837ec0e9287fcb56331695971c618ce18f14dff0107ccd5749bd51c75bccc6d6

Sharing

Copy URL

Twitter E-mail

General

Target

Rift-2.2.1.0.zip
Size

7.3MB
Sample

241002-xvscxssbnk
MD5

fc332b7d4d15da6be0615be37e280789
SHA1

5e93ce41c14a784734c381ca49385a2c57130995
SHA256

837ec0e9287fcb56331695971c618ce18f14dff0107ccd5749bd51c75bccc6d6
SHA512

962ab673d36d3e3856fd3ec5de3671eeb9c11039e34d988b98765d42f6b75ab460ee83ad32d6bd39e21ecb01b6a0758caca19956a7a33543e25810497ddaea27
SSDEEP

196608:PwGDaaZl64V695I+yJWwbKgeX90am24lT18kR87C:P6aX6g69GJ1wUZl5R8e

Score

7^/10

Malware Config

Targets

- Target
  
  Microsoft.Toolkit.Uwp.Notifications.dll
- Size
  
  140KB
- MD5
  
  5eaff1a4fbf02eee4dcca8a83b8aee3a
- SHA1
  
  5a049498520d69b38d8f2aedc152a81134ae51a1
- SHA256
  
  865de778f7884dad42e9746cf8de5600836151b2dfa7b836281c354a3db2820f
- SHA512
  
  45fa96c6a4f789a3afc8d8fc66afdef0c6473042bcf860ff4ba437ba10571d5b949be3967b47359c6ad5e624240ce071b6f313539ee9b9f26c814dae8590c047
- SSDEEP
  
  3072:J9Et3TIuTM0ijrzTaS+wOjM1eYLjB1+Qx7Obi:bO3Tszl+DM1NLjB1+Qx
Score

1^/10
behavioral1
- Target
  
  Microsoft.Web.WebView2.Core.dll
- Size
  
  118KB
- MD5
  
  6d00e2fb7e62f152aac2a358abd1eac8
- SHA1
  
  2502077ef1dd214711b7e0a6db23c2df33fa4e62
- SHA256
  
  d727cc9f7cab7aa841cf869dfe58febd2c9d48cfe0c06728d87a3a9887e97aa0
- SHA512
  
  ef70094725cb90bfa4575488b69922cac195261489aa4167c42075841aff3ce6326a79c3630311c3701f2f2936b41cd071123bac711687de9a94d1fb76cd79f7
- SSDEEP
  
  3072:TGm0fMRvGrBMuy1SuNlIa+WkZ9amDCbvmhYzN+N9OJ0uJFUcK7BRxt7Tlrdou21r:d0DBMuy1SuTIa+WkZ9amDCbvmhYzN+NE
Score

1^/10
behavioral2
- Target
  
  Microsoft.Web.WebView2.WinForms.dll
- Size
  
  26KB
- MD5
  
  c82a38f2adaab1272a02e7de79539749
- SHA1
  
  60c9fd0ac555b8c888eab0e7410169d39bf2ffc4
- SHA256
  
  bae99d5352d13a99b0624e68a644f15dc150f52aded49fe9b6f4a96469e74098
- SHA512
  
  a4cba9ce8c342384a55abbe0065327e316a977a13a81a2aecb39c5cfaec72e8403eed8f9c383fc9aaf4a84b5bb0742e74231c4756f4c63c70b77beb14e75e440
- SSDEEP
  
  768:M44o+v/xXxaVCbzt2ZDDcULHhrwWSZXu59+Ja5Zi/dRCfIgzMe6wU:M44o4BHvt2ZDDcULHhrwWSZXuD+Ja5Zy
Score

