f2e4d74fa2fe1fdea0be9795f3d9c3a76c78f242c99988a8f9f8b2f46e12a274

Sharing

Copy URL

Twitter E-mail

General

Target

HaiTacTiHon_v129_13_09_2024.rar
Size

21.3MB
Sample

241012-jgqqaazgqd
MD5

8d4b427bce85a9289176ea878dbaa255
SHA1

d285c673b1f8349ef03411ef88e6a84f70a8d7f6
SHA256

f2e4d74fa2fe1fdea0be9795f3d9c3a76c78f242c99988a8f9f8b2f46e12a274
SHA512

d8f2ce44b0d642e07699fb733a867a5762bfaf3d79a6d18952b9142cba53fa9dd69b5689a4f58b2ae833f9fbf9c52d55d6f2385fc3ae4e318b6e7a0228c3cbcd
SSDEEP

393216:j5sQn+gYE+nqxTZoTqu8NkIDdZVNiMb1X8hcYOCYjvtz+MrvomrDJ3mvPbl:FsQn0MWWVkIDdZiQ0tR0hN5DMp

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  HaiTacTiHon/Haitac.exe
- Size
  
  635KB
- MD5
  
  32d8bc820f013a2a1dd7c63ea8a26304
- SHA1
  
  4f4d30757be5b8ac6be14628528acae1bfe6c6b1
- SHA256
  
  83758d1888fc556ab88f9b2d0c3b9bb4f4bf48d83b1b6d4e3e4c1f4b90c1aec7
- SHA512
  
  b20ed38fd494852d304d1b8f3663ac186bee120b91773c25b412ce0fa11edde0314e4e715fca114cae791f269f4593f330f0116e3cfba4bffd3c8a73731c196e
- SSDEEP
  
  12288:XKQGzu2BdIGAnfIYq/TTTTTTgTTTTTTTTTTTwTTTTTTfghe+su7r7979cn3eX6Fi:XKTK1q/TTTTTTgTTTTTTTTTTTwTTTTTe
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  HaiTacTiHon/Haitac_Data/Managed/Assembly-CSharp.dll
- Size
  
  1.6MB
- MD5
  
  cf5cf9f72af2c1a266eca97d748be3d9
- SHA1
  
  b30e31c09f40e3da8b616aee94ed6837a5d026f7
- SHA256
  
  baebe2ae9dd695bdb016dd86074a24369c3b6a29d8e7343809f7fa9b27d4423f
- SHA512
  
  546fbb40a413f45556229d70db693fec302c4e03a0321646de236974deb8993918e92cff2b864470ebbfe14a6310e3c6990220cc23ab10b4c2d2ff124b88ec6d
- SSDEEP
  
  12288:YuuZpv3QBJa+0ORCmB2riWdzxci25JXLRRrzlllQe980bV+G3UGQL:YvLQo+SmfWdz+LJ7RRRQe91G
Score

1^/10
behavioral3 behavioral4
- Target
  
  HaiTacTiHon/Haitac_Data/Managed/Mono.Security.dll
- Size
  
  235KB
- MD5
  
  cdb5899e6cea22efb314a6574cd05492
- SHA1
  
  21e3b0ad273f5663fd0530dd433674bf8ec819f9
- SHA256
  
  5ad4adabd1574f00f300033704e430b848356d64a4b6de4fca9417199d952866
- SHA512
  
  c9cd48fa0482333745091521593999594726fe2b2a4d5dc2f3b92d8037a26a8c6869524a6ecc6b7591399a6c97b379050a27923893aa093a5856d8ec83442a88
- SSDEEP
  
