Overview

overview

7

Static

static

7

Tool_1CD_2...CD.exe

windows7-x64

7

Tool_1CD_2...CD.exe

windows10-2004-x64

7

Tool_1CD_2...34.dll

windows7-x64

1

Tool_1CD_2...34.dll

windows10-2004-x64

1

Tool_1CD_2...40.dll

windows7-x64

1

Tool_1CD_2...40.dll

windows10-2004-x64

1

Tool_1CD_2...46.dll

windows7-x64

1

Tool_1CD_2...46.dll

windows10-2004-x64

1

Tool_1CD_2...34.dll

windows7-x64

3

Tool_1CD_2...34.dll

windows10-2004-x64

3

Tool_1CD_2...40.dll

windows7-x64

3

Tool_1CD_2...40.dll

windows10-2004-x64

3

Tool_1CD_2...46.dll

windows7-x64

1

Tool_1CD_2...46.dll

windows10-2004-x64

1

Tool_1CD_2...34.dll

windows7-x64

3

Tool_1CD_2...34.dll

windows10-2004-x64

3

Tool_1CD_2...40.dll

windows7-x64

3

Tool_1CD_2...40.dll

windows10-2004-x64

3

Tool_1CD_2...46.dll

windows7-x64

1

Tool_1CD_2...46.dll

windows10-2004-x64

1

Tool_1CD_2...00.dll

windows7-x64

3

Tool_1CD_2...00.dll

windows10-2004-x64

3

Tool_1CD_2...00.dll

windows7-x64

3

Tool_1CD_2...00.dll

windows10-2004-x64

3

Tool_1CD_2...71.dll

windows7-x64

3

Tool_1CD_2...71.dll

windows10-2004-x64

3

Tool_1CD_2...80.dll

windows7-x64

3

Tool_1CD_2...80.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    91c7d839a4c6af2e4197ea7c5b6ce84da08c35541ea8557880dab03a4866e8a0.zip.zip

  • Size

    19.3MB

  • Sample

    231107-rl2mcaad29

  • MD5

    26a74ea3cb4ed4140498652684561a29

  • SHA1

    f87de02c7050e138b816f372c1f8e20d517470e5

  • SHA256

    33b1cc24f787e0879be88253b5c445f9d4f9b0d8d678049dbf78fcdb94b65fe7

  • SHA512

    0b8a8991612831fde39cfc1e1de20569cf16c11e14e80ec03683227bff29233394c7f7abdca60f4ee6d7f5a7a8aed364e1c42e0f9a89bc7892f0e1e0fba5bbec

  • SSDEEP

    393216:glzHFkMd+uOZ69LAo1SaKtZj3+mqxEDRLqQZjeabKZg2d81oq0LDtp:IFZdta6Ao1SaKTnDBTZjoK2d86Ln

Score
7/10
upx

Malware Config

Targets

    • Target

      Tool_1CD_2016v030_edit_mode/Tool_1CD.exe

    • Size

      2.2MB

    • MD5

      879a67e04aabe0344c85c1a9cd8a25f5

    • SHA1

      b4c2208ba3687a8e3c0367fd411047cafb3fbb93

    • SHA256

      7e1d0d6ed3c8e4f95a49b3eff0ac6d0f0af45ee0742427af93b399dda7e843ae

    • SHA512

      24172786281aa9a3be271c68d69fbc26d208129a92532b9a835fc1729c8ba261366bbc11870cbe022b2456e5ec228062760b75c1fcf13fdca62ccfd71dfebbc1

    • SSDEEP

      49152:PNlBv68xhMB0RCCQYGKLqAOgAGUjG/XoIxkoK2a98jFEbx:F2khWCjGMqAa5dP2a4S

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

    • Target

      Tool_1CD_2016v030_edit_mode/icudt34.dll

    • Size

      8.5MB

    • MD5

      bce1653cb7bcdce3861e4438ae8dcee4

    • SHA1

      12f963bce051a1c9cd33b9f311118034b54c129f

    • SHA256

      5b75657306cdccda0d7181721515f27e26c29e7270992fe0f7f169ddc7472aee

    • SHA512

      d786a482771b400d329e54d980b78b8e5703adba6b19c7e618ef7385f3924137516a523b5ec9630e8e70b5f384e83d1c1058d379c49446f44d9a716c00a9e6d9

    • SSDEEP

      98304:Gk2Ph055PfECL8BHeTLIOsRStl2Cp/c8DSqpKZVxfNqn80iPChzIB:GkgcdfrMeTLIOsuKzqnxe

    Score
    1/10
    behavioral3behavioral4

    • Target

      Tool_1CD_2016v030_edit_mode/icudt40.dll

    • Size

      13.3MB

    • MD5

      b3249e41a06be6c4cbd0e7a960b4fbf7

    • SHA1

      728b16ebe932007e275017525130dd04d3b39649

    • SHA256

      84ab4b7b3d4872d99b5e5721e9cc7fc301cc38d13a8113e9b5773bbc2f8050a8

    • SHA512

      921b525c6b5dcb73e09e3bf13f8289bcab89fba3ade1e051165899ac863f547773879cbf821a0f9f3cb00e8d73576b924b632e163e1d498cd4bb2285f7a167e8

