Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

So0laradf43uhi.zip

windows10-1703-x64

1

READme.txt

windows10-1703-x64

1

S0laahgi.zip

windows10-1703-x64

1

S0laahgi/S0lara.exe

windows10-1703-x64

10

S0laahgi/inDd/bn.pak

windows10-1703-x64

3

S0laahgi/inDd/hi.pak

windows10-1703-x64

3

S0laahgi/i...v2.dll

windows10-1703-x64

1

S0laahgi/i...af.pak

windows10-1703-x64

3

S0laahgi/i...am.pak

windows10-1703-x64

3

S0laahgi/i...ar.pak

windows10-1703-x64

3

S0laahgi/i...bn.pak

windows10-1703-x64

3

S0laahgi/i...ca.pak

windows10-1703-x64

3

S0laahgi/i...cs.pak

windows10-1703-x64

3

S0laahgi/i...da.pak

windows10-1703-x64

3

S0laahgi/i...de.ps1

windows10-1703-x64

3

S0laahgi/i...el.pak

windows10-1703-x64

3

S0laahgi/i...GB.pak

windows10-1703-x64

3

S0laahgi/i...US.pak

windows10-1703-x64

3

S0laahgi/i...19.pak

windows10-1703-x64

3

S0laahgi/i...es.pak

windows10-1703-x64

3

S0laahgi/i...et.pak

windows10-1703-x64

3

S0laahgi/i...fa.pak

windows10-1703-x64

3

S0laahgi/i...fi.pak

windows10-1703-x64

3

S0laahgi/i...il.pak

windows10-1703-x64

3

S0laahgi/i...fr.pak

windows10-1703-x64

3

S0laahgi/i...gu.pak

windows10-1703-x64

3

S0laahgi/i...he.pak

windows10-1703-x64

3

S0laahgi/i...hi.pak

windows10-1703-x64

1

S0laahgi/i...m.html

windows10-1703-x64

4

S0laahgi/i...ng.dll

windows10-1703-x64

1

S0laahgi/i...ng.dll

windows10-1703-x64

1

S0laahgi/i...ng.dll

windows10-1703-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    So0laradf43uhi.zip

  • Size

    52.6MB

  • Sample

    241015-bhytaazdmm

  • MD5

    b7fe767337ee2bbb15b5798b98dc93e1

  • SHA1

    9480d17e14eda9c4393df39e84380b90dbdd0cac

  • SHA256

    c51b710578868212b274ca8bd0b6ab705f79d3e1dd490d4fcfe06d231b6ef7e9

  • SHA512

    bdd8213ebbb9b1f3280b6888d72f5692e770f6e46786ac05af285e5a612ae64c910fada6a4f18186d0aaa3a1facb425d531f664758542cce05b4c6349ed2bb46

  • SSDEEP

    786432:5eGtq3EDbPRLBJRh4ZHgpzEVfgvyThFAKqvcBD8LX4yiVwogPRKO/wq9O/pfFYTI:5eSqmPt7Rh5KThzqa4ITgFo3ZCGAM

Score
10/10
lummadiscoveryexecutionstealer

Malware Config

Extracted

Family

lumma

C2

https://drawwyobstacw.sbs

https://condifendteu.sbs

https://ehticsprocw.sbs

https://vennurviot.sbs

https://resinedyw.sbs

https://enlargkiw.sbs

https://allocatinow.sbs

https://mathcucom.sbs

Targets

    • Target

      So0laradf43uhi.zip

    • Size

      52.6MB

    • MD5

      b7fe767337ee2bbb15b5798b98dc93e1

    • SHA1

      9480d17e14eda9c4393df39e84380b90dbdd0cac

    • SHA256

      c51b710578868212b274ca8bd0b6ab705f79d3e1dd490d4fcfe06d231b6ef7e9

    • SHA512

      bdd8213ebbb9b1f3280b6888d72f5692e770f6e46786ac05af285e5a612ae64c910fada6a4f18186d0aaa3a1facb425d531f664758542cce05b4c6349ed2bb46

