4e4b8234d3d3dbae0be13b2877eb20a57de08d86df8549bee9e562732b7ad5a7 | Triage

Sharing

General

Target

3b1655a60a1329053a926983186967a0N
Size

4.5MB
Sample

240909-zpxfss1gmh
MD5

3b1655a60a1329053a926983186967a0
SHA1

6d242bdcd7d8640956b08f1febb77b8633448f3b
SHA256

4e4b8234d3d3dbae0be13b2877eb20a57de08d86df8549bee9e562732b7ad5a7
SHA512

a42938ab170bcb2be1a98a32af9e67710be8345afa457f28923effa271326754eafb8861fcf82e0d0ed9364374559fa2456e16e9c595f79b11ed7f4b221419f8
SSDEEP

98304:aY7Kg1IEZJ2BFvLx6uMSB/a6ZxiOCzDFUsBIq9PL1GUz22JKuMFgfTuDw:kgbybv98yC4i7Dysv9j1GY2EKFU6Dw

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3b1655a60a1329053a926983186967a0N
- Size
  
  4.5MB
- MD5
  
  3b1655a60a1329053a926983186967a0
- SHA1
  
  6d242bdcd7d8640956b08f1febb77b8633448f3b
- SHA256
  
  4e4b8234d3d3dbae0be13b2877eb20a57de08d86df8549bee9e562732b7ad5a7
- SHA512
  
  a42938ab170bcb2be1a98a32af9e67710be8345afa457f28923effa271326754eafb8861fcf82e0d0ed9364374559fa2456e16e9c595f79b11ed7f4b221419f8
- SSDEEP
  
  98304:aY7Kg1IEZJ2BFvLx6uMSB/a6ZxiOCzDFUsBIq9PL1GUz22JKuMFgfTuDw:kgbybv98yC4i7Dysv9j1GY2EKFU6Dw
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/LockedList.dll
- Size
  
  27KB
- MD5
  
  a1ac202541aeb73245d9caedca1c9577
- SHA1
  
  d30dc312d5394f5cde418560bb2e0b6e46f4f7d6
- SHA256
  
  7f150baffafedd777ae27ad7d9782f4e804653068053102e55c8438230e65868
- SHA512
  
  73e641317b7c16f4f3f8c2786897bac8891065b7f877af3c0892ba222ea4737679096cd9241e0225b85ceb8a1a3d6b9b7016ed016f83ca3d05a2aa33d6cc5913
- SSDEEP
  
  768:4yINiCg6KMSMfnYRLYpZjS17JShksxagf6qg:hxap6HhJSfxbZ
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  Uninstall.exe
- Size
  
  90KB
- MD5
  
  581743e2d7c9325f177189627c4cac5f
- SHA1
  
  460c2b8205c0bdab781dfda1ab0ec7ad5156a0a1
- SHA256
  
  5a6cf6f2d0417da3ea87a27119fa8f259d73f2dc5c7d46879c350b6ceb507bee
- SHA512
  
  f3a9ba05fc34239282e2085aef25ff76d03180cb2108bf00327a82682482e7306b5f21c367e6b3281d60d33b925b943e2d6355a4ae0772b079cedeaf88cdda35
- SSDEEP
  
  1536:ZpgpHzb9dZVX9fHMvG0D3XJSgdLeAyNxCCIG5bbE9nLwv/lcQ/l/uKVEF2HhfY3s:TgXdZt9P6D3XJSceAH9nLwvdkKV+SN
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral5 behavioral6
- Target
  
  mmcflasher.exe
- Size
  
  1.8MB
- MD5
  
  3822ef86ba551ffadc707515ff5039f3
- SHA1
  
  b92d84d47ba7a94898c170d737ce2979fff1a825
- SHA256
  
  9f51df85e6ace8e83f9d47fb0fb30741c14e6d4c7a890730d15e56894a435a4d
- SHA512
  
  19ea42ba6e03ca5658581d9300d489db52eea3ec9d1af7b0549f99570fcb02e4027398b0ead7f860fd0c7a7e9116d020ed8e36b34f0db6e9ef294bfb90abb50b
- SSDEEP
  
  24576:hUYD7ABTylztFRFTf7F6uoJLnY03kx/NyMFzkWDEx3QFCVZyZLlbBijgmGD3N/tS:hUYD7ATsZTffSY1Tkx3M5lbTd/Oiu
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  modules/module1.dll
- Size
  