1^/10
behavioral3
- Target
  
  Microsoft.Web.WebView2.Wpf.dll
- Size
  
  29KB
- MD5
  
  11e643ccea8ff624ce4b043a83c41931
- SHA1
  
  e9e982339dd2570c552b9a5335a844ca799854b1
- SHA256
  
  d77266c0661c5cbd75a053cf53de8013d3119d7956ff2e67dce5db356f7827a5
- SHA512
  
  948709d82ee0ebfe46626affe3fcd37ad8ec38a744841dad3ef3d93657ae64c5fba8513d3759025418d1e8ab3a9487edb9b00d2a744ddae3fe5d28f55f31de57
- SSDEEP
  
  768:fBc7Lzcdyicp82DPLryER0SOhrTYTFUJDkS/Ka5Bi/t7v4F4fkzsFaZzM3Y:fmXzBrp82DPLryER0SOhrTYTFUJDkS/3
Score

1^/10
behavioral4
- Target
  
  Microsoft.WindowsAPICodePack.Shell.dll
- Size
  
  501KB
- MD5
  
  1b21df01ef007434ca92ef3149580af8
- SHA1
  
  1e47a4bb685afbb84129665d47b5fef89f6ce662
- SHA256
  
  567d1afab390852429dd0c34ee5e8824d8eeca9c171898f7ca94e002ffac4247
- SHA512
  
  9ef20a264a59d02af4d082975d1599b443baf8f3e42354da9951f8d28ef1b375435cea16e0ee2d2a22eb7f62bc8058143a9334e9687e38358110d59d3653796b
- SSDEEP
  
  6144:7JBwN3xhQrLnj0YVFJ5EoTBjkvupVeWQXh1uVjBtw8q/RcIEggbtE7T7pY8f++R:7DQYOoTJbQXh1E1Et
Score

1^/10
behavioral5
- Target
  
  Microsoft.WindowsAPICodePack.dll
- Size
  
  101KB
- MD5
  
  a176427d6f2c2e537dadf5cfcc86bf40
- SHA1
  
  7daf14ac08a053d1cd58cfea1d43dc24fb59f641
- SHA256
  
  0d6d0daf607fb8222fbd5129ffe41bebdc570ad7a1ed1cb10f548f35e9909c56
- SHA512
  
  12d94746d9ebfeda808fe3ad24a5fa303b7348b76e56366d3a259f7e3f8096cdcb44ad322414a013cb450da5203b1f0673e2939b76f753de7655b5f622bf2972
- SSDEEP
  
  3072:wC4ZInw4ZevMV7IAXGCR9HMcPcwTQFfxorliIz9/iq:wlIZevMZITCRpPcwC
Score

1^/10
behavioral6
- Target
  
  Newtonsoft.Json.Bson.dll
- Size
  
  95KB
- MD5
  
  46944e52dbb2982ea49a297902b91ea8
- SHA1
  
  0ed43a73f49e0df7b2fa681a627cad7e25074165
- SHA256
  
  f3c56166d7f90296bbe6b03f64335623c3165ed25948288f1f316fa74dd8327f
- SHA512
  
  7cee82d78afa41f343f839a057b327070b1fafd61ae521905271de635ba3291fd6f14fa6225d71c47de8b6748433e9a2010e6c53d28b0e57899c759cfc1e6d15
- SSDEEP
  
  1536:pLYHa6RMWseWPKMF5us3wuhZrGpeZknuNvAY1MYgI518gcabQN4Fw/rKIWK+2Gi:qNWHss3Dupe2/gMYgI6aQNoKN
Score

1^/10
behavioral7
- Target
  
  Newtonsoft.Json.dll
- Size
  
  679KB
- MD5
  
  916d32b899f1bc23b209648d007b99fd
- SHA1
  
  e3673d05d46f29e68241d4536bddf18cdd0a913d
- SHA256
  
  72cf291d4bab0edd08a9b07c6173e1e7ad1abb7ab727fd7044bf6305d7515661
- SHA512
  
  60bd2693daa42637f8ae6d6460c3013c87f46f28e9b0dbf9d7f6764703b904a7c8c22e30b4ba13f1f23f6cbee7d9640ee3821c48110e67440f237c2bb2ee5eb6
- SSDEEP
  