    • SSDEEP

      786432:5eGtq3EDbPRLBJRh4ZHgpzEVfgvyThFAKqvcBD8LX4yiVwogPRKO/wq9O/pfFYTI:5eSqmPt7Rh5KThzqa4ITgFo3ZCGAM

    Score
    1/10
    behavioral1

    • Target

      READme.txt

    • Size

      80B

    • MD5

      93936b2a0f5b7a4527b706872889ba8e

    • SHA1

      e6e534b24b4b65ff429a97c0140bdc42d87cc9cc

    • SHA256

      b14d6808ba17bb08f724d8862a36e1b8f63b0714fca954e1f7a75acb24487995

    • SHA512

      21f591186df12f56b11623032f57da083d7fb9b2b6f2638fe327fd7fd6f5c32e5effbfc7ceb9e14852150a28386c0f482e810e0993acdf4f2e081d6ff23405b9

    Score
    1/10
    behavioral2

    • Target

      S0laahgi.zip

    • Size

      52.6MB

    • MD5

      2800b69cf6f0f94aa710b81ceacafdf6

    • SHA1

      b80accae64dfe83cc1452ee62773e14ad8d056c4

    • SHA256

      c9b6cee977f55b4b5427c2a10cf75f275579c7ff08796edbdbdd5b1ceb6e04d8

    • SHA512

      6917cec7d2803e08c66fa0243a16bafb5ce679f31f33118fcaf8f600cdbe6cfe5cbbb662856aed98feb99ba04e9dd4c2e3e02aacdefdde4dc6d99f1d948a8d80

    • SSDEEP

      786432:8eGtq3EDbPRLBJRh4ZHgpzEVfgvyThFAKqvcBD8LX4yiVwogPRKO/wq9O/pfFYT6:8eSqmPt7Rh5KThzqa4ITgFo3ZCGA2

    Score
    1/10
    behavioral3

    • Target

      S0laahgi/S0lara.exe

    • Size

      371KB

    • MD5

      0eddfde16ed6019e4c12920ebb70bcfb

    • SHA1

      6a7397ebd83aff92ca7474f4cccca5ceb592e7fb

    • SHA256

      4f5825e0409c1b2a42f2c1db12acbe9f8df7365e9fac7d569e0d4530d1ded2c4

    • SHA512

      c4aaaacbb9ffeda289ed6784562b9a7ba6ed96985ab5f595cabf2e86358731f127f3bd101cdfa16249cedc92a501d2120eaf282e491623febc5dbe6af161f1ea

    • SSDEEP

      6144:N2R5L8AYOGfl8RWwCtOJE4UkXm9iVe68112twqaZXvw6h:+LAfeRbFJE4+2e6012tUXvw6h

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral4

    • Target

      S0laahgi/inDd/bn.pak

    • Size

      780KB

    • MD5

      cb203032925be270222dc2c20fe771e2

    • SHA1

      2f2f20bbbd07ee01cc996247bd9c2f40037dff80

    • SHA256

      297d52b252df0912490ddf26fa58706895e70c2a0f3f09d0dc756706720095ef

    • SHA512

      052be75c51051949c84216566b462733b61026ba74e212b000cbed7d93cb852e74ae83d64d2eaadc3093af4265b6783184cf8e0368a75e077d4b75daba40f9b4

    • SSDEEP

      3072:Kw+ZjJj+E7z0eC6HcvR1kgBbdawSU5ZwXll4:4tJXZ78vRNBbdz5ily

    Score
    3/10
    behavioral5

    • Target

      S0laahgi/inDd/hi.pak

    • Size

      787KB

    • MD5

      1185163466551aacae45329c93e92a91

    • SHA1

      0dcbfed274934991966ce666d6d941cfe8366323

    • SHA256

      eda355e3785313e3d982c1d3652266dce1b6e08832056fe58854b825e0712ca5

    • SHA512

      6fad3e24eb868acf78db0591c7ba77abc84e92cda28e8bffee435ea89940a8607e7628c6c5159349377a8d933f373db2dfa4e5715ca404bc3e67fd4a0f22a606

