General

  • Target

    S-400 .Cracked By LMJ.rar

  • Size

    10.2MB

  • Sample

    240907-qgnz1swckn

  • MD5

    40ec42776d20ddf033c96cdce5726812

  • SHA1

    d104f876c7ced7e8eb2fb6fe079af73f6f002a97

  • SHA256

    498df8057ccd98b0cc7b47fb53276fb2cf040d5f745c6138d4b574df620e7ce2

  • SHA512

    4708394c61820076d085480c94263ed577d5c528f2454b421829940c95c3fc88fd0a891979f30fdbac8bef1810fee22c1c02e7c96fe110c91d32585febe17f0b

  • SSDEEP

    196608:uXQ6Six3oz37XVk6zP8+ADo9msQ/UjzTVSrvtJgOlq+Q8fjLwylzeiWR:MVeLXVLrSooNMfTgrFbq+QGgy4xR

Malware Config

Targets

    • Target

      S-400 .Cracked By LMJ.rar

    • Size

      10.2MB

    • MD5

      40ec42776d20ddf033c96cdce5726812

    • SHA1

      d104f876c7ced7e8eb2fb6fe079af73f6f002a97

    • SHA256

      498df8057ccd98b0cc7b47fb53276fb2cf040d5f745c6138d4b574df620e7ce2

    • SHA512

      4708394c61820076d085480c94263ed577d5c528f2454b421829940c95c3fc88fd0a891979f30fdbac8bef1810fee22c1c02e7c96fe110c91d32585febe17f0b

    • SSDEEP

      196608:uXQ6Six3oz37XVk6zP8+ADo9msQ/UjzTVSrvtJgOlq+Q8fjLwylzeiWR:MVeLXVLrSooNMfTgrFbq+QGgy4xR

    Score
    3/10
    • Target

      Thanks For Purchase/S-400 [EXTRACT]/API.dll

    • Size

      51KB

    • MD5

      df1b7e8e22353b01a29cb972d054ee16

    • SHA1

      27df441b511a5f4aea9a24b54cddb8d7b5fdbdd7

    • SHA256

      9eeea1447ac2fadce2b6dbdd73a607052007f2e3c4381336e3e31450a5092509

    • SHA512

      271b8ad7d51c379b0a21adcd9f1a8bf2a9f239ef5174b7d7ce9567e09aaa361a90988d63cccb6ab2b71f6936a42ecddc9f9a424a4feca1ea925cc57458e8ebd7

    • SSDEEP

      768:DaeCA3W2BB9q4yVUy+4ousziMWZ2f1TZKbhE4wJI86zyemRoY38u9ZwSn:DaeCA3TorVYjWisOJBWylx38uP

    Score
    1/10
    • Target

      Thanks For Purchase/S-400 [EXTRACT]/FC/Act.dll

    • Size

      12KB

    • MD5

      40514fa1bab88f1b8c4c2a42d361f67c

    • SHA1

      9794f98cb73d50754d595cc80f7b569672c5ef5d

    • SHA256

      44e9418e96f5eb466f79b77b4e9fe550f392ae84cc5f335faf4adb8d1f02c120

    • SHA512

      a8d1c32245d8c4c93137631ec9026fb05abb5261d0ee3cca2f32f378bb54184d1d3c8d32c7916bce1c63243e929b5ab8601c82351902587f16b5b43119031de0

    • SSDEEP

      192:6uaZFwqkC4x50O4GsCLfm0VJ1n/xEx1V9O0uUlFgyHTzIW1Pn/vU+MgWDJnLLk:6u52OR80VJ1nZmBx3lWyHT9n/8+CFM

    Score
    1/10
    • Target

      Thanks For Purchase/S-400 [EXTRACT]/FC/Anti.dll

    • Size

      12KB

    • MD5

      ab646175867b7602f2497f3e8a8bb8e6

    • SHA1

      7e5bc0df0baf3771b9c730ac437c9867a783c498

    • SHA256

      b6d8c15ecfe75c7f1a3082ce202cb85ee84450bb95f83e0e1d8f202036571524

    • SHA512

      92bcf728a8f6ed3e79512acd7d5aad4b65c8266a03e6ea325727f6539e51799d97f4b3bd0a158786e4f59785cb7dde0d2eb951b2d7c7f7e000a119d4a9b1eb82

    • SSDEEP

      384:boEUEB2YJWVGmn+faqn2+lSyzT9n/1GbKf8:boEUEdcb+fDX/Emf8

    Score
    1/10
    • Target

      Thanks For Purchase/S-400 [EXTRACT]/FC/Anx.dll

    • Size

      23KB

    • MD5

      0f52530cf216a3cf65fd195c8b29768d

    • SHA1

      4675f8ddd03ab1fe6de9a4d5c2c1b4511ec5bc5b

    • SHA256

      40d7c2fab8c23cb959842c8d74eff8541a4b1c1dcbec99806e3c92e7f990d962

    • SHA512

      42035cd7075d4019fbc42b2ae470a4c224e121c47a41925e3fec2f344aa298e1e2c95118ee0ba6a53f9ae8adf0ccf94381b21fb3b5caf2b90c28936cbc1d0c83