  6144:kUjTQ70cnf8MoVRxS9iJdBF119RJXG2yY+Q:VEiH119RJXj3
Score

1^/10
behavioral5 behavioral6
- Target
  
  HaiTacTiHon/Haitac_Data/Managed/System.ComponentModel.Composition.dll
- Size
  
  251KB
- MD5
  
  273a622ffaeaed21e1f0893bca81a7c5
- SHA1
  
  5bec4cc3022634c62a967d94a90f9b5b275e5b4d
- SHA256
  
  fea941a88ff3dd83e4a4a144a920cebbeffa8eaa9d201f0b9ae558e811333158
- SHA512
  
  d303d6efb7c911c7bb56bb546b6cf3832fcb20fa9088a9b346fa6a283fc26603b57a3b4c9f7f8dfea2573efb71124bf3f9707495f0e798e9b5fb3f79db5622cd
- SSDEEP
  
  6144:gkwkYfxuS0ZNORl1X1XYZGFU+22kUgUlAwU5e81hXJXee4jsURlXXMAX8O33iEP3:gkwkYfx8ZNCxL
Score

1^/10
behavioral7 behavioral8
- Target
  
  HaiTacTiHon/Haitac_Data/Managed/System.Configuration.dll
- Size
  
  122KB
- MD5
  
  642c652695cc4bba31e285160bf56d9f
- SHA1
  
  f3d9f87f70607ecccbea4cd23919084e63b994a8
- SHA256
  
  ad5635b0625a898a5fac68664e83733641cdb76e175236f99e7b0516fa285d2a
- SHA512
  
  2b8ef0fb366db00c2407a83da934ffe53611668a62f11490abc9158244a5fed3655cad43a2c16248e515b9de613c81bf9a7c176e4fd0690b7e001fe934df8e16
- SSDEEP
  
  3072:QGHTFkizuGCOE/htnREcacWown5WJGL0MIeAgNe:QGHT5+H/33vJm
Score

1^/10
behavioral10 behavioral9
- Target
  
  HaiTacTiHon/Haitac_Data/Managed/System.Core.dll
- Size
  
  1.1MB
- MD5
  
  1aec697314f2b7587f4ffb5acd25ec63
- SHA1
  
  42259c0e7423593d35d8b22cb1de99f4fb65863f
- SHA256
  
  f229a4f8f887d4a51d694ab943accf60cc9171cd5419af91d2684b1db218afd8
- SHA512
  
  f3d2f2ce455ab172e8e022d14436090d380c987a856343fa16e423ecfc0d9bcc4ea5303e977e28ef7d5f0f1091a81fe603ded1cd7da4027b26881afbdc36927a
- SSDEEP
  
  12288:qWK8Xi19FV57751umv0RX15PgLdfJ18VjjvM44hvetIX6e+hxHzR:gl/umv0Z15PyC9vMNV1+hF
Score

1^/10
behavioral11 behavioral12
- Target
  
  HaiTacTiHon/Haitac_Data/Managed/System.Data.DataSetExtensions.dll
- Size
  
  29KB
- MD5
  
  8d37ffb89e9e86ad2e62e40a3e3c338a
- SHA1
  
  3164fa317cdae3df211c02cfe865040f6c2e73a0
- SHA256
  
  186ee1a2572961953bb0433e570af844c4a89e144aa5b3bd9d54ce90502009ab
- SHA512
  
  44f0696997beb92ac0fb17dfcec147a4b35621a62e1f19ac5e85d1284b19f7d0777b432045bc57a85de5fe2867003493b5a68a5ed03e96607d3d95a965a9c428
- SSDEEP
  
  384:REAjm7aELetOdc8l4LodMqokNv2Y2rsFKOlIcMYOxZsnRbli3ESmMadMkrVr5UhH:RcZC8Ll4LiMXkv2Y2McdXsj5Q
Score

