b116cbf112ad9e68f7c38fcd63cc862c7e9ee42734bc47d128ef52b7eae6cc4b | Triage

Sharing

General

Target

b116cbf112ad9e68f7c38fcd63cc862c7e9ee42734bc47d128ef52b7eae6cc4b
Size

29.1MB
Sample

241121-jj73ca1amm
MD5

0385a6642c648e72699e5919ba4cdb2a
SHA1

ab17f308025ce7faf23209e2ff442e12260284b3
SHA256

b116cbf112ad9e68f7c38fcd63cc862c7e9ee42734bc47d128ef52b7eae6cc4b
SHA512

da08fe0d76753e8fc72ea79b1b8fedc00b054f2a176c88617d19631712fe2eaa33de150ca812acac58759b068ffdafe80a787686615b6b2799dcd01257f2223c
SSDEEP

393216:OjXIu91Bw8N57zn8wyu+q1gRTP8QzgvKDal2l4fyTP2p3DdIP3o+W2pnQ33N3aJw:OjIFOUuTezeKDaSzTPc3yP4+W2mHdXiq

Score

4^/10

discovery

Malware Config

Targets

- Target
  
  b116cbf112ad9e68f7c38fcd63cc862c7e9ee42734bc47d128ef52b7eae6cc4b
- Size
  
  29.1MB
- MD5
  
  0385a6642c648e72699e5919ba4cdb2a
- SHA1
  
  ab17f308025ce7faf23209e2ff442e12260284b3
- SHA256
  
  b116cbf112ad9e68f7c38fcd63cc862c7e9ee42734bc47d128ef52b7eae6cc4b
- SHA512
  
  da08fe0d76753e8fc72ea79b1b8fedc00b054f2a176c88617d19631712fe2eaa33de150ca812acac58759b068ffdafe80a787686615b6b2799dcd01257f2223c
- SSDEEP
  
  393216:OjXIu91Bw8N57zn8wyu+q1gRTP8QzgvKDal2l4fyTP2p3DdIP3o+W2pnQ33N3aJw:OjIFOUuTezeKDaSzTPc3yP4+W2mHdXiq
Score

4^/10

discovery
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/Banner.dll
- Size
  
  6KB
- MD5
  
  32599809b2249cd92d49eff595d8cd0b
- SHA1
  
  6b18ea751af2c67e5610a9d51d344f0c4cc6ace0
- SHA256
  
  b6e0e1a8023fc7d63edaf6e83e08d42364cdbc71d6421a161a24f88bfb4fe362
- SHA512
  
  2cddfd26ee09a664905611799a5eddf9ec76e78ea379f301b14738d77f2499bf642f8e6b9304c36285c59f000565472459990d66eab0efb87578dc1489649e2f
- SSDEEP
  
  96:DcBT43JAnu0lpiLjz8Cvt9IruRkNBQhsL0srGXGFJtgav7:zZHo2WYkvQhMGXSd
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/ButtonEvent.dll
- Size
  
  5KB
- MD5
  
  c24568a3b0d7c8d7761e684eb77252b5
- SHA1
  
  66db7f147cbc2309d8d78fdce54660041acbc60d
- SHA256
  
  e2da6d8b73b5954d58baa89a949aacece0527dfb940ca130ac6d3fd992d0909d
- SHA512
  
  5d43e4c838fd7f4c6a4ab6cc6d63e0f81d765d9ca33d9278d082c4f75f9416907df10b003e10edc1b5ef39535f722d8dbfab114775ac67da7f9390dcc2b4b443
- SSDEEP
  
  48:a7sTTDi+BjvqYR4gYFmsHFpXq65lZ9W5wOXnhLk4nOvlWxG5PZKuB:ri+BjSXgY8sHFE6TzWXzncsGSm
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  24KB
- MD5
  
  f6d7d3911f285c72b4281243d4312eb5
- SHA1
  
  0a9614bbeb5f326802d3b3db28fcbb2087b94a8e
- SHA256
  
  e2d37e1961012d37d4cfcc2cdcd4baac46ea64f83a8bbba6c05c09e89ceed58b
- SHA512
  
  4499fc156b5f662d434f6d6b02dfcdceb732a5caedb413fd0d908057b377adf1331fa226ddd8b46fcb36f4dd36cf324a7ce7fbfb45beb1ecfe41e433a03b8f33
- SSDEEP
  
  384:8lhhGj2ikL3YYsBStHcEqfP9k+nCmaMfvYkvPo9ZkZGt2j/AA1d/JI71:8lKHwsstNiZs+vw9SZGtu/AMI7
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  12KB
- MD5
  