    • SSDEEP

      384:aRrUJh5fljJul3zsW3cffwElNZyzAd2U2tbKc1TokI7yC1e5Iuf6R/elISjsdm:aR0h5fl8l3r3cnDT2RKc1C1evuqYdm

    Score
    1/10
    • Target

      Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Aut2Exe/Aut2exe.exe

    • Size

      1.3MB

    • MD5

      88d518a90f4187b4542618cd328d7a34

    • SHA1

      fa5fd671f8aabce769f82b960634d54c4a27e502

    • SHA256

      5affc1a22d87715d5da70bfddb081335ca0a382b9cc4a54e18263047a76d5d81

    • SHA512

      a1ed751ba7518dcb2cf9ab821fa28690d8f4a41238e4b8d97b37c00eef5662147dea600c90a7192142808f6668f8d252372e0712415d0fb7b9d1faa53b2b7769

    • SSDEEP

      24576:k30RJ529+RipvL1SXk1QE1RGOTnIEQc4au9NgxnHNnz:kE89+ApwXk1QE1RzsEQPaxHNz

    Score
    3/10
    • Target

      Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiComboBox.au3

    • Size

      40KB

    • MD5

      92e8b9868c64047bf71cf0e6e96a77ce

    • SHA1

      8907646dd4349f655e4c6a4a23cddff6d350789f

    • SHA256

      236f6f10ef03c8fc589fe0026e09ac1654c603c2a8b1e7442bebb0fc53f74779

    • SHA512

      fdf4ae6693753b08301b702bcffcac0c4f8fadf8d1de956526229ca17d94a8371203f0f823f05cf94d05f006f4bb1cfb7b4dbe78b1c4ce3a8056cffb0446c6bd

    • SSDEEP

      768:njDzpjiZ8LcJleS+krE1dEAnhWDydtcHq7x01zVqfYJBJ8/S/co16Qj+DbctGl0m:jxS+Ucg5ob

    Score
    3/10
    • Target

      Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiComboBoxEx.au3

    • Size

      48KB

    • MD5

      ce00946726716f5c98e1d224d2b2773d

    • SHA1

      97e3da6aa0b69d7e397fdd108f96282a04e9e9c3

    • SHA256

      f513800754cbeb70d0f51b46868eeac5ee3afd08e3e0adb61e3ceca69341aee2

    • SHA512

      dc60aa31578a6208161ecfa3e02400cb19e6c1390dc904ceaeba98d935f283bc72e06ea3f25a23ab844d4e0eef873e458a917e55be5de141155a3c1b7601b31b

    • SSDEEP

      768:6Z1VTukyBf/k5Z/lGIzZZgQELM2c53NzqBuIZhhQWtRf2zfb9T4cJkkb3OXcXzt5:gQf/6JTh

    Score
    3/10
    • Target

      Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiIPAddress.au3

    • Size

      12KB

    • MD5

      31a6cd6ca4168d3a13f31e3a15fd1deb

    • SHA1

      0252b0e110bab1d659275a715dfedf2a6bc75a83

    • SHA256

      651dbfe0e72a0b49bdcac573ba65d80c928799c898524f94573616a9022dc3d3

    • SHA512

      8d10fb0e16c7582b49bf632d850669b59dac65f2ef100c89d0b4bc5e019ac484d1486485a65c5b7e8903603a1cc0d2ee3724cc628307cb34e1da2395e572b1b0

    • SSDEEP

      384:Vqk23Flw/GMlvDlwlQlMlSX9lhqlklUlolclWEZltNljN:odmGkvhoIkYhWs8QUW2tPjN

    Score
    3/10
    • Target

      Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiListBox.au3

    • Size

      43KB

    • MD5

      820c5cdb29eb662cdca37e291fd902e8

    • SHA1

      d3435a225c5f39579a6eaafcae578d067d0c66b7

    • SHA256

      da2b2ad9b39ed97978489803560a1811d9fb405160fdfdf08e8ee672cadad9a3

    • SHA512

      94deb1da226f8d4276ff450fd2deb25be8f7f8631576106f6db4856f3bca4e6539d49ac150137529b93275c354ca6c80fc492c0b8127a37dcfc5466c6927fe9f

    • SSDEEP

      768:fw3byJV8OvkNmm7WdkZjivCjxYbdI/mWlhUd5WcQ/nM/+h3VH9uXettb6sXnsn0F:VvUaf2

    Score
    3/10
    • Target

      Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiListView.au3

    • Size

      220KB

    • MD5

      2de430a3775c23b6cd9c8d0d2bcde8b1

    • SHA1

      3b20b27db76b1d779c7d76e3659433584e60c0b6

    • SHA256

      40fcb0df31ce1c4648e5457cb530d914c92943d371e1b3a68445401adc12024f

    • SHA512

      4a9ed78c9d70ee4882614f10d41dc8114544efa58c13111d7269fccfce53d8b86473b65c9b2665b53ca900f02aaaa5ad0eeb9eeed69dc09f754991f1e0dfa058

