6a0664da0332aa8f4428914ba6aff37506fd239776a881e6d24f1cf5b60cbb70

Resubmissions

24-09-2023 15:33

230924-szdm4shh59 3

Sharing

Copy URL

Twitter E-mail

General

Target

Meiqia1.cab
Size

99.4MB
Sample

230924-szdm4shh59
MD5

ea099ba3979764971fe13ef824db93ae
SHA1

ed03a287ec6f04ae26b35917b84eb054cc431640
SHA256

6a0664da0332aa8f4428914ba6aff37506fd239776a881e6d24f1cf5b60cbb70
SHA512

1910d7725d579335c793831ee36628c0c2613dc6264135d6c501529095e52de6444ffd4e68b2193f200b33e2d7db7e66d57c584715513cdb8a2de3322e1b9e8a
SSDEEP

3145728:kmziZRAXypzez0XW/y2FEakt0lePhYOMuEVGXdu:kmWZMy9ezVs0e8/

Score

3^/10

Malware Config

Targets

- Target
  
  CrashHandler.dll
- Size
  
  106KB
- MD5
  
  27e8d8c108d48b106edc7cf40f624877
- SHA1
  
  1cbdfd5d75ed2e187fdc259733527963c8752f2e
- SHA256
  
  e150138f8f126a6058ed0cb7a1306d06683eb87fc8072e10c78251e97555d592
- SHA512
  
  9ec0220138ed102c9ccaba230d30a22e6921ee89dc85414c0faec28a09e6eb052ee8bb205898a156a750f1babbe8fc736e1e7d279b34d31a2ec272aca5767a1d
- SSDEEP
  
  1536:1L8l/lkAcIPt/aUKj3J4j8sWwGyr6/NsqaA2zQdysWWcdOiiOKJrpS/9AQsPxi:J835aJJ4wsWwGy+qpzlOiiOKJFecxi
Score

1^/10
behavioral1 behavioral2
- Target
  
  HipsDB.dll
- Size
  
  305KB
- MD5
  
  e15e4bd0e7732b3e9440582b5704a09c
- SHA1
  
  6163c0169c394ff356a50ce4826587bc0522c884
- SHA256
  
  1091980e9093c99be5b7140e080f113aabbfdf55080534831ae0b7739f7fcbbb
- SHA512
  
  2111eec41de36d37b7bab73c5d112cc4c168133003cf36177f2ca71a2bfe5e8dde0143c6af9106a91996ded600b0b7c66a24afe23d2ae45ce2d4058b0ef6fff5
- SSDEEP
  
  6144:CjEIvn9/xo8SrkNrTo09nE2i2P2HsVDqwTKhsf4t:CjEIvn48S0Ho0BE2VP2sVDqwTMsf4t
Score

3^/10
behavioral3 behavioral4
- Target
  
  LICENSES.chromium.html
- Size
  
  7.9MB
- MD5
  
  d5b1f4d67bbb923ae30f5d5ac424b269
- SHA1
  
  e751270f329f8f5cc882e615157891421f569c79
- SHA256
  
  6bb288835bc59b4550338d8034ef8fb9f05714e890ec08c327149c82142cb4ea
- SHA512
  
  b8c5ebcfabf56c85467b27815d7b2cbb0ff922a5bf08a3e619772644fb53049393134d17a849d3191a29b6af1218feed32895bf26c7b77cf3ef0178552ccede4
- SSDEEP
  
  24576:dbTl6Mc6T5kJWSSRKb+oFDwmfL8646a6N6z6fkHuVampem:tGBAA
Score

1^/10
behavioral5 behavioral6
- Target
  
  Meiq.exe
- Size
  
  811KB
- MD5
  
  9714e9832bb0fa60423674c7af1e175c
- SHA1
  
  bfab7ed6ff6469941ab363ffea1a975c66dd69c5
- SHA256
  
  15917ba7169f638674466184209fb24f5788957abce57e7d5400d26d077b44dd
- SHA512
  
  fa0d63df62305f5d01bd49e2e151ab6f9940079f1b30861542b356c2bc8e14b6b55a0c5923cb530b889f9e33364b58c5bd7f80a22cd3a7003fe124e586eb3f7c
- SSDEEP
  
  12288:LNM+Nn/0Ivck1nmCFDg6lt+nhOPUtdIVoCkCp2iNS30DYWQitbcx5ct1SMz8WmWV:LNr/n1tlgnsYWQMwg7z8WmW6z2LRHMA
Score

1^/10
behavioral7 behavioral8
- Target
  
  Meiqi.exe
- Size
  
  155.8MB
- MD5
  
  1fa5f06c82f82fce1608860dee77a4b7
- SHA1
  
  47bc0fbad130005ac3781ae3783e3294463f25dc
- SHA256
  
  c26b4427812d087941e040ef6d853a9ad4b2ffcecf89e8c7fec366f8f7cd3391
- SHA512
  
  1485ad23aab37fa814195ad490fd57a3980257309133d200290dc5c12b1a8dfa2db1b40f422176e868a474e8dbe4b6fcce08d32f14b39330e36aa52985b31171
- SSDEEP
  
