4d18d869f2a9387b924adcd9b2401ce866173726e9d1fd8044ca50969637a1ab | Triage

Sharing

General

Target

4d18d869f2a9387b924adcd9b2401ce866173726e9d1fd8044ca50969637a1ab
Size

2.0MB
Sample

241121-jryhwavjgr
MD5

067b317490fc872a288aed3f2c67b99b
SHA1

8672c8dc58f00d934f906daf7a137851c0195ca7
SHA256

4d18d869f2a9387b924adcd9b2401ce866173726e9d1fd8044ca50969637a1ab
SHA512

cb62dac1800f6a11afa1bd42429ed150e5712521070cd3830dd3114ee412b714f05e6bb9864a0701ca61eeecd72bb3afeb2d56d506887fdd176ea0c457cb3cc3
SSDEEP

49152:HSYjJ7xCzo1Be1IbLKtBvxApb3l6IWSRt7eFS:HbjJAGqIbLKtDApbnWzS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4d18d869f2a9387b924adcd9b2401ce866173726e9d1fd8044ca50969637a1ab
- Size
  
  2.0MB
- MD5
  
  067b317490fc872a288aed3f2c67b99b
- SHA1
  
  8672c8dc58f00d934f906daf7a137851c0195ca7
- SHA256
  
  4d18d869f2a9387b924adcd9b2401ce866173726e9d1fd8044ca50969637a1ab
- SHA512
  
  cb62dac1800f6a11afa1bd42429ed150e5712521070cd3830dd3114ee412b714f05e6bb9864a0701ca61eeecd72bb3afeb2d56d506887fdd176ea0c457cb3cc3
- SSDEEP
  
  49152:HSYjJ7xCzo1Be1IbLKtBvxApb3l6IWSRt7eFS:HbjJAGqIbLKtDApbnWzS
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/nsExec.dll
- Size
  
  6KB
- MD5
  
  acc2b699edfea5bf5aae45aba3a41e96
- SHA1
  
  d2accf4d494e43ceb2cff69abe4dd17147d29cc2
- SHA256
  
  168a974eaa3f588d759db3f47c1a9fdc3494ba1fa1a73a84e5e3b2a4d58abd7e
- SHA512
  
  e29ea10ada98c71a18273b04f44f385b120d4e8473e441ce5748cfa44a23648814f2656f429b85440157988c88de776c6ac008dc38bf09cbb746c230a46c69fe
- SSDEEP
  
  96:M7GUb+YNfwgcr8zyKwZ5S4JxN8BS0ef9/3VI9d0qqyVgNk32E:eKgfwgcr8zylsB49Ud0qJVgNX
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  FileOperator.dll
- Size
  
  96KB
- MD5
  
  9465b829334496691f0a8661e359e692
- SHA1
  
  52d578ca5aeb61655dd9f8467654f735b8d7a00c
- SHA256
  
  aa04eefa8387afb145acd760e4196f204a6a94bb9f43dda4835a4b891030c503
- SHA512
  
  9d7dec408cdb0019a3dfcef0717539e2483d5c702c9c95776c041adbe4342ee4e2d9f1bee7ac29b7a582503b6f9ef4783869d812fc018e5229721fc03209d815
- SSDEEP
  
  1536:E55i4oT3AdPo+rEJQlKmPTiM2Nz2xH+Npahhb4bcLw:E32w+cKeTiM2NiAXAb4bcLw
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  FisheyeCtrl.dll
- Size
  
  60KB
- MD5
  
  64b46a90e03dc585c7c489bfb89821c5
- SHA1
  
  1cb8c979aeba008bea574c6cad4fc61b39e65813
- SHA256
  
  809889e86731b1977292d114b18254294b2d5c7e7cba7a8c12ca7b2c29e3aeac
- SHA512
  
  d3f2af2246bd8d0acc7e4bd7b48a2f9b445c41661674541739bc958ffd0561db6ec68246489aa2eb03e06ce23954fcff099dab7d72bf5259f5622c3a42deb457
- SSDEEP
  
  768:16tzrCVeO4As7l7mdWA5DiflPkWujpI3Y03f+76axG0DhjtFf:M8eO4bJ7mdLisU3f+7txGahTf
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  IVSJsonSdk.dll
- Size
  
  148KB
- MD5
  
  e0a3d478bd9cc1bea0c019a76ff0aa7b
- SHA1
  
  e943c5c68811dd7004d2ad9986744e6342f2179c
- SHA256
  
  63393dbbaa9f12f6a4eeff45aa117ceb6a7ccf1ee56c491852a1de4c9ce25189
- SHA512
  
  d04b5ef9fa102529dd342a4b4911b76663ec972370b80aca1f221c186cf94089997b04525a5feb8439bd9aede2c5254b4ddd6c4ff3794749a0d07ccdaee09382
- SSDEEP
  
  3072:hhiX79Dwh3OQwolzrCCOSwDA130hv0rIq5BBqGCknciz:hhiX7lwyx0rTNCCci
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  IvsDrawer.dll
- Size
  
  428KB
- MD5
  
  01eb5a7849753d5abf5b4f75c94082b1
- SHA1
  
  638f1511765e1c318485089e8282d39107d7cc3d
- SHA256
  
  9f901337e0132a93b7d742a373fd821e1b5b0e0301c5e52504ad08b89ce4e352
- SHA512
  
  8857d5cddcf939aec9c31b5d54b94380c169aa9548895af0bd78dfdc5d919382ca6015caf4826444ebbb492d6314981f950f6d3066f023cfa9ec7d195525220c
- SSDEEP
  
  6144:EOXZm29e31Rwxq5bgeJLN9x+1h2jMF4p3fuFvouW3W1Nhapu:U9+q5cMLWh2xpKdbWu
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  IvsLogic.dll
- Size
  
  124KB
- MD5
  
  4051fca59ef68d29bb40321a4e18d271
- SHA1
  
  af155473ff11289998bbf2de4b4f22406773bfc9
- SHA256
  
  8443adc923886ea1ea9d6879f647f612243e14b20baa1cb202249f83d9663f5b
- SHA512
  
  6533ebf0af8126c66d0d642580485b1b432024980c11a5dde744f90eea9044b711ffc19af6113aa85f91f1527af2432432c0735ee653b793d254355ae6c7f878
- SSDEEP
  
  1536:xiRA2357wArYL+PIdHPDgJ26EnbipsvVHLCdjpo1Gcuvf12wsNxfS14h:za7YaPqkIb3vVHLurzKNS14h
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  MCL_FPTZ.dll
- Size
  
  192KB
- MD5
  
  3626fba5d590fd2f3f238a1f9ba83cb0
- SHA1
  
  3c921509ade776755b83621077d896667741f66f
- SHA256
  
  a329f4c873053dfc1ebb29d986661bd4b193f61c7ccb78872c7ebe14287742fe
- SHA512
  
  079b3167bbe87e5174d04855b3eb3543711b78dc980dbfe3e6dd900cc715de93eeb994b9d5cefe595f5b3658d3de94ae9325546dad7bd232ac0624032a8c6830
- SSDEEP
  
  3072:c4mek3kmyq09y7uOP2KuUjje8kTwtyB4BNXXerBNn5PNyw32:c4okmya7MrctBqjNG
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  SurveillanceDll.dll
- Size
  
  616KB
- MD5
  
  d2d3900769bc1d6f80332e8f75831f5f
- SHA1
  
  38103734863044948867668759f25f06ff0c8009
- SHA256
  
  aed50652d3ef40078c4e935cd53ecb24b2ebc5a33fbd20af2f22691572a110d5
- SHA512
  
  3f5a83b7af77809ac482bc4a6d955f618e8384111ea85ea4abb813636587325c57139d9f89bdec9d48c7e2726800561c8ed02571acc9167dfd3a56de766f689a
- SSDEEP
  
  12288:yqkj0OOJ/mIvICbwRE4EYoltrpY+TqTTIf:VkeJBvvbw5ErltrRf
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  TimeGridEXE.exe
- Size
  
  52KB
- MD5
  
  b123dcf214fb8277b805a4b279cae541
- SHA1
  
  b81b7854b2b01fdd7086f9af1d6f64c0316e538c
- SHA256
  
  5c4186032aab6e0cb5b1a960adc17aef7b91e919b53c7e13e17c0b884fa26956
- SHA512
  
  1299d6f566de5f7119a4d8fde6e61bdcd58dec3177a9419967e6f64ad43bb24c3be4bcb06a6773de1cbab6ca8b2880a61f1ae0e200e851fc6adaba25050845ee
- SSDEEP
  
  768:wTHfwyp1KXmyaXTvEhX4uKaKUPlEyKmmdB4NmV:wbwypkXhotm1tmdB
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  VideoAnalyse.dll
- Size
  
