5b69fc1168558573d4b91d91aebeb20a24e2f855e95c5a30da82df23d4ce0699

Sharing

Copy URL

Twitter E-mail

General

Target

429f8dac77e88e73b4ce926dba680e9878bb8512e091a607edfc5834dc0a5c67.zip.zip
Size

4.7MB
Sample

231107-q223dage97
MD5

c46766409d3e8f11bd44cae1361192e9
SHA1

3ab9de7590afbb784ab2c37a4f60f73a0c798706
SHA256

5b69fc1168558573d4b91d91aebeb20a24e2f855e95c5a30da82df23d4ce0699
SHA512

97889bd4d3896efbc35e89d7bf3d13e3f07d3367f807fc2d268bef987be34548d04ec940290a9cd05dbc7e9c365603b53b85b89d3555e988795fb8dee941cb5e
SSDEEP

98304:wq4iL8YgnWbLC46LJF3DEtTwyjnAtU68COA/dm24niKy1h+Ie/vVrR:T4iLhgnWS11F3Dn3u64KEiKSWvVR

Score

7^/10

upx

Malware Config

Targets

- Target
  
  DPS_DIAGNOSTIC_TOOL_V2.0.EXE.1.98CE70F3F3774FF98989EC97D83C70EE
- Size
  
  2.4MB
- MD5
  
  953eba21fb394b5a16daf9e6a5a25926
- SHA1
  
  61c8e59fcea52f3ad914ac542ca4f279a9864d32
- SHA256
  
  26df630f6f8d84647563407dee4401eedc8e26bdd75b15ef1ad46942ac509c14
- SHA512
  
  a04ef5c2b8992d40ddb2d33088b995301b671803fe2cb071afbc553c702a21264ff79772be4135f03c073fd9392117c884fe13e0463e973ecbf200d078b550ba
- SSDEEP
  
  49152:s4LYIiLOrSN+vRCc+JJj7j89dis6wDmMzyoZaMQSXUX69bwL:s4liOQQCct9dcEmDM5XUqqL
Score

3^/10
behavioral1 behavioral2
- Target
  
  LVZLIB.DLL.4.98CE70F3F3774FF98989EC97D83C70EE
- Size
  
  84KB
- MD5
  
  6ca878b7c0656ce8613b655d08fbd90d
- SHA1
  
  38fe323aa3848df3ae6cabd0610792eeb15d5231
- SHA256
  
  e80de9fbf7e17b9138762a1f3f0fcf285c388a64f0ce187354757826ceb7d446
- SHA512
  
  368ab69c297621bb7a656e00bdcbf8dca4e9288e6bb214794756bbed8eb3bbdbe7cc54f03037739387065e71b9a579dd85e01dcaa5e14aaa4cf5ee2be5f4d6d2
- SSDEEP
  
  1536:dZPG6dDkyg5i4tXdemb962jcbJ4JxhOanToIfQIOlIO6wwe:dZPG+i5i4tte+96EcdEHtTBfGv6N
Score

3^/10
behavioral3 behavioral4
- Target
  
  bin/dp/install.msi
- Size
  
  1.4MB
- MD5
  
  bd4197fcc24ef42031fdd26c749192c5
- SHA1
  
  f644b383509892e23641c2336e698205e3b1d692
- SHA256
  
  8726518f5783e2d2e02a7d06f2aa49e7e6a3771316d46f95ec0fa7e24f5c2a60
- SHA512
  
  06457838ff6055a56d28757884e2929b9ce9f8d88af6a84af3d41a1222f9e2e7f32c427b5944968573e7ff44527453e2853eb6176aacbbc23fc97a8ace86f600
- SSDEEP
  
  24576:MvJbwGLXIMzGfo2wCM3fqGge5Po/XKs+WdNESjHzVIaHErPjsgQYXrqGgeR+z:MvyYKo24etBpTHErdhX7+z
Score

7^/10
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral5 behavioral6
- Target
  
  license/SmartSoft License.rtf
- Size
  
  47KB
- MD5
  
  5e67dc6960c38eb52ee29696e0051ebd
- SHA1
  
  b0cf04c9513d2df58ffd35779d3631dc26c56fb2
- SHA256
  
  bd4c2419e8f2c70eeef636de9bb823631257fae28b3f9e87ad20c13d1aed6a2e
- SHA512
  
  a8fd6dd655b94f8c16f5f9d04c654a3f6f3c2c12b18657678b0406c30fede6f193ad8cb7f129e8e8b089f92b6d80bec26cce5eccbae8531e72c6bfb250eb3d06
- SSDEEP
  
