1370d22b331cfe37f0ec241a3555eb212019084087df695a2b3ffa7f6b77026e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Release-windows-1.1.3.3.zip
Size

35.3MB
Sample

241005-x9fmnszgjm
MD5

0a9409c203281dcdedc081cfe9bdd8aa
SHA1

38ba0c1b88d9021d776c319dc7cd07b40171e551
SHA256

1370d22b331cfe37f0ec241a3555eb212019084087df695a2b3ffa7f6b77026e
SHA512

91538f5721f2c95abe5ddf6cf4bef9eba1d6573dc4cc42ded66b798593e44a388e6812a429f4dca276ce30595f18cab9b0566b60d4995c76f7baf4fbecfc9227
SSDEEP

786432:Bmdd6Eat6k5d5zqGwlwj6LFOJ7pSRoH8xAfwku1GkkCTa/7Dvpze:Np6kRWkjYoH8x4MGkkSkxe

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  Firefox/AccessibleHandler.dll
- Size
  
  121KB
- MD5
  
  98815ba20aaab292802f85f0b120089b
- SHA1
  
  a4960228d83780c8535be5be12ed08b5215b9a3f
- SHA256
  
  e2c87737cc84259d72301d42f4f62bb842ceff4c2ffdb342a81a694aa7a1e7e3
- SHA512
  
  68da2f6bfa557167af3ec38de8a711e6b1d22d1dc1892af69a403fd27c7ffd540e6c6c3477c42fa52cdd50835e0dde13084a6760298c1f39a3b8e67128f648bd
- SSDEEP
  
  3072:zFAh4ZFiJ4J45KIHenM/qIL5y1DmWGeSKWStqFgQr:G4ZFi/D+2L56S6gg
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  Firefox/AccessibleMarshal.dll
- Size
  
  18KB
- MD5
  
  84c57255b6adc8d4b9c30560597cc125
- SHA1
  
  3c77ff0e3beaeb20eb15e4eeafe00d41576b39a8
- SHA256
  
  3bdd06b30ff94dd4b950b214f42efe95d2a1a0397ef312f44b078811e65273b1
- SHA512
  
  e202e8535833f5f12b4048630985c5bb54f17aac3be9ae772ba8870fbce83c8cb1f3eb5f0fe981d980b961832666b6f1668fd01e873468870f90c5385c5668c9
- SSDEEP
  
  192:v1uKXlCHhncoZglgJAV1SmHFAwKClZOJd9EV2ZvnR7NOc7DbXfYVGnV:vMggtg+JAV1SmtKCoK2X5Oc3TfYVGnV
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  Firefox/IA2Marshal.dll
- Size
  
  61KB
- MD5
  
  6d9ad4145ca6fede079d80f0eb03c299
- SHA1
  
  8a240d1db0def0f05e6e0c4c4d095cbc4f3fa9f1
- SHA256
  
  6d66fb0aa8c9a160d836249f9a70ade18c385f8e71cf37e2b17b62b40d5ae732
- SHA512
  
  5b0fdadccdc6268d9ad4a9146c118e9936abe11d63d003d7910c83ce1a3c6542177ccb63d9601dd05d9731c85cd67d9fc91461902247ef9aae3d3c07c521adc3
- SSDEEP
  
  384:j0J0YarRJRBoW2Eh/ITQ4nv9Q6RTQ4nTTWIvaAgNH/yHlNyIPmSYy0ZYLzLLwkT0:ja8Vj/543C4VvazVqH5Pmq0SjA6QMGT
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  Firefox/breakpadinjector.dll
- Size
  
  112KB
- MD5
  
  d1877cf5e7235bd824d25cc1ad9a24ee
- SHA1
  
  39cd8c17ec39504fc8f943f02cd3adce0c8cd612
- SHA256
  
  dd01f59f251efe5c11d0b6daafe38c663bd41551340a4bcda76a9c1a3ff6bb91
- SHA512
  
  e2763bbd22c8a76ae93f343f22e18d2b61ccff122163e9c2d6aab3cea72c9b9e53d9a25de68979aa6c9cf39006151cb4d6d6906e3d2643680d2f156fa23ac8b8
- SSDEEP
  
  3072:KhWs/dJkjBN/+T9o2Ge1cpEG6bdxbfru2JL:oWikBS9oZScx6T31
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  Firefox/d3dcompiler_47.dll
- Size
  
  3.5MB
- MD5
  
  587a415cd5ac2069813adef5f7685021
- SHA1
  
  ca0e2fe1922b3cdc9e96e636a73e5c85a838e863
- SHA256
  
  2ad0d4987fc4624566b190e747c9d95038443956ed816abfd1e2d389b5ec0851
- SHA512
  
  0fa0e89ea1c1cb27ac7f621feb484438e378a8f5675eca7a91f24e0569174bd848d470d6b3e237fe6ab27ca1eb1ecc09b5f044e53a6d98bf908e77ac511183e2
- SSDEEP
  
  49152:zjmJAksRXmBNgC9ITPPE8WHmy0HRZ+kyOzDJn5c5v5H3pqC23u6q+25omPEyXzjS:zy2Ckrj+kyOv2MJ+6q8kbqS/AF
Score

3^/10

discovery
behavioral9
- Target
  
  Firefox/freebl3.dll
- Size
  
  318KB
- MD5
  
  15de5ddf9746eae5e4f92129db227db5
- SHA1
  
  97a51848f66ed803106c715a2677d7395166f979
- SHA256
  
  d88741c1044f395ff3afc994db64db8089083c0b88367baba1079e64a625b118
- SHA512
  
  c947ba5fd524c0a3decfbbbfade88dd5ed103ce5f4061d305a2e814b934682388b42292888add233e205ec96077f12322a89e78d754965c7843e02a51c632e41
- SSDEEP
  
  6144:plaxJ4IR5CP8xBB6yZ+jM7HPlVtv84eGHrIr8qqDL6XPw:pqrCP8l6d6HNE4eICqn6
Score

3^/10

discovery
behavioral10 behavioral11
- Target
  
  Firefox/lgpllibs.dll
- Size
  
  47KB
- MD5
  
  b92a3fd584108784c41b412204d07665
- SHA1
  
  2b782d81e8c0656e7637aafd416353719126589e
- SHA256
  
  83c22afb53e4149058dbfdbfae2876b142c0f08e234d98bb18de2de03f22a616
- SHA512
  
  fd62a9c7b120588e456ca16720518256f0da7d294c2aeebacf9099c1dd020647214e882f3963d4b5140cd7c6601dfcd241857a45a3fcd3090b112b269f42f41d
- SSDEEP
  
  768:lx+rEGXz3O70lGtEoWKt8Jm6VORjEHWK4x076F7Wb7EOsY/GjRoWArubTmJuY6H6:lxfNSb0eubTmaSKQzeelh2HJ5+v9Bznm
Score

3^/10

discovery
behavioral12 behavioral13
- Target
  
  Firefox/libEGL.dll
- Size
  
  14KB
- MD5
  
  9c178b9ff13d8090178a968929ae4ac3
- SHA1
  
  73b89cd05a092f5bf658e2fd60d75f22386f9e64
- SHA256
  
  e76dd834b80bac5d82b71a75d3fa0477d078dcee2481b72162d65eb259f019fa
- SHA512
  
  e5d0b6345ba81bb598dcf1a101b9536c30a129fe9ed74b69e45121333c376381721f14a394786d07b07e582353a5d326724e4da855fb317f096ed1b9ee1a8ee6
- SSDEEP
  
  192:S+9maOLfzL0Z4mXYojLgJFoqXRoEAlIWGndSiAfoMs+NKRG9H9g:P9mLjvCgJOqelIVLAb8RC9g
Score