  12288:1eos/POdGV5jfWrV/9Yeh9eRcyLfLYtT5mWxTZ/B7jW5JMtRRpKzQk:10/POdGV5jfW5VnhFyvOB7jW5JMty
Score

1^/10
behavioral8
- Target
  
  Rift.dll
- Size
  
  391KB
- MD5
  
  84e2177359dc88269301a91c81eeeea5
- SHA1
  
  5e46632e20df07ddd47febcc47a7a41194861d6a
- SHA256
  
  c67b30b311dbfe5a816b3192c4cc77a93805fa7f6f8a82794fc36578bf93d1dc
- SHA512
  
  1075ee0400393674c9288bfaea0b6d4420db43fe8151a3095e5ad9389fa4adc7c458d94c2cff685440d23c3ea97b22b63a73e8196e8bb5141f8e88fc2d566017
- SSDEEP
  
  3072:rYs/JYI9MQsiuCsoAhwcNnxl9SiOv/la9VZ8t9rdA1+Qb1pVqI4Yf:rYs/JYI9oiuhoAhrl9hYx
Score

1^/10
behavioral9
- Target
  
  Rift.exe
- Size
  
  279KB
- MD5
  
  53079cfec7e72232789416f1adb5e41e
- SHA1
  
  7f9099600f8bd745cf020a93ae3c4b9278624a8e
- SHA256
  
  9b2661b1eefc555a5ccacc9eef7285d3fe288e71d75351eb2e7b4f4fcba9b945
- SHA512
  
  e752de02a5b8be11dd243c9eed341247b0a3302b42371a6e51932c64855dcc428e2ffd2076b9a7faa798c6544884576b0df23b82784d09f5b9f0479bd47624ba
- SSDEEP
  
  3072:D6eSqsywT/IiODn5Ikt8pKO9WpheWyutIRMQc59uxmZx:DLDn5I7p8hen2n
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops desktop.ini file(s)
- Network Service Discovery
  Attempt to gather information on host's network.
  discovery
behavioral10
- Target
  
  SharpVectors.Converters.Wpf.dll
- Size
  
  125KB
- MD5
  
  173b2e2a6d822c82bda057bbc1faefdb
- SHA1
  
  1507cf0de34b0880fd7b3ac02d2d81b8135dec58
- SHA256
  
  dd4ff7e65dd824703a0eb25699f432bfcf25460629215ffa277241981a2f7711
- SHA512
  
  a1516f94e29405e55b5da2c9eb1d4caeedef0b11080bb7f9303dbc9032b151a62b8f5bf2390a6bd37738c94a5f3b9fc0dbdbe42a3e15d8aa1ed43063e1701d01
- SSDEEP
  
  3072:WGwfOAfXsntRB6LXxvnfhKjBDOiil8MVBBEaw:WDfOAfXEtRItfhGDOrv
Score

1^/10
behavioral11
- Target
  
  SharpVectors.Core.dll
- Size
  
  179KB
- MD5
  
  a0f54b8425ab1f56427add17a506e8b0
- SHA1
  
  a2330c7bb566441645707d6761ff37f8427cc0dc
- SHA256
  
  1a04da83f43bbec16102a1538aa8d631c0e9ed4d462308df380f931030811233
- SHA512
  
  a584005c10f4c45494a1850b3cde710a5e2cfe34709ac207648854273992491705b0e2e3b3c124e1df3c86b5b1eb4e91501f3480d07d51c5f24c7ecc69b43e1a
- SSDEEP
  
  3072:v2A+Zjv2/1lPnxgg2eI+3/H4LKO9xLpJxgW22LnLHSQP7brOZ7lu8nz/6l1ai0BJ:v2A+te/1lPnxgg1I+3AVvLpJxgW22yQY
Score