    • SSDEEP

      3072:4m//Yxz8BS65Ob5EeQzFc67R7dk5Sv34QAEm5dmLrsoe4GR3doInN8edYbOqGPt5:rYZ895O9ExFlReg5R5HQO4

    Score
    3/10
    behavioral6

    • Target

      S0laahgi/inDd/libGLESv2.dll

    • Size

      7.0MB

    • MD5

      4bc8512992c028a33e96069cc80e9780

    • SHA1

      f26ea162941951edb3d508b604b982b5344f4f77

    • SHA256

      7d4a186f5bc35988d15df62283dee1ebcae14ff225dfdf6a18612292fa344271

    • SHA512

      1540847d2efa14b879d6bde390630ca8d72a481e4ae8b1b506b256eefc48bbac0141274498ab8a23015c667ab29a3a7016b229a01218d384762f79bc30848992

    • SSDEEP

      49152:UcRs1/VOY14IRwMqs5Jbkqd0bRh7yWXSnYUIV2Wi5zi1lJf3Lnn6cB7/h2Hmbs2r:PG2Ipp9eR+UDGRSoGetN4/n1T

    Score
    1/10
    behavioral7

    • Target

      S0laahgi/inDd/locales/af.pak

    • Size

      327KB

    • MD5

      c9312ff081e600e5fb4483b46ddd7c23

    • SHA1

      1ff05a6a06cc73caf2d7545a3821d90c228ac0af

    • SHA256

      b1987cdcbb8d76598422aa1739a246ed6690dc1b211f950fcbf2f040491ed7a8

    • SHA512

      20c136b44770aa0e06259687656675a3e14310ea4e8ba214726b216bc1bcad6026267bf0132cbca642c0b5c49293386d0a1bd93ba40e1c33b648ae70416e8898

    • SSDEEP

      6144:ZP+kgc+kVWlEvC9Z5D49Em7kLjB6oAYxjYgDbwxesB+xSK1IA3y25tHwDwv22iGe:ZPfclEvC2im4LjB6oAYxjYgDbwAVSK16

    Score
    3/10
    behavioral8

    • Target

      S0laahgi/inDd/locales/am.pak

    • Size

      531KB

    • MD5

      e8bac983607c5432f789afdacdda42ac

    • SHA1

      95c26f47f7102be338263fd7f7e365632651f22e

    • SHA256

      ee363b88697a26d486c77bbf05f5f7f62d4b40c235e1d85e11448083070576f7

    • SHA512

      5e26f40c8dc088d21b9b6a01041ece3bd4b2899ee33fdd85be995545c7a24860fdc9c672da8c9345a08891e0bac04ccf4d65de543f4cfba0bab0ae3fb32354c7

    • SSDEEP

      12288:GguzxX8xfzKsEYg95z9SBeuUPQvx30jH8+I:GX8xfzKnYg95z9SBoPQr

    Score
    3/10
    behavioral9

    • Target

      S0laahgi/inDd/locales/ar.pak

    • Size

      574KB

    • MD5

      d1d99f4f2045531edc47d37a367402bd

    • SHA1

      825385e524ece779c641a4ce2a57d14ff126d509

    • SHA256

      bfa2a3c3ebb3c6afbca42cb70b4da8f997068d511cf40ee8a952a893b8f9d7cd

    • SHA512

      4255b02c19ed373d711068a2d4639d462372071cc2aadb6afce459d9fe19bda21ffcbf1604e4937617cd5fee996f9b3786be1c2bed4dc4919d849c7a988a6ac0