  1572864:3bQAduc6ExV4vw+ixrcH8lWOLQe9EPCjjIoOvc5u8zcux1XeK6wj2WF4EfYSjK/n:pStP0e
Score

1^/10
behavioral10 behavioral9
- Target
  
  behavior.dll
- Size
  
  331KB
- MD5
  
  1b9d24c87bc25a9b4a5f049eff61831d
- SHA1
  
  bb36ead6328e0f5e64bafaff6a60a74da10275e5
- SHA256
  
  bbd952dade3cae9fd1f894ef7fa1d1da03816d8ad11721a5405198af83d6e497
- SHA512
  
  33b7b4db38a1775ab53916316d3913acc99db3f1737d672f82e3a1bd199a5dcfd11307b5c0b25abea83b6a2a3e43200c12e2f76085e35caba904fcdd345934f8
- SSDEEP
  
  6144:QWaLCPyj3TUd8okFO809RbWeILgb7JGSe7FGKGGSHZecoFy/D:wLCPUjUd8oSOTfxZ70SmGKfAQF6
Score

1^/10
behavioral11 behavioral12
- Target
  
  d3dcompiler_47.dll
- Size
  
  4.7MB
- MD5
  
  2191e768cc2e19009dad20dc999135a3
- SHA1
  
  f49a46ba0e954e657aaed1c9019a53d194272b6a
- SHA256
  
  7353f25dc5cf84d09894e3e0461cef0e56799adbc617fce37620ca67240b547d
- SHA512
  
  5adcb00162f284c16ec78016d301fc11559dd0a781ffbeff822db22efbed168b11d7e5586ea82388e9503b0c7d3740cf2a08e243877f5319202491c8a641c970
- SSDEEP
  
  49152:KCZnRO4XyM53Rkq4ypQqdoRpmruVNYvkaRwvhiD0N+YEzI4og/RfzHLeHTRhFRNc:xG2QCwmHPnog/pzHAo/A6l
Score

1^/10
behavioral13 behavioral14
- Target
  
  elevate.exe
- Size
  
  105KB
- MD5
  
  792b92c8ad13c46f27c7ced0810694df
- SHA1
  
  d8d449b92de20a57df722df46435ba4553ecc802
- SHA256
  
  9b1fbf0c11c520ae714af8aa9af12cfd48503eedecd7398d8992ee94d1b4dc37
- SHA512
  
  6c247254dc18ed81213a978cce2e321d6692848c64307097d2c43432a42f4f4f6d3cf22fb92610dfa8b7b16a5f1d94e9017cf64f88f2d08e79c0fe71a9121e40
- SSDEEP
  
  3072:1bLnrwQoRDtdMMgSXiFJWcIgUVCfRjV/GrWl:1PrwRhte1XsE1l
Score

1^/10
behavioral15 behavioral16
- Target
  
  ffmpeg.dll
- Size
  
  2.7MB
- MD5
  
  fe6b711452966d13db36cdee15bb32b9
- SHA1
  
  9e89a6d8f56dcd0bea0d11131b3e84946764f4c8
- SHA256
  
  82d427385334978cf701cd7cfb07e1ea9f7078fe716324004320c690ccdeec0f
- SHA512
  
  8ef68e7a547f92cbb6a8e5b0128d74e2cd0d334e806ea5aab2d2c4c4e78f7c20a2df623d7940cd27720e54be5cca4a16249ad29005c8c015084b9a3a41e2589e
- SSDEEP
  
  49152:XOfRhEj60Quzfyy9lZar4gbiyRIIEa7HBhTUYtqRhEw1I00Ua8k1x2GN3lzl3hKe:XY0QM+4gL1EnI00jX2p8
Score

1^/10
behavioral17 behavioral18
- Target
  
  hrcomm.dll
- Size
  
  54KB
- MD5
  
  069c7667f49ab4d6299724b00ad23598
- SHA1
  
  7e8cc34fe16c74f1fa543e8b7aebf30db8e8624f
- SHA256
  
  5f4243fd940105d946d816d360cf9140117232f546327ebfbe73db169c559f9f
- SHA512
  
  e760d17b13e6676dff1717c285f9dd597d6408d48e3dc055d48e9b7e170e0f8b843544d09b60a16209149cf3d2446e3239b1a637cea328df90e443df78f80c20
- SSDEEP
  