1^/10
behavioral12
- Target
  
  SharpVectors.Css.dll
- Size
  
  89KB
- MD5
  
  a0da8902707fdd78ad845330d2bda536
- SHA1
  
  521d70b4966239e988fd473930390dbdf047cd5c
- SHA256
  
  02cb5263c2735eda1f16b57aa98e69cbfed3504d9a2e063e91cbf788c99a9a85
- SHA512
  
  43545e6fd8375fb8336a774a68e2c86a1d8827bd55877738ac102db81f7ae44bbcf24d2d8f66a9979eb1da6d1ab068f47d37589cdfa1fcfbfa7937bf23c6033b
- SSDEEP
  
  1536:wgCG7UE6BFQkhshDVVQZZTNuSOPSKk/0Pnq4nvY79Omz/9f2PXINrwviAiX9YEsj:wlG7UdBFQGshs4nzWPRyc6T9JP3lb
Score

1^/10
behavioral13
- Target
  
  SharpVectors.Dom.dll
- Size
  
  32KB
- MD5
  
  af4a135a4695a99727444dbd080923a2
- SHA1
  
  55a9c4c18e096ec535e8b91b89df89e7ab547b5c
- SHA256
  
  50121490324cd8d2d5aa696f2b7ffab8fac5cdb82de4ac0b003d6348ac904943
- SHA512
  
  23fe59d69b5ae1e2617028ba4cf8b3fbcfa0e95da7e9fb5c85bfb39d35229f06865bd808069db874ab8574619d9d2a521c80dcf18f6bb40f21d88d605cf19a4d
- SSDEEP
  
  768:EwnkTjApHH0T+9nurPeQmjmvISsawqD4bQWdUW/OES:kPeAveGBVES
Score

1^/10
behavioral14
- Target
  
  SharpVectors.Model.dll
- Size
  
  1005KB
- MD5
  
  ab0ec80d26ed46fcad50a8f88f0d4f11
- SHA1
  
  e6982587dd1a2d29020872cd4e2b90fae3e3ab4e
- SHA256
  
  0d4a3b4b00f562fd614db51359d312fc5db1f9634222456c29901af8287de6bf
- SHA512
  
  ce0309da43c8156876129e79b1b3a609ce7c2a55a4ede2db8f582d18c327c610f0dd01026c81a56773b9c9bf393ed49577a8d91f976603d3ea43d2d8ff411733
- SSDEEP
  
  24576:YB8r3SXEOXKcD4/cBepqwV1jnQxZdlCG3pFb6KtXX2nrfSNT6v2q6w:YBgOXKcDoD
Score

1^/10
behavioral15
- Target
  
  SharpVectors.Rendering.Gdi.dll
- Size
  
  111KB
- MD5
  
  0467cd159b4a59d1d2cb2546dee4418d
- SHA1
  
  ea8eab88a037eff3e548154c3c09fbaa3f230f09
- SHA256
  
  eeb1875f27ac6d9dc03885b72b946244b2ab54b88bd256d579bca6f27a2f9396
- SHA512
  
  c5db3a5bcbcba61f7570372f8014aae25cda2e9c475a7909cf6ebff5ab8d34b26fa9bf5c91eb24d1291aae35e6736e25e9652c895388f45f6f9a3d3cae8b463b
- SSDEEP
  
  3072:dQUvy5g+Vhw85fI771BEmCypUhQ6HWqAy9OXmN:by5Lw0fI7QQW
Score

1^/10
behavioral16
- Target
  
  SharpVectors.Rendering.Wpf.dll
- Size
  
  195KB
- MD5
  
  c10c799615a55b6d35220012e6010133
- SHA1
  
  9fd53258984311eda8fb3257706c226eac36caef
- SHA256
  
  d1f0539e12b8f7f8785e7a5ab3e1a5c1d3341f1d95308c749e4e63b522eab260
- SHA512
  
  7a1c8485fcfb0db41b0b94e40ead62e98978a080b2bc718f8a0c0659acb5cff5cc1db29025547d9dd7dc73820b1d71d466bcb9290640f133f2fc84501717f802
- SSDEEP
  
  3072:81/P2QjsVPmEunwaaHtNZVd4e1pp/rwPJlDooS3EMUZAV73XFdl0Gg3jajyXcVRJ:Yhvn+tRTlODHMUZgdk3eZ
Score