  0771e6c726a7aa8259c4e1ac4146d517
- SHA1
  
  829e9a50ea6569cea40f1b2f876122c4048003bc
- SHA256
  
  9c839794568bb1f942b7d6847f3b8a80f105001422a57e01b2e631f878f110d6
- SHA512
  
  6329e21eed14ea1a3aa272be4c2c3dc24dd76abd354d2c4c2fff96dd58dbd28a858b07d1bd50965112d03d6881c5aa2b5773ca4665edf34137a663b3215a868d
- SSDEEP
  
  192:DGqmrB7F3W7quWmektRSR9eEh6aYkvQh+hluNqO1Oo3Cd:KqmrnOWmeSRM9Lh6aYkvblqVgoy
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/nsProcess.dll
- Size
  
  4KB
- MD5
  
  f0438a894f3a7e01a4aae8d1b5dd0289
- SHA1
  
  b058e3fcfb7b550041da16bf10d8837024c38bf6
- SHA256
  
  30c6c3dd3cc7fcea6e6081ce821adc7b2888542dae30bf00e881c0a105eb4d11
- SHA512
  
  f91fcea19cbddf8086affcb63fe599dc2b36351fc81ac144f58a80a524043ddeaa3943f36c86ebae45dd82e8faf622ea7b7c9b776e74c54b93df2963cfe66cc7
- SSDEEP
  
  48:Sz4joMeH+Iwdf8Rom/L+rOnnk5/OCnXeAdbdOAa4GPI+CJ87eILzlq7gthwIsEQW:64c/eFdfS/SSnkxNa4G+ueqPuCtGsj
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $_10_/Qt5Core.dll
- Size
  
  5.4MB
- MD5
  
  c82d694e1a1d2ed22a84eeca2a5b2802
- SHA1
  
  64b14deeac36ce4f6fc9db5b9c46373d097d5a98
- SHA256
  
  2f7debb59df08afee15ae50a90554ba6f0b0ba065b4660e1fe83b802ed81e02d
- SHA512
  
  f8196fc9a47788054e53b566251c0c0d20846136fbbf70765d898ebea54bcee8ff30073072918d15c516ee20f98696e9059da39f70b21ff26f58a9a76dbe6a39
- SSDEEP
  
  98304:nmUdjtMADkp8aFIjtYXnItQGhuEGtwiwKQgscXPv8y0Y3uRRn43/wZgJsv6tWKF5:mUdjtDeIdhfowKQgQUuh6Jsv6tWKFduc
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  $_10_/Qt5Gui.dll
- Size
  
  6.1MB
- MD5
  
  ebcc111c829b2c3a424489e371eabf34
- SHA1
  
  23b48f7cdcfbaab5539c3ddef47ac1bd1e2ba346
- SHA256
  
  724fc4e53dd6dd11ad4f93bfa8e8cd8563c75af482023cc970c6eafa10e6f2b6
- SHA512
  
  e4d4ac14bfc43e1552fd9036ea70d5b7bc519670d6fc76129a3f1261a27f12f992a5eed3b02e2faae9a0ab9fd2324a3ab79bc652112360ed8e365e23d498bba6
- SSDEEP
  
  98304:Hug1SBox2gjZ5p0eUS+j/0m/i67+pOeewHC25bSbIwue8UZVN3L/wxQXLKhYQSjV:d1/xxjZsLj8Yeewi2tde8vxeLiYDZ
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  $_10_/Qt5Multimedia.dll
- Size
  
  844KB
- MD5
  
  e6a994352edda6009e1dbd17ce2b1c18
- SHA1
  
  2b4e0851d726a38bf8ec68fac1d0a291627c959f
- SHA256
  
  480cb71724f88a952fd55bae1e213df60334cd7630f4621ee327111cbb7e2ea3
- SHA512
  
  4942d935f9cf227975716b6c118da7657f426afaebe2d81e04a95b37304eb45aaaa8826fe0df971ccd94034c6604d3818610d52a81eeacca7f9cefbdefcb81f7
- SSDEEP
  
  24576:zuksyl6bHdVGWY9BqX41MN/q1MaS2uA7pkpy5tGnN/VquvMqTAR8sBJrcTABU3Ld:yTCrMcy7BfZ
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  $_10_/Qt5Network.dll
- Size
  
  1.4MB
- MD5
  
  e1a9d3219dd1cc7bb5d65fa4fd1146ea
- SHA1
  
  9d6bc6ff99ecc2e6e91fe91c287bf2ab3922fdd8
- SHA256
  
  2853a7415b1997702dea081340b0d9888a8bdb0aca21d161f0e7bbfeaa459e4d
- SHA512
  
  297335eabf7954e1f7a9cd3913f0fb74c974761738abbd398186253a4c77674ba38af8a4da910c582dfad3f7b3e5a5189e77911736ee7df9d81492819e8807c1
- SSDEEP
  
  24576:oimt/Ow4kJcVnp3nB8jY6QU1Iw15OQPLJHxOLgnRlhUnuFgQvO9ic6zFmG7u6RfM:w4k2X4YKLJHxO1nLOdDg6R6bmQ9i36g4
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  $_10_/Qt5PrintSupport.dll
- Size
  
