5bbab96d60704854efd8246a7d9371688b9102261544827fc8884126d70bcb3b

Sharing

Copy URL

Twitter E-mail

General

Target

Dism++10.1.1002.1B.zip
Size

3.6MB
Sample

230903-bygvpsfh7s
MD5

f5485e418da631b6289e4a51495bca87
SHA1

2ecb84172bf12fec7c9e1f378466db53589660fb
SHA256

5bbab96d60704854efd8246a7d9371688b9102261544827fc8884126d70bcb3b
SHA512

61bc53e89c6663c6257297c35615a8ef86604eff2966899699bdfaa69b2c0a721fa28566350d9bee2bb311b9cc0d1823bb796c3cc940f8238871850fd61fa9ab
SSDEEP

98304:vKBqv2ChMWSVDy+Q8YOUoYqeYfsuK0sTILg6ixyeXmziSTPB+u8:SB82KMWqyJfoEY0l0sUAxp2WIPB+u8

Score

3^/10

Malware Config

Targets

- Target
  
  Config/Plugins/FrogPlugins_Pcn7FMvReAsVWfCQBfRJCw/Plugin.amd64.dll
- Size
  
  173KB
- MD5
  
  67cbf66af892412815d9dd6fc52b693a
- SHA1
  
  43ec528d75512b5de9a43fa25e0aea93c0076dea
- SHA256
  
  ebeb04f9a468a5adff17d994fca64879956c308766d7395a6631764079bfd6b1
- SHA512
  
  4a3d548788faf2c35ca907d8cd783067bd9ec1bd94093eab539f20612e92ce2f7381e6000b7a2c090a5daac7ef2775b9aa0e79810099cdeab9fae1effddf892e
- SSDEEP
  
  1536:NcEjFtC6WN7ulqCoEf62N4VV42x0FMjb8nd1FL8GDQagUfiDfmIvizmIpL6:NFjBILEfXeeIqMHm1Rb8agUKDfHIp
Score

1^/10
behavioral1 behavioral2
- Target
  
  Config/Plugins/FrogPlugins_Pcn7FMvReAsVWfCQBfRJCw/Plugin.arm64.dll
- Size
  
  156KB
- MD5
  
  17854fc434cb208b3c590fa627a802ed
- SHA1
  
  2623d9b388df9d45ecf3e74adf27215a890f208b
- SHA256
  
  7ffefe3060fe98eef882e2c4d87ea4a22d5da374040fb3058d79edb3ff8a2cbe
- SHA512
  
  924f16a272725639c5c131e2e87c7f578bf1d16475bf1596d55cfa9edea88a11923927ac701e5d3268c875f2403fbdf0579993d629ec086cb9010d862f48c362
- SSDEEP
  
  1536:bUjoCsiNP7v6k06H//LmKbX5P23TcH1GCsUuMYuZBbN8VsNF8b+QT6:bXCsif/BJOIHzcGND
Score

1^/10
behavioral3 behavioral4
- Target
  
  Config/Plugins/FrogPlugins_Pcn7FMvReAsVWfCQBfRJCw/Plugin.x86.dll
- Size
  
  116KB
- MD5
  
  da5b87e7cbc4fff5cc2702b3bf48f372
- SHA1
  
  507ddc8dd092181e308c301808bbb30318344de9
- SHA256
  
  a4c9b29fe6208f8158bd8823c05b03706efcc68d3fb9411222e1b24a825482a3
- SHA512
  
  664d05c9436b9ba93b90fa7344947b1f692a22af01185969cc956cd32f4999b092a7fa60c86d89789044ce720fd26d5477e7098353f2f40f68b2bc3972cba95e
- SSDEEP
  
  3072:4nFNs9WVNFqUjej+dsPEeK9emP3V1CxibAN6PG4I40HxC5hypa5pZpPUIAMOVYYQ:0NsaFfSjj8PevCYVA
Score