    • SSDEEP

      12288:el2RFtqr0jXjiRp8DvYUBuSYRrA5SNbr+ATg8Y3MgSEN6h:m2Ru1fRk52+M

    Score
    3/10
    behavioral10

    • Target

      S0laahgi/inDd/locales/bn.pak

    • Size

      780KB

    • MD5

      cb203032925be270222dc2c20fe771e2

    • SHA1

      2f2f20bbbd07ee01cc996247bd9c2f40037dff80

    • SHA256

      297d52b252df0912490ddf26fa58706895e70c2a0f3f09d0dc756706720095ef

    • SHA512

      052be75c51051949c84216566b462733b61026ba74e212b000cbed7d93cb852e74ae83d64d2eaadc3093af4265b6783184cf8e0368a75e077d4b75daba40f9b4

    • SSDEEP

      3072:Kw+ZjJj+E7z0eC6HcvR1kgBbdawSU5ZwXll4:4tJXZ78vRNBbdz5ily

    Score
    3/10
    behavioral11

    • Target

      S0laahgi/inDd/locales/ca.pak

    • Size

      371KB

    • MD5

      de21c7d001b771d4d59e2acfdd67dd44

    • SHA1

      ef5870e9cf34416edbec6aa76a6feb77b70b9acf

    • SHA256

      78bbee9bf6c95d239418037fd4660d081ebc0f369e727e613b6b652e380e6dd0

    • SHA512

      3276a84a4b4d90b47789a7ce6a3ae34afec187145a438fbdb7f398152b182e97ba10acda4941456ea2387c03c101bc2b1716a8950897ea3be180b3d8c073902e

    • SSDEEP

      6144:moaCg6EDiYqdSIs3cehEYBC2l3nbh9aGHQl2SwAGwXZM0dLbpuQRBtryBocaGIlI:Hg6EO9dSIs3cehEYBC2l3nbh9aGHQl2t

    Score
    3/10
    behavioral12

    • Target

      S0laahgi/inDd/locales/cs.pak

    • Size

      377KB

    • MD5

      3e2c49143f4718ddd9c1c74f8599fac2

    • SHA1

      7cce45de66a3895c3493b998fef7bedf045b29e2

    • SHA256

      08e40f5efc616cdc0588fb4b1a706d997c69d17ddaf97eb91a4aabafaa11cee6

    • SHA512

      a849ca0d09e0d4c025d9de6c8008c13e13581961c321f53a552deeaa210db891914386fd51673615aec8b5d8d68a921a968db5d0fe447963892ceb0948861e3d

    • SSDEEP

      6144:QhKH/gwYPl/XACAjRe15q8+Y1zAXn5q8QM:9fgdPl/Q3e15q8+Y1AXnF

    Score
    3/10
    behavioral13

    • Target

      S0laahgi/inDd/locales/da.pak

    • Size

      342KB

    • MD5

      f3a47e259c59de0aabef03e6b5a263ca

    • SHA1

      c45bd961c8bb84331d652f4399675b365f5dfe23

    • SHA256

      13c9583127d9d723801c946039e60f72dbbde898dd23fb9f675b9e299d0ce72a

    • SHA512

      4249456e572403249580905f1b4b4471b6a8d84c6c71201c42adc862d4e0d33f957ae1057109e900a10a029a8dfc45257b0e0e283ad9eca21a30498a0795eff2

    • SSDEEP

      6144:eAzv/f19wl6qKJwRXFGZO2Z5nYryGzOWi05TWwc:5H9IF85Yr5T0

    Score
    3/10
    behavioral14

    • Target

      S0laahgi/inDd/locales/de.pak

    • Size

      367KB

    • MD5

      cfc9d90273c31ccf66d81739aa76306a

    • SHA1

      ecab570041654b147b3dd118829e2f7ae668f840

    • SHA256

      8bd127d689be65e45bb8d2a2ff66698200da97835809c6b56ec9e2929b70618a

    • SHA512

      c9a5058b34c4045ff1b7ae25f1f47bff14d06b3a97b7b1f30da65618ca7aeb0638d79f4e1cea4773cd92d9dfa7f9d2203e5734d0cfe11ee2d2a460d6cec18380

