b4566a42eadc945fd6745eac49cd1da99c774def0d2ef075d92511dfc36ab3a2

Sharing

Copy URL

Twitter E-mail

General

Target

setup_SNO_patch.exe
Size

25.9MB
Sample

230513-d8qxgafd85
MD5

e5c846e38c63c1d3adb8dbb3bc9385a1
SHA1

1879ff849afee41a45f1e8e39ec6f9b27a61c698
SHA256

b4566a42eadc945fd6745eac49cd1da99c774def0d2ef075d92511dfc36ab3a2
SHA512

853caeff5a94a50656a6b3bb804ac8f81354732a5b09af045b3ef006addb4894cc252e8d75f6959323fc177eaebe12d26e474d83fe5a60f2f7bdb0e5418935cd
SSDEEP

786432:ZePsu0zV5Md9QpMKOxev+z/OkcCZ8bCo7:Ze1EV8LKeev+7OkcCybCk

Score

7^/10

upx

Malware Config

Targets

- Target
  
  DISP.exe
- Size
  
  528KB
- MD5
  
  cdabafaba13ba9a9ae08b099e1337978
- SHA1
  
  b012b21e5e2556eda8bba613b582511cf4ebe8d3
- SHA256
  
  ba023bf39c94fef3c434751916607455b8ead4fb3bd7fe116d3c7d69b52b4e48
- SHA512
  
  ee8321b53fff9850298bc9b5f1cf5769ba748cab6d1ebb498884e2e3c2e65840e37bd424cfc7cae20fa9c8a8773bd870133ca1eea2791939f33fb0e2be4f23ce
- SSDEEP
  
  6144:D5hqs8v60BQLpa9f8BD22vjBd003Xq30jGK6xbQMZG+IaFgbn/1VYA1eK3OrByyO:D5hqCL2fM227BdR3pp7AKEwyiLV
Score

1^/10
behavioral1 behavioral2
- Target
  
  LX.exe
- Size
  
  5.8MB
- MD5
  
  ba8eb03dfcf251c7afac2e1a479ff2c9
- SHA1
  
  5f43d8164530cf589e9b60a743ceb00de773442d
- SHA256
  
  178b7abf82b5dcef825c54cf2596be23318c46259fca30bb487a7ed0b5ae2728
- SHA512
  
  dd5440c97d466db905f4c003c4add06677006e9a5b2da925641bee41c9984b1634ba140ac5dd1efb2e44b374e493620eaf464caf406a104d27542f80f282f7b6
- SSDEEP
  
  98304:gD3vhSSeRPfTDkrJD5UUS0WfJPV55Lz+WYHA7dN1vY1a+1aJmHApOr2mtm9IcVya:g9BehTDkrJD5UUS0WfJPV55Lz+WYHA7
Score

1^/10
behavioral3 behavioral4
- Target
  
  SnoConnector.exe
- Size
  
  720KB
- MD5
  
  e421fdf9cb031a8bbde4ec33a3719154
- SHA1
  
  9493df9e9db07bd6292da186d6acb4b6f63897f2
- SHA256
  
  3b047728eb15574f6331b7ad15b15634e7a285c1e1a33975bd2af1feae8704c2
- SHA512
  
  9417d94132b8c34693ee977e9dbfc988597ea0102920072fceb73d1c3131f5335946def914cd9b1b47ba55b2dcfbd70c896e1f762ee1ae09f4e0606b3cabc79b
- SSDEEP
  
  6144:x/jaGm4S/JHvO2mtIsP/7IyuY2MlxXf/8OdvTlCGKMto5DoNT1jqTFQTBXsb5Uuf:x/j5fXIabxXfkOtQGKoo5DoNQQT56QI
Score

1^/10
behavioral5 behavioral6
- Target
  
  lxextr.exe
- Size
  
  12KB
- MD5
  
  d3962e2f29364d2abb8a2c0636bcbfc4
- SHA1
  
  60bfd41cf41b99cf7a5c8d6f7918f17f5d30f2d9
- SHA256
  
  35e8493ff91533741ce9127b4d472a5676528a7ba676e1bebe3c677606870c7b
- SHA512
  
  ccbb2b06ebf93075527356487f098efd33ce57652d514d40ca26f57c26c3ca07c8b4539c94d327a7fa2756094314335423109475acabc543d0f69965aea3e814
- SSDEEP
  
  192:ceQ/re4we2aSSHjdPVE0VObyOrulc3VTtmkHGkuFwk1alhd/W2hHNlkK:qrwe2afxMyOOaVTt7HGkuwk1aR/jf9
Score

1^/10
behavioral7 behavioral8
- Target
  
  lxsmartstrip.exe
- Size
  
  8KB
- MD5
  
  f68966d6886628c8a2d525155d6ebf27
- SHA1
  
  1a6cdbdcfdd4d70e3217cbdccf5558e945b31975
- SHA256
  
  411265e2678f16eabea6ff0d8923c1143e86c24f0322b5890547a23c79f86ea3
- SHA512
  
  1af176e632ca5adb61408978e1708363a28a436d409d8235ef4c4ee31926e60ef05ade3f6537694a7b7702f678a5a9fe9f362d71cd37304a1181b9e11f8d10ce
- SSDEEP
  
