4599f5d504c127f7e2ee391f06725461b9b761492c72ac2eb98f2429f04ef5c1 | Triage

Sharing

General

Target

4599f5d504c127f7e2ee391f06725461b9b761492c72ac2eb98f2429f04ef5c1
Size

39.5MB
Sample

241024-y8ngkatbkf
MD5

1bed0a495133dd4d6c9efaf7e71f8ef3
SHA1

a51a1d258b5cbcc93916b5eeb0d530f4b3bd94df
SHA256

4599f5d504c127f7e2ee391f06725461b9b761492c72ac2eb98f2429f04ef5c1
SHA512

837b68de2f66e91fba29c394e4c2e4b91d735e5f9433178e95d6dda50d6f49b5d9dae43832f331e8db40b3e24b876daa8a0303d8d9cd9a6d55e758fa644b3b05
SSDEEP

786432:6/nK0CES7y1AT0JtGJSe1mSxFiOAlUrkku2ekYycaUbAV72Fb6XOSNpeeWZfKOSb:6fK0U8TA0SXFiyrkku2BYyX378b6FNEs

Score

4^/10

discovery execution

Malware Config

Targets

- Target
  
  4599f5d504c127f7e2ee391f06725461b9b761492c72ac2eb98f2429f04ef5c1
- Size
  
  39.5MB
- MD5
  
  1bed0a495133dd4d6c9efaf7e71f8ef3
- SHA1
  
  a51a1d258b5cbcc93916b5eeb0d530f4b3bd94df
- SHA256
  
  4599f5d504c127f7e2ee391f06725461b9b761492c72ac2eb98f2429f04ef5c1
- SHA512
  
  837b68de2f66e91fba29c394e4c2e4b91d735e5f9433178e95d6dda50d6f49b5d9dae43832f331e8db40b3e24b876daa8a0303d8d9cd9a6d55e758fa644b3b05
- SSDEEP
  
  786432:6/nK0CES7y1AT0JtGJSe1mSxFiOAlUrkku2ekYycaUbAV72Fb6XOSNpeeWZfKOSb:6fK0U8TA0SXFiyrkku2BYyX378b6FNEs
Score

4^/10

discovery
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/LangDLL.dll
- Size
  
  7KB
- MD5
  
  20850d4d5416fbfd6a02e8a120f360fc
- SHA1
  
  ac34f3a34aaa4a21efd6a32bc93102639170e219
- SHA256
  
  860b409b065b747aab2a9937f02d08b6fd7309993b50d8e4b53983c8c2b56b61
- SHA512
  
  c8048b9ae0ced72a384c5ab781083a76b96ae08d5c8a5c7797f75a7e54e9cd9192349f185ee88c9cf0514fc8d59e37e01d88b9c8106321c0581659ebe1d1c276
- SSDEEP
  
  96:vzQgZZbVchc6cttN0qYEo4p5obm85JakA0GHuRkNBQhRlMOr5:rJZZbVchc6cTNXp5ob5JsYkvQhR+Or
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  26KB
- MD5
  
  4f25d99bf1375fe5e61b037b2616695d
- SHA1
  
  958fad0e54df0736ddab28ff6cb93e6ed580c862
- SHA256
  
  803931797d95777248dee4f2a563aed51fe931d2dd28faec507c69ed0f26f647
- SHA512
  
  96a8446f322cd62377a93d2088c0ce06087da27ef95a391e02c505fb4eb1d00419143d67d89494c2ef6f57ae2fd7f049c86e00858d1b193ec6dde4d0fe0e3130
- SSDEEP
  
  384:Hh2aeOfOkR+nMsNNtnQ8+y4nLD/B6D8p/Ykv7HyVOIgMHciS6hM:SOj4MWNxl+yCIDIv+nHI6
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  12KB
- MD5
  
  2029c44871670eec937d1a8c1e9faa21
- SHA1
  
  e8d53b9e8bc475cc274d80d3836b526d8dd2747a
- SHA256
  
  a4ae6d33f940a80e8fe34537c5cc1f8b8679c979607969320cfb750c15809ac2
- SHA512
  
  6f151c9818ac2f3aef6d4cabd8122c7e22ccf0b84fa5d4bcc951f8c3d00e8c270127eac1e9d93c5f4594ac90de8aff87dc6e96562f532a3d19c0da63a28654b7
- SSDEEP
  
