Overview

overview

10

Static

static

10

FastColore...ox.dll

windows10-2004-x64

1

GameDev.dll

windows10-2004-x64

1

OpenSource.dll

windows10-2004-x64

1

ReadME.dll

windows10-2004-x64

1

Setup.dll

windows10-2004-x64

1

Textures.dll

windows10-2004-x64

1

Themes.dll

windows10-2004-x64

1

Update.dll

windows10-2004-x64

1

Vega X.exe

windows10-2004-x64

7

exploit-main.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Vega X.zip

  • Size

    52.7MB

  • Sample

    230222-1xtkjsff6w

  • MD5

    9fe9c454573ca027438320fc9f374339

  • SHA1

    3c70fa169fad6c76c636deabf373055779866a39

  • SHA256

    546496eab1ffb0b28bd052c681d7a4b161b518bccead48c2427e88ac4efff451

  • SHA512

    c1570ef5367006fb8e53e543054bec33e25c8b7a54d7e4b1c5b56b006160ea5d050147a9af7cfba43803db29833a3057713581179ccea3213b78707308215b35

  • SSDEEP

    786432:9XzLaHZDtzcrhQnXzLaHZDtzcrhQ+XzLaHZDtzcrhQFXzLaHZDtzcrhQqujP:tLCBbLCBiLCBtLCB1jP

Score
10/10
auroraspywarestealer

Malware Config

Extracted

Family

aurora

C2

185.106.93.132:8081

Targets

    • Target

      FastColoredTextBox.dll

    • Size

      6KB

    • MD5

      6989b0553bb712d86f8b51ef5034df0a

    • SHA1

      e84e993fbe5c0e53d79cfac525fdaef94d948d51

    • SHA256

      25e1fd4fab906667d6ab7ad62507ffb456534919371ed1e6608fb275050901c9

    • SHA512

      89b38f1cbfbb5286230a829deb3cf76f63c5b9a3e86cd084d5087d010a2b9b615d2513d616d2012b3a722bfc323f873e5e4da25a06575b5a7279caefa3f80d17

    • SSDEEP

      192:oeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeey:f

    Score
    1/10
    behavioral1

    • Target

      GameDev.dll

    • Size

      6KB

    • MD5

      6989b0553bb712d86f8b51ef5034df0a

    • SHA1

      e84e993fbe5c0e53d79cfac525fdaef94d948d51

    • SHA256

      25e1fd4fab906667d6ab7ad62507ffb456534919371ed1e6608fb275050901c9

    • SHA512

      89b38f1cbfbb5286230a829deb3cf76f63c5b9a3e86cd084d5087d010a2b9b615d2513d616d2012b3a722bfc323f873e5e4da25a06575b5a7279caefa3f80d17

    • SSDEEP

      192:oeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeey:f

    Score
    1/10
    behavioral2

    • Target

      OpenSource.dll

    • Size

      6KB

    • MD5

      6989b0553bb712d86f8b51ef5034df0a

    • SHA1

      e84e993fbe5c0e53d79cfac525fdaef94d948d51

    • SHA256

      25e1fd4fab906667d6ab7ad62507ffb456534919371ed1e6608fb275050901c9

    • SHA512

      89b38f1cbfbb5286230a829deb3cf76f63c5b9a3e86cd084d5087d010a2b9b615d2513d616d2012b3a722bfc323f873e5e4da25a06575b5a7279caefa3f80d17

    • SSDEEP

      192:oeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeey:f

    Score
    1/10
    behavioral3

    • Target

      ReadME.dll

    • Size

      6KB

    • MD5

      6989b0553bb712d86f8b51ef5034df0a

    • SHA1

      e84e993fbe5c0e53d79cfac525fdaef94d948d51

    • SHA256

      25e1fd4fab906667d6ab7ad62507ffb456534919371ed1e6608fb275050901c9

    • SHA512

      89b38f1cbfbb5286230a829deb3cf76f63c5b9a3e86cd084d5087d010a2b9b615d2513d616d2012b3a722bfc323f873e5e4da25a06575b5a7279caefa3f80d17