    • SSDEEP

      6144:F+QNkAjzYyqSFaPjON3Be0mzBWCj0Xs5HgIxBI0gql:cQLjMyvFaCN3mzBd5xy0gql

    Score
    3/10
    execution
    behavioral15

    • Target

      S0laahgi/inDd/locales/el.pak

    • Size

      664KB

    • MD5

      8f5a15560710db2af852512b7298b93e

    • SHA1

      30a13ebef10108effbad8c24b680228660658415

    • SHA256

      bc07e403272a4d65305fe24a827404d7b931d01cda547f8c07a840d19e591430

    • SHA512

      e3cedc0eaa82b10a68a40aca8ec1379a6bb924766e1c5abd97e39c621dcbc195d6c1ff80921c2320f0f1c87d160bc2a6258108399876339e5104f98d90a861de

    • SSDEEP

      12288:RdquNwK202pgaZH4q5OaPY3HvO9K63/fgBsbfFnxHuhWTT9rkv0pfBtMMkffFZig:RdquNwK202pgaWqsaA3Hm9K63/fgBs9I

    Score
    3/10
    behavioral16

    • Target

      S0laahgi/inDd/locales/en-GB.pak

    • Size

      299KB

    • MD5

      05ac84aa6987eb1f55021b6fba56d364

    • SHA1

      58cb66bba3af0c6cc742488ccc342d33fc118660

    • SHA256

      e1e357c853eed83fb6c4133f8f4df377a8eda4fe6f0e55395f21c5ab6e38faa8

    • SHA512

      c615e1eb01412c5e2c0402242d442a6cf08965318d1c0d261ca5bc6df9acba5efa2c87ade20e1e4740d2239ea56d1ce4d3fc7a4c3eabe81b876ecb364b3e91b6

    • SSDEEP

      6144:WJeP/KOb6vG8GGvDJAgdMP9ectcaAfaYEnG2J05SSvqo:1COb6ugdMrcarnGf5SSio

    Score
    3/10
    behavioral17

    • Target

      S0laahgi/inDd/locales/en-US.pak

    • Size

      302KB

    • MD5

      3fef69b20e6f9599e9c2369398e571c0

    • SHA1

      92be2b65b62938e6426ab333c82d70d337666784

    • SHA256

      a99bd31907bbdc12bdfbff7b9da6ddd850c273f3a6ece64ee8d1d9b6ef0c501c

    • SHA512

      3057edfb719c07972fd230514ac5e02f88b04c72356fa4a5e5291677dcbab03297942d5ecdc62c8e58d0088aed4d6ea53806c01f0ea622942feb06584241ad2d

    • SSDEEP

      6144:yoaiWmH9xPN6DacNMP9elahdQfaYejDJDsN5ySMZswS:taiWF+cNMbhd7jDJi5ySEswS

    Score
    3/10
    behavioral18

    • Target

      S0laahgi/inDd/locales/es-419.pak

    • Size

      366KB

    • MD5

      13c6d0a268545541f325375d431b41ae

    • SHA1

      5f5c41348f00c5e5539d261c2b76ae6e3ec7af83

    • SHA256

      943fa8774ade38d57349a5d27869097a782bc06bd34c40864a85ba829457d127

    • SHA512

      09cbb2b21304ca8afa8b760b738adb5422e83550085f1aed8e8590eeef04a2b0e131e1ead6723c3e85383630c483d7720e55f71305ff4821d7822fe6d7aa4252

    • SSDEEP

      3072:rt+uPUzEx0HrKJBjQMU0dmdv5jrqMCOyu0sdzPh7buhwwJ3Os57lLfGLFg3WSszj:rt+o+I0H6nUxv5rYQQJH5sLFg3WSsTG6

    Score
    3/10
    behavioral19

    • Target

      S0laahgi/inDd/locales/es.pak

    • Size

      367KB

    • MD5

      c8086dc25cf0a3c978b2c3b37edf8d67

    • SHA1

      7b6d2ce8b3cc5a33ab2bcd23114fe65ccc568e7a

    • SHA256

      11ef2c0229c1fe1c10be08e3d5f36c973bc3c272f37b40e05c534a118757461b

    • SHA512

      230e6999a6fea1df3b2708eb331a2c25ca53677b3453745ff9cc7fbbc013b69148af5609166720255a2db7e63b25e2d0c599fb07057a6b47bf61f63ea9db9e01

