80077994550acf0276127b56d3b7d3878c36d47f2c7dee7537a73529c9a263cf | Triage

Resubmissions

27-11-2024 11:05

241127-m61tbs1kgx 7

Sharing

General

Target

Next-Time75 Edit.zip
Size

31.4MB
Sample

241127-m61tbs1kgx
MD5

d45d3d7b8a160e5d9b411a1de3d0d74a
SHA1

89f0b823e2698dfa6fbb395d7cfd79e3d8498df4
SHA256

80077994550acf0276127b56d3b7d3878c36d47f2c7dee7537a73529c9a263cf
SHA512

073d87eb3cecd17ff1ddf3e5d3ce7a901fb838a517e494b08ebfb41206bbb83d0356890fd6779f19605caa415a5866c2aef996884e633a61067f462f192e095b
SSDEEP

786432:gX8JQ4cNIlpniScWEkIydOmOAZ2pV/gPjxRI07Ln9T:gXX4gApni7Wp4Zn/gPjYQd

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  Next-Time75 Edit/DuiLib.dll
- Size
  
  1.4MB
- MD5
  
  a6e06c630035dc73322d8ea42809e546
- SHA1
  
  c787e06d4c764e1eec11cc719cd9e27a3367d068
- SHA256
  
  2a2f595a967ce11d14342f621b7bec8b9b190478be730ceac4b1320812148f74
- SHA512
  
  670a6dee8d6b2b8e37c61442351ff0c52dac6a9696e05436084211a20a56fb7e033c5d00c018781a7ce2ddea4bb63c2a87dea226b2b8006ddde71bc6a7e96430
- SSDEEP
  
  24576:8pfwYaSXprwL3VAI06pPkbDJs/TiyR8Ypv5wGsx:WwxE83a6pPSDC+uwGsx
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  Next-Time75 Edit/DuiLib_d.dll
- Size
  
  1.4MB
- MD5
  
  6583b9c9659bc7b68366ad320fe5c5e1
- SHA1
  
  385588bd2e8c858ffcf54dc401a6807c0b8b7109
- SHA256
  
  316c39692f986dfe52b201ed0cdf32441daba6f8513b131ed379bac47fd9a7ae
- SHA512
  
  ced716dd03e8101c77c60f107969bea75ba9290a15abc31f0f68794425c90224bf799e3933890e0307f29f251429df4fa814ba3512a395645cc385b2413e766f
- SSDEEP
  
  24576:TcuG+364Vn619vg5wmZSMgiVtVN7nNaAmznzCVj9N6:TcW364A1pCtggnsA0ON6
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  Next-Time75 Edit/HookDLL.dll
- Size
  
  44KB
- MD5
  
  1fd575a0b0ff4e5648f6552eaa6dd10b
- SHA1
  
  38c63be2d74fdf8fbe002ea513e2f4d42a40f908
- SHA256
  
  9ab5e1ccff616db6e9a7d571b1d932953abadf85a489194827aee8326e436b12
- SHA512
  
  c6586e43fa3d0c9be6b7fa7a5c69032af8789f861d4ee6b3de7e019ee54e7f9a392dfcd70c52e7cf30608093c60e8aa6fab46b481b4204323febef6102f5656e
- SSDEEP
  
  768:A0MxliBRt2uw294n0Guc7TVrDh9VGgXZ8n+19Yl5C5pYtd4F5i5klWantEDodvyk:ALu92Z7TVB9Vd2
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  Next-Time75 Edit/LightRecord.exe
- Size
  
  4KB
- MD5
  
  06de0e898a82060eb95ac87fb8b52061
- SHA1
  
  d1232795cebb38209e0b58d05a0b3864439398c5
- SHA256
  
  56f452c753174e8a2048f851625c4de3e67c17cb5fbd3a753f7b0cac7932064f
- SHA512
  
  091b60a2994791fd76985276e6d4272e138c1d9019b6caa37cab5850cfdd2916d62c98619b86f025cbebfff5b82a3a2d889cc1e6de1300c6d76e823e800f1bb0
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  Next-Time75 Edit/SDK/x64/vista/osConfLib.dll
- Size
  
  250KB
- MD5
  
  4ab0fcf586cf65c22a273df0d1a30380
- SHA1
  
  375318b2319d97eca36794e888913e54bb9a767a
- SHA256
  
  20c58530e75179529fc7af38141730cd77815251cb94f5dee296790a0d9ea3b6
- SHA512
  
  7e42ab21c4eda0faf1860696bf02ab533f41be2e7c85e4ecf72695fe6acd40ed6257770a1c97e918604a30bee5804ca5393736559d3886a42e4b4226f535503f
- SSDEEP
  
  6144:/SGC2ZCT2VO2Cr3ndhZd2fnjtEe1vtUE6I55Wdi8v:/Sb2ZCT2VO2CzP2fhjtUhI5Gd
Score

1^/10
behavioral10 behavioral9
- Target
  
  Next-Time75 Edit/SDK/x86/vista/osConfLib.dll
- Size
  
  236KB
- MD5
  
  7949df4e02ba69f8eed0fc7059b1f96c
- SHA1
  
  328b134d3f4f12133d927910a34ce0f123c5f7f7
- SHA256
  
  b3997b03c2f842386af172cb96c2c63af4e5a69dfe07693646e5c23764a52127
- SHA512
  
  2b242905a2e22a699ac4ef39f3a25b19e077a6c1b0962c6436ee3bbdb45dfa0b9bad36f56e63076320737faacf4b9fc1773c02f7263b91f49f993308781081cc
- SSDEEP
  
  6144:bG4uJVVrV1+ZXp+0ob9j1lIu7ZpuAOCpi:bG4udfUpZob9jIu7ZUZ
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  Next-Time75 Edit/X-75-RGB.exe
- Size
  
  3.5MB
- MD5
  
  ca9c168350f93afaf0a70a4d83ba1119
- SHA1
  
  8156bd5d64adb3cb942c978ed2f2415efe397c54
- SHA256
  
  12023d0e55e7de318b70a25c18ab635781ae1745ab7005dd3b33a1a7713f5a91
- SHA512
  
  09806765e4a72fe39d2416df31c7b129984cc147e8cb0653eb81c016fe09dbff3eac65757a7514b5ef53dd0d496c146f8fa8a5e4c0bdc98b89162a6f01907074
- SSDEEP
  
  49152:p2/PpDKqPqXdQxupyw6+HN+AZvEGuKtJelCuYuaYX1lUEgR4VD1:0PpDKqPGuxupBP5ZchKtJelEu1U
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral13 behavioral14

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14