  768:1eJ2fB83aYlO5Btg98x5glIeQQYaRwPHPfWZkmYptP4nnhPcrdSAedP1LoPsovnr:1eJSmaYC1HwviYCAhS
Score

4^/10
behavioral7 behavioral8
- Target
  
  setup.exe
- Size
  
  1.4MB
- MD5
  
  8ab5a3a76d5d1095c59d7539f234709a
- SHA1
  
  44d7263669eed238b590aa5a68c1d265fa11292d
- SHA256
  
  54ed84eea949b469dc541196b07ff435661225174755e56e965dc022eaebfd2a
- SHA512
  
  ab067f6ad2cb5549ccf4e5c2c9b91ce2a3403c83ba25b20f2d5495c2cfb0af83e3af16f02b312288eb1f4eb1f620c2c82fa242cfe64eea9ad50c525ef18ab6ef
- SSDEEP
  
  24576:pdWJmFEvqMO6Mf+Hv+zuQdqdv7SBpBBkqJw8rD5o3Bx5Vw+71xHAsqo2S/T:ZlMmWNKiSBpT/JtcBx5VX4sH2S/
Score

7^/10

upx
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral10 behavioral9
- Target
  
  supportfiles/customResource0009.dll
- Size
  
  2.0MB
- MD5
  
  1c1fef8c9588bcceda2b2a26ac974afc
- SHA1
  
  0582a5ba59206076e4ebadadd9f2a3838f0044ee
- SHA256
  
  ff60c57b959bcd3cb586f8be508dde2712ef7b896c2a56bffaa544fde7286c1e
- SHA512
  
  2603e7833f8070c4e19397cc12aeb50808f2655417303a62b66bb63cc526c0203bdc750d128ed3682302fe4a83bfbbc29c140734ad902f235ae2261d9ddaedc5
- SSDEEP
  
  3072:gIXatRRGEPVA8Oxp0he0npsMv1gcORJUB+0nJUhr:gIcq8Oxp0he0nyMKcORJUB+0ny
Score

1^/10
behavioral11 behavioral12
- Target
  
  merged.bin
- Size
  
  1.5MB
- MD5
  
  6f5431b6f2a3af553797c462e0340d86
- SHA1
  
  9c36e206367a8f04fadcb688844a89ae55167165
- SHA256
  
  28e40ad02b3ad69a4f2eae18d4cd31024ce9ec5432ac1f65c52e4d72305f144b
- SHA512
  
  000db4c9a317456c8ff74b9122c218abee98f2fbdd5993fada3ef547ef969db9ac5f971885ec874c4e567615d166fa2f48940ab82c8bba1ff3dfae22c171193c
- SSDEEP
  
  24576:/fOItzGSoXwC53tqGgeIiNVDso/NnbKGdNWSjHzjIeHENPjstVPXdqGgBuRN:/97oXZVVya3PLHENE1X/N
Score

7^/10
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral13 behavioral14
- Target
  
  supportfiles/niPie.exe
- Size
  
  71KB
- MD5
  
  8e4dc3f76168e44c62532b8635f5b2a4
- SHA1
  
  d936368b4aa7101ed4df4dfcac28c05952cb4d38
- SHA256
  
  109ce6c14549d218be856460a25e753ae917fffa8d0a142890a84ec00b6a525b
- SHA512
  
  4389ac539cc6934ff1c864d96a90988267b81a33776f19ed8d10cdc3c97c29a7e5af4a7b53865473d9eb7a1263db31f8b46f5d8db07b100d4372cd3f20133fa6
- SSDEEP
  
  768:ujan8GnhwDHcnrkqAAO8IEwm8iNWTGzvtKspRoSHfV3whZ:ujanoDGrkbAO80mhN/ZKspfVghZ
Score

1^/10
behavioral15 behavioral16

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

Enumerates connected drives

Loads dropped DLL

UPX packed file

Enumerates connected drives

Loads dropped DLL

Enumerates connected drives

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16