1^/10
behavioral17
- Target
  
  SharpVectors.Runtime.Wpf.dll
- Size
  
  71KB
- MD5
  
  12bf1f5d960d5e212b306868267ac09c
- SHA1
  
  1f5121a882741d61a6a4fb842205894c0db45060
- SHA256
  
  eee0378bc05a882dc872cc91aade631a0e2ecd720b30123bc8c179a1655b95cb
- SHA512
  
  a269aa681e22136ce4eda7f3cdef7aecd5a693c7d63b3c9064bd8dbca0331ab35c5a18b6c0a84e4736df84bfac9033d5bf4df2861ac234ea61d7bcfdb79ef16e
- SSDEEP
  
  1536:fTQgloYd4tpDtCghq4OqqqcMPyD9Z64xKkEYJxW+Hw:8Uo/3Cghq1qqqbPyD9JxJxWKw
Score

1^/10
behavioral18
- Target
  
  System.Runtime.CompilerServices.Unsafe.dll
- Size
  
  17KB
- MD5
  
  ed5196af3f9bcdae738581b64634154c
- SHA1
  
  3e2daf7170dcb942f3dce5808f4147f9dad5d120
- SHA256
  
  8713f37cf51b67e9507de06ad788facf4788b43ff30705f78b15436b24391798
- SHA512
  
  794cb1bd06ee52164bbcf5f16d348da092cd488016325bd7a8e15a898d537a1042f53a7e317a49908bfe1c6ee30fbb1f9dd4eb92601a72ad9b1a8e1ff0ff31b7
- SSDEEP
  
  384:jMC9bgbbK9sWP2WRF/uPHRN7c4RGVhlsLG8mE2:hLTM3Rdna
Score

1^/10
behavioral19
- Target
  
  Yosemite.dll
- Size
  
  331KB
- MD5
  
  78924a7625607f4cbbb2b3c4700f293f
- SHA1
  
  7d69227cd14b07e5c2fb1ffe89643d9ad713768c
- SHA256
  
  f2a8e861d5866063b62e37af46596b07a25052665efada0a6d9616060f6b68a4
- SHA512
  
  e7cc77813da861574e169b629474acd516c75f0dad22a12dc9baab691550ce6ce0686e18e73bbc1a6af1add4d5a7ee8d31b326a5d7f15c52c48f72d88abc73fb
- SSDEEP
  
  6144:mb+rfS+q3Z/kMrP9BjCHxHg45JGSnEFN+zt:wRbr1ByHpf8
Score

1^/10
behavioral20
- Target
  
  runtimes/win-arm/native/WebView2Loader.dll
- Size
  
  121KB
- MD5
  
  488d00df13996eac0b269f4dd07953fe
- SHA1
  
  883f6d40682cb05fd01bc7213b9f86eedb4d3ea9
- SHA256
  
  78a4000780ac4269019bffe825f2f9608908bfea5c36ec3b9c72dbae3d9c5228
- SHA512
  
  7177bacd03ae77e21a859b6f2b9c13ae8cc43c72604bccc1b9c807c0b411387ae5eca0803b18c113f71b5b5dab353efd813af34a1604d28cf77388d10614fcb1
- SSDEEP
  
  1536:0DwkdcTgg6P/jWjSOPEVvTe6sWkd0IDnEtlnjCFqXUqQD:0DwkylOC27ex1DnEtlnjCFbr
Score

1^/10
behavioral21
- Target
  
  runtimes/win-x64/native/WebView2Loader.dll
- Size
  
  133KB
- MD5
  
  ce56b43664a56d9b9ec9c0c9507995e8
- SHA1
  
  f865a6149a44891d2d85506fd4f08cdcda0a5f64
- SHA256
  
  f4839ab5bd42f5d72aceb1399550ce5e8f2be2c721dffdd366c648232eb15bb2
- SHA512
  
  35aa5f450fa34eed86d7e00f524a183c5a10d5900f45b2299f95366c896cbd946cbd12b7c2c2e5235497defef8b2f3d736634ec8f286c1c7d6a44b061eb6ad43
- SSDEEP
  