  290KB
- MD5
  
  7c4679a0c490ebc7feb341818149e63b
- SHA1
  
  3b7f1b53cbb5df81bc8198dfb5b515a6d68a1ca2
- SHA256
  
  81033453bde811a1078dab02f574e14138a35b9e17073f4d19ee07a05ebc93a2
- SHA512
  
  e46c9f894a961156b8ea602ece31fa0403308a1014ba2145aaee426e48b2661ed3f29e92a4a62c915cbbe3885301b82385e9d48a9534e1853d38cacced084c94
- SSDEEP
  
  6144:GwL18njGxDaLqOGc65sNpaMLci3PlwjoVdX9jN:GwLWn6xDU9Gc65sl/R
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  $_10_/Qt5Sql.dll
- Size
  
  216KB
- MD5
  
  a74058cdb445edf24a724109ad43405f
- SHA1
  
  97071fa3ff576277f257fd690584748d13ab49b3
- SHA256
  
  0787d8259c8b8f63128f598f3296260dfca131ab6672794d7a9c26a831b25fbb
- SHA512
  
  79c576b49b0734b9a77aaab5b1691bae8549301c6b6e7d685595ceaab88279b39b2bac1cfcbb44f597d1d890581fc5049418313bf6a138aae79b30f2d035dcec
- SSDEEP
  
  3072:XSjFG35RDhsLsmz9ZutedcKtQqGcvBvP9WNOtNP1DB0X0YlY:XSRGXDhfs9ZjdXtQqX3PBGXt
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  $_10_/Qt5Svg.dll
- Size
  
  284KB
- MD5
  
  6a447fade1154d1a5ee48c1df9170557
- SHA1
  
  779ad9f74bc5abf68ff2e6c0ec852953160e5fd2
- SHA256
  
  db2d96ae9b76d4d74d78c5ff697d66797c0b301e4e34f135b13df9cb3e6e737a
- SHA512
  
  6c87508592ac61b542c905e950bc3330fa829f2af844ba84ce7ac1cd2b4f94e974789bf75cb2ba1a268b30dd4f17761b8f9d0ef0eecc065b29aaadd56bb1e701
- SSDEEP
  
  6144:CVE742MUNi/Pkfjnbes3Mg5VB5wDiT1fBqIJfryZTqJX9cA:WE02MCi/PkfLVvBi01pvfKA
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  $_10_/Qt5Widgets.dll
- Size
  
  5.5MB
- MD5
  
  e59325cd3141b2938996eb7c66932970
- SHA1
  
  ee1e59aa40f9953b052cd3c5dd8ad2369bf4a119
- SHA256
  
  2e099c16d377d1c87f900cf2041b316cdc10a487f8e673e831f845e9b33146b5
- SHA512
  
  d824a744ca3e5f7bf5aa05e1b6c83d69560f95d2c6993110b39e2093cf3434d281ad050493f5e7785aaddf7beb59331513161a88b85697f6c7cde9fb3035426d
- SSDEEP
  
  98304:ZEOei7rC8ySx73A8REyMl7PwJBd41UZZmETuuAzXlqeIEqF2aoAcdJka3euyfeB6:v0CEW4SZEXgFbaOvWFC
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  $_10_/Qt5Xml.dll
- Size
  
  204KB
- MD5
  
  291e4ca74490aa5a844047635b820e91
- SHA1
  
  72b9c3170b2e931c92be970f6e2b66aa53c99932
- SHA256
  
  d8abe41ff17a722a02817b47617b136815ebc4574821c211eb3cb11e4a947833
- SHA512
  
  124b7b110fa4df2b13c01f611e992a7e02f22d60339053341689b03c46fbd6540d41e5b23604019e19697e2de225fb17356e4423c8fa61b34023e709ca24bee8
- SSDEEP
  
  6144:69WWHjtSD2nyNPrOrOpkREBF5OCFzid1ReuX9G:uWWHpI2nyNPrAOiREr5OCFzid1Re
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  $_10_/USI_lib_0x20.dll
- Size
  
  216KB
- MD5
  
  9ac74a95715de2fbb300db1c3568a594
- SHA1
  
  cdad9b768a875833a8f6bc86ae53649a48275280
- SHA256
  
  a60d63ebfd858bfcaddc0c187cad81128703c21a60e948a7d2b2fa700547169e
- SHA512
  
  8aa152e209a1246d04a416e185c63aa4c92a23bcf680e32b733e7aa828d88da9affe0e9e3c158714c2890a1bac084cb554ed74a52e7e8b4d660d28d9737fbb5c
- SSDEEP
  
  6144:rHvPW0YM/XqP69MA6ijxhhU0+/G9b3ghk9R3:rPPWl8Xqqnt71QhQ
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32