c3079e30f6dea0d321ad037c917d0e2bc01ed4e235774357d7b2320625235635 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

net8.0-windows.rar
Size

60KB
Sample

241001-b3vblayemf
MD5

5cb7420ffed9371d1737e246ceb796f3
SHA1

3d2124e13f8ffb8d1a79f43d02319f200fdd0d9b
SHA256

c3079e30f6dea0d321ad037c917d0e2bc01ed4e235774357d7b2320625235635
SHA512

46d567154ebadb4a7181e9b4a79f97e372395caac3e1956fd969029a74f0fb552bfd0936aa3f202667f76c9e7a628595dad5ce38f2bc87ec52b15caa8c6ff8dd
SSDEEP

1536:GMIbSx4uLyZy2Jd9PEBiKx2qfE65xSXZrfjzgjepCr/:dIbLu32rFEBiK8qsU0XFdu

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  RLTool.dll
- Size
  
  9KB
- MD5
  
  4c37fd57a7d7dff683f0a388bb939741
- SHA1
  
  55a05df8e4e854aab62ff33d999df176911711a5
- SHA256
  
  bc3c7797ea2487c6dea85429906d343f326590e01d9519d45beff03fc7351906
- SHA512
  
  9f92a5cb33ffa62f309c755cc1b3fe41753611d24c657fcb0d83632b7653220bb397cb6be9d5a4ca828fafc2099fb71a5c506b4cba630f7d0b7ab775c7f41785
- SSDEEP
  
  192:f6iWJzM19SR9/4NfuEFoXIzotusHUP5hy0GdDEF+C7N8QaKh:fqzM19SR14Nf5FtzoRuhyNdDe+C7VaK
Score

1^/10
behavioral1
- Target
  
  RLTool.exe
- Size
  
  135KB
- MD5
  
  d8dd178edd900a25706432da4168433c
- SHA1
  
  6f97a417179ddcec0a90eeee4dffd76aa2602537
- SHA256
  
  1e2b6bfb5d47fef87162614b2c6e5cecd46ce78a1d5cf7ea1744bc49dde8db5f
- SHA512
  
  6f4b1e2c6c35136899f552c127d992ba30d505ba20f0d5da73801d43d1b1c0a7eb4029a544f5f5eb46a350c7555d4e6c6be6c55db33c4c6a7363f827b68857d8
- SSDEEP
  
  3072:DjK4UGDHXrQ8hy7qgpHulWD9ZvZ5Pf3Ca10xuZ04ntfO6hBut:DjK4TDUqgpqWDLZ5H+xuZ04FhA
Score

8^/10

evasion
- Disables Task Manager via registry modification
  evasion
behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2