  3072:/yTkGhi88UmfAPHKuBcCUsQflsXDPEtdfiwL57PBKG:6lhiKgkHxWCUuEt/DX
Score

1^/10
behavioral22
- Target
  
  runtimes/win-x86/native/WebView2Loader.dll
- Size
  
  107KB
- MD5
  
  5c456e3a2e604b21d92c89194e590b47
- SHA1
  
  dc6adf0630492eb19f1f9efabbb8fbecb066cfde
- SHA256
  
  1c87b1e697f1db43b5893f8c853164f54828f5f4406747bc0d7af64c43648015
- SHA512
  
  5ad8516e778d2318bd67a11ef193fac41f88e7c09e61a23b84d4c6efb9f3823b8bd6fdff09baa6480d063b60669a2ef3e05514a3f00eb7f5e37266abe21c5ba2
- SSDEEP
  
  3072:X1kYMad5t3EXKn9aOiddrCuP75Wt+/NmEDTEtjjOpY81/:XKNaHt3Efdd2uP7XbEtfOL1/
Score

3^/10

discovery
behavioral23
- Target
  
  wwwroot/index.html
- Size
  
  1KB
- MD5
  
  5587edbdd1593630af1909c4ce765310
- SHA1
  
  095e1db9c21d23166af474eff0b1245242ab1970
- SHA256
  
  65b8865da440a06e118badbf65f2028f29a9b8802f7b03c68b99142a35c4456e
- SHA512
  
  c795db9a6c30681c8904d48ac4170e68412d3c04cf558831b5d116d3677e2a77ead9feffce9a71191d54c22bb3cf70943dc059d4afa9de6613c74caf82d0c1a6
Score

1^/10
behavioral24
- Target
  
  wwwroot/js/contextMenu.js
- Size
  
  3KB
- MD5
  
  43453b6e16421615731e31dccf01a88b
- SHA1
  
  acb1c95e9789ff6d810fd1acf133dde4b2f934a6
- SHA256
  
  1be3e9aed37338503ac5bb46be4bd6c3e04e11c357ad9bbf006257cb536661d6
- SHA512
  
  53dc9b9ca8910e07b95ee7f47ed8995ffeb3954a37042b16a1b3f882956740e1b3abb82203c41d443089e3999506cd3a00a1e43e8c674d7c7e30ea28bd09c7e0
Score

3^/10

execution
behavioral25
- Target
  
  wwwroot/js/fts.js
- Size
  
  5KB
- MD5
  
  df24bf63226deb748646386381d026c0
- SHA1
  
  1bf6402f31294b1f45b57c4ba9602fa33a7acb98
- SHA256
  
  352a4b42294cead0f778f75cd2f8c4ccf85c9775b715b08db163cddd10f5adf7
- SHA512
  
  3c4b2c9faf7340e089cdbf0f95f22b56ab5944fd6e534b19089d75b8a4a40c535986f4c2bf2a9b32a86c7b33d97b8f9dafc42c7dcaff3cac0df0a5b09a118267
- SSDEEP
  
  96:P3btiRFxbaKR2ibNriEstHHbEhgbdJHHCEkHbwEYMwQLivwsliiupkMwwilwmNlu:vbtcbaKDbNrNiHY+bXHtMbTFLi/liiu9
Score

3^/10

execution
behavioral26
- Target
  
  wwwroot/js/modalManager.js
- Size
  
  283B
- MD5
  
  bf5cc86a0ef7bce2483e0839fb0cf608
- SHA1
  
  cbcaeeacd83055001af098ef0df33511822a26a2
- SHA256
  
  0a980d76742b4f7e4af36681804b5b3de41c446ba9c0db6ef2ab82c1d3347ea8
- SHA512
  
  ebae001c342e5c26d126e7741e05f18a18a89d3c77de7c7bcc6054f708b2b42f6525ce275d7b33fa2977d776e8b6f8210078f1c23939748c181d6dfb06832fc5
Score