    • SSDEEP

      1536:RWb0qtnEp2bqbsJLfmOBR+u9xbbrq48qrYOSzDX6X9VDIRN8rryfsToprJO89cPw:ebkbsJL7Z0PAVDI3fsTOeCsoQo

    Score
    3/10
    • Target

      Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiMenu.au3

    • Size

      60KB

    • MD5

      b86beeda32318b7940557fe88121d433

    • SHA1

      57b91cdb9ea9705925814803132f9831a89ed7e5

    • SHA256

      104a1cdbf843af18688ba74e905c511f879840f362c2649ac620f9a2eafc4a03

    • SHA512

      67fa43f986db95e1d57cced0a1c463ab5803ebecc6de07e2d9cdf7e108678c7c2f9d38db80a65cef207686249e92509bf9e09dbca98b6af976b25c67b4aaa7f1

    • SSDEEP

      768:QFPq5OcPiqKOQjZLxCHCL86YDycyTay0nZ9zi/HqHpla:wq5liO6

    Score
    3/10
    • Target

      Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiMonthCal.au3

    • Size

      44KB

    • MD5

      3c646957e2030c81186dd05d694999a2

    • SHA1

      eddea9451bd14eaa117e7870e5472a15dcd4946b

    • SHA256

      66ad8355a50b045bf530ff2e0dab111bb4306921c55b96af9906848b2a5636a8

    • SHA512

      3e5e4e5cf00605141b058ec5c0af1c797f441510b3b717e1690ca11e480921b06a63b115f977b6f8a08cc184f2580f002f480dc8ff7fe4b44f1588d52b9a7468

    • SSDEEP

      768:XBKa6pk0lvcKFSpxXWYbizoxe1c54PYRzFppZ3YKtQxrs5AD5AA+x09CMv/3D7FA:XUaiIHlbboKtQxmcGD

    Score
    3/10
    • Target

      Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiReBar.au3

    • Size

      68KB

    • MD5

      6fe2e0135c47fc622f8d6670e6c05581

    • SHA1

      e48a2211392f3fd1e1475478bd59b9dd405595fc

    • SHA256

      6720b436b8e02dd5a54676356e993b062af8a5b46f668a1c9cd1e0a2c629c02c

    • SHA512

      d1a87d9b617f8c055b9f784bc5d26c540a2c48cdec613e4535c185e2de1b15cf37626aa1615b0ecb84456dcd7fd8277880af5726e39b26a53f29e592b68a79b9

    • SSDEEP

      1536:xjk/PiLTFMCOTfwJWvjFpFTfAVit89tVuqU/eUg:RkXiOT4JyPFDd8vcpg

    Score
    3/10
    • Target

      Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiScrollBars.au3

    • Size

      24KB

    • MD5

      90244110b20877b02300101165ed6aec

    • SHA1

      5c8534052772305f568b88cfbd1fe2e18209d5de

    • SHA256

      460e23a74507783e35a1dbd070f7ab51c72611a5d8ddbae3d2c85cd27c051493

    • SHA512

      fbb824234488bb42fb62f1210da6f81fcf8c5914fd932b03af246d675183b1645dbeca4afe3553463aba62e4d560176aff01eb9ef1edbf5f9c8d7eb67c5a4360

    • SSDEEP

      768:jzNLjjUo/hm47Ap0KLwjVAh3f2m8skxwpHD:jK

    Score
    3/10
    • Target

      Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiSlider.au3

    • Size

      26KB

    • MD5

      329413eff668749be6431db8ae205ff9

    • SHA1

      abf235194b5aa65c5332fed093a80fb933eebb93

    • SHA256

      f47111c51f805de9a8a1961c23f6f800f40872d63b8a2399057e173df8a189bd

    • SHA512

      28409baac95befc8bbeb464ae55b41b90ee2d7cc147bb7031db22b8fbb703e615f115b7787edb27cddd8bc08c208db5aaa504dff71c0624cd190aa896d071cff

    • SSDEEP

      768:tjtMK/+7k1R+6SrlA1RYfApyIZNfJDNdVa/KBnjHIhYOFZYJd8I/5LUy8D59/eK1:bMhtSTCD

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks

static1

agilenet
Score
10/10

behavioral1

Score
3/10

behavioral2

Score
3/10

behavioral3

Score
1/10

behavioral4

Score
1/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

discovery
Score
3/10

behavioral12

discovery
Score
3/10

behavioral13

execution
Score
3/10

behavioral14

execution
Score
3/10

behavioral15

execution
Score
3/10

behavioral16

execution
Score
3/10

behavioral17

execution
Score
3/10

behavioral18

execution
Score
3/10

behavioral19

execution
Score
3/10

behavioral20

execution
Score
3/10

behavioral21

execution
Score
3/10

behavioral22

execution
Score
3/10

behavioral23

execution
Score
3/10

behavioral24

execution
Score
3/10

behavioral25

execution
Score
3/10

behavioral26

execution
Score
3/10

behavioral27

execution
Score
3/10

behavioral28

execution
Score
3/10

behavioral29

execution
Score
3/10

behavioral30

execution
Score
3/10

behavioral31

execution
Score
3/10

behavioral32

execution
Score
3/10