1^/10
behavioral5 behavioral6
- Target
  
  Config/Plugins/FrogPlugins_Pcn7FMvReAsVWfCQBfRJCw/PluginRes.dll
- Size
  
  629KB
- MD5
  
  cab1ebc67ee075f4844c0836b6b29d73
- SHA1
  
  8df720c83fd4adb20ebecb6f26e3629b18ede78a
- SHA256
  
  c3ae5648a79358b82ab684ca132bff30150291dc5d8483f22960ba40189710a2
- SHA512
  
  c782b449fd9cb6b32fac18998fa57e263e2c34996f1ad6e202f51cedf0e29c40cfc90fff93d334be71b2813be9a945607fe76d11eec479859a3ab36a5971b405
- SSDEEP
  
  6144:RJXmn9aOhoFqVMOiz1WIOY10OnowW4JxtoM0YM:RJWn9pSqVMB1qOnowW6xtoME
Score

1^/10
behavioral7 behavioral8
- Target
  
  Config/amd64/CBSHost.dll
- Size
  
  175KB
- MD5
  
  dd139df87a896b894335e03ece2973bf
- SHA1
  
  c6eb8a276897acc4e1f34dc25df138b2c30f7918
- SHA256
  
  6a1075f4fab4acd2722e8946cba7b23508d120367c84aae3e83284124227013a
- SHA512
  
  1a6296ab7411771e1fd8147086cbcade6f761e10b44975086fc03a0f058faaa0acef692b97a56f2ddad3f66241c0fb1b7d6d7e897888cb53f86a9734ceed5874
- SSDEEP
  
  3072:OyghxXQLWyjBcbo9EIb7TX4VkUihhwWP/pdrgeDyv3M5xmimkqq6S8PdG6QqKWO+:k4L3dio7LcW7/p1geDyfgmimkqq6zQqI
Score

3^/10
behavioral10 behavioral9
- Target
  
  Config/amd64/NCleaner.dll
- Size
  
  54KB
- MD5
  
  c2058bcb1607ffb1a9fefd67c2e8f94a
- SHA1
  
  3b37a3add98dc237113028766aae063c3370112c
- SHA256
  
  141587ad11529d238dc7b63d7f30002ff042c3b06282d075e44e9c5af07ccc17
- SHA512
  
  7bf8ae797e915491134a311ad7e2b9cb11c851c096cb8cc8942d50e91503bd7641b2273f3dadc9b1a0f912d9459b74b16cd912dab79dd0877301aff5b0e96c8a
- SSDEEP
  
  768:HWSnLZ4G8fpwB63VUOnljzKqAzEixvm5WxUEEAzQx5Mdx/hmhUoXVJlpn/Ati:1Z4GCeOnFAu5IWvlJl1i
Score

1^/10
behavioral11 behavioral12
- Target
  
  Config/amd64/bcdboot.exe
- Size
  
  188KB
- MD5
  
  be14be7c8f7f0f4e397b89979cb9cf6b
- SHA1
  
  7f59be597069c91c8caddf08d12ba8fbbd65b66f
- SHA256
  
  309f3eccb0093cc6cc98f858bd3ce67b00bb810728ffb177b7bd287fb3c92b97
- SHA512
  
  0cf26478d1b80a6b68853e298e944bce6d2e21fbbe7a6711ddaa66e2b9f2bca0f941a6ee2f694b05d5b7588339181104d1b74fd49a991e2cb0e86b72e124b7cc
- SSDEEP
  
  3072:JwOQQMWHjqtcrwZjKHiqbuFoZV+S8e5lmOoeLD8JgETi9:WBQMWHjqS0ZuCaNV/GeEiETi9
Score