  96:59pulIfyWIM/3udKiImi86Q4q4zu+WNTMlzJxF4xYGDbINKHN/7kKBJn:5aGfyWnw6Q4ruhTMUxvD/HNzkK
Score

1^/10
behavioral10 behavioral9
- Target
  
  sno_ui.exe
- Size
  
  5.8MB
- MD5
  
  38c15fdc0e99f5baa94efb44e0689d48
- SHA1
  
  410bd3a0c0b6c3d8e6926961a75d442b62678e2b
- SHA256
  
  c1d8da0bf8a159f19ffa4688c966c873ebb651144992bad2320b3537ea12a1ad
- SHA512
  
  2eda661cff64ebec60aaf1ba6e340ba51181aa26ff80c34487ab3d4586e8473850efbfd83d79ef6676f0c16fe7a6b054105827eaada6984d1a5555b11d9065f4
- SSDEEP
  
  98304:OA75qKzi3cF7Yfe+cR3dGsSyaghsNg8/lZJ3WB:OlKu6mcGqa3yQZ
Score

1^/10
behavioral11 behavioral12
- Target
  
  InstallerData/Execute.zip
- Size
  
  1.2MB
- MD5
  
  c30f10ae87b473a8e9612556e28f36cc
- SHA1
  
  67dc6304ea599bd64a3a6359ccb04ff5a0ea40f8
- SHA256
  
  a00cbec1ca36531a7b3d5ae891180e3b64cf8f470cc826808847bee180f6ade3
- SHA512
  
  bc1d87f268eb077110402568e67da20c530cd8b8147c93f67473a9702b350c4af1a6f7c98d5f27befabb279792907b3b05ed1d75658cb60193640204287bedc8
- SSDEEP
  
  24576:z0RhqGgbUgWqQP2TMKqf4sKWViEsCzjEpQAAc+YaQK:iQFbHWq/TMdgUiEVXEpQ4rK
Score

1^/10
behavioral13 behavioral14
- Target
  
  InstallerData/IAClasses.zip
- Size
  
  2.3MB
- MD5
  
  09bb5516d51d8fff6e9649a057c48987
- SHA1
  
  a221dc741759f9b97c4eb1a87a365a38e3ef02a3
- SHA256
  
  60c787ef7c09af5ac34307e40722742709e273cd767b3eb9f08e3933629b34c0
- SHA512
  
  3308cb1994ecf2050cac73685a210914e3aced52704584c04ef90dd34a19a31347d5fe84b85dea640bc300cba746e35ea55ddad47834bb461d99833f6331f7c3
- SSDEEP
  
  49152:e2CeXLn+3zGkYXjTJ/C9gufQTcK2oMJ3NbYuE6bxKQwW2tPYgxaZnMgjA8yiL0cv:TCetxsTjhr
Score

1^/10
behavioral15 behavioral16
- Target
  
  Windows/install.exe
- Size
  
  110KB
- MD5
  
  6f02b91897c4610e024544e035116ac2
- SHA1
  
  14e4779a095cfdc44e34219f6f6004e76c6f12c2
- SHA256
  
  f63dc2a1d4dba23d5acec28af65f8cc3419584419c09689e170e1ae83bf5d6a4
- SHA512
  
  39be399617ae0b402a4354754a2d57efec65cd6b661658b51662263c5aaa3210d3b6f44894b059670ffac3a34526060a82a1821075ad2eba50b96e449dc1cb74
- SSDEEP
  
  1536:II8xTv4Wc8MWOwuatcswxdmhI78fhU0YKfOVEQVh4vTLUtYxVfl5HHXiDyoZoFuB:II8GMtiPyfGSfON/A0tqfvHHyDyWoH0
Score

7^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral17 behavioral18
- Target
  
  Windows/msvcrt.dll
- Size
  
  288KB
- MD5
  
  055b02d711cdedb8c5997274c4e99cb8
- SHA1
  
  5c816eeb6e4d5f1c11e9f56c992ee7d452e7c0f9
- SHA256
  
  d7cea69a98579d928e534070f5293e80ed7df38baf611b20717ef55aa1344a18
- SHA512
  
  4774431fe768e424f46c833236a41d68f05d98ed14353b04428a5d190dbe213bb56087a5e5cca5cd98598f2c1611fddfed3a7a79bbd362bc02e586cc367907c0
- SSDEEP
  
  6144:yk54RkH8RKDou3LlG/3Roe0Ro4zJsdF9gjFMgiFjNr7mcl2oZhogKLOmJxZR92l3:R4RtIR3BG/3We0RVJsdFFUzchogKLOmc
Score