1^/10
behavioral13 behavioral14
- Target
  
  HaiTacTiHon/Haitac_Data/Managed/System.Data.dll
- Size
  
  2.0MB
- MD5
  
  8b94e361fac9c2a0cc87827600a56f7a
- SHA1
  
  87326cc8a3fabf2811f8459043974ecc74bb144b
- SHA256
  
  7ba30313f35eddbd822632c88ecef4366bcd60531942170a01a5670d54b6d412
- SHA512
  
  397329d4451aa4659242237257e0496972dc9bc3ef2ee33593f3ef7527684a186493a4399c5c36be44f6b0c92b2e7efaaf324f0153aeb638fcddbda36f0adaea
- SSDEEP
  
  24576:bTy8NQuznGO4TiWB1V0Nt8OZUuhHwjpj5zuctRoOB4MZQ4cggyT:fykz74VHV0MOZUsgoOB4MZi
Score

1^/10
behavioral15 behavioral16
- Target
  
  HaiTacTiHon/Haitac_Data/Managed/System.Diagnostics.StackTrace.dll
- Size
  
  6KB
- MD5
  
  1fbb019db62578427a660fdca39139fe
- SHA1
  
  6c5cee9a58dcf493f94df27b7de17f19bdf021e3
- SHA256
  
  4701e843059674accc1c87038ec41f3cecbadce2a65755f527c8b65b0cebc8ce
- SHA512
  
  7571a6b15a03b2ac408d219b798b964d90cea0b58ec9cacc2709c1495dd4edd24fd35327e496e945e297f1fc976f128db6ee6a75e1d22752adc7a79a65f3d4dc
- SSDEEP
  
  96:Z5SzrdBy6UFfVGJfFPlcaxvtV6gOCua5fpbe1xa0:Z5QfnUF9GBFPl5xFVsCFTe18
Score

1^/10
behavioral17 behavioral18
- Target
  
  HaiTacTiHon/Haitac_Data/Managed/System.Drawing.dll
- Size
  
  478KB
- MD5
  
  b489d45c4c2ce8bfb9cba95724eaaa22
- SHA1
  
  0e8d13adf0852b2ae26a2e741fbb7abc73b9e893
- SHA256
  
  a4f9c255ade76f30b584e9227d83b92da424a81d8a8e44a592e7e31b67cce9ce
- SHA512
  
  189bc9242c49e9ab21d6bd9e5e5ba06eea9c1f7cd94aa51a387a1903f1cb1750042024525b71e11f772258dbe7638b38332e91f74eb9036b0be10a36662d6b2a
- SSDEEP
  
  6144:rHutOmSUsXjt/z5B4CqvhOgEGKPx+Jg/NY7c/nENZ4k7cheeEK:rOtOmVsXjt/PicgEN/MGq4k
Score

1^/10
behavioral19 behavioral20
- Target
  
  HaiTacTiHon/Haitac_Data/Managed/System.EnterpriseServices.dll
- Size
  
  43KB
- MD5
  
  d1eeabbd7d33639de42487a6b167ab77
- SHA1
  
  ca910d517b2dd4114631f24de8e9e4f559100d8a
- SHA256
  
  7a1dd3f795c2ab240d8e460f68dc6d75ad997d0e27326c4925ff565c3f000e0a
- SHA512
  
  f55d5cad8cdd1c5654a796a4fc9eb5281facae98f5a6cf055c8a8eae54a7c5dfea8d87e4aed534c5fef1c65a32e91ccae629d0e51329b76af43d62c5e6790dcf
- SSDEEP
  
  768:IT7LlB8tFJutlA/kUTr8yI32JVmugdQCwGHZgm5S:67BBk8tlA/kVy7JVmuguCwGHZgm5S
Score

1^/10
behavioral21 behavioral22
- Target
  
  HaiTacTiHon/Haitac_Data/Managed/System.Globalization.Extensions.dll
- Size
  
  6KB
- MD5
  
  f09c5ddef200f21725e5fde17d3b9016
- SHA1
  
  44bff1f24b235f742f84e4f152e912fa0452ec9f
- SHA256
  
  4e8c5ad3450450ba6bc6a474300f2445094870f2bcc9ca16472fb2f3adb88ebd
- SHA512
  
  d966eede100800f13f6c759a59410758b137379aae5ad4f770e705197fd02b6b7e7ea26f08a9bddc10fbf5e01948117e3721248603d5e40756f458f20edbf6dc
- SSDEEP
  