  104KB
- MD5
  
  47761edc5a987b16e59f6c34aeb7c974
- SHA1
  
  3adfecbe5273faab0791f84c162b6ca8dbe8399b
- SHA256
  
  ef97088bd2eed444a0f62d5bd0baca61f1df7415d243427087913da41cf615b6
- SHA512
  
  4a2406f5af64dc4d983b68ae670057d94283988b20bede0b82d036e8a9df7d0bf87431fd731db99e047ba5aaf689f54ee09b85f02110821cb911eac4b2c0f933
- SSDEEP
  
  1536:VmwjAM0Hy6e5F6y5U3XC7Q5BK8ZwMqosinXxbe51Hz3vDAo8QxNd8N:Ewjqi5Iy7QXnKriBy51Hz3vcohxNmN
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  VideoWindow.dll
- Size
  
  232KB
- MD5
  
  a27e23bd13efa13c5ea7b7a21937679f
- SHA1
  
  18d853634e150900411f08701e6cd6db66b57ec9
- SHA256
  
  c26991800ffbea7f6a7a94bb670478b446b142e118c2310adb88e7653730d10d
- SHA512
  
  07a657faaf5dfbd114bbc472a41f48ee7da26b68e8d8990ab09947f7afb74337a7545e4d36a9d345adb0780590e78685ec0444219fc31dde848fa6d51071c5bf
- SSDEEP
  
  3072:cVj3cJC47uXf4vpnSkEt4GtCQJWOZHGaeKSuz261uhX0:chM44FvppE2G3WOdXbyX
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  WebActiveEXE.exe
- Size
  
  148KB
- MD5
  
  719c1569480a699a9a93db0eb31062ba
- SHA1
  
  41cdab9f555fd25cd10e8ac35890d2d14145750f
- SHA256
  
  48f90f293fd1ef34984c56dce271c238e2316e2913adaaac66b13269e9525364
- SHA512
  
  0c5b463d053d68f236916a8625c4e36762e6292ec6cd6db8a9c5f3ceeed41b795eb0e3a974797db93b6e5243331418886bf828a73bac0028b49fad57bc01a42c
- SSDEEP
  
  3072:aaEIehQkQqYBZRDFAaHNZgNVUGmsZja5LMhpZIy/Id0HqTGj:rnDn2VtZjvHZInrGj
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  aacEnc.dll
- Size
  
  260KB
- MD5
  
  1da5122e594c107615fc14cb1baa8767
- SHA1
  
  9d0ffe98a027670fd47aa5c41e499fc86d18e9e1
- SHA256
  
  4736696ff709e320e8f8a1934ebd6b683870efc3f4448aeca99020f744aebb6f
- SHA512
  
  941e11bdd038497a4db70c8fdcc2cf8451913d058602b4a278351a184789a573d988c01339c1012d24a909e1446f312ee909bd9d4f3ec433b454dc90709c5c44
- SSDEEP
  
  3072:y0gEuYwvfblbbx4OToKDPiAg0FuOGBNIn/YEkRLLn+dttUZCCuF1P:y0gmEf5bdxToKTiAOHiwdLLQttUZG1
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  aacdec.dll
- Size
  
  89KB
- MD5
  
  1950a5b8cb00e5c82023038e2bdb79c8
- SHA1
  
  01f45d1e05899b3d3634a8f17b4c9fad5b4f4946
- SHA256
  
  eeb7e2f15f7ed2868eda0f2187acea82cce714bac4af363052defdd5e12caebd
- SHA512
  
  5790ba8fb3ca35237973d02d0f817a90e1bd98a0b84147e28c82dbb33b4f5eceb4c850185a1191f738a7cea3dd0fb4d69a235653fd637cd2c6b79ec189a2eaca
- SSDEEP
  
  1536:Zx+X70QdpCB6faUJhVtZpbn/qVDbPSKTwKfCSGitiBYMEjhwrDdXVzjX:mX70UggfaKjtL/IPSfutt0YMEsX1jX
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  fisheye.dll
- Size
  
  421KB
- MD5
  
  7ac8ba2e1f0425635b2da7ddf992ab55
- SHA1
  
  4b38c99332c4d0407ed80aa6e96697ce1839e6e2
- SHA256
  
  c44aae4dd2c3ddbc7014b8eab00e427d4a6950cada830b89b34d095b0e135cab
- SHA512
  
  b75326e95af809d7bbb7a2a25ef9b9d84af95dfa91a7814c7f67f65d56609be392038c688c387c380ad00d42259b693f4244156f4e3b5bb3a521f6408aa56367
- SSDEEP
  
  12288:0oiL9b3gPIK0lU4E0i9ymacPrh5j4rbF1V72kt:uWIK0u4E0ipPrDj4PDV72O
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32