  20KB
- MD5
  
  dd635a2397bd38d009e8af6e7d5dda72
- SHA1
  
  a3d76e14a04ce172e217d413426465d276780dc1
- SHA256
  
  c3b9462f467b3d9f8307dd8d887fbf0a3022cc65d588a959b22095bcb9a07a5c
- SHA512
  
  655c9ce904f1bbe056f7b653b98443450e04dc7921df98a60a705b9b5f5f48ea6dd4c6e8042b20f38d8a1a8755293c1954dda9a62ebe7aed732e5fd31711caba
- SSDEEP
  
  192:fnGm6pb3cUqMEvknFNb2VOlvXKCiR4CIH0Thmpevqes68diI+Y6uNkFH1+x2KCfg:dKXEc/Tlv/isUThmp5/5diI+QUHU2eT
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  modules/module10.dll
- Size
  
  15KB
- MD5
  
  119d25bb2e64053409db879281925564
- SHA1
  
  10ff2c44e248d5fa59e08213e15e0104fc6a2224
- SHA256
  
  46f4471b755c4d4dde5c208a8d4cd6f46201e2ba8fe4411702c1eb34f6b7e372
- SHA512
  
  31c320ff38e9bc8b81409f24dbf9529394f92659a0d9e8f34cb1727288745e789a23a805698d4d37db62827202fbb43b22458355ddb7e0768316d48f5ff1a5ca
- SSDEEP
  
  384:D18P/6bIeOIBijiPLbZ1uu3LTAQolF5KW2ST:D13IVOPLbv1XolF5B2
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  modules/module100.dll
- Size
  
  13KB
- MD5
  
  dcc187f6443661d745b6d580a94ff3ca
- SHA1
  
  4e676c0f3d47ef179356c203db86c892578d461d
- SHA256
  
  0c75236d826f6223eb09d8ca9c817a18a8392ef30176d8875d08c31339959b0b
- SHA512
  
  4344b18c8c4f487974d4afc1a0c31f4421d8483125cf236df166bd16a4ba6a6fee81018f2815ae8c1f7f2496fc855aba8db1a555aadb8fe5b3cbc330f6024fb7
- SSDEEP
  
  192:1vpvGmBX1PnfTCDfGu1iZjFe4VHeMa8ut9zF/9Esxm7qiNj:1vpvtXluDAZjFRVHfZo9x/9Es8P
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  modules/module101.dll
- Size
  
  39KB
- MD5
  
  cc320f419014aecbe693ffd0eaf7ae44
- SHA1
  
  b1f15b85cabd20455c6624b6bb6332db3f5f68c8
- SHA256
  
  517dbbd05203e0bbd965a202ec65a76ad836e48cee82b0ab9d565c82fb86b82c
- SHA512
  
  ac417cc48cbcd03928ac38c1450b65050ecb3eda1ba9427ce159678e94f3c2ddf4bb8612d8bf901930da20b76c47af8cf7184bced693daca48098688e0b3e976
- SSDEEP
  
  768:ooCpLG/h+IISCHUyOAYZyi0AFIXt4VpqUa39QPdljM4Pbg/13CvACXndGNm:ozXtQtvzZPbi1Cvym
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  modules/module103.dll
- Size
  
  16KB
- MD5
  
  dc2a90e9ea221aebfced96093893513d
- SHA1
  
  d87cc44d016a758b726533741931b05f34afb9a0
- SHA256
  
  44c219cab1534001b89bb39b5d1dc384b606a3579f609814e278f485594ca648
- SHA512
  
  1b60158bed9862b27ab039e8c86df697a2116dc1e304b9d34230b686af3770ecd6461f23fba3ee2105f8cd1fa373651da6305fc3770211dbff0fb74a2d92bdb6
- SSDEEP
  
  192:BE+7qG6sOV1Y5u7BBigJm6vcZuKKf7CTmxTfAn2JpbeWO8Z8f6sgtqCXSdI:BE+zWnvcZuvzSL2DblNaf7gaK
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  modules/module104.dll
- Size
  
  16KB
- MD5
  
  b5140e99a9165a19a6618866825bedaf
- SHA1
  
  1ec89c6f7b3d796b8e194d01af2966c38e8a1ef9
- SHA256
  
  56e45aa1b787bcc929297cf022306ddda5ab3bdbbfdacd3467bf8635069119e3
- SHA512
  
  181d95dcb3de549e600db31061737cc005bf4c183186c035a77d4b426df19ba5b35bfb38eb1a3b6059abd0841c2f0b66fbb8b3b619e37222039d0e37db04d6c5
- SSDEEP
  
  384:qJidMi9VO0uooduqyKjlVSu7qSGblNaf7gyv:qJqMCVO0uoodu5KlVSYqSMe
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  modules/module105.dll
- Size
  
