42dbaff628530a3fe1df9fbdfa96d301667d49cd6db162271691800cd2ce6da6

Sharing

Copy URL

Twitter E-mail

General

Target

net6.0-windows.zip
Size

4.1MB
Sample

240923-xykr9aybkq
MD5

f14a30575e4569f4d89204742e42d58d
SHA1

73c98715fc0fe004a6ced9d85f452bafda5d706e
SHA256

42dbaff628530a3fe1df9fbdfa96d301667d49cd6db162271691800cd2ce6da6
SHA512

217a1de78416d246186438f663b5bb10838525a4980b2cdc7481d285f6a554e656954264f1bc1aef2c537bf6c77655ede7a4138ecac232e791e446b66e0e821e
SSDEEP

98304:OO5Mo2K92asxLOL/V9J3c8WI7D+o+m/8rWcsLFQzxOU//m:VynksxL0v3c8WI7J+m2p9zhm

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  net6.0-windows/DotNetZip.dll
- Size
  
  247KB
- MD5
  
  319226c18dbc02d2ac4c0dd9dc116d53
- SHA1
  
  4ef827ec4c51cf2845e3a50fc23700177a4930f8
- SHA256
  
  eb9b84a3df6ae51759544ba04224a4f91454b8a81d54b37c846a4216bc72c15e
- SHA512
  
  dcb2b6e9e1f820472e96cd3e649cc696948d02545c141c483234aab98706c0d19051fcafafc14a928b6b2937125c61db3c49cdc45181e809d73df73f7db3cfbc
- SSDEEP
  
  6144:L5V1a8gCaIAaLPaiUoQhdTC015tRuAKObQ:rsmaIrPaikhvftA9OE
Score

1^/10
behavioral1 behavioral2
- Target
  
  net6.0-windows/Downloader.dll
- Size
  
  88KB
- MD5
  
  d991db16b82d477daef0e03fc197843f
- SHA1
  
  aa77133586913562dca77a0dfee760db3b8ccc18
- SHA256
  
  22b79d333e1e531f1f98bd006d3c25774e25de7d99f933f368862fcd1a637176
- SHA512
  
  6633ad93e87cbef924af669477f0a83a701a07eabe686d24929da5f79abb3f1b7f59be7895eeb1be4636ab96dc97dcf51d8c413594ac061a9a28eaf9e287befc
- SSDEEP
  
  1536:DF6ToxNi7nAmcZmfVOi0wX1Wtm7nw5S4fWJ1aH1oQMlj2Cre+495ux5Sxq3O:DF6cTZmfVwwX1Wtm7nsS4fWJ1aH11G1O
Score

1^/10
behavioral3 behavioral4
- Target
  
  net6.0-windows/MaterialDesignColors.dll
- Size
  
  296KB
- MD5
  
  6070d2f982e115825fa959bcce076736
- SHA1
  
  7dc275af8286f343b2d4a7ddd5bb1b0100e2452b
- SHA256
  
  c5445ad0a687fa61bda02cd45baac1cfbbad31b6b56529eb9cf47510bae84625
- SHA512
  
  7a65dccaf2c4c2ca83b21ac5580b738fb69e3033908515a267a6028c6996ee06e4bf34502cfb3e5c5432d53d12a161bc9445c417d7cd251c1c25792f5a324a2f
- SSDEEP
  
  1536:K7CxEa6JpuYy9kzN4RUB/yCURKR19I4xRU7fKoVxbzQ3V:Rwp4RUB/pVg7fKoVxbGV
Score

1^/10
behavioral5 behavioral6
- Target
  
  net6.0-windows/MaterialDesignThemes.Wpf.dll
- Size
  
  9.1MB
- MD5
  
  b40f2ba6b15f934af84327df0a9ee698
- SHA1
  
  666de7ba77270790d72fdf56702539ca085ff959
- SHA256
  
  26119c12ef6b50ad534faea76411af4eec9bc77ecfd2bb1e17c374b60e6f8856
- SHA512
  
  02cb24be8f5f464e9de3961eeb93a0da177524cb1963e5487176c626886d817c26c1d18b20267dcc4feeb6b5b04b74d4c5aeb3d5701e572efa73da5b9ca3a051
- SSDEEP
  
  98304:b3shRXJDntBksKY+ND3WyA4+TLVei10vMzPv8/4C8B5XVS49Xzy83IiEcJMrCR23:b3shDnJ45/9iD54+V11bFv4z
Score