    • SSDEEP

      6144:OYkS2J1Bc2UoWCfgfr56ZLb5R7q5zrB7bUlo4AN6PZmz:OYl2XWn5r0pFRm5zreloXnz

    Score
    3/10
    behavioral20

    • Target

      S0laahgi/inDd/locales/et.pak

    • Size

      330KB

    • MD5

      054865950b3b9e8312a7f9490268eaca

    • SHA1

      28b0176112eddb7af58386b4f8aed4a49b9a2661

    • SHA256

      3599e7138a24a31839da877cc9718b9c0c9522437ea93a6222a119080f108d14

    • SHA512

      bfc72f19ad1a52c0da82409accb33a27b2844ed29010207268c7d695ad7562a8867a87b70ac50142909b50b81a5c84d6f6a43968353ae7a72bc042aea8cbb59f

    • SSDEEP

      6144:GPJXg42WkHwGkDmzZpDM0djry2zuJbT/RcLvihV15Ujc43ceLfLPQu:6JuvymrDbWF15Ujf

    Score
    3/10
    behavioral21

    • Target

      S0laahgi/inDd/locales/fa.pak

    • Size

      535KB

    • MD5

      c27431f2de37b9643b83e383f7eae5a8

    • SHA1

      16d068d9738e1aa9b94658299a4eac3972520864

    • SHA256

      bb28ad47e95aefaa2d8d7b6a7f449f9707cfadbcd4c21bad8bd8a6578108d2cd

    • SHA512

      4ccc46dc7756ea0e60e6d278bcac1262a54ba03742fd0eb4d9f1f962486394fa56491844871dacb4cb0501c6f594334d3f23f3db82bfdfa1f938e1ae609d6600

    • SSDEEP

      12288:aGz43DX9nuya1jfwHLwNUaGSSfStQvueKT+JwMTAKzIxRAQiHedNu3htodxWetlh:aF3luya1jfwrwNUaGSSfStQvueKT+Jw7

    Score
    3/10
    behavioral22

    • Target

      S0laahgi/inDd/locales/fi.pak

    • Size

      338KB

    • MD5

      aac0554a39bb1ae91e2ed4246e04c30e

    • SHA1

      031785024765eda1534fd9504eccbe1b471ae618

    • SHA256

      df8cefa4831fc2fdf817dd6d49a6373edee4f51f23cf990c690e72ce348f69bb

    • SHA512

      a6afc9464047c75157dcb8ece086c1c5bf4dccb48d33da24e35c43110f300cfea503c4cca093f3d4bcc7a0fdcb306138da5be288ef646881b625751e40d93689

    • SSDEEP

      6144:3pR/2jxpvwhnVgQsm3aOE/8aCEELsR5w5jSH4EJ18GWU/8nZRuX1wr2:vOnvoG8a35w5+H4EJ18GWU/o2

    Score
    3/10
    behavioral23

    • Target

      S0laahgi/inDd/locales/fil.pak

    • Size

      379KB

    • MD5

      f989a7215cac1e3fb4759e5fba9aef67

    • SHA1

      5ecf35f160e1f8242b3bca163673e24cf6d77403

    • SHA256

      448bc8eae353c188ffaa4c2466956598ad807f0f0aae7f12e1bc59584e1aac2d

    • SHA512

      b872beb5b1c2702f4eae616f633318b4575f573c06a3f1f0f1e1ab83585a52caf2f3c788c0c3a0d499c381fb7f06a3ea355b8686ded2ed1e392662f2746db01f