1^/10
behavioral13 behavioral14
- Target
  
  Config/amd64/wimgapi.dll
- Size
  
  754KB
- MD5
  
  80826a2374b051468ffbd6e85993137d
- SHA1
  
  d66082ee8d3478f6b606336fec00f9d748ab9427
- SHA256
  
  e51344884512b486ff1de3c30e554b0e1cb6ffb8ed4e3bdd31a29a76454f5562
- SHA512
  
  5c07620f08e77b1c82baa3f4685b730b3bd1fd324931f04a10d5593d0263da0f76311f2012b33a7a3c7200c1093dbec9e84dc724031b9231537e4362064a7284
- SSDEEP
  
  12288:ms5emSGQ9tuoXwpFSc9f4uY/uMrelFpJLGofcL9mH/p7m7lsJvI:55em9Qf1gD2uWe+1LEfI7iNI
Score

1^/10
behavioral15 behavioral16
- Target
  
  Config/amd64/wofadk.sys
- Size
  
  216KB
- MD5
  
  fba28d5ac166714737d1d8cdf0aef078
- SHA1
  
  eef8d1bca48ecc93a7f165b735f7047ef085e12d
- SHA256
  
  54fba1cc80e820b462229fcb987fb8df2321ed85d9450f3f4a81d0982e5d289f
- SHA512
  
  50791cf079d9bbc26cd80b1f21fed3e2181ee15241dfcbbd964fca0425e634ae422652b58837352aad61775dc5cec7464ff0d23e0624b6f61fc1bc5cc805fd7e
- SSDEEP
  
  3072:yfVzoGNve5AAY7pspR0FV74/02ncoS+Z+agoiioxOqLudfnULzLF/NHOLVmi4:TGNve5Lj0f2rgoiioTLu1nY/NH04
Score

1^/10
behavioral17 behavioral18
- Target
  
  Config/arm64/CBSHost.dll
- Size
  
  173KB
- MD5
  
  d81098bec9f475c3a86e0fa38aeaa537
- SHA1
  
  61a6844e209d995429b63a987676d18e9bc30b4b
- SHA256
  
  9caebb88ba8f4087273bdc07f37b260a15dc2c7b4058ffac77a147ed1a27c032
- SHA512
  
  c78ab5132503231a0818db0d5997405d107b231b5a6a9df98e35edcec070b8abb96cae9d588e48e17068560a86f82868f7f97b4c88cab3d6f0f177fe05573b4d
- SSDEEP
  
  3072:VyMLqpMP397XC97eq42YbK+0MK5FDtvNGUI4JGbhuGhu3dSVu8kneKW4VG:VyzpMP397XC97eq4U35FDtvNGUmuneKZ
Score

1^/10
behavioral19 behavioral20
- Target
  
  Config/arm64/NCleaner.dll
- Size
  
  39KB
- MD5
  
  6f7a31f96e95d9467f755ec806b768ec
- SHA1
  
  c38bdd8ac000818ceb90efd6a7b4f3d387a94fe2
- SHA256
  
  62bf4bcd3b3207e9bb8a4097684605a732e820968a9a8835a0f39e9bb67b26f7
- SHA512
  
  dcd8aabe6ac35f8ed6ebf12b7706fc56a58d372a8d1458a912b19b63353a14a68a973fcb3eee8fdb964cf10f5aeddd5f33286c2c1f59f1ccbac7730b0b731098
- SSDEEP
  
  768:msQs5YSGuwYGCdVOKYSZZ87+02iVJ4TJTLu+Vdx/hL8Zz+fK7:mUTwRCnRYSZf02iVJ0tF78I0
Score

1^/10
behavioral21 behavioral22
- Target
  
  Config/x86/CBSHost.dll
- Size
  
  122KB
- MD5
  
  9966252f6b62752f38bde0ff2970300d
- SHA1
  
  4c02d8470093db823f371bfc023d44ab80ad4970
- SHA256
  
  059f28e9b517b9345a30e409f1e7eecaab2d643a180dfa8fb1d105cac137cbb2
- SHA512
  
  f1c198b1e9b52fe8b96fbed9312328e73f4f5d989f72686b61b13abed9676fdd352e07bf4a48ed767ab6a38830489133f7cc217791a425fbf79c6b4a2c9cd82c
- SSDEEP
  
