a7e4e003f9088dbfb586a339f9b8943951edea7b319392e698fa2a063b7fefef

Sharing

Copy URL

Twitter E-mail

General

Target

EJ.Technologies.JProfiler.v13.0.x64.Incl.Keygen-BTCR.sanet.st.rar
Size

133.9MB
Sample

230214-jsneasbb5y
MD5

23b38ed925b740f426a893eedfe3f194
SHA1

fdaf0f0767a74faef5b0991ecdb646e016e8b027
SHA256

a7e4e003f9088dbfb586a339f9b8943951edea7b319392e698fa2a063b7fefef
SHA512

c4855339c1f1b93a1830ea3692d97226bd0b3aef278ef6cb3d5ee56d868ed42ea8e86fbe0f0588f24e863751f09e50a0e4b7dbb4858e0d8bc952cf6f66782d9b
SSDEEP

3145728:lg6XznqFM7znGCaibnd1mj1cK2V0ELSGclXULu24XvIe0g:W6XyugiLLG1cbr2JCgv30g

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  EJ.Technologies.JProfiler.v13.0.x64.Incl.Keygen-BTCR.sanet.st.rar
- Size
  
  133.9MB
- MD5
  
  23b38ed925b740f426a893eedfe3f194
- SHA1
  
  fdaf0f0767a74faef5b0991ecdb646e016e8b027
- SHA256
  
  a7e4e003f9088dbfb586a339f9b8943951edea7b319392e698fa2a063b7fefef
- SHA512
  
  c4855339c1f1b93a1830ea3692d97226bd0b3aef278ef6cb3d5ee56d868ed42ea8e86fbe0f0588f24e863751f09e50a0e4b7dbb4858e0d8bc952cf6f66782d9b
- SSDEEP
  
  3145728:lg6XznqFM7znGCaibnd1mj1cK2V0ELSGclXULu24XvIe0g:W6XyugiLLG1cbr2JCgv30g
Score

3^/10
behavioral1
- Target
  
  bt111501.zip
- Size
  
  9.5MB
- MD5
  
  05f4c0ce2c1977aa735ce461d44913c2
- SHA1
  
  2c1b91a79f2c585169eaa178ebfdfb7a5d9c692b
- SHA256
  
  597443b323b68d2d7f2f2032be7b81d28bb3271e11a02d8f888d2df73c065dc7
- SHA512
  
  7493016d9c768aa850cd19869c4d1193b91a91343d72e14d201a97cb19e63eb5faf904c3d820db9e9cd456f0483deebe89f69062b22538fe9301ad00194235a6
- SSDEEP
  
  196608:Qd5NGiTaz2wJ0FOo+rzxx9HjpFOUyw5B+jmRrvdIZGfiiPwEVqlZ/Nc:wnazxJ0Fy3L9DpFOJw5MyRrFIpiP6nc
Score

1^/10
behavioral2
- Target
  
  btcr.nfo
- Size
  
  11KB
- MD5
  
  c5c91c3530116a817f28fd64ffdd75ce
- SHA1
  
  03dc979dbdd381eab89ff76a87ce94218795ed3c
- SHA256
  
  a84a5ceb620097a3ac8cee34d396decbf6a7c145f9e15565fec302daad82811e
- SHA512
  
  b8c7bc9dd890520e0039173d7b326da25e0f1d79769d13bba1cba23e408cf81caa530ab00576c13017cf135134da61dedc95ee49010635c49dece8d71412c624
- SSDEEP
  
  96:mIjrEVzGeg/4hb4VGOkJ0fjIiQqJPgZjFVCY2fVCuo:mtTWG1J0bNRaZ72a
Score

1^/10
behavioral3
- Target
  
  btcr.r00
- Size
  
  9.5MB
- MD5
  
  c6d8d70396f84bbecbcfff529206cb74
- SHA1
  
  2eee5191a7e5d83d2f7954873b001a829fc3d629
- SHA256
  
  60e8609e60e6fe98d3298205aa5c48a0329fa2137148aaebb6c0cef88f0d32b3
- SHA512
  
  8286ff73572552989f1d3fac4537d9c04c7da3acdd7317d801b1b9c1312168c7c1d922dc901ab259ca8099c2016510af878a2e19d4beb69b92f5f9d7e2277018
- SSDEEP
  
  196608:cd5NGiTaz2wJ0FOo+rzxx9HjpFOUyw5B+jmRrvdIZGfiiPwEVqlZ/N:knazxJ0Fy3L9DpFOJw5MyRrFIpiP6n
Score

