71ffdd0a16b08e26ded8b13e730885961fc2c9d6742c46bf32ca0e823cbd7bd1 | Triage

Sharing

General

Target

Stardock.Products.Patch.v1.5-Jasi2169.rar
Size

39.3MB
Sample

240907-tmxqwsscjr
MD5

637455bfeaa8fc8f9fef9bcc0912fc24
SHA1

c28625cfb27c5cedc3d95822c299a273f5018210
SHA256

71ffdd0a16b08e26ded8b13e730885961fc2c9d6742c46bf32ca0e823cbd7bd1
SHA512

693450381681d91a63d467ba7adfbc96467a0dcd33c96e5f552d74b4992fb97cd6e53530c9ee7244bbfc1cc4a9983a4615e386ee585fcb6e9ce8c7c0183a9e0c
SSDEEP

786432:nTnpfwI8XLYl6iJIavun9rLQwh5aJLwEhu6zThBaUGJzSK2C:Tyv0lTm9nQ7EwDThBaNJzSK2C

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  Stardock.Products.Patch.v1.5-Jasi2169.rar
- Size
  
  39.3MB
- MD5
  
  637455bfeaa8fc8f9fef9bcc0912fc24
- SHA1
  
  c28625cfb27c5cedc3d95822c299a273f5018210
- SHA256
  
  71ffdd0a16b08e26ded8b13e730885961fc2c9d6742c46bf32ca0e823cbd7bd1
- SHA512
  
  693450381681d91a63d467ba7adfbc96467a0dcd33c96e5f552d74b4992fb97cd6e53530c9ee7244bbfc1cc4a9983a4615e386ee585fcb6e9ce8c7c0183a9e0c
- SSDEEP
  
  786432:nTnpfwI8XLYl6iJIavun9rLQwh5aJLwEhu6zThBaUGJzSK2C:Tyv0lTm9nQ7EwDThBaNJzSK2C
Score

3^/10
behavioral1 behavioral2
- Target
  
  CRACKSurl.txt
- Size
  
  1KB
- MD5
  
  90e4d146072a719c280f387b2ed4493e
- SHA1
  
  68ab0bf2670e2d027f82f153e8e7d0b7ae5fa983
- SHA256
  
  b11ab0a1e6db7bb9b7da6a92aaaabf48627deff6cd5f6320da3709490151ef8d
- SHA512
  
  98ddb1c9b02db257daa15165187b309f93874498985f1aea3ed988e22e5110018d766eeca636bf1554a2a74a50c81a0e9186ece04a2cb8d4f80eefae97fcc457
Score

1^/10
behavioral3 behavioral4
- Target
  
  Download More.url
- Size
  
  120B
- MD5
  
  90e6699cd0ed46251033133a694be27e
- SHA1
  
  6644517d68bfdddb9db07f6d6a7b9a786ba80826
- SHA256
  
  44bc073ba509abb1872cbf945ddeee1bff8e0b2efdf1b00bdf9fb7877f4e1cb2
- SHA512
  
  bfba0588c3affb3be0cadc0bc87cbd92843a0a32543a9994bec413921d724d0955952fa7d637aca92c4d6964e4f3d04397426e4a237d2c3454039d946c8f438d
Score

1^/10
behavioral5 behavioral6
- Target
  
  Jasi2169 NFO Viewer.exe
- Size
  
  156KB
- MD5
  
  4c752a748558a37d034ffebcb38e0d66
- SHA1
  
  aa153ebd0de1b5312b7c043263d38e02fdc7012f
- SHA256
  
  d2c4f21391d5a842100425f9a2927ec47cdc55edea69013aa15f2c4eb4767e5c
- SHA512
  
  65371c3864d1696b4b67b0a9353ad352c483a2ff305ae6837c4d4d2b21ea4f150f9fd93fd9b8d162cfe153fab74190bd6bc85a338a9fa92d47cb040cf59d7787
- SSDEEP
  
  3072:Nh/oAq/1CbbWRhgevs4w4YF3MjxDFWYE5J2kGkX3MIlk+ThBFt8Y:zGUWRZUU63w96X9vBz8
Score

7^/10

discovery
- Loads dropped DLL
behavioral7 behavioral8
- Target
  
  Jasi2169.nfo
- Size
  
  12KB
- MD5
  
  4b47e1d64559ec658a2f610e1684f6bb
- SHA1
  
  6937ab5444c9c7edc7ddb8faff595e9140a7f15b
- SHA256
  
  0cc11be87f8e624f5fcb75906bc1ce939e1a697d923cbea6445ebcc7b9362f79
- SHA512
  
  9c607167197cef3f6b5833c42405259add2d7e4e4b0e2f1b93452025efb0397cc09213e35a95e24c39457303c0c27ccdd4a593a5dcd0f461ece5ce131bdd31da
- SSDEEP
  
  192:Jn1l9tYUOWzKAzO9ANl+jzFbDXzNUZyhKLPuEDcz5ZIB:Jn1l9tYUOWzpz+zpXzMzDcz5ZIB
Score

1^/10
behavioral10 behavioral9
- Target
  
  Join Telegram for more.url
- Size
  
  128B
- MD5
  
  8e69ef0723269ec6a3f88b38f3d87cb6
- SHA1
  
  98e410c6fca03ab37d2e82bc103f499019d8d5b4
- SHA256
  
  771846ab3f8c33f137024e6a13e5a41ac30a212a8076ca80d8cb96093a77da69
- SHA512
  
  63d3e6f00d44a243119624a09a4e3261fc114775a6fbf4d561e849905383a391dceb558f8606cad4f03682b78119c8b26e5c23141f22420aeb15b7e9f4e231d1
Score

1^/10
behavioral11 behavioral12
- Target
  
  Stardock Products Patch v1.5.exe
- Size
  
  39.5MB
- MD5
  
  c946cd0a675d6667140cefbd71e3e808
- SHA1
  
  d2b8ef30c2cdee1a552f8f087f27c9b8ff501136
- SHA256
  
  b20afa845e2aeabb94c131567c1b0576581b27b6336826007ee38f2619f3b3f8
- SHA512
  
  bc361fab7455f2fc6f6084a5f67ce8afbbb48c4ff46a54d004e937fc318abd372a4be02677916e5de6700714eb608a3a29c4841084ffe0062c1b9fda3611ed5b
- SSDEEP
  
  786432:wwcWkXE5sDo0HldnYLeDdR2B6YL8qNGO0cePX0lrnql+ZYhZ:wwKE58HYLAdR2rL87O0ce+qloYh
Score

7^/10

discovery
- Loads dropped DLL
- Drops file in System32 directory
behavioral13 behavioral14

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14