0ef61150ff90729dce4f9b5efba46dd318643beba3d03a6e35db04e171454edb

Sharing

Copy URL

Twitter E-mail

General

Target

Siteoverloader.zip
Size

881KB
Sample

240920-jnxgeawemr
MD5

369512272cf0c992b4cea3d12cf12bb5
SHA1

a2a89c68c4d0ea9ac05c3d71688cd25df0ea7163
SHA256

0ef61150ff90729dce4f9b5efba46dd318643beba3d03a6e35db04e171454edb
SHA512

c5c645746ae2f3cbb1fc3b53f47d81ce27008d9551fc84bd46263f784813cfe205b6503080282356e40a8f3110e6151dce07830ec367e9ce8b53ebcc2f5e8e7d
SSDEEP

12288:uSZGkc0tgME1kM6WC7A3BUY4hGwhfzGzFtT6igXRI8KMvbenAKbFl0IlexpF:uSkoWwA3WhLEz3iIUNGMF

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  net7.0-windows7.0\HtmlAgilityPack.dll
- Size
  
  161KB
- MD5
  
  2076af7ba65ad5c78ed01da2b62b668b
- SHA1
  
  79e99ccb91cd1bac2e7f1473fb28bae1a993fde2
- SHA256
  
  d9a13e2b8b53fa9f2f7f8d8fda032e8b0435734d62c578ab0d5c94cab3280e20
- SHA512
  
  e30da6ec1e13f5ff9189a623d6a7d8cdb14e7878d0b3e88177a4dcd14c4e89c490fb0194de5eda31f8b03b03b7eff1a71e1e09f1d693cb5dea92850866207435
- SSDEEP
  
  3072:HHK6tlxjf0meYRjSGT3z7kVT5UM3xbLQxZ2bYCFbZef1B:nL0m1RzIVW1e6
Score

1^/10
behavioral1 behavioral2
- Target
  
  net7.0-windows7.0\Microsoft.Bcl.AsyncInterfaces.dll
- Size
  
  14KB
- MD5
  
  2d270ddbca547ab26b5be6e16e4825d7
- SHA1
  
  206852b9b8a1a26524446b6b8b820890885fca03
- SHA256
  
  3815a1da8afeda653a7a5c2a3df98bef61416552a5d96cd32782ff22b29e5cce
- SHA512
  
  17cfcacc46234cd4f232f03cb06c5febe34eecc26e1678d052f6538b4c123962a6bcb5ad633f473fc434d5e49aad8d6ee14a747c9708c5640513116367cfbff1
- SSDEEP
  
  192:9YJuPEO07xuWepAoWvW65FdQHnhWgN7aQWCGw4ZLqnajVxyA/ZYY:6k8O070WepAoWpQHRN7nGw6lxA0ZT
Score

1^/10
behavioral3 behavioral4
- Target
  
  net7.0-windows7.0\Microsoft.Extensions.DependencyInjection.Abstractions.dll
- Size
  
  35KB
- MD5
  
  6f3cca084046a16c91f64953bd6ae66c
- SHA1
  
  70ed8ee6630e547125267dfb19fd2b14a0875ea6
- SHA256
  
  e51f1960c60e65c1e28869f5a296896803f24346580d49bdcadfe63ba46499ae
- SHA512
  
  b7d3cb5798e8069ff72b451a8e03e3f31ea67455dab9c14369e4f616b8dd5cd53242994a66cb58c7fd2d478380eeb79360f421816f6d2c1aa1808d4ac19c1a5d
- SSDEEP
  
  384:RQA/eoV+UgVStJIXvnnXdh1+w9QtUd6mcUlE+DUoiwjQTzW4FLWzxT4bHRN7qzlG:R5+lVUwDMwOtGb7D+wEzM6bqJgf
Score

1^/10
behavioral5 behavioral6
- Target
  
  net7.0-windows7.0\Microsoft.Extensions.Logging.Abstractions.dll
- Size
  
  45KB
- MD5
  
  7e5a955a4ca2820c81ecfeb297a2be2c
- SHA1
  
  6e0b5eece834578b2ea108ebc3ed54cedf011e72
- SHA256
  
  b02305fd63abc381469621c201dcddcd3753e9318ebeced07f97d85d35eb4766
- SHA512
  
  8010cde1c82f887c0676b100eef79c2ad602d1b69323cfd8eec62bae0b248bdb84ad521300883dd396e6a1287fb92a4e1d78fa8515fa3637db0174ed175b5d1c
- SSDEEP
  
  768:koFUO5ecaTF8ecfF4rFqbzfU00fU00fU00fU00fU00fU00BMOrJuzXnunenBnn8N:kvO5paT2HfGFqW8ZXM0TBh48ZAu
Score

1^/10
behavioral7 behavioral8
- Target
  
  net7.0-windows7.0\Microsoft.Extensions.Logging.dll
- Size
  
  29KB
- MD5
  
  46a1e9396428eabcc8bdb08fe38a9276
- SHA1
  
  8d041480b1d1370fc87adcfff86bfc5c0e967ab6
- SHA256
  
  1da5e303956930643d60c6ef0beadd5b35be592586047c950f94d4162f62648b
- SHA512
  
  b7c0afbbd499e1232931d9a34331b7655f11f22c460fd8f084bea4b583fdb87c1564fdbe681b12c7705124b62cc8fa12a5e09b87edd8ccbf857bd7d719f60037
- SSDEEP
  
  384:eCsvsKZd5SVPiYECCCCCyOvtWkFjHili+9ebrjdpqxWzW17VWtaQHRN76lAIMdZ+:kxSVP3ECCCCCysRLYebXzqT8LjJrXy
Score

