a1e2e862ad2728023156216d4a7d14e2ee165aa138393baba84971af28900b98 | Triage

Sharing

General

Target

TitanAgent_for_All_x86_64.exe
Size

12.4MB
Sample

241009-xyk31ssbqn
MD5

db6458f916dc27495c5f6e7cffd9d7dd
SHA1

04d475841fdc96d4c782a2d2b8c7951acf040bb7
SHA256

a1e2e862ad2728023156216d4a7d14e2ee165aa138393baba84971af28900b98
SHA512

d4f98aa4b12cccb66f5b6aaccc7f8ac936040afc1df990133b2cfc94c0451833730de4748867c9f8ce65212cd4e505af1bd7c40b1f764141f3d02e8db757a713
SSDEEP

393216:Jijw841C5vSFp1bC4lqZgLCzfVWLQkfNPa2d:QjwuviwZ26tw

Score

4^/10

discovery

Malware Config

Targets

- Target
  
  TitanAgent_for_All_x86_64.exe
- Size
  
  12.4MB
- MD5
  
  db6458f916dc27495c5f6e7cffd9d7dd
- SHA1
  
  04d475841fdc96d4c782a2d2b8c7951acf040bb7
- SHA256
  
  a1e2e862ad2728023156216d4a7d14e2ee165aa138393baba84971af28900b98
- SHA512
  
  d4f98aa4b12cccb66f5b6aaccc7f8ac936040afc1df990133b2cfc94c0451833730de4748867c9f8ce65212cd4e505af1bd7c40b1f764141f3d02e8db757a713
- SSDEEP
  
  393216:Jijw841C5vSFp1bC4lqZgLCzfVWLQkfNPa2d:QjwuviwZ26tw
Score

4^/10

discovery
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/ExecCmd.dll
- Size
  
  4KB
- MD5
  
  b9380b0bea8854fd9f93cc1fda0dfeac
- SHA1
  
  edb8d58074e098f7b5f0d158abedc7fc53638618
- SHA256
  
  1f4bd9c9376fe1b6913baeca7fb6df6467126f27c9c2fe038206567232a0e244
- SHA512
  
  45c3ab0f2bce53b75e72e43bac747dc0618342a3f498be8e2eb62a6db0b137fcdb1735da83051b14824996b5287109aa831e5859d6f21f0ed21b76b3d335418c
- SSDEEP
  
  48:ifXNtGNjFizsU35iej7luiwa28mDJmDKUOMQH0glay/Aa4r/:5Fef5iej5txKJKenlV4r/
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/LangDLL.dll
- Size
  
  5KB
- MD5
  
  77ff758c10c66937de6d86c388aa431c
- SHA1
  
  14bd5628eaf8a12b55cd38f9560c839cb21ce77a
- SHA256
  
  6a033e367714ec0d13fca0589c165bdbf4d1dac459fa7ec7415815223fa3c008
- SHA512
  
  319837951be276a179ead69efcd24bd7566061abc7997ea782af50bd4b0d69e5ec1a6e4cdeb2825bafedf87edf03380396b7bcf58682b6a3a824c8dc4b966bda
- SSDEEP
  
  48:im18EhqneMPUptuMMNvimk2BAZuMTRCpYEvJdUJvR0J0of5dwe:F12pl9NLBAZuYtR0rd
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  b0c77267f13b2f87c084fd86ef51ccfc
- SHA1
  
  f7543f9e9b4f04386dfbf33c38cbed1bf205afb3
- SHA256
  
  a0cac4cf4852895619bc7743ebeb89f9e4927ccdb9e66b1bcd92a4136d0f9c77
- SHA512
  
  f2b57a2eea00f52a3c7080f4b5f2bb85a7a9b9f16d12da8f8ff673824556c62a0f742b72be0fd82a2612a4b6dbd7e0fdc27065212da703c2f7e28d199696f66e
- SSDEEP
  
  192:4PtkiQJr7jHYT87RfwXQ6YSYtOuVDi7IsFW14Ll8CO:H78TQIgGCDp14LGC
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/killer.dll
- Size
  
