Overview
overview
10Static
static
10S-400 .Cra...MJ.rar
windows7-x64
3S-400 .Cra...MJ.rar
windows10-2004-x64
3Thanks For...PI.dll
windows7-x64
1Thanks For...PI.dll
windows10-2004-x64
1Thanks For...ct.dll
windows7-x64
1Thanks For...ct.dll
windows10-2004-x64
1Thanks For...ti.dll
windows7-x64
1Thanks For...ti.dll
windows10-2004-x64
1Thanks For...nx.dll
windows7-x64
1Thanks For...nx.dll
windows10-2004-x64
1Thanks For...xe.exe
windows7-x64
3Thanks For...xe.exe
windows10-2004-x64
3Thanks For...ox.ps1
windows7-x64
3Thanks For...ox.ps1
windows10-2004-x64
3Thanks For...Ex.ps1
windows7-x64
3Thanks For...Ex.ps1
windows10-2004-x64
3Thanks For...ss.ps1
windows7-x64
3Thanks For...ss.ps1
windows10-2004-x64
3Thanks For...ox.ps1
windows7-x64
3Thanks For...ox.ps1
windows10-2004-x64
3Thanks For...ew.ps1
windows7-x64
3Thanks For...ew.ps1
windows10-2004-x64
3Thanks For...nu.ps1
windows7-x64
3Thanks For...nu.ps1
windows10-2004-x64
3Thanks For...al.ps1
windows7-x64
3Thanks For...al.ps1
windows10-2004-x64
3Thanks For...ar.ps1
windows7-x64
3Thanks For...ar.ps1
windows10-2004-x64
3Thanks For...rs.ps1
windows7-x64
3Thanks For...rs.ps1
windows10-2004-x64
3Thanks For...er.ps1
windows7-x64
3Thanks For...er.ps1
windows10-2004-x64
3General
-
Target
S-400 .Cracked By LMJ.rar
-
Size
10.2MB
-
Sample
240907-qgnz1swckn
-
MD5
40ec42776d20ddf033c96cdce5726812
-
SHA1
d104f876c7ced7e8eb2fb6fe079af73f6f002a97
-
SHA256
498df8057ccd98b0cc7b47fb53276fb2cf040d5f745c6138d4b574df620e7ce2
-
SHA512
4708394c61820076d085480c94263ed577d5c528f2454b421829940c95c3fc88fd0a891979f30fdbac8bef1810fee22c1c02e7c96fe110c91d32585febe17f0b
-
SSDEEP
196608:uXQ6Six3oz37XVk6zP8+ADo9msQ/UjzTVSrvtJgOlq+Q8fjLwylzeiWR:MVeLXVLrSooNMfTgrFbq+QGgy4xR
Behavioral task
behavioral1
Sample
S-400 .Cracked By LMJ.rar
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
S-400 .Cracked By LMJ.rar
Resource
win10v2004-20240802-en
Behavioral task
behavioral3
Sample
Thanks For Purchase/S-400 [EXTRACT]/API.dll
Resource
win7-20240903-en
Behavioral task
behavioral4
Sample
Thanks For Purchase/S-400 [EXTRACT]/API.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral5
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/Act.dll
Resource
win7-20240903-en
Behavioral task
behavioral6
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/Act.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral7
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/Anti.dll
Resource
win7-20240704-en
Behavioral task
behavioral8
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/Anti.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral9
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/Anx.dll
Resource
win7-20240903-en
Behavioral task
behavioral10
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/Anx.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral11
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Aut2Exe/Aut2exe.exe
Resource
win7-20240903-en
Behavioral task
behavioral12
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Aut2Exe/Aut2exe.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral13
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiComboBox.ps1
Resource
win7-20240903-en
Behavioral task
behavioral14
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiComboBox.ps1
Resource
win10v2004-20240802-en
Behavioral task