1^/10
behavioral10 behavioral9
- Target
  
  net7.0-windows7.0\Microsoft.Extensions.Options.dll
- Size
  
  25KB
- MD5
  
  bac3f89e16527db0a946245ad4a9f6b7
- SHA1
  
  59e72f7cdcda5807ff710389ee4a5ac5f6231373
- SHA256
  
  63282f3f43a095ba95b6e8f691742667ec79f04055177c43ec6980cee353c93c
- SHA512
  
  f422183b59276295181cd6ba44d66be199ec9943fe3e9bcf6c7508a8cc2911fd538fd5930b7f608466cabf009b9ad7118a9e550d369bfd39d774c41b0ff9e9f1
- SSDEEP
  
  384:dkxEF546bW7uCov/J3B6PtgZ2GdGY+xT2akzW1rGWYaQHRN7+5lDCAj:Ga7bW7uCI3wPtfLtgL+Pr
Score

1^/10
behavioral11 behavioral12
- Target
  
  net7.0-windows7.0\Microsoft.Extensions.Primitives.dll
- Size
  
  32KB
- MD5
  
  b5c71bed0a0cc2db2aa02445a4afa774
- SHA1
  
  b6606f6beb39a2f1645e20996307c21db1c569fa
- SHA256
  
  e0e19377694a527c7bf905cf574e96fb6fd1f5676771d5f7f9fe2d8510ebfd60
- SHA512
  
  643c86fa72975fe9e5a8df23a72432544046c8964b2d561edb517010eca897a3a48edfae7c727f8f534a2f7dac7df3c963ebd7049c218a349805fdbe069c86cf
- SSDEEP
  
  384:AAu2JvtaxhlsKfr7/uYY916mngknYWofFWplVXkYAyj/LDrTMyMR2lj/Jubi3Zpo:tbcxhS0r7/RpWpURMLZ01E+mi6blxTS7
Score

1^/10
behavioral13 behavioral14
- Target
  
  net7.0-windows7.0\Newtonsoft.Json.dll
- Size
  
  679KB
- MD5
  
  916d32b899f1bc23b209648d007b99fd
- SHA1
  
  e3673d05d46f29e68241d4536bddf18cdd0a913d
- SHA256
  
  72cf291d4bab0edd08a9b07c6173e1e7ad1abb7ab727fd7044bf6305d7515661
- SHA512
  
  60bd2693daa42637f8ae6d6460c3013c87f46f28e9b0dbf9d7f6764703b904a7c8c22e30b4ba13f1f23f6cbee7d9640ee3821c48110e67440f237c2bb2ee5eb6
- SSDEEP
  
  12288:1eos/POdGV5jfWrV/9Yeh9eRcyLfLYtT5mWxTZ/B7jW5JMtRRpKzQk:10/POdGV5jfW5VnhFyvOB7jW5JMty
Score

1^/10
behavioral15 behavioral16
- Target
  
  net7.0-windows7.0\PuppeteerSharp.dll
- Size
  
  946KB
- MD5
  
  31379ea0931b88565e486f5a6c0d649e
- SHA1
  
  fa127704e6eda55032f4f56b66dea42ec1a349ea
- SHA256
  
  175781dd8fdc0729d0dd6da6b4962eab03808ff6766669223eaee243fd87acce
- SHA512
  
  dbfd9a1c928942eeb68991bdcb907e58dc9000e02f1e0e826d15dd1523d9f258b9c10c8636cc01914850586c7c8504812cffe6a1d1b3885d1707fedc621b790c
- SSDEEP
  
  24576:2Cc9hMr6DMvsYkO4NRiJQaFvnpwXMY44cpeH:2CccOPXMYh8s
Score

1^/10
behavioral17 behavioral18
- Target
  
  net7.0-windows7.0\SiteCrawlerAdvance.dll
- Size
  
  28KB
- MD5
  
  3dab23043d66c4f29729226e0f6c6d1d
- SHA1
  
  d2bfca0632f82eb57543fcbb217457d1f74334ad
- SHA256
  
  a71e0ea1f06c0ecddc6ebecac11b6aab617e522039f183ee0732e70214a6f273
- SHA512
  
  0215761243014a0e460a6b8f8990493f63b16af4b5c34d17cbfcd1b91c45152f6a753a5743884535c6db5faf55f18c80e472ef2815739aa97cb15d515b542551
- SSDEEP
  
  384:68aSuXpoHVd3nphoTMl3QteP/3Wg6Av+joiMEpH6Ev2mGvOirnZNQ0LoFPNxzeVD:68aSHHzYoiMsh9Gv5jLHVfP3
Score

1^/10
behavioral19 behavioral20
- Target
  
  net7.0-windows7.0\SiteCrawlerAdvance.exe
- Size
  
  154KB
- MD5
  
  9e5754b3a1c4a488b071831b9db591d6
- SHA1
  
  b4cda627870a0d5f911e59a97b0c0fde374860d5
- SHA256
  
  9c257c4306919f42aef62930ec2a187ac0719f3de28d3108b50a984fffca0eaf
- SHA512
  
  e673fce497d2b913596f10bf22e5e229415dcd727cfe34b1757935bb2994ee413ead36afa0e9737c06075c5f8a2498b592fd8ee392816470b089667e7bd5bc4b
- SSDEEP
  
  3072:07LW6Pr46prwG2k5GlI1JWE9QVsxyvJyn4NTfQf1VZlGWhr7:0XWJ5kICW3Jyn4if1VZAi
Score

3^/10

discovery
behavioral21 behavioral22

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

System Time Discovery

T1124

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22