b31a263ca323b147804980ea20d1b0838414b08bcfdc28f8f934a9322634d40e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NVidiaProfileInspectorDmW-v3.5.0.0-Windows.zip
Size

334KB
Sample

230402-1h75dsag93
MD5

2357438ffb6393c425f214342538a2b2
SHA1

cf303ccde4214fc1366590cb300a93a58a253c05
SHA256

b31a263ca323b147804980ea20d1b0838414b08bcfdc28f8f934a9322634d40e
SHA512

4e6a004be54ffd25d773a735c132ab7e59d0e1d3e4d8e9fabf5a1b679ba056943bfe3c16ee002ffb4bf16cdbccf132fa687b1717caa7bd3d13e3fa244e88361e
SSDEEP

6144:aw1hAQoqPng4qrOQAAds64euDkWnMhT59cVRQE6b3r3Q:aw1Qsg4qaQAAIeu87A

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  NVidiaProfileInspectorDmW-v3.5.0.0-Windows.zip
- Size
  
  334KB
- MD5
  
  2357438ffb6393c425f214342538a2b2
- SHA1
  
  cf303ccde4214fc1366590cb300a93a58a253c05
- SHA256
  
  b31a263ca323b147804980ea20d1b0838414b08bcfdc28f8f934a9322634d40e
- SHA512
  
  4e6a004be54ffd25d773a735c132ab7e59d0e1d3e4d8e9fabf5a1b679ba056943bfe3c16ee002ffb4bf16cdbccf132fa687b1717caa7bd3d13e3fa244e88361e
- SSDEEP
  
  6144:aw1hAQoqPng4qrOQAAds64euDkWnMhT59cVRQE6b3r3Q:aw1Qsg4qaQAAIeu87A
Score

1^/10
behavioral1 behavioral2
- Target
  
  NVidiaProfileInspectorDmW/AutoClosingMessageBox.dll
- Size
  
  8KB
- MD5
  
  22784f6f6d9714d920d6fc11ee3699ee
- SHA1
  
  5e9df5b74f2cfa04ca1907a85cb1eda87faa3a00
- SHA256
  
  8f94f24b6c089c86acfb94c592820731b6f303a694d8aa98407135252f4d1e20
- SHA512
  
  5988bd9c35318ca370fd655c42b9c5c2cfa90cc3c8d309460476c02a224fa0878e34e66d5ad14d901cc0b1601527e17ce32b3c47b88b2d858e7010d596bf8ee5
- SSDEEP
  
  96:Nvctzz9lja3QyzFwVP/8flRwv+t18VQd+MVMLuMzuSZ9pmW:GtzhQ3pSSlyy18VjMVMLurSJmW
Score

1^/10
behavioral3 behavioral4
- Target
  
  NVidiaProfileInspectorDmW/NVidiaProfileInspectorDmW.exe
- Size
  
  1.1MB
- MD5
  
  579067aa83eee52e3e3cb06efb80f6b6
- SHA1
  
  c500e583305860076ada4a0dbbd52ba372782f7f
- SHA256
  
  c8a5184013e8e76abfcedac550e5d1b2283cb4b86a9cc3a43bb50e2dd9bae6bb
- SHA512
  
  98bf5c69fda21b13a42ba8ea59d37a98b07c5c2000820e97abbeccf42fe36376fe02fab3a38f5dc7ef21397ecf34922a79a5c7978b9c1b84761f3e60f8431804
- SSDEEP
  
  6144:26lGUh25W4gqmiOt/YBd9NfDb1xBcIIzd9NfDb1xBcII4d9NfDb1xBcIItV0TgfY:26l85mdim/Y/DmP5DmPADmPIgfFDcp
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral5 behavioral6
- Target
  
  NVidiaProfileInspectorDmW/NVidiaProfileInspectorDmW.exe.config
- Size
  
  158B
- MD5
  
  10ac8bfc8e450b2aac4a9f1b90892c57
- SHA1
  
  1b98a7615c7d317e983baff0020110f10a7a67be
- SHA256
  
  f3f4847275f08db429019ee65f0dd8e3d2384a35035322de949eb43009fd1a57
- SHA512
  
  7edce052ac5b135317dc6beef2dcbef025479d7e0da78e4d9fbc11bbbca48a33d67099d7a40e63d1c2c9daee4ff6840c090774a6c5766953a6a86586d1b7b944
Score

1^/10
behavioral7 behavioral8
- Target
  
  NVidiaProfileInspectorDmW/Reference.xml
- Size
  
  166KB
- MD5
  
  d63ec5bf4759f760c4ea43ac1bfb8f93
- SHA1
  
  2479ab329f3dfefb046bfcc1166d4e4d69124c6d
- SHA256
  
  fdfa31e835d90aac3d78ec9c2190df61ea72a09260d6e9557f3d1bc3df96311a
- SHA512
  
  88aa11783b739620ad515b98ffd63cd56287566a4403aeeb0bccc297d7789e94ed022f5cbd5695a1474a7b0fc9e3102724d8885b10b5e113bc0ee099123be9fc
- SSDEEP
  
  768:wZvY3nj9hqj92ne4P3MQDUrKy0OpGFGkotz/he2wzQz0PieH:wZvYTO8e4UOUBVpGQkMhe2xz06S
Score

1^/10
behavioral10 behavioral9

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10