1^/10
behavioral7 behavioral8
- Target
  
  net6.0-windows/Microsoft.Xaml.Behaviors.dll
- Size
  
  141KB
- MD5
  
  72f8adb8af71cf55ae3fa13afc72e877
- SHA1
  
  620b3c526997ae0d07171f14555ed22d58ee3639
- SHA256
  
  8f782ad7adfdeeaa933183065aa7a0be9387abce6038e912455e78527b04adca
- SHA512
  
  c0d73400b9e55952c1a70b844bdf3fecdd8fc55e3a9920c7f9a30e8def372422dadb2bb716570769037bae98d930c6bd50226f3ba3c255b823edbd67bc429c63
- SSDEEP
  
  3072:wXQg6pDJRt4vs+uWRx8kt1dLXTiGmad5rUj9yV:OQD1JRtiWfGTV
Score

1^/10
behavioral10 behavioral9
- Target
  
  net6.0-windows/ModernMessageBoxLib.dll
- Size
  
  42KB
- MD5
  
  0aa73d0a0ebe2cd34c66273b03bd3016
- SHA1
  
  0ef74578b721c66d6349ca2772f26630d250a781
- SHA256
  
  b0b2d80c19e9baa141e6e5ef41f07c50e4c611b25f102b586fb0ebe89e65c074
- SHA512
  
  ec1b0243690a3cf7362cd54a579d83b9e1ba4240f0a98e1cd1390060b643829a66431ebcacc604163e8569726f5e6e7f0c60a83dee24e1fec35444636ada63f2
- SSDEEP
  
  768:nUF+J514IvfsmUGf+4th80sw8ANM2fcfN0/FuPCzuh6fvq:TJ5uwfso+4th80swF9EK7G6K
Score

1^/10
behavioral11 behavioral12
- Target
  
  net6.0-windows/Newtonsoft.Json.Bson.dll
- Size
  
  95KB
- MD5
  
  46944e52dbb2982ea49a297902b91ea8
- SHA1
  
  0ed43a73f49e0df7b2fa681a627cad7e25074165
- SHA256
  
  f3c56166d7f90296bbe6b03f64335623c3165ed25948288f1f316fa74dd8327f
- SHA512
  
  7cee82d78afa41f343f839a057b327070b1fafd61ae521905271de635ba3291fd6f14fa6225d71c47de8b6748433e9a2010e6c53d28b0e57899c759cfc1e6d15
- SSDEEP
  
  1536:pLYHa6RMWseWPKMF5us3wuhZrGpeZknuNvAY1MYgI518gcabQN4Fw/rKIWK+2Gi:qNWHss3Dupe2/gMYgI6aQNoKN
Score

1^/10
behavioral13 behavioral14
- Target
  
  net6.0-windows/Newtonsoft.Json.dll
- Size
  
  679KB
- MD5
  
  916d32b899f1bc23b209648d007b99fd
- SHA1
  
  e3673d05d46f29e68241d4536bddf18cdd0a913d
- SHA256
  
  72cf291d4bab0edd08a9b07c6173e1e7ad1abb7ab727fd7044bf6305d7515661
- SHA512
  
  60bd2693daa42637f8ae6d6460c3013c87f46f28e9b0dbf9d7f6764703b904a7c8c22e30b4ba13f1f23f6cbee7d9640ee3821c48110e67440f237c2bb2ee5eb6
- SSDEEP
  
  12288:1eos/POdGV5jfWrV/9Yeh9eRcyLfLYtT5mWxTZ/B7jW5JMtRRpKzQk:10/POdGV5jfW5VnhFyvOB7jW5JMty
Score

1^/10
behavioral15 behavioral16
- Target
  
  net6.0-windows/System.CodeDom.dll
- Size
  
  181KB
- MD5
  
  f2d3cdce9b1f1461301ad5413e971cfb
- SHA1
  
  79bd9d892086e1a0c31cb709d1c17b4f9181ff64
- SHA256
  
  e58b1961cc1cafc9bbec52d071fc121809e3501318e0ff5650b5763f24589abe
- SHA512
  
  4e08c2b7a27a090a04881ef45cecb42bdcba93a6a406e7aa1f107a3940654e0770f26fefaf160c0918eae0941853297d16a4af81496e9957a03a7546d19a413e
- SSDEEP
  
