21c3a8ea04dee6c73bb11f5866a13cd5a2910cdcc261a81c6ca6ebdd0db80b60 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

CRXRAY.rar
Size

1.4MB
Sample

240929-wdy9gaxejh
MD5

360b7d12580e76d08423b59c2f89e841
SHA1

82511c37b55330a0252b30305a9014f798d4e1b0
SHA256

21c3a8ea04dee6c73bb11f5866a13cd5a2910cdcc261a81c6ca6ebdd0db80b60
SHA512

e6c84ae6a44eb3294be53856282e1b89815efac04a7cfb344d71b116df761b23e9f460f265e5ac7449e3ce5b146b2400b8d9471134bbcc1fe405058dacd129ef
SSDEEP

24576:yPXJjq/ynwb/q9eDXisdHbfvwIdWHUg2Rs87Lxvct/fdKGJbsbemRcbxNhRE:yPZGanfYDHdHwHUVy8fR2ieDfE

Score

6^/10

Malware Config

Targets

- Target
  
  CRXRAY/Xrayesp.dll
- Size
  
  538KB
- MD5
  
  0cc696d638acc535bfc691e17108f35f
- SHA1
  
  9914435ad3ddf503fed6ab30e10894a2e4119df9
- SHA256
  
  81d47657f414c0db9e9422afaf77e47a95d8cab9108baab7371d7b909d5d53a9
- SHA512
  
  7f06f1f2156527710f789d310f1c3e7296410a0f17faf57240208ea880fe2b39cf83a22d54d725efaf4fa7f3bc8c035753c9d25b9d83fd0e9ef197189182ca7d
- SSDEEP
  
  12288:SOSC/W7bhqi5ByyvaxHrxf60CMOuoVd+:SK/W7bhqi5BMHrxf60Cbuu
Score

1^/10
behavioral1 behavioral2
- Target
  
  CRXRAY/injector.exe
- Size
  
  1.9MB
- MD5
  
  ec801a7d4b72a288ec6c207bb9ff0131
- SHA1
  
  32eec2ae1f9e201516fa7fcdc16c4928f7997561
- SHA256
  
  b65f40618f584303ca0bcf9b5f88c233cc4237699c0c4bf40ba8facbe8195a46
- SHA512
  
  a07dd5e8241de73ce65ff8d74acef4942b85fc45cf6a7baafd3c0f9d330b08e7412f2023ba667e99b40e732a65e8fb4389f7fe73c7b6256ca71e63afe46cdcac
- SSDEEP
  
  49152:NNEVtO1U1y1DDDDDD7Llngq7NNMqU0p2Vhk9a:NNEVJyZlng4p2V
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4