8e3ae377a8835cbaf451748fb97da75444ab5fd1c17b1293c4ac887ededa303e | Triage

Sharing

General

Target

REAPER_KeyGen.exe
Size

430KB
Sample

250415-yhmgkszpw9
MD5

b444e2faf68b38dc77f98e46acb11c56
SHA1

546a4702f6b0158669b7ee38928f9d50b7793ff2
SHA256

8e3ae377a8835cbaf451748fb97da75444ab5fd1c17b1293c4ac887ededa303e
SHA512

866ddfb5ca3454acdd2b7398cd1afa1babf8a4cc54dd2d3c5986aa10289df9db07d1ca10dccd98ada190a8acaa66c47f02f727af9d1d5510e5e130b8278cf259
SSDEEP

6144:BX45rw6T2nA8P9tlASRzKW3FY/YAKpW1PoXqab57xjCnM+7cTxCKe9c+ZYbn3XHh:BX4Lc9t2Sll1+971PG3j/RxIZsnr5P0e

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  REAPER_KeyGen.exe
- Size
  
  430KB
- MD5
  
  b444e2faf68b38dc77f98e46acb11c56
- SHA1
  
  546a4702f6b0158669b7ee38928f9d50b7793ff2
- SHA256
  
  8e3ae377a8835cbaf451748fb97da75444ab5fd1c17b1293c4ac887ededa303e
- SHA512
  
  866ddfb5ca3454acdd2b7398cd1afa1babf8a4cc54dd2d3c5986aa10289df9db07d1ca10dccd98ada190a8acaa66c47f02f727af9d1d5510e5e130b8278cf259
- SSDEEP
  
  6144:BX45rw6T2nA8P9tlASRzKW3FY/YAKpW1PoXqab57xjCnM+7cTxCKe9c+ZYbn3XHh:BX4Lc9t2Sll1+971PG3j/RxIZsnr5P0e
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $TEMP/BASSMOD.dll
- Size
  
  33KB
- MD5
  
  e4ec57e8508c5c4040383ebe6d367928
- SHA1
  
  b22bcce36d9fdeae8ab7a7ecc0b01c8176648d06
- SHA256
  
  8ad9e47693e292f381da42ddc13724a3063040e51c26f4ca8e1f8e2f1ddd547f
- SHA512
  
  77d5cf66caf06e192e668fae2b2594e60a498e8e0ccef5b09b9710721a4cdb0c852d00c446fd32c5b5c85e739de2e73cb1f1f6044879fe7d237341bbb6f27822
- SSDEEP
  
  768:qQmS5iUgi5czW+DlrQOS1DeDdjgNtbX4O6DHix84H0:qQz5Tgof+DdpS1+djctLSHiZ0
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $TEMP/R2RRPRKG2.dll
- Size
  
  85KB
- MD5
  
  08f5d7200733f206b8033308c2e22071
- SHA1
  
  73a110b12c958c7e9c1fdd7f658c322590ae9c38
- SHA256
  
  d109a8ba3f5f76f2860f8649895a52c556f5ba57faff2ce96a8216f09b47360a
- SHA512
  
  9b80baa5e5d06ce3411a5cb3d71344aae99801dc534ec903543d0f514e1c86c5ff9a50190255067059445285694f020b59bfacebb569bd8d1b8a5e1c2f9ea95e
- SSDEEP
  
  768:S7D7FdZfwJruuHvqESPSfXxmJ/59yevFJ5OUGzjcNVZfw7zfH1IR5Uhoibbb+S4N:S738u9ESqgJh99n5aZOibbb+S4A3JK
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $TEMP/keygen.exe
- Size
  
  442KB
- MD5
  
  034c470c20a1ceba7b7f0abafed23f0d
- SHA1
  
  f332bee5e2e1bd819bd0b12c82bd087760a3f5e6
- SHA256
  
  daf3e140087659ad4ae82493c95ca40f88aae3b26368a529d6384af5c9ce8a58
- SHA512
  
  6a6cd7d1bd688e8cc6495c1331a93cd6250ee37c48f80fb831f2298901400de52fee31b876587e289f709d6274e89454dbe554d7cf1766dfc50d3e647a674e27
- SSDEEP
  
  6144:icmzikEPDonRgNgz1+hw6hNgPfHv9PAimIAOEErJx85SoChmhr1DnZEthExqN5f:ic/kEPDonR6Y436vRv/85LJZOGy5f
Score

3^/10

discovery
behavioral7 behavioral8

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8