  3072:/FwTReF4nCJUpXr4bdhpPtx0lLXbHEPY3H+lm5q6h1pYnW:NuAaMcrEg3Km5JVF
Score

1^/10
behavioral17 behavioral18
- Target
  
  net6.0-windows/System.Management.dll
- Size
  
  72KB
- MD5
  
  e4c811e494052eb8083bfa815f8d9fcb
- SHA1
  
  5d337234475d09c7baaffaa115ae0459513b2fea
- SHA256
  
  36b6cc2ab9e109ab0af5775fe6da31cfa37c7f603e175c7ac30bc3de0943c356
- SHA512
  
  b63254a1b5c8de359e06d58a2b9a7b378f7ce3b1b76abc0b7c1e011b736feb53d1189b44ed8350b0e75e44f80cd785c46e8587a6cc4a6a412fc32513dc7ce861
- SSDEEP
  
  768:/geje4pUlvhlln9mKV2CgJls7jnuyTHcVL9gh6lkiSLJKdbYNk/i/79zz:/g94p+1a5HarcHgh6lxS9ycNki/Rzz
Score

1^/10
behavioral19 behavioral20
- Target
  
  net6.0-windows/System.Net.Http.Formatting.dll
- Size
  
  184KB
- MD5
  
  990ca2747828d99d3ef281ea4faf88cd
- SHA1
  
  dd669006be2931c340e77e37ecbc741bbf41a724
- SHA256
  
  61fb9dfd0bf26b6a5be8a2aac62611c0034330fad2fac7ab112a146129f125d1
- SHA512
  
  5cc249f23f2fc32bd3d1301b31b7fd6231f01c04f22554d5933757b2b8d51e2f3383c6c9b1198940c60df6be8f1a85f1ddf44a8343d13e7a321002dc76dd3952
- SSDEEP
  
  3072:JxvX0/RNWMBH2sL/90yjRaKjv7KSzTjaFM/aRao5d/8TVYT7Y2I+4fmpYw432k:rvX0/RYMBWErj4O7K+aWKH/8mT7Y2I+k
Score

1^/10
behavioral21 behavioral22
- Target
  
  net6.0-windows/XillyService.dll
- Size
  
  687KB
- MD5
  
  bd618cc6b4131314388a61d9ed207daf
- SHA1
  
  fbed050cb1b584489e48882337ce277b5dfbc339
- SHA256
  
  e33f8b1c0d3b8003a2c0b726bb71cc78a8ac3aae4bf1312761542c9f77003996
- SHA512
  
  f14158f7b7b26eb9694b4b600b458400b9d03eb7b6be0ca708e656a7e324657a7ea8bba6e7335b1244ee63bfef38d09db273b693cbbd67e4619715bafea7d247
- SSDEEP
  
  6144:u1Z4vb9hBPR5VCkump/siAAJ2kuH0l9Vh6p1fVhBR55ME3q:u16bhR/HumpaAJTuH0liZVn57a
Score

1^/10
behavioral23 behavioral24
- Target
  
  net6.0-windows/XillyService.exe
- Size
  
  335KB
- MD5
  
  7c3955ae2b23aaf2543269b0d1f3287f
- SHA1
  
  5a744663e37775409c810dfd3d9cc5208eb147f6
- SHA256
  
  3f5a57593e3c0f8ad4b04f2ac2ffe8b093494d5cec260d18e87daf1e1f583fab
- SHA512
  
  8345237f012b6fe357e71da2d72ad2cb2626cb4235c35ba96f64531245810147b2cc43d3e630e32cb076d82e5e41b3023ad6393b557faddbf82c19fb88d589a1
- SSDEEP
  
  6144:MA4NCmBPry/N2dOOAJNahOpUfnhB055MEbq:MhNAl2sronnU7+
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  net6.0-windows/runtimes/win/lib/net6.0/System.Management.dll
- Size
  
  304KB
- MD5
  
  a9d07609f161c1b90ab5ac4f4d11569e
- SHA1
  
  458b9a6ddf85a5f5c8a96de4eb416b5e737bf77e
- SHA256
  
  fff7c1e9f12a99c2c52a6c0ae81075be78dbef7dbc4f1162164990b4ccf6eadd
- SHA512
  
  811bbc018352e144afd2c8ba5d10a379ca058bbcea553431544ac747c654d5d21e3359aca024b26c192d3e6639682a601a173f1624a8e8052539a22caa884fa6
- SSDEEP
  
  3072:KgHBEFyIHS/PsfxJj7TgQq3XZbIkE1HhnDQ/NpydzhI0SFpkFUNygucwycrSB9v5:REHS/PsfzLZ0/DyDnQVVvcA
Score

3^/10

discovery
behavioral27 behavioral28

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

System Time Discovery

T1124

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28