behavioral15
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiComboBoxEx.ps1
Resource
win7-20240903-en
Behavioral task
behavioral16
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiComboBoxEx.ps1
Resource
win10v2004-20240802-en
Behavioral task
behavioral17
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiIPAddress.ps1
Resource
win7-20240903-en
Behavioral task
behavioral18
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiIPAddress.ps1
Resource
win10v2004-20240802-en
Behavioral task
behavioral19
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiListBox.ps1
Resource
win7-20240903-en
Behavioral task
behavioral20
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiListBox.ps1
Resource
win10v2004-20240802-en
Behavioral task
behavioral21
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiListView.ps1
Resource
win7-20240708-en
Behavioral task
behavioral22
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiListView.ps1
Resource
win10v2004-20240802-en
Behavioral task
behavioral23
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiMenu.ps1
Resource
win7-20240903-en
Behavioral task
behavioral24
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiMenu.ps1
Resource
win10v2004-20240802-en
Behavioral task
behavioral25
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiMonthCal.ps1
Resource
win7-20240903-en
Behavioral task
behavioral26
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiMonthCal.ps1
Resource
win10v2004-20240802-en
Behavioral task
behavioral27
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiReBar.ps1
Resource
win7-20240708-en
Behavioral task
behavioral28
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiReBar.ps1
Resource
win10v2004-20240802-en
Behavioral task
behavioral29
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiScrollBars.ps1
Resource
win7-20240903-en
Behavioral task
behavioral30
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiScrollBars.ps1
Resource
win10v2004-20240802-en
Behavioral task
behavioral31
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiSlider.ps1
Resource
win7-20240708-en
Behavioral task
behavioral32
Sample
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiSlider.ps1
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
S-400 .Cracked By LMJ.rar
-
Size
10.2MB
-
MD5
40ec42776d20ddf033c96cdce5726812
-
SHA1
d104f876c7ced7e8eb2fb6fe079af73f6f002a97
-
SHA256
498df8057ccd98b0cc7b47fb53276fb2cf040d5f745c6138d4b574df620e7ce2
-
SHA512
4708394c61820076d085480c94263ed577d5c528f2454b421829940c95c3fc88fd0a891979f30fdbac8bef1810fee22c1c02e7c96fe110c91d32585febe17f0b
-
SSDEEP
196608:uXQ6Six3oz37XVk6zP8+ADo9msQ/UjzTVSrvtJgOlq+Q8fjLwylzeiWR:MVeLXVLrSooNMfTgrFbq+QGgy4xR
Score3/10 -
-
-
Target
Thanks For Purchase/S-400 [EXTRACT]/API.dll
-
Size
51KB
-
MD5
df1b7e8e22353b01a29cb972d054ee16
-
SHA1
27df441b511a5f4aea9a24b54cddb8d7b5fdbdd7
-
SHA256
9eeea1447ac2fadce2b6dbdd73a607052007f2e3c4381336e3e31450a5092509
-
SHA512
271b8ad7d51c379b0a21adcd9f1a8bf2a9f239ef5174b7d7ce9567e09aaa361a90988d63cccb6ab2b71f6936a42ecddc9f9a424a4feca1ea925cc57458e8ebd7
-
SSDEEP
768:DaeCA3W2BB9q4yVUy+4ousziMWZ2f1TZKbhE4wJI86zyemRoY38u9ZwSn:DaeCA3TorVYjWisOJBWylx38uP
Score1/10 -
-
-
Target
Thanks For Purchase/S-400 [EXTRACT]/FC/Act.dll
-
Size
12KB
-
MD5
40514fa1bab88f1b8c4c2a42d361f67c
-
SHA1