  3072:mbBSJBuX3y7IyNulaMf9GOGFSKvGFdof8HGOoK3kj:mbMuX3blaMf+aJvoK3
Score

3^/10
behavioral23 behavioral24
- Target
  
  Config/x86/NCleaner.dll
- Size
  
  35KB
- MD5
  
  8fd2598d9c61ed8dff6d7bf661bf8287
- SHA1
  
  c106545a52667ea5e6db8d16ee1744c4dab97587
- SHA256
  
  a1f16902ff0594a80da523dff4b8340b231188125dbfb87fe3e2f0ce23276253
- SHA512
  
  04859d231bcfda0160272fd6821a3c4442fb539d797d9684ac6714c9a5f96178f20fa1b3d03a8c18e455b47d4b2f13f66f086cb3fcb34d1bec3c4cc96a19bc7e
- SSDEEP
  
  768:1Wf30x2ygVdk0c3uCGY2lIug2umQxZ4dx/xLp98fqp:1WPGgVOHBGtg2Y2Eqp
Score

1^/10
behavioral25 behavioral26
- Target
  
  Config/x86/bcdboot.exe
- Size
  
  158KB
- MD5
  
  805a3acfb09848ce0255d20f7b993313
- SHA1
  
  aea9a8992b7971890c033802cd273b12d242de90
- SHA256
  
  0b85157e004ee59cfe054ad5bda6d8a9c3e3270d002befb07cddc6acb7497388
- SHA512
  
  13c65a8b5f8fc2208a1e783f3fc52d4bb5c6aa75cb342da92235283b715122259d8b9ed9802a4873506ce35e33b54a28812600360682f77c3a6d4f30eb01633e
- SSDEEP
  
  1536:HHu5YQ8tQTBg/DfJx3OhspMK9j/NYO8m2cors8vNG5WQKM9oQjsefBsi7FbDw8sV:nuKpKSv8MwM9Vjse2QxhSUOMsg0
Score

1^/10
behavioral27 behavioral28
- Target
  
  Config/x86/wimgapi.dll
- Size
  
  596KB
- MD5
  
  75faa0992273718b30295af7dd378cc3
- SHA1
  
  786fbafd2f8d156092786917b6157bfd8ec092b0
- SHA256
  
  e3e3eb7e2ed4aed86965bb42ffa6c10388acf62ae33d236dc613348fc7e120f9
- SHA512
  
  6face2b6d1be6260d81b65572117719192067e6d6a7f885d1e7824abac68f35513e81e6bb764575bd9a61a02b1a3790fdb9c5ebad9494b184f6bff38429deed6
- SSDEEP
  
  12288:VuYVshJ4IvITVpqsD+QqM1z9b/LmCZQEA0h62f2bxD9Gb3y5V4GATbHu70Dh4kPC:J6LzQqQqs9b/BQEqY3y5VvAc1W2
Score

1^/10
behavioral29 behavioral30
- Target
  
  Config/x86/wofadk.sys
- Size
  
  186KB
- MD5
  
  b58305136c4ce3508c0a3c9e48432ac9
- SHA1
  
  810ac2ab7b4ec2604b81838977e1c6341136e8db
- SHA256
  
  48b2267e2cd998e325a88a4a877e6837fabd7ed3a8649c225de5b9c5ffbbd918
- SHA512
  
  dd069a1d68b5b18cd159926517a50b054af7b53417a12c14117e1028f810b8ff8efdea38d7fb260d0bd99ee158a7bc509dfcf939f3fa621a81f6152feabc7a4c
- SSDEEP
  
  3072:yE3zRpQ93yLywahWlvWUnj+9SkXLeNgUN9cxbpxV5h5XN948/58x3mhdRQ33x+1C:yOzDQ93yLywahWlOsj+9SkXLeNgUN9cM
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32