3^/10

execution
behavioral27
- Target
  
  wwwroot/js/modsLanding.js
- Size
  
  3KB
- MD5
  
  f7d5638c3503b934e3139185eba7a24c
- SHA1
  
  3f11ff16658e7ac4a58af4ede0935dbde4361c73
- SHA256
  
  8945f217af459490405c8bdb8692cae7bc7d0d1f52b039344249bf690aa4ca7e
- SHA512
  
  ebaad2c1d34eae0d056d0f86f63525ad2342688052518c89ef45dfc9bc0d1ca535ebc853c0bdac36009e13cb34909440fa8f85bbae1300d983cbc07b8b01ff05
Score

3^/10

execution
behavioral28
- Target
  
  wwwroot/js/modsMenu.js
- Size
  
  1KB
- MD5
  
  2b1f15a4c324ce92570622e612d89835
- SHA1
  
  df298ed7ea182291e1dd0594cef54cf8623c803b
- SHA256
  
  874fda34ab31f2f76796a4fd05027cd78b8e582ccde3b81b3960479c7be5f2e5
- SHA512
  
  bc757728256f59c7918c6eae9e8b69eaf5ee02fa5ef88b660e4d05b8acb334ba510e1b9d3aad8aa20ce7560bf86569d656f74227c68b15524f9ce1b2d8d1ceee
Score

3^/10

execution
behavioral29
- Target
  
  wwwroot/js/tabManager.js
- Size
  
  5KB
- MD5
  
  008d755b033a9350f87e11bb7216eb45
- SHA1
  
  14c646bb1a3f305329c1f6ec863547e8e64ab459
- SHA256
  
  797e72a913779e0c5006871e7424c9de085b1d97ac95aea02611fc24690db930
- SHA512
  
  9b42f5a17c747c95c3ce26c0dc1d7650a8adcb0ace68c66c4613b357cf72556387161b6ffef7f0d9baa205016cd0d986d34aa521a5d17331e23c85d77cb1fcdc
- SSDEEP
  
  96:SIEiMoRFkjRFMTtRFa+A/RF6GqRFA+nRFlf8ss2fG8w25RFTRRFgTORFF0VRF66P:SPiM3sTc+vGN+6s42ZuTm086GgpQCFiy
Score

3^/10

execution
behavioral30
- Target
  
  wwwroot/js/utils.js
- Size
  
  726B
- MD5
  
  59b993ccab8cf42ad9fed7d2b9b3a536
- SHA1
  
  58791a6329688fbee5f55a85114c95b445690ba1
- SHA256
  
  17ac3592d02ddb696f1ff3a3b2515ac1030ad9648c4e24c3ce43a3690d2a6acf
- SHA512
  
  0ac9098256a4389963a605ee1e1a425f7765cd9cd518689eab257663e9d0efa25a2f2701d50db7724fdfdd28030da47e4ac142827e7f09be127309b655bcae93
Score

3^/10

execution
behavioral31
- Target
  
  wwwroot/lib/anime.min.js
- Size
  
  17KB
- MD5
  
  281f8cf6e41dcf8d8e964172e2c83d4e
- SHA1
  
  2ebe95b80a145ea5936bee692bcd44c9b5dbfa60
- SHA256
  
  455938d7e835eec1b7ec9b05b302be31730bb4d828abb4e9076be86de8cf3a5f
- SHA512
  
  263c03c836804d0a4db797495e2dcfdf0b0a4c2d136434bb46b3ea9d208421fd494ef0e819bc29216d95f4d159b71ce0c42805fbd17c605172fdbc348b7d9e83
- SSDEEP
  
  384:47LTpKyzqrGGpLZo12xhMFoFlm5dwi7SeigzrLL:0TppX12j2LD7SeH
Score

3^/10

execution
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Network Service Discovery

T1046

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks computer location settings

Drops desktop.ini file(s)

Network Service Discovery

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32