  192:lGqmrBw8Xk21Nu4xfuM5/x9e1oh6YYkvQh+hlfqO1OoAs546QN:gqmr3i4xm+/x9Ooh6YYkvblfVgocTN
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/nsExec.dll
- Size
  
  10KB
- MD5
  
  dcaaa39e47a9144ae10ee67b3183f4e1
- SHA1
  
  2af87fcebff57411e929dd2fce767e9a1e4d98e1
- SHA256
  
  da30c0f57a8a412bdc0fca182702f568bd91007475d1823464658fa523a4af9f
- SHA512
  
  d56997d74d841d01c62b7db4150729f395b57d065a1182249483640f80720fb6dc7a457cc3a23367982f92f85e9274507d6157f698a2e22ea11266866fb1bc2c
- SSDEEP
  
  192:0QfEI6x934y/+RHOmGtiFuubNF/pYkvQh7KA5ACo25JV/4:0bx93LWRHKolxYkv7uVoSJV
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/nsProcess.dll
- Size
  
  30KB
- MD5
  
  d259bdea9552fe72bbf2dbda94ee0010
- SHA1
  
  b1095a6f44702ee793d9304f70a3b21cb8deb0a4
- SHA256
  
  e91ae55a30d0492c43ce0a27b0af0416b6b3d6deb991d84ae89a6d0ebfbe41a4
- SHA512
  
  bdd1584bd8fdf2bc76b2778c068b9a61b2069132b55614334511c42149f0d49cd3e3ce42929abb6cc299930760ecd6c26f77a2c906927577d85966e869f04e87
- SSDEEP
  
  384:TFBJmf8S4Z0OrniAR4gB8/Pm+Ee9XMvDGjoe0gh6oivDGjoe0gh1Tp:TMf8S46Ob2gi/ADGFhZkDGFh1d
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  axvlc.dll
- Size
  
  1.3MB
- MD5
  
  c0b8ab309a87b39e2b0be5e9b03b1d4b
- SHA1
  
  c21eead8cd6746c5d40ae819b50f63f116103891
- SHA256
  
  a08fcfc025ef973d05b86a424054f81a9658d160b8fae7ec2d1df940a1200a14
- SHA512
  
  d96256ed17594e2eca35c3c8e155242f4903b170ceebfefe1123f8c67b72a187f617c4614623d0222182c62faffebf1fc6d9425a9b21aec57b3c3f46a57c07bd
- SSDEEP
  
  24576:oszAWSjtzgHLFftz1gRthRsvBeAWHFusccYvgraBOe:oJ/zgHy4BeAWHt7e
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  libvlc.dll
- Size
  
  172KB
- MD5
  
  96214b94b796bffc48d63289854ae5a2
- SHA1
  
  383bde4b3a861d47794aa4f03479a48c10a644dd
- SHA256
  
  528c416cfb4813ee5f1da52743ef4adb20043171230098b27e25d1dd90e3f288
- SHA512
  
  5243dd7153793ae33c3a25f2a92579c4e31813545680de9a0abab36e61d42655db4796a6f47606b47d6dce0d3f47754fd29fbfd18b973b029df0c543915750f3
- SSDEEP
  
  3072:mZ6EqHx7iXIb/WmRJKn9llPMBq4tNyupwPU0sG0:mZ6E+x7iYiiMn9llP8q4tNyuusc0
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  libvlccore.dll
- Size
  
  2.6MB
- MD5
  
  e25413bb41c2f239ffdd3569f76e74b0
- SHA1
  
  073e2a86c5c24ede4c4ad2d8614261121a8d2661
- SHA256
  
  9126d9abf91585456000fffd9336478e91b9ea07ed2a25806a4e2e0437f96d29
- SHA512
  
  37b8339555dcf825a2e27464eb1d101f8e4b56460d1b78161e99ba6761f1a967668f11ba888a712c878d468f419a455dbc5e8e55e7fb9d4fbc87cb78f500ea9f
- SSDEEP
  
  49152:hDWA3C12sNU/wEz2tMEjv9DZWtxfc1lVG3QNVBAUZLYasUpGaXBuQQ9umM:t3O2wEz2tMEj1lWtOrVG3QNVBAUZLX/
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  lua/http/custom.lua
- Size
  
