8d44dce68d4aa0b94899bd37c7345891288f086b83440f16cbde8a58566ff290 | Triage

Sharing

General

Target

8d44dce68d4aa0b94899bd37c7345891288f086b83440f16cbde8a58566ff290
Size

367KB
Sample

241221-r33kza1ndy
MD5

88307ae5f2474c8bc0ee4dfd0d9cb81b
SHA1

ebcc059ed3bfb03f60d04377807ae27ec4e3136a
SHA256

8d44dce68d4aa0b94899bd37c7345891288f086b83440f16cbde8a58566ff290
SHA512

280374864ff5a132ef545f4cda810643ea390502dfc339fd61325dc35a9b82ed47206a0e64782a287140f10ecb9ad5ac454b3f547e0bb2dbf0e992076e87e0a8
SSDEEP

6144:IumAR4qQKTpf5EiXoCrImbBq3lovNqlom7OTZNJdd:iApdpf5EiXI201nab/Hd

Score

5^/10

discovery upx

Malware Config

Targets

- Target
  
  8d44dce68d4aa0b94899bd37c7345891288f086b83440f16cbde8a58566ff290
- Size
  
  367KB
- MD5
  
  88307ae5f2474c8bc0ee4dfd0d9cb81b
- SHA1
  
  ebcc059ed3bfb03f60d04377807ae27ec4e3136a
- SHA256
  
  8d44dce68d4aa0b94899bd37c7345891288f086b83440f16cbde8a58566ff290
- SHA512
  
  280374864ff5a132ef545f4cda810643ea390502dfc339fd61325dc35a9b82ed47206a0e64782a287140f10ecb9ad5ac454b3f547e0bb2dbf0e992076e87e0a8
- SSDEEP
  
  6144:IumAR4qQKTpf5EiXoCrImbBq3lovNqlom7OTZNJdd:iApdpf5EiXI201nab/Hd
Score

5^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/HWSignature.dll
- Size
  
  137KB
- MD5
  
  6581b2190a3be85dcbf94b20fbbd109b
- SHA1
  
  2fe0951e75ef461c26d8d9b008eca70782b0e5a7
- SHA256
  
  7518052a260c71a5f5c610b7649798f0a850d0fd419bbad637682bd10933dbdc
- SHA512
  
  22774d19f73e84c39b00c83ecd5cf139d32176c7c90d9a3957bd438769bfae699cc6cdeb5c112443b43ea07072f007fe5c0ab8df4b204c925138160a23f14aa9
- SSDEEP
  
  3072:1RFaHlycZOgiTptaQihWc2lSpRHPomRRSFw33/:PFwllOJTbaDhulSYo3/
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  15KB
- MD5
  
  34d24e6ecdfb6859096816436c5875da
- SHA1
  
  a4504b5eccc48ce867623dd1d081a760ab70a12f
- SHA256
  
  734d6299964cab87eeeb5f8c7e5bdf6aa8c3e29d938fdd1ada6addcd5006de28
- SHA512
  
  cf163ef71ed297259371d5bb352f8b0ef5e8bab9ad2168a26714e2d9f9037af87ec48b7e983b9fa9dc3f478c02cc0775583d52aca7604f3ac1e4a8882b3ecad9
- SSDEEP
  
  192:VsIZHdT9uwYX94kYd2iCzHR+yK7imphLAykycpKPd5mD8ozxGUWumle:VsUHd9GN2d2iwl0impATIPdAD8Ov6
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/SetupLib.dll
- Size
  
  123KB
- MD5
  
  a49cd61bd5697e3d888d252a9a5e9063
- SHA1
  
  d47d1b3d41be478520146e237666d049deb1d789
- SHA256
  
  1308b23c934e56c76880a494070a53ff991409ea273249338f756eed3f6075d9
- SHA512
  
  dddbe987a95dd111c71e43912d5c81dfb9f1900f91815fefcdf5d1707b7845f4bc761400529380d2c9eea9c0f1b521c63e5745befc1515b31952cc075e9a575f
- SSDEEP
  
  1536:TMIIIIeyZ0jDq/XogmWK9kJRpsLP6289rIsZYaAWoa9Bw7YJ6YrDgc36pAUqbkKx:gIIIIMKg9es0rlYvTzE7DnAKx
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  c51fc979c1c3e17bece7bd194aeb6ea2
- SHA1
  
  9a5d000d6393f2980062b4cc6e8f543493b1be8f
- SHA256
  
  93a8e95708882e56250ae55aef93417333b2dbe7ea99590abed34cdca2227e61
- SHA512
  
  716cdeb890307ff42901464dd24aa94e29415ef20d4e975c2733e34330fdf85edfd4ad9e00878edbe98921deebe44153279cb95acb309c5e1812026716dcdc4e
- SSDEEP
  
  192:sfer7uivwq1XpKs4FVWSjMd8tIg2cREbyCsZ8q2R4SyYXe:sw7Xws4FVWig86/5eCBqSyYXe
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $_15_/HWSignature.dll
- Size
  
  137KB
- MD5
  
  6581b2190a3be85dcbf94b20fbbd109b
- SHA1
  
  2fe0951e75ef461c26d8d9b008eca70782b0e5a7
- SHA256
  
  7518052a260c71a5f5c610b7649798f0a850d0fd419bbad637682bd10933dbdc
- SHA512
  
  22774d19f73e84c39b00c83ecd5cf139d32176c7c90d9a3957bd438769bfae699cc6cdeb5c112443b43ea07072f007fe5c0ab8df4b204c925138160a23f14aa9
- SSDEEP
  
  3072:1RFaHlycZOgiTptaQihWc2lSpRHPomRRSFw33/:PFwllOJTbaDhulSYo3/
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  14.4.0.9302/HWSignature.dll
- Size
  
  137KB
- MD5
  
  6581b2190a3be85dcbf94b20fbbd109b
- SHA1
  
  2fe0951e75ef461c26d8d9b008eca70782b0e5a7
- SHA256
  
  7518052a260c71a5f5c610b7649798f0a850d0fd419bbad637682bd10933dbdc
- SHA512
  
  22774d19f73e84c39b00c83ecd5cf139d32176c7c90d9a3957bd438769bfae699cc6cdeb5c112443b43ea07072f007fe5c0ab8df4b204c925138160a23f14aa9
- SSDEEP
  
  3072:1RFaHlycZOgiTptaQihWc2lSpRHPomRRSFw33/:PFwllOJTbaDhulSYo3/
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  SogouExe/HWSignatureEx.dll
- Size
  
  137KB
- MD5
  
  6581b2190a3be85dcbf94b20fbbd109b
- SHA1
  
  2fe0951e75ef461c26d8d9b008eca70782b0e5a7
- SHA256
  
  7518052a260c71a5f5c610b7649798f0a850d0fd419bbad637682bd10933dbdc
- SHA512
  
  22774d19f73e84c39b00c83ecd5cf139d32176c7c90d9a3957bd438769bfae699cc6cdeb5c112443b43ea07072f007fe5c0ab8df4b204c925138160a23f14aa9
- SSDEEP
  
  3072:1RFaHlycZOgiTptaQihWc2lSpRHPomRRSFw33/:PFwllOJTbaDhulSYo3/
Score

3^/10

discovery
behavioral15 behavioral16

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16