3^/10
behavioral4
- Target
  
  file_id.diz
- Size
  
  723B
- MD5
  
  061647f2330e4b30a01dcadc0b36f76a
- SHA1
  
  8c4b28cd52e016b71502de7189c31778cfbc0046
- SHA256
  
  b365f68101a27a1ec0f503d14b3989985bd86b2bf044e11850525f69888358c6
- SHA512
  
  ff1641b2bca51cf08929268aa48b857ced7699a9aeb96f5dbaee6b85e97a1019444ae16f273486d44bf3b6a850ed74ed0c0d0820da36c9f9549f4a65ca5be8a8
Score

10^/10

discovery persistence
- Modifies system executable filetype association
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Registers COM server for autorun
  persistence
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral5
- Target
  
  bt111502.zip
- Size
  
  9.5MB
- MD5
  
  92bc088a673534bed2128b3f9589d9ca
- SHA1
  
  a24bada68780e92d84eb70f98c7be48c12b98421
- SHA256
  
  6bf8a79534f6b09d71666ca83cf388047d29e85b4db6cfe3c144953693ab2706
- SHA512
  
  fcd0e61544462b26b0d733ca5ba45db09c61a6e23fd432a2ad4b4df5b9043f2bd00385da70ba2bd4215d55285255bdb055c58fb3ace8f04a83e533634e9dac01
- SSDEEP
  
  196608:CXwEwN4FipLF8RJFFVxVGmi5uubkaoeYvZevHCCSaq485EWLiImufYfkY/YO:ZN4Nx4uYk/3Zpaq48eiznc/YO
Score

1^/10
behavioral6
- Target
  
  bt111503.zip
- Size
  
  9.5MB
- MD5
  
  3fd47662536d156fd1afb57d053d4a69
- SHA1
  
  d7cf1291145c1d5a5cb12a8a0b3f77951c2b7d20
- SHA256
  
  2bf57973e1e9794cdb58e63653f4569362352b1f132f0946de1f372f387f0423
- SHA512
  
  5de033b5959512639346d12be9c95184692849923aee5ed3a4e0c2dedc2332dcff0ad69b136bf085ce1d35974219c420fc43f10daa97ef3bcb085dc86fed5ec7
- SSDEEP
  
  196608:38r1ObaKJzs4zarI2RdPkEmG+dGH1zcWdA7+X:MrQTJtzMI2bh2GH1cW9
Score

1^/10
behavioral7
- Target
  
  bt111504.zip
- Size
  
  9.5MB
- MD5
  
  d28ef918eb2358089a43357413446f80
- SHA1
  
  fe5280eda2fc5690240a0958c32f09408f400bbc
- SHA256
  
  2ed7c50901e2f11dfeb13c8a200ce56af5f0e8132eb33b3ca28f6cf4c05dacfb
- SHA512
  
  b8406ae9b239852a8728e4b841200eefa6d65953d17e4d51614261c5f8b37537d27d7584afac68105c2d79cffc0535f6ae3518473316e661be9fca25857d7cc2
- SSDEEP
  
  196608:d3Z3W+5WF84BrH9tUkkvGemojTF7I53gy1BtVlguFUpImTrt0NLa0m:pZ3WZ8sH9JkuYj5cwytVlguF+3rq+0m
Score

1^/10
behavioral8
- Target
  
  bt111505.zip
- Size
  
  9.5MB
- MD5
  
  f0618ae6e24ea734353a0a29c4abc4cb
- SHA1
  
  a282eee1d5403e5a3a1d8acbd9e2d54c55f2cc9a
- SHA256
  
  d7f166476fa3b9d45c108e6f92374484758d73e75ecb996d220ad795c22d864c
- SHA512
  
  0e4ae76dcd637d2f6fffccb56df798cff646adb0772a73aa41728922c16f2aca9e4320bdd945244151ffa2c667397792d04efe8e79efa99591cc4c7fa75785d5
- SSDEEP
  
  196608:gKsIIRO7Pj7X36N7lL6MHr6V0b1vMlFfBEI8Lx61eXJm81drOUkL94XUg:3s5s32rTb10lFZER41KJaL+XUg
Score

1^/10
behavioral9
- Target
  
  bt111506.zip
- Size
  
  9.5MB
- MD5
  
  115d4514bc5a3241c17f2247d397905d
- SHA1
  
  68ebab1f996f1f7f81db7463305dd00c61957245
- SHA256
  
  b216a1dcdd09e160b624ba6eadc8b0d19951a61dc2cad430a5f09af50a8ad077
- SHA512
  
  f3f6524e74a88b4abfa61c1b9bb195107ad360b0c2bb5924c4c456c913326e645825c03faedba7438414f78ff9d85c4b731efd6ea1c2eaf921bd0f6f378ba054
- SSDEEP
  