3^/10

discovery
behavioral14 behavioral15
- Target
  
  Firefox/libGLESv2.dll
- Size
  
  2.0MB
- MD5
  
  e1c37c87bd52828c96a8521d5258a853
- SHA1
  
  ac1ef822e23450abd7cea22ecaeaa8cddc4c32c5
- SHA256
  
  80df0e34bc742a781ef3397398a67ccd83ac391f9274d3db3cd1725b135ffcc4
- SHA512
  
  6c68b2af361a193dee10755964b11de251fac92f59312a4889b737a336f9d67bc55f2e4fb1052f6611453c2c90f2594520665a201a2f4a6b665bbaf804af7b44
- SSDEEP
  
  24576:gMr9VJSLBm2fUMwQayez7vcoqZGZV6T+sldeod6E87s8Ygq85pzUOrSbe:RZS1mUU2HYca3k+sldOsWq8bUOrSy
Score

3^/10

discovery
behavioral16 behavioral17
- Target
  
  Firefox/mozavcodec.dll
- Size
  
  1.5MB
- MD5
  
  3588c5e090b456cbecde7ff7793eb7e9
- SHA1
  
  51d518d4e6194a335d37d401ade284f9e77855b7
- SHA256
  
  c4e0c9473ec15a20cedf05099800a599a659fca2e8eaa9c7b01137e78cc771fb
- SHA512
  
  b5cc44da4ead7276ad1c065b042a4bf1fa450406a85d3f29cd9dd0a003ab4d732f6e970c3d4654d003338e9629531a72115d7df9cc2b7a616083d3b47d824062
- SSDEEP
  
  24576:WO64w77sWwWTn2cn/nQqSU2yKNHhhmbY8S5q2+Ny:56DTn2cZzihmb
Score

3^/10

discovery
behavioral18 behavioral19
- Target
  
  Firefox/mozavutil.dll
- Size
  
  164KB
- MD5
  
  b55a8daee7a9f737e109f8654f6b2bfa
- SHA1
  
  ac51ced758d46285788a18f42469c9eda35df5b5
- SHA256
  
  47d0bce85598be5227f910151e1bf5e73b5c67475ff98105337c22ec6671436c
- SHA512
  
  2be3156c059b1ca31c1550248f34aacfd05ac7f7dd0ca05d598a2d03c87dbaeafc8366f9e781ea44281cf7c13e50ccb15d7e731de50ca109a8170bfacbeecc67
- SSDEEP
  
  3072:XKKDdA/x4lZFHnSf8T5cMhdNV2HB5i2xNR4OiWEarq:as6ShHq25cidNV2HB5i2xNTiWzq
Score

3^/10

discovery
behavioral20 behavioral21
- Target
  
  Firefox/mozglue.dll
- Size
  
  126KB
- MD5
  
  62e8fd2067e8c839887bc936e2082525
- SHA1
  
  41a35ace8a8127b10751b85b8254de89563dc2d7
- SHA256
  
  08a28a270309ae2d79766391993d6f6f07653530b30130dff83a2f69a2b57f44
- SHA512
  
  3f8246254bb0e0cb27c176dd93cd98b87e644ba17bf4449c9a4ce5e8557d007641c369cdf603ee545ae6a91a392ae71ae3e8e069ce21eac4fdf9acec70acaf1e
- SSDEEP
  
  3072:SwvTd9Vt/TvPrQnNSWSp1qt/HxQr0MrD2JJJ5PyrffEtn:Swv3Vt/ToNSWSp12/HxQr0WD2JJJ5PoG
Score

3^/10

discovery
behavioral22 behavioral23
- Target
  
  Firefox/nss3.dll
- Size
  
  1.2MB
- MD5
  
  e120085659784858e06b711f67557e94
- SHA1
  
  38086b9b6a2f149a8e1b083b21ff28943c4c7603
- SHA256
  
  586331667aa697c83a31a14cc417fe853f91a9a5d8fb1dc1ad8a5ffcbd4daa06
- SHA512
  
  e660bd9839a7c5c4e06b92669fe5f6137793a988cac793ae131fd505b38642ce437f1c2b4e0609940670885d4027a03f5b4fa86c9da1a02144dc3b2b81f757d6
- SSDEEP
  