  507B
- MD5
  
  a0771b01a8c5f79cd6a330bca0d1b4e3
- SHA1
  
  f8bb4dbdbc3eee3b1a3a447c01d057036ff6bb83
- SHA256
  
  f3ccbe2e1b92486f7c9e3197c1059cd5a8894536006a79d4bb67aca3a87d73e1
- SHA512
  
  433d2a3892ba9e740cae1708e740e3fcb317a7bd409f39608b1d6f183089984d0dd18d5d3b2226f70fe102ad20572e4d340d259fad25d05ac8f1c6e11f3ea41c
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  lua/http/dialogs/batch_window.html
- Size
  
  889B
- MD5
  
  f32ae14ca9d7673ebb23fc827d78076f
- SHA1
  
  ff5bff0318296a910740411201cb8a4ca206b608
- SHA256
  
  5189cdb57f5b2e8c3add7e6c4487f5cf8a018508c612f35c8e1305512f2176e8
- SHA512
  
  f5e1994188c34753cdc0dc5143dcdf66a86e56b3a040c1f4b67f01fe5d443fa52f05abfdb8717e051284e5697d4a0ac5f46d2ae36b2c518c0d5a96358f5b0f67
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  lua/http/dialogs/browse_window.html
- Size
  
  1KB
- MD5
  
  78f476640b27adfdcfe6e26edf4cc7e6
- SHA1
  
  414d54995cc46fcf5a12b826df9b8f6f2be21100
- SHA256
  
  d93c774a7aeb4594f56b37e81838ba03b6855c2bbd91eb8cb803dbd413c5e571
- SHA512
  
  daeddd3974908fa314d072b37accaf3dc0f3ab694fcd8acde02a77176d54710fc9115c2ab915b3b063fe3ea89308cee9e3fd67da1641735027af74fc6bb8080f
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  lua/http/dialogs/create_stream.html
- Size
  
  14KB
- MD5
  
  c38a93ae302612a55ccf7f11bdb79c37
- SHA1
  
  f6064e146909323276c6c43410f314666e35b5a4
- SHA256
  
  fdfc3417223b88d2e8f0421ced4711760ab11a3c18a50dc05b805a0f4f1a5134
- SHA512
  
  9c38a52c10455ffa179f0bad0d09d50defddad25d850248a4a15ebf5aefbe0165e12ee7eace516ced181362062b7651c9f246c4a1c77a6da867bc8ad978d56be
- SSDEEP
  
  192:jvlSM2AtdS0E2jSC+J3kuC6qSSSKyf+yO3zy6CGuGek+3LbnAilKyc7aSCWM2kco:jvlIATE2jJAhuDqx3J0vHEF
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  lua/http/dialogs/equalizer_window.html
- Size
  
  1KB
- MD5
  
  06ac4c0cd41f6d82fbf3ac0053567295
- SHA1
  
  5ddbf4e9f947a42819e00c3b5801ede0839ecf4b
- SHA256
  
  62cac570011b9b07e0f421612571a1ce663e49dd3b90a16cf31d8855f1adddac
- SHA512
  
  32ddf815ff7de04562ed71a0f2484770bc03a4730662a35cd93c42f0771742d0ddce1292cc96bea06251c97380291a54e9b89563cf078b36b684b58dcbf7ea72
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  lua/http/dialogs/error_window.html
- Size
  
  501B
- MD5
  
  ad9769b13838d62653857ff47718c6c0
- SHA1
  
  a4683573d5b43aca9e256d4a45dc5ac46db927ed
- SHA256
  
  75d1a1ab807cd97801bc37ed547b26c7b357497e82d01221ac064497c9480304
- SHA512
  
  58a7d9ce56936da79a8f46f0f5c1e465d63ee1b8f68701627ffa00e1c43267899a64a3dfe601bf660bfee66b5ea365a27ba8d68f7d598ab6e3a917b52d6e9fc0
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  lua/http/dialogs/mosaic_window.html
- Size
  
  4KB
- MD5
  
  fbd60881ff01355e0acf55ae6ec77580
- SHA1
  
  2b9b99f754bd7b85789a3ad6d3e4965c59093627
- SHA256
  
  e474ca66e17ecad86fdecd0ff4db1eff7eee70083c2cb30498f81bce71d03e18
- SHA512
  
  1ddfeed4b0530b9c8606b6d0e53d656ed19213afac2d16d13d8bd9bf159e6883fc2ea943d5c5044579a51b11c98b6854ceca8c6e44796c5c511ca83250f60cf0
- SSDEEP
  
  96:9ODRbniQxE7XrCubCMJrhfrHlUdBrDjdjosn:9ckYaXruMLblSBrD5josn
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32