    • SSDEEP

      6144:Po2wvMrF/y/DQkaRqQHunLxenGkZ3+mo59gmPHkAxw78:ykeCBHudqo5KmF

    Score
    3/10
    behavioral24

    • Target

      S0laahgi/inDd/locales/fr.pak

    • Size

      395KB

    • MD5

      13968778147dad5af68fdb7464ca517c

    • SHA1

      42abb9873c472a82d400e6896e90731b7cae06b5

    • SHA256

      7af39af49846fba6d6b8ee18b2a212f1323ebc1cff1af0053194d01d8d5433f6

    • SHA512

      c1f54ccf4f82e158173d9db8464adca64a88f8ddee23afbb51d80535b4f25f138dac16a337504ca3ff8c3dbe9aff05ecc2aaa40afe8d77bbbd4f141b07e39100

    • SSDEEP

      12288:k7L2tn6QuagV1YzhKJZsMYnYE1OxBW50xLHIWWCMcpU8wRp5a5FQusDh6dBKIJFb:GJVdMcN5B

    Score
    3/10
    behavioral25

    • Target

      S0laahgi/inDd/locales/gu.pak

    • Size

      755KB

    • MD5

      7b476c423ce29e61b0b21d7b6a2a56b2

    • SHA1

      5558dcec5b2580345b0797f1f2ea41952417335a

    • SHA256

      047da4dfadcfc6bec8f4dc7d250b1757caf31a23bcfa2ea3e1f3b1cdbe9a3995

    • SHA512

      a494ab32e45cf74e2b7e0424b4e3740470c5c6cfac8f6cc980a681eb8c21cab76255391b6884134593dc7b1029ffd861f74b47130533232881c137c41ef92cac

    • SSDEEP

      3072:/h/zHr2DzDNmtZITYKMaWZu/lsMhmkTd4MUz2sQm251jvHsWnIIRfAHw/g/I/B6i:/ZDizBm/Voaz5cYh+Gyj

    Score
    3/10
    behavioral26

    • Target

      S0laahgi/inDd/locales/he.pak

    • Size

      468KB

    • MD5

      f4dad4f97b5f75d6d7219d43f630c2b9

    • SHA1

      ed8c790b3b5e3faf683aa978895f266eea5b823e

    • SHA256

      6649a844f222cfcec01e75d3de3cb3658f1347ea3851d31b8124597b87e7b57d

    • SHA512

      f00e7e38ec0da1c110b4142dd13b3cae8b912c16518eeb4cfd7f19a0cef2c6601ec1e4959597066703b12b7dffb44fd918c7170231c2b42e40b0d90241b85133

    • SSDEEP

      12288:lsQOFiBr3By4L92QmYq6A560SAX4o75P5oAHM7O5p9mTfDnwPEQgo:lsbss5Bok

    Score
    3/10
    behavioral27

    • Target

      S0laahgi/inDd/locales/hi.pak

    • Size

      787KB

    • MD5

      1185163466551aacae45329c93e92a91

    • SHA1

      0dcbfed274934991966ce666d6d941cfe8366323

    • SHA256

      eda355e3785313e3d982c1d3652266dce1b6e08832056fe58854b825e0712ca5

    • SHA512

      6fad3e24eb868acf78db0591c7ba77abc84e92cda28e8bffee435ea89940a8607e7628c6c5159349377a8d933f373db2dfa4e5715ca404bc3e67fd4a0f22a606

    • SSDEEP

      3072:4m//Yxz8BS65Ob5EeQzFc67R7dk5Sv34QAEm5dmLrsoe4GR3doInN8edYbOqGPt5:rYZ895O9ExFlReg5R5HQO4

    Score
    1/10
    behavioral28

    • Target

      S0laahgi/inDd/resources/LICENSES.chromium.html

    • Size

      6.3MB

    • MD5

      34999967f735b07e9cbcf6c397cea4db

    • SHA1

      8001fcdd6ce0c6e5a3d91fd45e4c9726fa67f3e4

    • SHA256

      c5a05048505c00af46c75fb5ca22057f09dce001eada3a756c3839d59011758f

    • SHA512

      b6c2f722b6551231801e453bba8f9593d9f1a82edb305869ee07ef77f286968eb6ad5db1abbe750e88c8af973c362ee161aa5c591ea04ff39e4f4b34e6fa4baf

