88fe81af41c3cbd4912c0705cd35a3f0914556799f5c9bccfed3c549abed5e45 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Client.zip
Size

436KB
Sample

241014-v3gv2s1cnk
MD5

73ca64bf5fa610aeb8f88d6ddf290fbe
SHA1

f34b411d3fe61c4f19aca8b23b69334820486e72
SHA256

88fe81af41c3cbd4912c0705cd35a3f0914556799f5c9bccfed3c549abed5e45
SHA512

55db79c79357030b38b1eb111756833a05dba8eb8fd34e0910f7b16037d0bfda181f6268ac43674b6d6465a3fae167251fb334392b3fba37626ff70dcdef2da2
SSDEEP

12288:Fo46nrgMkTtoxVTQbSSb9smfV+U+pDFvtHuNJZ0IuP+o:K46reMVTQLvt+UIv9u/3o

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  Launcher.bat
- Size
  
  4KB
- MD5
  
  00aa88a3830ec93763303d15a1aaf745
- SHA1
  
  82d53af33aca86996ca85a2f8fb412bb5c19f9e6
- SHA256
  
  68dab9c38f8b3dcae2b4d327bbb4e4aa3ce4375efa9f7e92073d868334ee1daa
- SHA512
  
  31f329f54b3b5b2f9bbd0955f0dabcb2d7a50ebd9935af89e036455a063bf0d68305aee03ef51687ff6389e065fab477ac18edb60d19aec7692be29381b796da
- SSDEEP
  
  3:LjdIV9ZbLRJFFDa+ZFBW6:FIRFFV
Score

6^/10

discovery
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1
- Target
  
  compiler.exe
- Size
  
  203KB
- MD5
  
  a816f976f4c038be864ea5799047eb5d
- SHA1
  
  2db8cac8b250db14e2e469eba1afbfe300ad25b0
- SHA256
  
  678112c58d9d2c921d6c7ee618194a86a9bb45f1b54068f9f02380f75c2a2762
- SHA512
  
  6500043f4de8c92dc66b262e3f0651f3c654fde009746aefc4c429947ac5bd34a43887bb62272b213e9f7865b6cbee2eeddf62d758fc934767e3e2117d7b31a5
- SSDEEP
  
  3072:lnvavn6z2TMRXs0I0ziBev6pQBeXEmZQCJeoH6ctzJQel5axhtvbOEUgnuBKn7+k:lva5TMRXs0IKiBDbZt4Ggn77+ez3I8
Score

3^/10

discovery
behavioral2
- Target
  
  lua51.dll
- Size
  
  389KB
- MD5
  
  345a8167ea7264c89f9bb9595b4793b4
- SHA1
  
  9f2bec6081fe52d05917e1b115f7d83088a5adad
- SHA256
  
  abf59691fa214b5f9f634950cfed72ace5926b34f4af6600634bbcd17d4cc067
- SHA512
  
  e32cc60db5500b64fee0fcc889bd44abd29c1161bf4a3852405a273ab12f32d15345e605cef600d8f8984afcb9380c0f2047b0291c9fc232eef76502376e3cce
- SSDEEP
  
  12288:hiZ+ox9piQ8G27pC6Yyu5t60O0MJuAghAuNwABt:he19pm7pCuCt6+w
Score

3^/10

discovery
behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3