    • SSDEEP

      196608:NzfDbmL2j9lM+n42j9lY+nfRm2j9lt+n4Av39eTLIO5gzeers7dj1:NzfDbPX1XVXrAv39eTLIO5gPrsRh

    Score
    1/10
    behavioral5behavioral6

    • Target

      Tool_1CD_2016v030_edit_mode/icudt46.dll

    • Size

      14.5MB

    • MD5

      4efaf3bca3e6b86addfd0b719703d782

    • SHA1

      f8b011b4a0d828456f864682d8fe5517cd87ffcc

    • SHA256

      488dd0e76670fa4bac93b29465eac51ecaa0371d3f1f5e2d12323fa5100d3325

    • SHA512

      499685fe377bfd4e2b1cdbf632e4c07c108e93a0b5959458a9fd80c9c4cd696b3a091ab7de0c35294af4f29ea610b5e70e8e9d5bd0f4daaae44fccd9dec7b1ff

    • SSDEEP

      196608:BDIORDhDEDmDwqXCagQZhzvilh2WhiesUjOx:BDXRlDsqXCagQZhzvilh2WlHjO

    Score
    1/10
    behavioral7behavioral8

    • Target

      Tool_1CD_2016v030_edit_mode/icuin34.dll

    • Size

      680KB

    • MD5

      544b294969a42291b1e8614f65c5f499

    • SHA1

      a62827ec4361932603a31d9d20d05cac564dccec

    • SHA256

      6d613910985dffd098c16b22b775741f805076b89bd029d6529eb99c51ac6271

    • SHA512

      5b42a0ccd61aa59f12dbd535cb1c2702bdd81099e9528094eed138f4996537794243ceec024a7e59218f6b6706cb4bcfe0f43e8e9aca35ca99a15d1be5bbf7d7

    • SSDEEP

      12288:yoDPtDtxrYOhJF9tlcZtbyzX/mORZUFkScaF:yoDPtDtxlr2ZYzvnUFkY

    Score
    3/10
    behavioral10behavioral9

    • Target

      Tool_1CD_2016v030_edit_mode/icuin40.dll

    • Size

      1012KB

    • MD5

      8f3849a231ab5ab3c1e9e624857e1a72

    • SHA1

      b39bae7986e7aa19ae63b427f7b7d678a79ca7df

    • SHA256

      6df7f21a82ebdaa21c71a70fdc8ccf70e0d26a695c28e84c1c586e591e59a774

    • SHA512

      c38f36b01984fc2ff30594f44262e4e1249ed0a7a309c26a21050e16f985b2afe640ee8ad015afd6ca0cd8962888aae2c41382b4217a753a8bfc8a1ed614ce61

    • SSDEEP

      12288:VUTSVykNsLpWIvHlPlbqqRqQtbgpDp/bHbhQglwh9ytGliX:OEYNqIbgpNXhZ4ytuiX

    Score
    3/10
    behavioral11behavioral12

    • Target

      Tool_1CD_2016v030_edit_mode/icuin46.dll

    • Size

      1.2MB

    • MD5

      2760046a4dd0fc31f770a3a439415ba8

    • SHA1

      e3766a400c246678a04b758f89e73c2cd05ed84d

    • SHA256

      b13f00990955ab856cb5bbe34f2e88784eb21e08e348f366aa4457dbca39794b

    • SHA512

      35525a1336e8f4bf3c4c15087c1b1dce091f1fec2fda35ebf8c259de0cb8db474943ac6403a02892115124f6bb69dea39093f14c16f5c3e9dd1205e7ab0aa2a2

    • SSDEEP

      24576:smdAsFxqBSKsJ5H9xlfOo2cEqz+N0wAmGgUpWj0w:besVznAj0w

    Score
    1/10
    behavioral13behavioral14

    • Target

      Tool_1CD_2016v030_edit_mode/icuuc34.dll

    • Size

      800KB

    • MD5

      ea3f917c513010b25969f0bedafd270d

    • SHA1

      0151072cd3af86b2746efd46c2cbcf7ab903b382

    • SHA256

      937323c634ab23cdbfb9fa2759b11a0e23efb6980bf1e8f61e4310b0c6b89807

    • SHA512

      9d2ae81bbbe1754c9cd5c506348a2528dc482c6d412a2faf6d63df1b9772920cb9bda865489d17e1407e816f021ff14054fb1f72332127f828134d1eabeb1a79

    • SSDEEP

      12288:H7W2Q3LynmA/WB3V+l9bf66V9pS8GWpkOb+L5SaiaJv4IYn:YLynmAuB09brVytWpLb+dtiaJvD

    Score
    3/10
    behavioral15behavioral16

    • Target

      Tool_1CD_2016v030_edit_mode/icuuc40.dll

    • Size

      928KB

    • MD5

      a13ff2aa557d06f7a3ee4f12b1985297

    • SHA1

      b13129664814110d67cda2bed7ceae33f7d491a3

    • SHA256

      b65a163d16450d501c2c89010c505ad6d9c3aa99c6aac7a5fdd94f930f39a5e7

    • SHA512

      e224960dcbabea1d0a7cffa920aa0e20b51089b2ca70d77c0377e02231ed5934e69c0017864c47c6f93272012e8c9c734f773951af168c977f30555686519ff5