  1536:eIxG/6SaZmdzfOJ9FklzrrQhNXF0W4Y74Ysn:e+ecmdzOJLklzohNXFNB7B+
Score

1^/10
behavioral19 behavioral20
- Target
  
  jansson.dll
- Size
  
  359KB
- MD5
  
  94140e827a0960e4d5b00e04378526d3
- SHA1
  
  0ddb9943b4480fc769ebd2357c16dfecad319104
- SHA256
  
  3808f179810ccf44d4ad770850f132ddd8978017801a8cb6536c3221d74d6e1c
- SHA512
  
  2acef1e4e435c246f13b9001bfdc83c352fa5ec8ad7e12b93d2b81ee13d3a49229d58f74b97b062cb85d0a6c44da05862da4c71ec4be98b63630a9d8be03a088
- SSDEEP
  
  6144:AzEldF2RjxSSC2zoT+mWDD4mcSUVtNFqZltWkt4h7ipXDFEYgZ+GFffcD:5GRjxSSC2ETXM4mcSCNQZltW64qgZjM
Score

1^/10
behavioral21 behavioral22
- Target
  
  libEGL.dll
- Size
  
  469KB
- MD5
  
  30a2910b839e4a73a0bc6ea04b494b84
- SHA1
  
  6e5a9d13667cfa6afe50138a5ff995f88a783b85
- SHA256
  
  dad11bf5dee241e8b182785b7aa8d0d008c08c394097701f90ea8d5381e70fd6
- SHA512
  
  c8a5035b2cc1dd6c1514b20be214e7cb03acdcae95208e8119ed5aa08784598e0a90778eddf73710ec2104c5ab04d7b63251679d391c0016fb6bb81388b2e277
- SSDEEP
  
  6144:X4itlpEJVqKqK5Z5UibKsBHI0Sfnx+lXGpeOQHA93GS3sm:X4itlpAqKqK5Z5U+jBolfnjIyG
Score

1^/10
behavioral23 behavioral24
- Target
  
  libGLESv2.dll
- Size
  
  7.1MB
- MD5
  
  cff57a1a15a2c73f156f3598bfaddd55
- SHA1
  
  13b097e7a1c9dc47419f8fc1f53a86af42a09d7f
- SHA256
  
  44393afbd99d287f5590007915405888a59cf5872175643f53a03c394b735068
- SHA512
  
  536caad0dcb416156724284b3b726ee234a0bca3a1abb6fad92f2ec175337466191146da5db55b5cda9f6f489a6d154f2a41998e77521629ff42d30d81d16fb3
- SSDEEP
  
  49152:aW1dWVceEkEZQtf9zpatRabLAfZurAM2A1qgNUWvYuoDuuZWtM0l3U2KYT1dTjni:0EBRgd7jrTjc+qkesblM
Score

1^/10
behavioral25 behavioral26
- Target
  
  libcobra.dll
- Size
  
  426KB
- MD5
  
  c45a0141c517dd1d481f08bb76333a05
- SHA1
  
  a18255bccee6c98ef6c6d41e93567e4f20c135ef
- SHA256
  
  f2a1ff120e261e2bc66e5d1f0b74bad865cfc158aae24f35c94bee598e226890
- SHA512
  
  de7f233ca66cb24c0a9c5690331acfc0f7c1b13a9b411d57fa3ce2f9b4eeeb7733f1eef6890ff9895e95e7d9a560c060be54652e4fddcaf282f016ae6a40f805
- SSDEEP
  
  12288:bCBmOIZTP1NNimsq48UFhsP/YVmfeWq55WSFHD:tLTPchggVmfeWq55bFj
Score

1^/10
behavioral27 behavioral28
- Target
  
  libcodecs.dll
- Size
  
  1.8MB
- MD5
  
  22379aca080abf93f58ef661711690a9
- SHA1
  
  5bb7979e671f8843aeb58f70474f15a545a7bc43
- SHA256
  
  fdc28be3baf7dcd4760795ba9a3724bd4e4940e1cb123b85e8567efe3be2b0d6
- SHA512
  
  a188242ed1d2c660167d09dc3bc1532efcb67dfaeb423b179b0f869b8dee79b1daccdadd2a2d502e8d47cf854c561e1c57944e4533c1f5b57223474db3d8893b
- SSDEEP
  
  49152:cQDVhm9VDhHqfpn9H+eNXkrPVx5ZJVdpcnFdEXhA:ct9V9HqBn9H+eNXkrt7Onzf
Score

1^/10
behavioral29 behavioral30
- Target
  
  libxsse.dll
- Size
  
  1.0MB
- MD5
  
  b1fd79daec18373aaa488b59dd2c178e
- SHA1
  
  ddb20cec5b29e3345c1c2729741093050c34602d
- SHA256
  
  49a2c690ce1cd5fc0fa3d09ac36e6afc543a9642da7bce9656f7a63e91b8bf2f
- SHA512
  
  80989ba49e75a4608d374029b4202d347b31dee7849c31acb7a85908348b1132d343fa955609cb997046d68cb13b12ded53b5f9372ff86332e60ecf43c175264
- SSDEEP
  
  24576:YzygzQi4YEGGmNAKthjtoDwU4t83IjP/3JEFN6a:0VrEGWtSuIr/ZEFN6a
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32