c6ef09a052c53678f8ecf1a2cc318d8701f052e3558685c3783b55e11e0ca960 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PL23XX_Prolific_DriverInstaller_v206.zip
Size

10.8MB
Sample

230930-h193lahe71
MD5

bef00bfb07fa179387c2742439638af4
SHA1

0568d23bd1ae1cf7912a66e988a03fc974de1cde
SHA256

c6ef09a052c53678f8ecf1a2cc318d8701f052e3558685c3783b55e11e0ca960
SHA512

4d172859ff3ba8d6405493c9f5ab88fd7633cfe61fade2bdcc4d8fa9cd0fc797d6f8743f07e8d03eb563aedf02e2e2ac31ed93b360571b4da2d8f86f189feaa5
SSDEEP

196608:YwDDEcHC/noaxi1srHJsvUrZIs9Ux+eERL0LUmaqkaZVY3cwM8sS/+k1hAd1:Y0FHC/noaxasLJsvJs9RRYYmaYZyswMp

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  PL23XX_Prolific_DriverInstaller_v206.zip
- Size
  
  10.8MB
- MD5
  
  bef00bfb07fa179387c2742439638af4
- SHA1
  
  0568d23bd1ae1cf7912a66e988a03fc974de1cde
- SHA256
  
  c6ef09a052c53678f8ecf1a2cc318d8701f052e3558685c3783b55e11e0ca960
- SHA512
  
  4d172859ff3ba8d6405493c9f5ab88fd7633cfe61fade2bdcc4d8fa9cd0fc797d6f8743f07e8d03eb563aedf02e2e2ac31ed93b360571b4da2d8f86f189feaa5
- SSDEEP
  
  196608:YwDDEcHC/noaxi1srHJsvUrZIs9Ux+eERL0LUmaqkaZVY3cwM8sS/+k1hAd1:Y0FHC/noaxasLJsvJs9RRYYmaYZyswMp
Score

1^/10
behavioral1 behavioral2
- Target
  
  PL23XX_Prolific_DriverInstaller_v206/PL2303 Windows Driver Manual v1.23.0.pdf
- Size
  
  1.8MB
- MD5
  
  2b7e8222a57adad60e0d1b1166162741
- SHA1
  
  a1a810727f5c2df6966d69d46cc6b0acf7119cdb
- SHA256
  
  6be6f8f0e6195682c55506b0cefbb8bebfa66144eca18bc9dffb159021bccd56
- SHA512
  
  84fe733c875f2cc9774a78c1cf51e51c0c64aa9e869917c442a566ba7519c27ad33927e92974a8c24a98f15fdb5d0eea8231de4d0d2293237f9ce5e6a17340f9
- SSDEEP
  
  24576:mMuGTZ5JqIq0xMMYV1HHeSXy1d0ChLCFYEghxJbrXvYRF8NagZ/jsS:9rZ5Js0WBzir0ChX1XQF8AgxjsS
Score

1^/10
behavioral3 behavioral4
- Target
  
  PL23XX_Prolific_DriverInstaller_v206/PL23XX-M_LogoDriver_Setup_v206_20210513.exe
- Size
  
  9.8MB
- MD5
  
  4ccaafca77f5545dc8bff68e4e06eec0
- SHA1
  
  0aab501ac2f40df0ae2b88303de61a42b8192a17
- SHA256
  
  d7d5e58f826db224a1a89525bf5fe390746aa18b02f88f0460a475441b8e0321
- SHA512
  
  b4c9ad3dc0dc7567c90fdeb65cca3948d97ec532bfa35b375e9a9a8ae13696f492fef48eb8da8aad00711ecd60ea81ecb863cbb344b1d79d7679c5843b1f4918
- SSDEEP
  
  196608:csurI2/CxxI2/Cxg4EX1GzCoSL4EX1GzCoSTtdrhBzkp:cjk2/N2/HXkuoSnXkuoSp9hB4p
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral5 behavioral6
- Target
  
  PL23XX_Prolific_DriverInstaller_v206/PL23XX_CheckChipVersion_ReadMe.txt
- Size
  
  2KB
- MD5
  
  193065bb82db6eff03f60127cba9e599
- SHA1
  
  e68091b9e8c388bf1db253aa08a135f0b838627d
- SHA256
  
  c998fdde2c8fa22780e10b31a6e8f2575e4b98db49a205a278c51cd132cbaaec
- SHA512
  
  21565635d37973614c4aa965e39105880c4dd37c1dfacf8d47612390272ce91f83f2f1468b9523868ad05c50313eecd47a538314b3eb140daebe777a6cc64e61
Score

1^/10
behavioral7 behavioral8
- Target
  
  PL23XX_Prolific_DriverInstaller_v206/PL23XX_DriverInstallerv2.0.6_ReleaseNote.txt
- Size
  
  5KB
- MD5
  
  38257075a26ba6369d07c05974547384
- SHA1
  
  6fc0fecec4bbd38b5bd2d8c8320de29d8602dd88
- SHA256
  
  6a3086b39956468b6354347dd70119c796ce7d26f08204359172d6f060e835f4
- SHA512
  
  a0ef90b69bec06b7c064da8368f32e1814917f2b0b5829fc34a10da2139ff29bad8287da1621ef90c5a0eb644c1b30199eac1cce3b8e80fb2557897998efefac
- SSDEEP
  
  96:Yq+OxDypTZJ/o1yaXeDAgRrlrkR1fkhG/flbDEjHay849U6mU5teC2PKe2UUeNeV:YPwDMtJXrlARd6wfl/QwoOWUNKZ
Score

1^/10
behavioral10 behavioral9
- Target
  
  PL23XX_Prolific_DriverInstaller_v206/PL23XX_checkChipVersion_v1020.exe
- Size
  
  208KB
- MD5
  
  00875fdda8847a892be54ead749e74ac
- SHA1
  
  40a2dc108f06bead85e5cf550fb03c73a3b078f2
- SHA256
  
  234426c05ae4b4ee92bc6d235779963553392cf01ff60f67dbb012469744299e
- SHA512
  
  6a01fbe45c7ea97f93cec578339217e09ba3180e34e10aeedc5af4b32f0a1687218b396d878b379abf8ac9845664ae76ea32ed430d8eb5fc3d1549bbc7520277
- SSDEEP
  
  3072:EJmRkH3SMpghrfplRwgLOY3UTcLvbGRGXIEz5ORwr73WAC4ZotzAwyRpwTuJ:FKXSMpgDlRwuKAvbuFEzTXwyz
Score

1^/10
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12