    • SSDEEP

      192:oeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeey:f

    Score
    1/10
    behavioral4

    • Target

      Setup.dll

    • Size

      6KB

    • MD5

      6989b0553bb712d86f8b51ef5034df0a

    • SHA1

      e84e993fbe5c0e53d79cfac525fdaef94d948d51

    • SHA256

      25e1fd4fab906667d6ab7ad62507ffb456534919371ed1e6608fb275050901c9

    • SHA512

      89b38f1cbfbb5286230a829deb3cf76f63c5b9a3e86cd084d5087d010a2b9b615d2513d616d2012b3a722bfc323f873e5e4da25a06575b5a7279caefa3f80d17

    • SSDEEP

      192:oeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeey:f

    Score
    1/10
    behavioral5

    • Target

      Textures.dll

    • Size

      6KB

    • MD5

      6989b0553bb712d86f8b51ef5034df0a

    • SHA1

      e84e993fbe5c0e53d79cfac525fdaef94d948d51

    • SHA256

      25e1fd4fab906667d6ab7ad62507ffb456534919371ed1e6608fb275050901c9

    • SHA512

      89b38f1cbfbb5286230a829deb3cf76f63c5b9a3e86cd084d5087d010a2b9b615d2513d616d2012b3a722bfc323f873e5e4da25a06575b5a7279caefa3f80d17

    • SSDEEP

      192:oeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeey:f

    Score
    1/10
    behavioral6

    • Target

      Themes.dll

    • Size

      3.8MB

    • MD5

      8b7df4129ced11bf95a5369c7b60e61b

    • SHA1

      ee18976c96db4f653d32ad4e98ecbd4cc139ab49

    • SHA256

      26c88c0997428578952554bbd7ba860241a84b4b018491f9c45ae88186a1292b

    • SHA512

      dda1eda5750b72509f4c563315ac6a07f4764228308c4c864fde283b84d55cbc66bfbbb364b46badced7e6af4fabc3c54252025c1f6b8d989d6549de5c654bc7

    • SSDEEP

      1536:zEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWp:3

    Score
    1/10
    behavioral7

    • Target

      Update.dll

    • Size

      3.8MB

    • MD5

      8b7df4129ced11bf95a5369c7b60e61b

    • SHA1

      ee18976c96db4f653d32ad4e98ecbd4cc139ab49

    • SHA256

      26c88c0997428578952554bbd7ba860241a84b4b018491f9c45ae88186a1292b

    • SHA512

      dda1eda5750b72509f4c563315ac6a07f4764228308c4c864fde283b84d55cbc66bfbbb364b46badced7e6af4fabc3c54252025c1f6b8d989d6549de5c654bc7

    • SSDEEP

      1536:zEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWEWp:3

    Score
    1/10
    behavioral8

    • Target

      Vega X.exe

    • Size

      703.0MB

    • MD5

      69694c57644b680fca5953ff14ce50f8

    • SHA1

      d3c1c6c0db6661df76bc47808a19c9895385e746

    • SHA256

      c0c67545f4ae6636718bfbda89550c7ee89041e473baa6936e64629564720c00

    • SHA512

      01a7d4ad8aae5803c160a9ac22cb155e03d2e85eeefe663b5ef4e01b53653ac5bbb65e9cb2ac85c59cc1da1ce055ded7b3f35dafb68a419acdd7eca6ce7ad68c

    • SSDEEP

      49152:IZ+3yoz51fQ1IbhmmyY8a3sLFA8pQb2ik12:IS1umoLO8pY

    Score
    7/10
    spywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware
    behavioral9

    • Target

      exploit-main.dll

    • Size

      6KB

    • MD5

      6989b0553bb712d86f8b51ef5034df0a

    • SHA1

      e84e993fbe5c0e53d79cfac525fdaef94d948d51

    • SHA256

      25e1fd4fab906667d6ab7ad62507ffb456534919371ed1e6608fb275050901c9

    • SHA512

      89b38f1cbfbb5286230a829deb3cf76f63c5b9a3e86cd084d5087d010a2b9b615d2513d616d2012b3a722bfc323f873e5e4da25a06575b5a7279caefa3f80d17

    • SSDEEP

      192:oeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeey:f

    Score
    1/10
    behavioral10

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

2
T1081

Discovery

Lateral Movement

Collection

Data from Local System

2
T1005

Exfiltration

Command and Control

Impact

Tasks