3^/10
behavioral19 behavioral20
- Target
  
  Windows/resource/ZGWin32LaunchHelper.exe
- Size
  
  44KB
- MD5
  
  3b169826081aa0b92bf122454f59de05
- SHA1
  
  89f61544053e08c0b7c28f25d471098a6d9b3d6f
- SHA256
  
  227a75af3c4004d9a81f1c5d89f106f0ebd0b16c049fcdc6de6fbe686684f0d5
- SHA512
  
  4e9cc27f39d375c4ae5610c47194de630060634bcf54c6ba16647b93c9ba35a80fd54fdb63c42ee5d6e242c02a6c89e954b2a83d9f9515c5d1edb509a757cc85
- SSDEEP
  
  768:Zz9XXuvhWoPadLoyquZPHzzBuWalOs/9CltM+Pmbmqryrvi0TDuAzt:T6hWoENhz0WGqrHuAB
Score

1^/10
behavioral21 behavioral22
- Target
  
  Windows/resource/iawin32.dll
- Size
  
  240KB
- MD5
  
  85e608d4cf8c2f666ae12c023d6bcb76
- SHA1
  
  ab9e044095decade3dd32c4a1e65054f5c22bfee
- SHA256
  
  a153ec236c71829c51149bd05be2f978c68dde282deda02de16623a46c05d083
- SHA512
  
  2d5ee47159ee857f5f334694eba461a1eb0c62d4617c4a289c080f738c5de98785309188be78fc3a1ffff4114e6b4d65b41aaa8dc4b3d456e8a12f57e19d2159
- SSDEEP
  
  6144:tRUYp2eeHfishHq4uoDmqC0m2pY5oQwR:zv9eHlhsUmqTmmlR
Score

3^/10
behavioral23 behavioral24
- Target
  
  Windows/resource/jdglue.zip
- Size
  
  5KB
- MD5
  
  4bc23fb54d987bbdba210ea958fb94b3
- SHA1
  
  64789a94507ae1fc909ec56ccce931358ad7eb6f
- SHA256
  
  7e31ff04a93d6659fa21aa5d81998786ff78b8a08ff262a0a3be47d4638946b0
- SHA512
  
  fde7f81bacc21729caccc62f5a2f89e4bf99d964436a1d5b16102265f94e700e969edec9ec94470150aeab5c446f102e6d0ec1b6bb490a0ae40882481e9a4724
- SSDEEP
  
  96:P7CKoXFcNQH4KpD+1N0AxENEB+mIuXOJPWt3YmbMo2HbIXidrQNjkPzB2/+vv5:UPpaXDsEB7XO54jUMSKQ
Score

1^/10
behavioral25 behavioral26
- Target
  
  Windows/resource/jre/LICENSE.rtf
- Size
  
  25KB
- MD5
  
  8990e3719b45c6a6f34b8e637e6e7861
- SHA1
  
  17c15f69ec38f45dc7e6bc7100a15177c4a713c3
- SHA256
  
  66cf5ce5741aa1c4de2dfdae19f6026f9776cde2e30d89f39943aabda5fa4964
- SHA512
  
  250f92661e599fc648a4de53e35e79047998a7cb90885f4d82e0aae2022cf96024890c8fc2ce02a6cd4e4889c69d2f14673bbea3b52dbeac381c9de7493baf68
- SSDEEP
  
  384:UJJFDFDF4FtFsFIEFwFVFFN73j3sjUjCjhjlj2jj6oXlM9lvuTWH8mQqISxKN:UJJhxGf+fq/LFLswmVZS36oSkWcm9A
Score

4^/10
behavioral27 behavioral28
- Target
  
  Windows/resource/jre/LICENSE_de.rtf
- Size
  
  94KB
- MD5
  
  8336d248787b6a476e2f8acbaa0ec95b
- SHA1
  
  d0b86a18ddf57515f25a1eff45f06534f24d0e54
- SHA256
  
  9ebbb68f9dc537995de0c772e103d8cecc5ff16d65ad2a62b87d838474bc6fc8
- SHA512
  
  8afb9ebf8e05114fc952df9494d5ae030b68069a962eb731b7471d4c4d244dc8be6ea6d6a9953fb321bef17f1281793596fd24c672bc8bf7e234657a16dda6f1
- SSDEEP
  
  768:GKJsfK9+PdFgI+I02+yk6/ZVR2JyIKXxtMjawFoOadyuxPjyu9NO2ixlyjyTUuIH:9Tqt
Score

4^/10
behavioral29 behavioral30
- Target
  
  Windows/resource/jre/LICENSE_es.rtf
- Size
  
  32KB
- MD5
  
  9bd536dec5f367310f119619acb42d24
- SHA1
  
  8a258ed87d6e6b006ed1e8f83aa68706a98bf22f
- SHA256
  
  0c36c5e717eb66ec9f3a691e078befff908e13518b63befbc794fc33b3de4368
- SHA512
  
  c3ce5be1067ef2a390312f16887bb38d3da93371f2046d2783f8aea5f9c875605426360112af70f94e21c1f3dc921122c81126c4e6942ee5c2a1ac86690dd9e9
- SSDEEP
  
  768:LcwGEMSnbiLN7EAS6AOmkhKmhu3oDfjELgzUwW36c6ft/6yxa:2GifYLJ936c6V/6yQ
Score

4^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

UPX packed file

MITRE ATT&CK Enterprise v6

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32