  196608:L8emVMcYwIISMUQpZ3kie8v/CnmIqUjyZrEqdisDBNTNQ9Nlu09Iv2Z0jJXXT:L8evwwMUCeuy7D2ZrlT50meZ0NXj
Score

1^/10
behavioral10
- Target
  
  bt111507.zip
- Size
  
  9.5MB
- MD5
  
  181710d49edf50543474d26db751de1c
- SHA1
  
  e74f8d4bb5f4748f2e2fd48e8fc13568969e2812
- SHA256
  
  b169ea6a15bbd61d9f115fa25ed5d748cf6099a4ec92087043af315012b97733
- SHA512
  
  3a23b24613d559504180e284e77d3db772be157cefea3adfc98c73fe32af8c43cf3c24890c497ee383293e64128888c09165ffddfb7d30627666c7350816536f
- SSDEEP
  
  196608:srN08kB31qcWl6pVaPhM1DzZ8TELMLWCu49i2TPOGhl/kJGnYjZ80GjAZiEQY5Q:e0ZqjAVMW1Dl8TEISCuYiiPAV60KAZi7
Score

1^/10
behavioral11
- Target
  
  bt111508.zip
- Size
  
  9.5MB
- MD5
  
  559d4915f8fa70fbcc09b7ac67abb078
- SHA1
  
  6ebd95b997ac2e8ab4513cf67c19a5c793798e99
- SHA256
  
  c9eea05eaf16938e97bedcb38e1a25c2e7286bb814cc46478b9431c8547a920f
- SHA512
  
  0b6ce73d450b1f1473b00e2834e753d5a83d8ba4070f521311734f33d5d12f1af831e0f33857545d5718ca80dfff39ab768443a5b814dcae611d1ed2cf461b98
- SSDEEP
  
  196608:4rSe9gTd3kHm5TWx9snycWOfu48sUG5N8Dwk0Ezkd+Unn5Yzl4XPc:4OeyTd33TCeuF3aKDwk0UotezlL
Score

1^/10
behavioral12
- Target
  
  bt111509.zip
- Size
  
  9.5MB
- MD5
  
  7336de7136bedb77307c4cd32b97f54c
- SHA1
  
  7bd4f6c44566a8bb6b06aab52497ee9238a76093
- SHA256
  
  a1d926c03f0deb91d0e05ad47bc7ef7d0e637824594246a20a16659f053e4de7
- SHA512
  
  64d7db0322b4b3a5bc17337c828ebdf180935aa5f01b490c22041b3d14c394a43a2042226c2ee19f8b6fcf5caf09173ca71fc9ae7b9895e53361367690e55b47
- SSDEEP
  
  196608:97WtwNGYwsXhUXdO8RweKFh1VcxQAxRtS6ipciYaj8sQZpiQtphXIzNL:97WtwpUXU81KF7HUiqhZpVBy
Score

1^/10
behavioral13
- Target
  
  bt111510.zip
- Size
  
  9.5MB
- MD5
  
  4e56b0f168256669d4ee50d0af3f0196
- SHA1
  
  2d195fb166b8394fd8925cfbfeec7b3d301661f9
- SHA256
  
  93bd783672b9dfd739f45eb4f12ac2bac16dbc727b07df01441fa33f0bb336fb
- SHA512
  
  c970e5efe890307b3cc0071ec35b2854037463f6a430c06753b5364bcec2eee3297951fd8a6e2d67f4260deaa0682d45e1d5569a81191b8c96ce6151a081e505
- SSDEEP
  
  196608:cQaG31wCEkgz4MSkTxEDIcx90Kzuer4lOrPnKZ2/876YjqD1/KcQ:cQDLdgz/WDIcQvWPnP/876YjqD1c
Score

1^/10
behavioral14
- Target
  
  bt111511.zip
- Size
  
  9.5MB
- MD5
  
  e729a490be9f0d8f1f92615a2dff4dc9
- SHA1
  
  3e7f6d9357bdd35d1fe2590b3fd4a48b98b9e866
- SHA256
  
  39fd5fb66bc9527d9a8148c65433caedff6107a08c6b6bfdb714359a438bf819
- SHA512
  
  73aaa0a6edd4adffa05268461a47a133439dcaee035bd582df432be5f99a6df1b6bedc0eec24036f12e5ea08139e446a5a222be1512c67d8b0dabda137215c94
- SSDEEP
  