  24576:Lu9DFsn2NIu/K9yKPgZHV6CYVcdFg6xcuQBoaYix860YSwKHvlmJhB4MSx6GAit1:yK2Ntr1eVcdS6GsXiC60hQz2MSxCi
Score

3^/10

discovery
behavioral24 behavioral25
- Target
  
  Firefox/nssckbi.dll
- Size
  
  321KB
- MD5
  
  7296c9dd70ba8881e828ac13dc6ebac2
- SHA1
  
  8d2f9a18cbd8df62b2fe307baa29584895fbdbd2
- SHA256
  
  f4eb32aeefb7e1ac18ee6ebe8064a6221393babca0e3dfdde214afaa4f98158f
- SHA512
  
  508fcb7be6f0ab389a10e6d1867ca7c5a8e95b27b098c6f29df133a7a41073ca1d23ea755fa12e9e901def7cfedbe5946b88e899540a411e11268c3daddbeeb0
- SSDEEP
  
  6144:iPViawaip1fc0xcHh6Z1Vlu66OizA8irLOTMj:iPViagp1kfHho6OqKrLOTMj
Score

3^/10

discovery
behavioral26 behavioral27
- Target
  
  Firefox/nssdbm3.dll
- Size
  
  83KB
- MD5
  
  6636287e2789d70196bb99fcaf215d43
- SHA1
  
  e0c23daa8cb3a09436dada639ad9042ce386903d
- SHA256
  
  e5bb25cec204d101206e13d151dc0f81e3882858395e871ef0d3aaa9f6daf919
- SHA512
  
  8c5a0696cea58f3f0084c9a1cd1d19dec4add976bed44384ef9c445ddc9e742aa74b66b0dfdb3a2b8339a5b46c9f145e40cbd82ccfd623ef665d25294bf69168
- SSDEEP
  
  1536:RUbLkS8INujOPnwE1hp6FB+6Bcp0XJ3pW4xuYroEhtohbQh2unlUsqdtQplqsfcb:RYLkHINiVE5eBRBvTahAfysqdtqlqsfg
Score

3^/10

discovery
behavioral28 behavioral29
- Target
  
  Firefox/plugin-container.exe
- Size
  
  68KB
- MD5
  
  2c998c0b1c6764fa4dabf578fd0aae1f
- SHA1
  
  6ab252027991f378e66595285f330496711ce779
- SHA256
  
  2968bdd030713eae42172183dde7cf13edea4584c16d0059c51d2d5ac2a9f9c1
- SHA512
  
  369f84ec655827850339da06adf5429aec396abc5565c011f74c260ce7e282d5d2e0fcd51cb71da70dd421f26c9edf19352d3964927bb4347d3e9b3e1622c08d
- SSDEEP
  
  1536:Igknu6qerBECzBPwZe9AUpsuK0wmIRnXSWIxYci9wl9:IjqsECWe9viuK0cBIg9wX
Score

3^/10

discovery
behavioral30 behavioral31
- Target
  
  Firefox/plugin-hang-ui.exe
- Size
  
  21KB
- MD5
  
  cd3a28904d4c6648a62ba60bfacf60c2
- SHA1
  
  5c31abfee5ebd2020b5f85447cd8a7d670c912e2
- SHA256
  
  73fdd405410ad3ebb23dec22da3c763ed3c827362e5b0799b1bc1b33107cb07b
- SHA512
  
  4581eae2a96fb19bcd2acbad3405b4dddcf997c5f9f26195ab3736063ffa0f165b5b1807d9310f7328d1684677c40419e7b76b45fae582069f14dc3847690999
- SSDEEP
  
  384:Plx9l0crTPo+D3lrwNr8JwUQL34z89w9TFAJ:PlxXZ7lMNr8sra89wRKJ
Score

3^/10

discovery
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32