9794f98cb73d50754d595cc80f7b569672c5ef5d
-
SHA256
44e9418e96f5eb466f79b77b4e9fe550f392ae84cc5f335faf4adb8d1f02c120
-
SHA512
a8d1c32245d8c4c93137631ec9026fb05abb5261d0ee3cca2f32f378bb54184d1d3c8d32c7916bce1c63243e929b5ab8601c82351902587f16b5b43119031de0
-
SSDEEP
192:6uaZFwqkC4x50O4GsCLfm0VJ1n/xEx1V9O0uUlFgyHTzIW1Pn/vU+MgWDJnLLk:6u52OR80VJ1nZmBx3lWyHT9n/8+CFM
Score1/10 -
-
-
Target
Thanks For Purchase/S-400 [EXTRACT]/FC/Anti.dll
-
Size
12KB
-
MD5
ab646175867b7602f2497f3e8a8bb8e6
-
SHA1
7e5bc0df0baf3771b9c730ac437c9867a783c498
-
SHA256
b6d8c15ecfe75c7f1a3082ce202cb85ee84450bb95f83e0e1d8f202036571524
-
SHA512
92bcf728a8f6ed3e79512acd7d5aad4b65c8266a03e6ea325727f6539e51799d97f4b3bd0a158786e4f59785cb7dde0d2eb951b2d7c7f7e000a119d4a9b1eb82
-
SSDEEP
384:boEUEB2YJWVGmn+faqn2+lSyzT9n/1GbKf8:boEUEdcb+fDX/Emf8
Score1/10 -
-
-
Target
Thanks For Purchase/S-400 [EXTRACT]/FC/Anx.dll
-
Size
23KB
-
MD5
0f52530cf216a3cf65fd195c8b29768d
-
SHA1
4675f8ddd03ab1fe6de9a4d5c2c1b4511ec5bc5b
-
SHA256
40d7c2fab8c23cb959842c8d74eff8541a4b1c1dcbec99806e3c92e7f990d962
-
SHA512
42035cd7075d4019fbc42b2ae470a4c224e121c47a41925e3fec2f344aa298e1e2c95118ee0ba6a53f9ae8adf0ccf94381b21fb3b5caf2b90c28936cbc1d0c83
-
SSDEEP
384:aRrUJh5fljJul3zsW3cffwElNZyzAd2U2tbKc1TokI7yC1e5Iuf6R/elISjsdm:aR0h5fl8l3r3cnDT2RKc1C1evuqYdm
Score1/10 -
-
-
Target
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Aut2Exe/Aut2exe.exe
-
Size
1.3MB
-
MD5
88d518a90f4187b4542618cd328d7a34
-
SHA1
fa5fd671f8aabce769f82b960634d54c4a27e502
-
SHA256
5affc1a22d87715d5da70bfddb081335ca0a382b9cc4a54e18263047a76d5d81
-
SHA512
a1ed751ba7518dcb2cf9ab821fa28690d8f4a41238e4b8d97b37c00eef5662147dea600c90a7192142808f6668f8d252372e0712415d0fb7b9d1faa53b2b7769
-
SSDEEP
24576:k30RJ529+RipvL1SXk1QE1RGOTnIEQc4au9NgxnHNnz:kE89+ApwXk1QE1RzsEQPaxHNz
Score3/10 -
-
-
Target
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiComboBox.au3
-
Size
40KB
-
MD5
92e8b9868c64047bf71cf0e6e96a77ce
-
SHA1
8907646dd4349f655e4c6a4a23cddff6d350789f
-
SHA256
236f6f10ef03c8fc589fe0026e09ac1654c603c2a8b1e7442bebb0fc53f74779
-
SHA512
fdf4ae6693753b08301b702bcffcac0c4f8fadf8d1de956526229ca17d94a8371203f0f823f05cf94d05f006f4bb1cfb7b4dbe78b1c4ce3a8056cffb0446c6bd
-
SSDEEP
768:njDzpjiZ8LcJleS+krE1dEAnhWDydtcHq7x01zVqfYJBJ8/S/co16Qj+DbctGl0m:jxS+Ucg5ob
Score3/10 -
-
-
Target
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiComboBoxEx.au3
-
Size
48KB
-
MD5
ce00946726716f5c98e1d224d2b2773d
-
SHA1
97e3da6aa0b69d7e397fdd108f96282a04e9e9c3
-
SHA256
f513800754cbeb70d0f51b46868eeac5ee3afd08e3e0adb61e3ceca69341aee2
-
SHA512
dc60aa31578a6208161ecfa3e02400cb19e6c1390dc904ceaeba98d935f283bc72e06ea3f25a23ab844d4e0eef873e458a917e55be5de141155a3c1b7601b31b
-
SSDEEP
768:6Z1VTukyBf/k5Z/lGIzZZgQELM2c53NzqBuIZhhQWtRf2zfb9T4cJkkb3OXcXzt5:gQf/6JTh
Score3/10 -
-
-
Target
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiIPAddress.au3
-
Size
12KB
-
MD5
31a6cd6ca4168d3a13f31e3a15fd1deb
-
SHA1
0252b0e110bab1d659275a715dfedf2a6bc75a83
-
SHA256
651dbfe0e72a0b49bdcac573ba65d80c928799c898524f94573616a9022dc3d3
-
SHA512
8d10fb0e16c7582b49bf632d850669b59dac65f2ef100c89d0b4bc5e019ac484d1486485a65c5b7e8903603a1cc0d2ee3724cc628307cb34e1da2395e572b1b0
-
SSDEEP
384:Vqk23Flw/GMlvDlwlQlMlSX9lhqlklUlolclWEZltNljN:odmGkvhoIkYhWs8QUW2tPjN
Score3/10 -
-
-
Target
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiListBox.au3
