88aadf26c5a6ef8b874d4c0e7ac5250aed2ab2491ee3f3ab0de850cd151f9f5b | Triage

Submit
Reports

Overview

overview

7

Static

static

1

vocaloid4_...up.exe

windows7-x64

7

vocaloid4_...up.exe

windows10-2004-x64

7

Sharing

General

Target

vocaloid4_4.2.1_setup.exe
Size

49.9MB
Sample

230220-hf7rqshh77
MD5

9fa0daa963c93a185fcd38056f1697cf
SHA1

a7eb2b5144f09020e0a526394f52fc20133f4c1f
SHA256

88aadf26c5a6ef8b874d4c0e7ac5250aed2ab2491ee3f3ab0de850cd151f9f5b
SHA512

3e6b8c4581c58c12e71733571186bcc6f0ec078f75d9b5d0b52a69996765b1f6e772f17e0d86052b844953200c7d44fe87567a66aa12bbeb5df364177fe83db7
SSDEEP

786432:THq33j8RcOkoGNrRjJnlF40K+mRLiuRcRWOFZ3N/rSckcVdg+Dp7ZcFz+t:rq3T8iboGNVjJn76rcJVbVLFust

Score

7^/10

aspackv2 discovery upx

Static task

static1

Behavioral task

behavioral1

Sample

vocaloid4_4.2.1_setup.exe

Resource

win7-20220901-en

aspackv2 discovery upx

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

vocaloid4_4.2.1_setup.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  vocaloid4_4.2.1_setup.exe
- Size
  
  49.9MB
- MD5
  
  9fa0daa963c93a185fcd38056f1697cf
- SHA1
  
  a7eb2b5144f09020e0a526394f52fc20133f4c1f
- SHA256
  
  88aadf26c5a6ef8b874d4c0e7ac5250aed2ab2491ee3f3ab0de850cd151f9f5b
- SHA512
  
  3e6b8c4581c58c12e71733571186bcc6f0ec078f75d9b5d0b52a69996765b1f6e772f17e0d86052b844953200c7d44fe87567a66aa12bbeb5df364177fe83db7
- SSDEEP
  
  786432:THq33j8RcOkoGNrRjJnlF40K+mRLiuRcRWOFZ3N/rSckcVdg+Dp7ZcFz+t:rq3T8iboGNVjJn76rcJVbVLFust
Score

7^/10

aspackv2 discovery upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

aspackv2discoveryupx

behavioral2

© 2018-2024

Terms | Privacy