Overview

overview

8

Static

static

3

Malwarebyt...n.docx

windows7-x64

4

Malwarebyt...n.docx

windows10-2004-x64

1

Malwarebyt...es.exe

windows7-x64

8

Malwarebyt...es.exe

windows10-2004-x64

8

Malwarebyt...up.exe

windows7-x64

8

Malwarebyt...up.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Malwarebytes_Premium_4.2.0.82_Multilingual.rar

  • Size

    171.5MB

  • Sample

    221003-s2rmradcan

  • MD5

    4175e4d61acd28976431bb42140fabd1

  • SHA1

    860dcf71c489e07109711679b2a969a8b6f46cb3

  • SHA256

    e51490d87be80ec83f22647051891e82d3fe8a2d03bf15822da259d5f046c006

  • SHA512

    1531a11757e24ce9867ae5b32538d2b3c54677002d3ce15d0b3a57085df27490e7b2a6fd400f2c6755386c3e53fd1f9047819834f3965e3349f13178dd61db18

  • SSDEEP

    3145728:xKBEbZZ/LXJSzuVX5vMIZBsIjhZ51ptZ7QnHcd8FTHvrP133XySV8RrRMZyG3lX7:xdbJ1JvMIZBsIjhL1J7QM0TDNiC8RryN

Score
8/10
discoverypyinstaller

Malware Config

Targets

    • Target

      Malwarebytes_Premium_4.2.0.82_Multilingual/Crack/Instruction for lifetime activation.docx

    • Size

      780KB

    • MD5

      a71665e41afbcc2cce99823ea0aa0894

    • SHA1

      77f9739b035a53c3d7ec0bf9775c5e35c3386e9f

    • SHA256

      a21a7a43d704b99d48972b1576559fa3323d953d1e439bd967df74d2e5e1b1e2

    • SHA512

      32514991841ff40c8cdabe0a9c92c7ae0acdef46f59c175c0dce49e02de0ae417beb3108c8949e6e120e756bc500371213e2e6c9ebf7ddaf1c84999eb5d47d3f

    • SSDEEP

      12288:9VsdBBZgkBqVK9hDlhX3aZWnNUgKmn3dH3z5TOPK7H5+izX1Xye/jzcB0BDN+:9E5gwqA9IonNT93z5Tz5+21XyszdN+

    Score
    4/10
    behavioral1behavioral2

    • Target

      Malwarebytes_Premium_4.2.0.82_Multilingual/Crack/LicenseMalwareBytes.exe

    • Size

      7.9MB

    • MD5

      487901443f9e51ad732b1cd856b03c69

    • SHA1

      4b3d2e271666fe17ef7e9db34743babf814abae8

    • SHA256

      2de955cb5926261634ce51565e5cc9fd52ebccd9c3b7f8b5dd1db369cb1f9731

    • SHA512

      72d81ee6a62059eaa0a3ab9f4d0a5e489d039ef263cb8af66840a386d52e8a6c11b3377f247bb50cae3915155cad7699e568642d27174913a4f05ca8df7c5928

    • SSDEEP

      196608:JWCfUgRrs7TpVVuWJysVYvsOgtdIQLOMIdiwoEbPva8Mho:TfDRrG8WJvtaL/dNDvba

    Score
    8/10

    • Drops file in Drivers directory

    • Loads dropped DLL

    behavioral3behavioral4

    • Target

      Malwarebytes_Premium_4.2.0.82_Multilingual/setup.exe

    • Size

      173.2MB

    • MD5

      ea31f00201323490d945f44c02f5f244

    • SHA1

      55ebbe1afaed92dc402cbc8fadcb31bd74ee9a1f

    • SHA256

      79ad3d1291b32c51e2b86d2ee13904fdcaeb9525523927536d00b305a4b09956

    • SHA512

      63d02f0b2fc1b22664d5cedb13d265a060836ab4c8d332921e3ea064907267dffcbc27d441e3795382a2ff7c01d93687019caea63e56c3cf3c6756305848dd29

    • SSDEEP

      3145728:GNuKwAjg9p/y+ELRZ2T0014OLdqIcYKf2ToiKYNK9p/y+ELRZ2Ts1hYCKB:GIKwAj6y5aSZIcMToBYN4y5a4YCKB

    Score
    8/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral5behavioral6

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

3
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks