d32298f1f5afdd3cd03e29ba3fd08787b346bf6ab7fa9296e6bbe2aaff40470c | Triage

Sharing

General

Target

kg_patch.rar
Size

7.7MB
Sample

241101-vwmgysvkgp
MD5

bdd93d60ef63ddb981ba235c621c7a78
SHA1

73f50082da92bfdedb0dec000362398f9f8bc24f
SHA256

d32298f1f5afdd3cd03e29ba3fd08787b346bf6ab7fa9296e6bbe2aaff40470c
SHA512

e661eff938287f380da18231184be2542d1651c30a33271d9b0e82386b33496bc27746caf158490dfab389345cf45992f9a2f4d1c9f9de79252af138614bc2c6
SSDEEP

196608:FFtv9R0KOuzTa15/K1SK7Ds4xcNs8gh+2RdBwJQ:FFt8ruzW15USsDLeghd

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  kg_patch.rar
- Size
  
  7.7MB
- MD5
  
  bdd93d60ef63ddb981ba235c621c7a78
- SHA1
  
  73f50082da92bfdedb0dec000362398f9f8bc24f
- SHA256
  
  d32298f1f5afdd3cd03e29ba3fd08787b346bf6ab7fa9296e6bbe2aaff40470c
- SHA512
  
  e661eff938287f380da18231184be2542d1651c30a33271d9b0e82386b33496bc27746caf158490dfab389345cf45992f9a2f4d1c9f9de79252af138614bc2c6
- SSDEEP
  
  196608:FFtv9R0KOuzTa15/K1SK7Ds4xcNs8gh+2RdBwJQ:FFt8ruzW15USsDLeghd
Score

1^/10
behavioral1 behavioral2
- Target
  
  kg_patch/idapro.hexlic
- Size
  
  2KB
- MD5
  
  f579b3ce020c8b1913819562adbfdc82
- SHA1
  
  325c78ff7a8a56e4337e65d563cedac09c16be61
- SHA256
  
  35325dc0914aa18c4f5d7bff456980876020ac2d5543699e4afddd1550284411
- SHA512
  
  0f275d9ba5cf5f9654fb0dcb2d4ac485b157cb224e647a8f535fa7554b5bc1df9564360c5a630528060102a86352f81ca44b93e8aaea765575edfffe19f7efd9
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  kg_patch/keygen.sha256
- Size
  
  77B
- MD5
  
  453252e12d91924914edf133e393a13a
- SHA1
  
  f896aaa7073f351faef92dcdc22ca64c15d5e485
- SHA256
  
  1165b15e0da9c6ea61f225bfc0c649892235b1e1b16ec36528b63b770db46802
- SHA512
  
  9f4a69393dd1368f453eb18ef750010498e4aac0e6fdd4ee094f14eb4716b3d9e795afca4e9a4b9779c42b94f4ff1ca0649ab27252e7a74150086a6bc66feec7
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  kg_patch/keygen2.py
- Size
  
  6KB
- MD5
  
  2a65b509e9511856a76a9f4bf49fbd34
- SHA1
  
  d71c39bee03ff0021f83a449fc1e7e3f8f593315
- SHA256
  
  da41a74453b5e4b6816c5ed1ad66c8c7a19684c48d23e083bda9d5149966616e
- SHA512
  
  a2fcf2ea39db579da822425e6f43ff8b729fb93cb07e3374e82bb6d187e4ed01373f5d20d580e55207d158855627141cf2303df62da86e3afff42fb37a45c0c4
- SSDEEP
  
  96:yiBFvUmOXHjNeqgHMxboQVnlPNtgNblMS6pvsUDOXWigl9w9BlTqRFOT:Nsjj9oQVlNaNOpBuW/OT
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  kg_patch/linux/libida.so
- Size
  
  6.0MB
- MD5
  
  4fb6f5360f84714744c6fc6aedcd5df7
- SHA1
  
  d5c6e0bf0a44aa205892cf913e04b68caa5dbe35
- SHA256
  
  44cb257832616872237b4c8e01933de78c46f652f72f2d8cf13a88e7bf369a8a
- SHA512
  
  944f60cf816ba51c35a972ec8064c7702e841fc92d5ee7474568f6089fa2fe9f7d4e0f8670c169a92988a53a0cd01cb17c2c662de82d40d2dba341a773e78998
- SSDEEP
  
  98304:67Ljv5Y4j5sfeEZEi289UbqmX6XCVwrnNVdyvu/gEevPeQZl6AhDwN:q1liPMiVqjphEN
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  kg_patch/linux/libida32.so
- Size
  
  5.8MB
- MD5
  
  77e963a6e35ca4edfde1c69eee71b91b
- SHA1
  
  3124cf98f4f03539122db10f5f614fb3f390f36d
- SHA256
  
  94e8afe3c416a25f07ad7feaf24da9037ec86f3ac35f6c5eb5d3c9999d88a3c8
- SHA512
  
  7222314493ae8c22cb583a4dbfadf8802a5d14051cf9082ff65a44cd894e0b5b1290debe3c40422611d91a6b4e698e0820e4d9013853302dd65c570de65f1da5
- SSDEEP
  
  98304:qyjxbtmXFYleUYjQIm4Pkx/KeLovd6QdXKCUNHKkGsy6fCJMOC0:fmVQ/s1doZaGq
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  kg_patch/windows/ida.dll
- Size
  
  4.5MB
- MD5
  
  841ad6f0752199fbb3e1f0bed7762f62
- SHA1
  
  cdb78c1fb416dd02d8e331c097be547573e75243
- SHA256
  
  93b3014077366c1a4de5a1043a2775d66bc10d00af259b75d630e3393877ad6b
- SHA512
  
  e404d15f3cdd0854a83cd5b46f714c6a5084755623cb084a5b33b36d883fd250395d0410d45b5c871a69898bb18fb24563812e6f218a9ab25047f92b78ef44e1
- SSDEEP
  
  98304:hmjSUcMn/ebzCO46axxM7iFow5732hERu7q+c:8SUca/ebm6qM7iFou732hERuhc
Score

1^/10
behavioral13 behavioral14
- Target
  
  kg_patch/windows/ida32.dll
- Size
  
  4.4MB
- MD5
  
  7c9ee7bc31f24df6834d875f2c41e889
- SHA1
  
  1600ff7f49f5f46198489a87b9802d648c3c3e4c
- SHA256
  
  8ab79c98e7207832f4ecd0e031dbcf2ffee07c3efd58c94fabdfc5789a9bbe28
- SHA512
  
  a9da9bf4a26b1802434e799504f4d002270458fe9816dd190acf594e1dfda24016f5de6870ed6efc93b1f6ba04edfac50b1e65079f704950e83a9028e5b82227
- SSDEEP
  
  98304:JIVJmgZGXLWHFXF3hVfJKV1KwOS5ywJH5HimN:iVJnZsLWHFBhVfJKV1KwOS5vJHAI
Score

1^/10
behavioral15 behavioral16

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16