db8fea5dc386cfbac67340744ad57e6f50589918b3762eb6c92dfb39cf8588

    • SHA512

      587c9282718672526eb6401ec9f5b899a6538ca9748cac5c044b41d4e786ce18a84d81b092cf522c89103566176c13be0a3c76aa75f9801fbc3fa78eb3856f61

    • SSDEEP

      49152:F7qkp5Oc6JESheFu4YJx1KoIAZjA6mmyGa4GKWxjXbCb2qRhmS2WUda9vy3dT/:F7XEmuxx1KSy6NFGbh+2WOa9Y

    Score
    3/10
    discovery
    behavioral7behavioral8

MITRE ATT&CK Enterprise v15

Tasks