    • SSDEEP

      24576:n7auM7j7SfQvu75jh7NsYcaiLKkkkkkkBbiY9AM:7RyHbu38YqM

    Score
    3/10
    behavioral17behavioral18

    • Target

      Tool_1CD_2016v030_edit_mode/icuuc46.dll

    • Size

      969KB

    • MD5

      48d65d0d02401f35b15ea141bebbf55f

    • SHA1

      a7243dfa64e0001660b7e31b9d61f1d951991026

    • SHA256

      5bc08da3673477e0b4de04663ac2e627ced758dfc2f1626e59445d23d433e40b

    • SHA512

      b0293c33e8ecf1c89bb6b153ed61dd7a2ef3396d5c2a52ff6f08c9b6e6993959b0c1a6bb5fd7e04df8bdc541b434664457c375bc62861f0e5e10fb807fda0b0b

    • SSDEEP

      24576:Oj7DTkG4pHNCRpizwCiFHbg53lINRtV7GZ11k:O85DepiL5evH

    Score
    1/10
    behavioral19behavioral20

    • Target

      Tool_1CD_2016v030_edit_mode/msvcp100.dll

    • Size

      411KB

    • MD5

      03e9314004f504a14a61c3d364b62f66

    • SHA1

      0aa3caac24fdf9d9d4c618e2bbf0a063036cd55d

    • SHA256

      a3ba6421991241bea9c8334b62c3088f8f131ab906c3cc52113945d05016a35f

    • SHA512

      2fcff4439d2759d93c57d49b24f28ae89b7698e284e76ac65fe2b50bdefc23a8cc3c83891d671de4e4c0f036cef810856de79ac2b028aa89a895bf35abff8c8d

    • SSDEEP

      12288:iHEqYsrMWIqz473PTiPoH/aGhUgiW6QR7t5qv3Ooc8UHkC2eKq87:iH9YsIWIW4rPTiPofaDv3Ooc8UHkC2e8

    Score
    3/10
    behavioral21behavioral22

    • Target

      Tool_1CD_2016v030_edit_mode/msvcr100.dll

    • Size

      752KB

    • MD5

      67ec459e42d3081dd8fd34356f7cafc1

    • SHA1

      1738050616169d5b17b5adac3ff0370b8c642734

    • SHA256

      1221a09484964a6f38af5e34ee292b9afefccb3dc6e55435fd3aaf7c235d9067

    • SHA512

      9ed1c106df217e0b4e4fbd1f4275486ceba1d8a225d6c7e47b854b0b5e6158135b81be926f51db0ad5c624f9bd1d09282332cf064680dc9f7d287073b9686d33

    • SSDEEP

      12288:fQmCy3NeRjkpQmj3oaMtQqjoygfXq3kon9IlbgaOxQdVJJ6j5EBKX8hR5:ImCy3VQs9MtLjTgfa3kon9FaOdEz5

    Score
    3/10
    behavioral23behavioral24

    • Target

      Tool_1CD_2016v030_edit_mode/msvcr71.dll

    • Size

      340KB

    • MD5

      86f1895ae8c5e8b17d99ece768a70732

    • SHA1

      d5502a1d00787d68f548ddeebbde1eca5e2b38ca

    • SHA256

      8094af5ee310714caebccaeee7769ffb08048503ba478b879edfef5f1a24fefe

    • SHA512

      3b7ce2b67056b6e005472b73447d2226677a8cadae70428873f7efa5ed11a3b3dbf6b1a42c5b05b1f2b1d8e06ff50dfc6532f043af8452ed87687eefbf1791da

    • SSDEEP

      6144:OcV9z83OtqxnEYmt3NEnvfF+Tbmbw6An8FMciFMNrb3YgxxpbCAOxO2ElvlE:Ooz83OtIEzW+/m/AyF7bCrO/E

    Score
    3/10
    behavioral25behavioral26

    • Target

      Tool_1CD_2016v030_edit_mode/msvcr80.dll

    • Size

      572KB

    • MD5

      c404e1ff4b66f30e7914d629bb3ce67e

    • SHA1

      07867033489724563509d28b218f2cbd27fc75a5

    • SHA256

      5a4ed23a36dad0d97d85fc24609c5cec12103dc5af1fb807d081004d93cc7251

    • SHA512

      06d42b2de52bb134009c6b9d6d8522e63bfa2018b7f943b3ac93a9ebaa8e6b1e829c2c4491bbf1db75173dba65babfa4151a092732b5f8d3fe9b884e3917bb5e

    • SSDEEP

      12288:63nkXjV7Mi8pP3nt/Is0ADhKaJ796n+1diXgVlNVWmDOFhr4UC+9mGyw7:6XkTz8QADhKaJ8n+1diXgTNVWZp9mGyw

    Score
    3/10
    behavioral27behavioral28

MITRE ATT&CK Matrix

Tasks