  6KB
- MD5
  
  747b8b378f745669c4cbbe8fcb35bb03
- SHA1
  
  0a9b3ace8cc0b8f1ffc0689726364ea1de3fffa5
- SHA256
  
  95bb53620e2b3663da2828aed99aeb737c109c6fc9751273f64c54a389d45c24
- SHA512
  
  da0e20d5e381b2bc74239171efd9b780f3af80198105a75f4a96c900bee7c7049c8fb81fc582f5918dd91de1e56c78653838a8449ffe659730bd0eaecf58926c
- SSDEEP
  
  48:CRN9Q/SbTfx6gA6IMzLvM0Aoy3TYzyixX9o1TNRgPEgt/b82ebRuqSd7:mNmajxG+PWTwlSbpx
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  eac1c3707970fe7c71b2d760c34763fa
- SHA1
  
  f275e659ad7798994361f6ccb1481050aba30ff8
- SHA256
  
  062c75ad650548750564ffd7aef8cd553773b5c26cae7f25a5749b13165194e3
- SHA512
  
  3415bd555cf47407c0ae62be0dbcba7173d2b33a371bf083ce908fc901811adb888b7787d11eb9d99a1a739cbd9d1c66e565db6cd678bdadaf753fbda14ffd09
- SSDEEP
  
  96:oXHqZ4zC5RH3cXX1LlYlRowycxM2DjDf3GEst+Nt+jvDYx4AqndYHnxss:oXHq+CP3uKrpyREs06YxcdGn
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/nsExec.dll
- Size
  
  6KB
- MD5
  
  1f49d8af9be9e915d54b2441c4a79adf
- SHA1
  
  1ee4f809c693e31f34bc6d8153664a6dc2c3e499
- SHA256
  
  b22c8f676dec58be8d25fbad1a37835ffc4029f29aaf79f4dc0337ca73a38782
- SHA512
  
  c60827e322e3168a79795ffd4beb0b0039842128255100d6b005d261402d2ff570f3866f441f3d3c063097c71d44bc5ae80d177fa91ef4e46fc8c2d97de27aa4
- SSDEEP
  
  96:67GUxNkO6GR0t9GKKr1Zd8NHYVVHp4dEeY3kRnHdMqqyVgNo3e:kXhHR0aTQN4gRHdMqJVgNv
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/nsJSON.dll
- Size
  
  22KB
- MD5
  
  c8222584e91b74c47f5ce2a84d1cdc4f
- SHA1
  
  750359dd536c840b1d4016826af7f34a8562e242
- SHA256
  
  6785ab17a6c27be18072aa1c274078321b4ea27bfa752d3c882ec3093dc4637b
- SHA512
  
  a89f0083c791e7d4d54fd728e848e44bd44ef9e11c799a48ab95a48d3c4e02e68699e28818c1232b694120973ac0c3e418740759830ef70d328d7ef9e5789f51
- SSDEEP
  
  384:qdctoQMA9RtBHo45eqtTv/lddWUn89tNj5AYXqUYevrTZg9MyhTZrdSw:qFqRtBneqtTXldBn+tNDqqz1mMIrn
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  $PLUGINSDIR/nsis_agent.dll
- Size
  
  2.0MB
- MD5
  
  498bab130e1f2b025d69512435a94ca6
- SHA1
  
  e67e52838f2ec68569e97c050ab1ed9408a2123d
- SHA256
  
  5ddc703365c607080fe42f9a1956fb87cdf1e99f3bed81748023f1b8f78eb639
- SHA512
  
  4b777850872749f1155b9b265ad3907f31a2035539eeac2dc2b365b8c17306889caae9507bff21e505e32889137c42307a5947f965afd8be53f44105ff0c3d94
- SSDEEP
  
  49152:XTk+4wVxonUn065YZVhlZ35gEQ1eMGObmKptpco0ejtLA7CcUI:XTk/HhSYMGOtwo0ejNa
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  $PLUGINSDIR/textreplace.dll
- Size
  