  96:ZA4ggaqpBVwEw8xv1lOH2OARPtcRQKRWen0R/0:llLxXOZARPCRpRWen0R/
Score

1^/10
behavioral23 behavioral24
- Target
  
  HaiTacTiHon/Haitac_Data/Managed/System.IO.Compression.FileSystem.dll
- Size
  
  18KB
- MD5
  
  18e0d388505a573cc146086abc4860eb
- SHA1
  
  94bcecf940e6333f33e08009a01276722ad1aefd
- SHA256
  
  c0d2b23ecce72521b4f8880357aacb28826fded1afccef4118b0409fcf42161b
- SHA512
  
  71129667d195958943f42a94f57ab7e31ee6fa6b62409aa09f56c900bcd042950fbbdf037e1e73f58e0b4e23292de81d69111f48561868c61bd81ee9911aba34
- SSDEEP
  
  384:RPQA4DgKGRwrtLsWbRbli3ESmMadM1vz2a:RoA4D/J6q
Score

1^/10
behavioral25 behavioral26
- Target
  
  HaiTacTiHon/Haitac_Data/Managed/System.IO.Compression.dll
- Size
  
  112KB
- MD5
  
  2189b125ccec51c0e148cadb027eed90
- SHA1
  
  3cb545b6aa1ad8c1f5cfb0f24729b76bec17af75
- SHA256
  
  4c9a53e16aa64f2f775eeda43a8f247ed3adb0d8c1497435fff934e413bef039
- SHA512
  
  8634f1cf587c687102bf687ebffd2b3aa8cfeaf07f0931c8411e3f537f6b55e255f66be5ce0398b22a336450ad8ea173f4f79b8ca961da827fca17c96ea824c5
- SSDEEP
  
  3072:haN5/sy/nNo7hPjma0m9Y4gbcRiuT/xHuVra:hmsyPOL14
Score

1^/10
behavioral27 behavioral28
- Target
  
  HaiTacTiHon/Haitac_Data/Managed/System.Net.Http.dll
- Size
  
  120KB
- MD5
  
  cd29c7d2b38b4925610b920c7ac641f4
- SHA1
  
  372ca30caabfe3ac457799698a782d0cd13c92b2
- SHA256
  
  02ce600f6b3ae24049f09fcf2720a5a136046dbeda7fb7b76a830bbc66e12817
- SHA512
  
  77a26fdae8238537214ba3066a20fe55bf55f50c4dc045fa43308a70fbd8bc5566a2f3b28997a021b673818aa80d2921e4906c893c03d4810021909b4e595d20
- SSDEEP
  
  3072:oaL12qTuf3JSsjMP+P9YPU6tLD7SZf/rM4miR9eKRN:cV3zK+l0+BN1R
Score

1^/10
behavioral29 behavioral30
- Target
  
  HaiTacTiHon/Haitac_Data/Managed/System.Numerics.dll
- Size
  
  116KB
- MD5
  
  5b484f9d5b59b03fa43ffe2ef2ea5ad7
- SHA1
  
  edfc4f5448c2426ae68b3d6fda40edaba0d5e772
- SHA256
  
  2af23581f9fb52414facc5c0841533c3d062798da1b3413348d4edc54a69a52f
- SHA512
  
  08218cced9b7bae134422fbbcbc52909bf20b7a6ff07a3bbe6bc83a4f38711b66f51dc8df4b6165a810973ba80412c2594c8ccd67b1a43dcba80116e197d1d2d
- SSDEEP
  
  3072:fMfI6LW44qVSJab8CbEJCuZzmLw5351p/bxO:cbduZycxBx
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32