  196608:EEh5Numj6B+gWnfeWtNVHV/94eN3i05uxlSsCepYPd+wINT3H02C7avvoyoJXs:EEhrvj6HWf1p1/94eltubpk+wGTXwavL
Score

1^/10
behavioral15
- Target
  
  bt111512.zip
- Size
  
  9.5MB
- MD5
  
  46af6f350a06cc48c0bc33f904eadb2b
- SHA1
  
  ca17ce40f7796e434a4916f76a3bf10b9ee089b1
- SHA256
  
  6dc3f0e539eb420e841ee3d46bff7009511f608d6da1be0a7c7be59174ed54d7
- SHA512
  
  2bd4eea2f1d6440f1366ad7e082d62530b60a011e93ebd347282b60d09ddf783d05b149377aaec34c3ce7d3841a8e67dcd144400722d8e9cdf3579fdee3b5e2b
- SSDEEP
  
  196608:yGSM3X1HdOq4wreYzvbyb0aiPcja0Y6lD1GT2NKmGx5g6svviR:yGSM1Hoq/reYjtasTRWD1GTYUg6evW
Score

1^/10
behavioral16
- Target
  
  bt111513.zip
- Size
  
  5.9MB
- MD5
  
  5cc53a46a971fff1cceb8fc7f9066799
- SHA1
  
  fa1e3f95b9cebd1873b5eb097cf1df67d7c9fbb2
- SHA256
  
  abb41addbb1014542ed32f7c56a83a5b87f6f3dd85da1b4645df8bf021373bbe
- SHA512
  
  9a342392096dc5205e75eb4a043cb81a92d627c2ec47df7ea9e2fdf0b0e864301417a1c1a82fda70c7e5359f605d51a4d6773b17be10fdd6bdba3400581b3fe1
- SSDEEP
  
  98304:mbKnqbOd2n1IDAfufQi04lOd4pKYf/r/IhLeC7i3xfS4RvwEtrlVn/DJsBOOxrZL:mKT2qouftbPFrSe5lS6pP1/dUzx9
Score

1^/10
behavioral17
- Target
  
  bt111514.zip
- Size
  
  9.5MB
- MD5
  
  57a1e8ce9ce10b0b819799f06df883d2
- SHA1
  
  8dddc77026016b23846fe92f271aefbe98aa5c3e
- SHA256
  
  ecc6708e2012f9cd7cdab89bca0330f22db0caa2c494524d670165a9d482f364
- SHA512
  
  9928aa1412beac580aab9f30f88980e6589b1280319f919258e971dac0de81fcfa9782edefd0cea3f9ab606c4b41502722bdb1ca42dfa4255fb4c766ace70c64
- SSDEEP
  
  196608:02BZp/9Uu2mE6xy8MtEfMbCsFZuuQL/QUof7R3+unQtXvV:nZXUu2D4Y6fSwu4/q7pNQtt
Score

1^/10
behavioral18
- Target
  
  btcr.nfo
- Size
  
  11KB
- MD5
  
  c5c91c3530116a817f28fd64ffdd75ce
- SHA1
  
  03dc979dbdd381eab89ff76a87ce94218795ed3c
- SHA256
  
  a84a5ceb620097a3ac8cee34d396decbf6a7c145f9e15565fec302daad82811e
- SHA512
  
  b8c7bc9dd890520e0039173d7b326da25e0f1d79769d13bba1cba23e408cf81caa530ab00576c13017cf135134da61dedc95ee49010635c49dece8d71412c624
- SSDEEP
  
  96:mIjrEVzGeg/4hb4VGOkJ0fjIiQqJPgZjFVCY2fVCuo:mtTWG1J0bNRaZ72a
Score

1^/10
behavioral19
- Target
  
  file_id.diz
- Size
  
  723B
- MD5
  
  b21be692b4c969a82b745ad6d70e67cd
- SHA1
  
  c83cdebea796a9bfa973c7b34b9b76d2714be15d
- SHA256
  
  ebb14f11f55d4629a692882d9600368ad7d47a804b2f93fb0aab5c8e7d38d630
- SHA512
  
  b56d624eec6d0665791574946cd23ff1812d6760c8a0487263a041572f9efe3351faa589a55a6ba5b5e90bb8d4757d3d0bb3619e8e4fc6cb9820ed6e319a786a
Score

3^/10
behavioral20

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

T1042

Registry Run Keys / Startup Folder

T1060

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Modifies system executable filetype association

Checks computer location settings

Executes dropped EXE

Loads dropped DLL

Registers COM server for autorun

Adds Run key to start application

Checks installed software on the system

MITRE ATT&CK Enterprise v6

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20