  5KB
- MD5
  
  72d1177bad86f4df8eaee2a8afe50e6f
- SHA1
  
  c36019dfa2ff5c90c9da31c89dfcda08f93df68d
- SHA256
  
  c058f4439617bdb2019c90abd9920070a23f751b9349051d0744280cd5d9c5d7
- SHA512
  
  e0e764fcafa833f94ad2d5ae2a407f3e35bd27efa078625d5a2c9372ea28d7889c4b339e457d6fd7c3c90475b2d1603142a8c46a23f59b5784478860b06ee1b3
- SSDEEP
  
  96:RHbaG527tDIdcuPYyKV20sWt5yzASW3zRvDOfGq:RHba5JCcmgV20sqhZ2
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  $_62_
- Size
  
  11.1MB
- MD5
  
  b661c49d7a7fb996420ada665f5fd53e
- SHA1
  
  5692791d20a586fc2a82aeb27f356ab043144c99
- SHA256
  
  effb685635b6c9954499c6250cd605a35e85a0ec0b2a41f72d0030065d7511ae
- SHA512
  
  6da2884665c94654931a3b0c0e1067c256c0c591d8ce19e8620cb7205ab3e448bc911488dad37400d3fdf42326d4c6e4f8236d92debae9663480776bb08480a5
- SSDEEP
  
  196608:VOWHiJPPhBfd8Vx8qGAvfESHPz64xpRLC2VyIJ4wc:QFPPhBfd8aAvfESHu4xpgnIJvc
Score

1^/10
behavioral21 behavioral22
- Target
  
  $_63_
- Size
  
  2.3MB
- MD5
  
  6b35896f8dba9972502aa3283273cbe0
- SHA1
  
  363e7887d6848a48e8c90b7a58cd6108d88e626c
- SHA256
  
  d804d8d41123a7ae07a643ab0132004c6eb0267a99dfccfeb71e7a87229dc620
- SHA512
  
  09bab7d901addd5d6e34e8d7509596353a311f59cef9282f537b81e522414f6a7ac944394b09ac9afd6cbae1333a5607ab184ac339275a8bd84d84367eb3ef13
- SSDEEP
  
  49152:rqDwxX1h1KvobVOAU7FwdRjWiapo0dlrboED/+PcqaPdAGxWa:RlEvsVLkzpXJb3NqaPdAG5
Score

1^/10
behavioral23 behavioral24
- Target
  
  $_64_
- Size
  
  2.1MB
- MD5
  
  8cb7dabebea8e702358bb049656b6a09
- SHA1
  
  21461f7211286cd2b67dce10d939a9bf5d3160c6
- SHA256
  
  d5c5b308a3d366442bb7bb0dbf818cb639ed48b84abd9a31e7f8845d87ba9a6d
- SHA512
  
  af49222d785b829ec827fe0e44e93150d4b630edad899a72a7d2589f908eaf02084397e5ca913febaa9fd8c218c08bcca3feabb0de52ba670d2a786d13dcbd6c
- SSDEEP
  
  49152:HJ/L8ENi0/W/LG0Iv+/PBegTJbbogDq3/lYS4cund01Dmo7Q:p/IEIpTG0rI6RqvmSeUDmo7Q
Score

1^/10
behavioral25 behavioral26
- Target
  
  scanmanager.exe
- Size
  
  795KB
- MD5
  
  d66e870e90894066c84bcf6b2e10f38d
- SHA1
  
  8ff3e688347d1f226509fbc93c0e7a1d6fddaf41
- SHA256
  
  a503fb0b66981f32126e6759b524f014d31143349a906c65277f713f43a676c0
- SHA512
  
  4966df2f86a2a04c96534e424c764a6b08864df3361bf5c44388c69a6fceebb2418a0aeed218a5b23d04becd20cc10278b29b35173e5c96f30fff4629d0c9ab8
- SSDEEP
  
  12288:McovWSvui0dTQqecKGT21U0Q8A6jBwKyz0kLuXeyL8Dosk28idCb:svWSvuiZ34T2y0Qv4jXeyoxwb
Score

1^/10
behavioral27 behavioral28

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28