    • SSDEEP

      24576:/PV05W5WS9YzHIlGMmfu626s6W6a6q5AHWeQFpD:F9n

    Score
    4/10
    behavioral29

    • Target

      S0laahgi/inDd/resources/app.asar.unpacked/node_modules/btime/binding.node

    • Size

      118KB

    • MD5

      13a2579ed95366185a6247c9e4b9f0cc

    • SHA1

      61fef12da622484e44b3c9ddcd61706c9af00aa0

    • SHA256

      98c51303c38dc03faeeba13f26fa3c6645d0c1a502b8a5d28177ce015dacf35f

    • SHA512

      7aae5a45f5333355c81e4a7468d40c9d814a1b242c99a39747fea9b66e277dd1060bda290fc980e958beccab2ac0232fc4aba078426ac5ae39c19968ae8f58d0

    • SSDEEP

      1536:OMwHUFyUCyB7KdX2teZOpSPtvdO+tYLZI2mAq+J6sWyd09dlgh7tBrdO6t2:hwjUCyB7eC8OpSS+tYLZI5+NMKFdO6t

    Score
    1/10
    behavioral30

    • Target

      S0laahgi/inDd/resources/app.asar.unpacked/node_modules/get-fonts/binding.node

    • Size

      125KB

    • MD5

      eeb1d1ea9fc3f870f292161cfa79850d

    • SHA1

      ea4f4324245f9f4d6280ef285151f688221d6023

    • SHA256

      149bc3824ecbf68f7a892a311e77548ea156963b88db0590063b50725c9d883c

    • SHA512

      795269fba2737ca51d61bb0f6e674c8ed45f2590a48d1dbc53adae9a85b5565e372de6e2a888f038660173f6f4fe0ecda293c441415296e79097c261c452f254

    • SSDEEP

      3072:cd5+N3E2MosoJCakr0dHPAMMMtrAfz9MrRAG:yIxMQQakr0xPSfzirqG

    Score
    1/10
    behavioral31

    • Target

      S0laahgi/inDd/resources/app.asar.unpacked/node_modules/vibrancy-win/binding.node

    • Size

      118KB

    • MD5

      6c12c930f974e5bc7872b58964f42359

    • SHA1

      805c5c899c32535d2ee8b2bc12deefe5fdaae566

    • SHA256

      094bfeb0692885f1e56bb363e1065099eab48a7988c8603fd6a3fb49ec88b09c

    • SHA512

      f46c416e3f33e0526c2d4cb3df738f7c9b11fece350b90ca9613e5d86bae7a363dd20b80d62f5745a9d51773b655199537b09fcf47acf226f35002f39f1596d3

    • SSDEEP

      3072:/WKjx2yp1tLqA1HB4kdeRqGmX5EMMi6leGS:3xBPVf1HB4kER4UFhS

    Score
    1/10
    behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

Score
3/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

Score
1/10

behavioral4

lummadiscoverystealer
Score
10/10

behavioral5

Score
3/10

behavioral6

Score
3/10

behavioral7

Score
1/10

behavioral8

Score
3/10

behavioral9

Score
3/10

behavioral10

Score
3/10

behavioral11

Score
3/10

behavioral12

Score
3/10

behavioral13

Score
3/10

behavioral14

Score
3/10

behavioral15

execution
Score
3/10

behavioral16

Score
3/10

behavioral17

Score
3/10

behavioral18

Score
3/10

behavioral19

Score
3/10

behavioral20

Score
3/10

behavioral21

Score
3/10

behavioral22

Score
3/10

behavioral23

Score
3/10

behavioral24

Score
3/10

behavioral25

Score
3/10

behavioral26

Score
3/10

behavioral27

Score
3/10

behavioral28

Score
1/10

behavioral29

Score
4/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10