  15KB
- MD5
  
  b60c439728928cadb538d4e90c5ad183
- SHA1
  
  9a478d50ac92ca0d82fd5062de3c449d98a76b9c
- SHA256
  
  34141233933bc1c547abd387f2a8d53a4283c313710c10171bb23b1337452390
- SHA512
  
  4f2d56ef731a0722aebbe64e3bdde6d21f462c6ec6511c53905253afc8190559fdbd5c7a927cc5ffecbfaa4a9bda05d2e480e8df120c5f91e43d0741d0a6f2f5
- SSDEEP
  
  192:rQPhU2UHEPXAUOGuFgahGoB6vflqsMmEjodp0sQV+e8q8NgoS0cJ6SRYzuD:rQPkHOC61qsdYo7vQovp6o7c9Yz2
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  modules/module106.dll
- Size
  
  15KB
- MD5
  
  4187399e7c8a54daa3cf74a17defe7fe
- SHA1
  
  3de2ab79104e355e6adc0d1f53316dbb06a7974d
- SHA256
  
  03ae7c3a6ae82357140ef7ff05141da59e23a3c1745fcb22051ba87aec379280
- SHA512
  
  cf8a84f226e44c8a7c6b3b4f68ac9217f247aee9a7bdf1f52297c10bfe214d256042d5cdc69af6ef6b1c09e36461b96d14eba026371f873cb4ad6690af8a827d
- SSDEEP
  
  384:CLIKfRCSHu2whdQ9HDBlWhqgIRV+RssCFFdSvzNHc4Qh:UIKfjHTcQFNQheD+aPdStW
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  modules/module11.dll
- Size
  
  13KB
- MD5
  
  ab9a6c254180390b5552d11329ca7ab4
- SHA1
  
  25d75bdd379bca3e6dfd8f44246398282e729652
- SHA256
  
  6531de6ae0114b3b0663f8ebd462e099d43aa875e0c1cbee151dda4c9ebac395
- SHA512
  
  0610dd897f7c35fb95b7f80297daa086672ba4cd603833a9df722adaa1797cc073656004a8e307ae38174b8c8145a97ed5551d3661ff5cea91e5afa854f70f29
- SSDEEP
  
  192:KJ6h3AHg+Srx9uKy2hoAq8d5AMzW+g8ZM9Oby6ajwB:KFA+3OoApd5tzqeM93q
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  modules/module12.dll
- Size
  
  35KB
- MD5
  
  1df29dd34a82e330b6cc89ec259058c3
- SHA1
  
  d743f2a4217c66fadbe6552754cd3bbbf9a98cf6
- SHA256
  
  df04ed9c2e8f00517621d600181a8421c9b18d093ac111a3dbade35d0f69040e
- SHA512
  
  62fdb21bca37a4a0cebbc7dfc8eaa0f197a6e0f85587363ab0fffcba6254656d37504b43a5fadac2f36073d4e58adb0400f54711542b4c111fbd57d7945f4546
- SSDEEP
  
  768:u2iDwkJ1/JDuVx3M8np8aNrWdCdDy1ma65Gr7Q3t+MgUxe:RiDwa/JKVx3M8nCaNCdCdeka6mQ3t+M
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  modules/module13.dll
- Size
  
  12KB
- MD5
  
  d1033c0380feca299f426230b9ce4148
- SHA1
  
  1909e5537743d7998fd151bd53da5446b7c5f795
- SHA256
  
  dce65aae626cb16dab83413c0a82870a25213835f7302de7208dd869304b0717
- SHA512
  
  7dfc0c5dbce33e7d40f22fc19d11006d3be3e414a5d3a71f98e8abb8ea7e138de20f505ea80617d4016514ae39b5a361836081fe231a917eb0b2e644f426b139
- SSDEEP
  
  192:OEzCa1afURmAZsKdbK8wiLa8SakXVPS3EVqivExjw:OEzvafvPcbTFZSamM3EMd
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  modules/module14.dll
- Size
  
  14KB
- MD5
  
  986b12303e9a60cd26b42fc6d512a121
- SHA1
  
  5efca1ae37fc88611e4f477d0c439b4d9f9808af
- SHA256
  
  cfcf35ff69b82026caa911d3efc3903eefa2b7321bbb29a415a7614777c0f36f
- SHA512
  
  cae497972ae9ae69d2c0c116247757b725d66801f82877c06d9be964cfb754f6178bff009a5155ac456f393221a7574eff65462453ffeb514500a031e80833f5
- SSDEEP
  
  192:4NHHOKILKR4cpTta3uE1q6Gq8d5AMzOC0QZ8p6by6O78KuzwB:kO9czta/1q6Gpd5tz6q8ph
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32