-
Size
43KB
-
MD5
820c5cdb29eb662cdca37e291fd902e8
-
SHA1
d3435a225c5f39579a6eaafcae578d067d0c66b7
-
SHA256
da2b2ad9b39ed97978489803560a1811d9fb405160fdfdf08e8ee672cadad9a3
-
SHA512
94deb1da226f8d4276ff450fd2deb25be8f7f8631576106f6db4856f3bca4e6539d49ac150137529b93275c354ca6c80fc492c0b8127a37dcfc5466c6927fe9f
-
SSDEEP
768:fw3byJV8OvkNmm7WdkZjivCjxYbdI/mWlhUd5WcQ/nM/+h3VH9uXettb6sXnsn0F:VvUaf2
Score3/10 -
-
-
Target
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiListView.au3
-
Size
220KB
-
MD5
2de430a3775c23b6cd9c8d0d2bcde8b1
-
SHA1
3b20b27db76b1d779c7d76e3659433584e60c0b6
-
SHA256
40fcb0df31ce1c4648e5457cb530d914c92943d371e1b3a68445401adc12024f
-
SHA512
4a9ed78c9d70ee4882614f10d41dc8114544efa58c13111d7269fccfce53d8b86473b65c9b2665b53ca900f02aaaa5ad0eeb9eeed69dc09f754991f1e0dfa058
-
SSDEEP
1536:RWb0qtnEp2bqbsJLfmOBR+u9xbbrq48qrYOSzDX6X9VDIRN8rryfsToprJO89cPw:ebkbsJL7Z0PAVDI3fsTOeCsoQo
Score3/10 -
-
-
Target
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiMenu.au3
-
Size
60KB
-
MD5
b86beeda32318b7940557fe88121d433
-
SHA1
57b91cdb9ea9705925814803132f9831a89ed7e5
-
SHA256
104a1cdbf843af18688ba74e905c511f879840f362c2649ac620f9a2eafc4a03
-
SHA512
67fa43f986db95e1d57cced0a1c463ab5803ebecc6de07e2d9cdf7e108678c7c2f9d38db80a65cef207686249e92509bf9e09dbca98b6af976b25c67b4aaa7f1
-
SSDEEP
768:QFPq5OcPiqKOQjZLxCHCL86YDycyTay0nZ9zi/HqHpla:wq5liO6
Score3/10 -
-
-
Target
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiMonthCal.au3
-
Size
44KB
-
MD5
3c646957e2030c81186dd05d694999a2
-
SHA1
eddea9451bd14eaa117e7870e5472a15dcd4946b
-
SHA256
66ad8355a50b045bf530ff2e0dab111bb4306921c55b96af9906848b2a5636a8
-
SHA512
3e5e4e5cf00605141b058ec5c0af1c797f441510b3b717e1690ca11e480921b06a63b115f977b6f8a08cc184f2580f002f480dc8ff7fe4b44f1588d52b9a7468
-
SSDEEP
768:XBKa6pk0lvcKFSpxXWYbizoxe1c54PYRzFppZ3YKtQxrs5AD5AA+x09CMv/3D7FA:XUaiIHlbboKtQxmcGD
Score3/10 -
-
-
Target
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiReBar.au3
-
Size
68KB
-
MD5
6fe2e0135c47fc622f8d6670e6c05581
-
SHA1
e48a2211392f3fd1e1475478bd59b9dd405595fc
-
SHA256
6720b436b8e02dd5a54676356e993b062af8a5b46f668a1c9cd1e0a2c629c02c
-
SHA512
d1a87d9b617f8c055b9f784bc5d26c540a2c48cdec613e4535c185e2de1b15cf37626aa1615b0ecb84456dcd7fd8277880af5726e39b26a53f29e592b68a79b9
-
SSDEEP
1536:xjk/PiLTFMCOTfwJWvjFpFTfAVit89tVuqU/eUg:RkXiOT4JyPFDd8vcpg
Score3/10 -
-
-
Target
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiScrollBars.au3
-
Size
24KB
-
MD5
90244110b20877b02300101165ed6aec
-
SHA1
5c8534052772305f568b88cfbd1fe2e18209d5de
-
SHA256
460e23a74507783e35a1dbd070f7ab51c72611a5d8ddbae3d2c85cd27c051493
-
SHA512
fbb824234488bb42fb62f1210da6f81fcf8c5914fd932b03af246d675183b1645dbeca4afe3553463aba62e4d560176aff01eb9ef1edbf5f9c8d7eb67c5a4360
-
SSDEEP
768:jzNLjjUo/hm47Ap0KLwjVAh3f2m8skxwpHD:jK
Score3/10 -
-
-
Target
Thanks For Purchase/S-400 [EXTRACT]/FC/CVE_Port/AutoIt3/Include/GuiSlider.au3
-
Size
26KB
-
MD5
329413eff668749be6431db8ae205ff9
-
SHA1
abf235194b5aa65c5332fed093a80fb933eebb93
-
SHA256
f47111c51f805de9a8a1961c23f6f800f40872d63b8a2399057e173df8a189bd
-
SHA512
28409baac95befc8bbeb464ae55b41b90ee2d7cc147bb7031db22b8fbb703e615f115b7787edb27cddd8bc08c208db5aaa504dff71c0624cd190aa896d071cff
-
SSDEEP
768:tjtMK/+7k1R+6SrlA1RYfApyIZNfJDNdVa/KBnjHIhYOFZYJd8I/5LUy8D59/eK1:bMhtSTCD
Score3/10 -