Overview

overview

7

Static

static

7

LVANLYS.DLL.4.dll

windows7-x64

1

LVANLYS.DLL.4.dll

windows10-2004-x64

1

LVZLIB.DLL.5.dll

windows7-x64

3

LVZLIB.DLL.5.dll

windows10-2004-x64

3

SMARTSOFTS....1.exe

windows7-x64

1

SMARTSOFTS....1.exe

windows10-2004-x64

3

smartsoft_...ll.msi

windows7-x64

7

smartsoft_...ll.msi

windows10-2004-x64

7

smartsoft_...se.rtf

windows7-x64

4

smartsoft_...se.rtf

windows10-2004-x64

1

smartsoft_...up.exe

windows7-x64

7

smartsoft_...up.exe

windows10-2004-x64

7

smartsoft_...09.dll

windows7-x64

1

smartsoft_...09.dll

windows10-2004-x64

1

merged.msi

windows7-x64

7

merged.msi

windows10-2004-x64

7

smartsoft_...ie.exe

windows7-x64

1

smartsoft_...ie.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cf229d7cef3ab0b9d8b9849cf6352694cabcfdf0b45f131ad7b357e609c801df.zip.zip

  • Size

    8.1MB

  • Sample

    231107-rxw61ahh2y

  • MD5

    c64030b00576ec823f72c8784326fd8c

  • SHA1

    b136706cca68f00024d7b8a50e64b191c031c381

  • SHA256

    f41361260452ca88234175b4ab0aaa458178fb5c22a4798b4c68cafd3602e11d

  • SHA512

    4fca785bfc3bd8ff8b5674f977123191d12a87c430c7159b2a8d41e13a187d91280eb5b4e40e5b66e594014f416fde427e5f2650bb832f2c728960cb460fc7b8

  • SSDEEP

    196608:5TBtrjhiu3q4eYvg4bAUY5Y1nSFWTAsslHmFdXP:XtPP3lgYFxMshV

Score
7/10
upx

Malware Config

Targets

    • Target

      LVANLYS.DLL.4.B1AA8A2DB6B74709A52D0DEA8392AD21

    • Size

      1.1MB

    • MD5

      a3ab9487e0b22fc4649a8740ee1a9b93

    • SHA1

      31c04b32826659370e9710f7a19978786945bea4

    • SHA256

      ccccef69b29da22e543eeec2148eeab3984cc34f8bc2efd6e9083dc1750abcde

    • SHA512

      7a4992313ecbc38577e4618b125f0e84a12eb9b2bd244a6a1c2a814097fa5cc20d9ddb85a4316931db0c464cf8889399335900c718e3b18a66570ae69c101896

    • SSDEEP

      12288:zGdEwW11qjgBHmXxLfO4TEFps2RPjGBRwvbCAV8dcnRkstAC+sfBsl7pIaN7yaSx:zGawW11+xL2bDscLGByidcnfH8pIj/W

    Score
    1/10
    behavioral1behavioral2

    • Target

      LVZLIB.DLL.5.B1AA8A2DB6B74709A52D0DEA8392AD21

    • Size

      84KB

    • MD5

      6ca878b7c0656ce8613b655d08fbd90d

    • SHA1

      38fe323aa3848df3ae6cabd0610792eeb15d5231

    • SHA256

      e80de9fbf7e17b9138762a1f3f0fcf285c388a64f0ce187354757826ceb7d446

    • SHA512

      368ab69c297621bb7a656e00bdcbf8dca4e9288e6bb214794756bbed8eb3bbdbe7cc54f03037739387065e71b9a579dd85e01dcaa5e14aaa4cf5ee2be5f4d6d2

    • SSDEEP

      1536:dZPG6dDkyg5i4tXdemb962jcbJ4JxhOanToIfQIOlIO6wwe:dZPG+i5i4tte+96EcdEHtTBfGv6N

    Score
    3/10
    behavioral3behavioral4

    • Target

      SMARTSOFTSSI.EXE.1.B1AA8A2DB6B74709A52D0DEA8392AD21

    • Size

      4.7MB

    • MD5

      6f50442d9e4b694ec6f409bddceb1df5

    • SHA1

      7d113bf46ee427ad1b9eb55bfc63a83914c7f3e5

    • SHA256

      2a0a03cbb4a615db05a44976d08476487ac07690ffe1c9203de2c0b52506e35e

    • SHA512

      88561fc61b02341eb66a7cd43b6291f697acb938ce1f704af54334e1e8230683e8a3ade33caca76f3441292a2f5d62d45415ce47983ea4d64627584a5896badf

    • SSDEEP

      98304:ojZ24jDWG9KWkvQ3rW8Cfh9wr8EFEjPBJ5DiA7j4YN+8L:Rhl8QOrqjBxHZ+o

    Score
    3/10
    behavioral5behavioral6

    • Target

      smartsoft_4.1.7/bin/dp/install.msi

    • Size

      1.4MB

    • MD5

      1df10caf520b9e9d56d8fb51d47ad764

    • SHA1

      e376482a8db9d8cdb06658c100f5af9c88e38a7b

    • SHA256

      2b2f61e87fa142cd877cc899bc93857fd8d80df84052074625c74dcf1acd43d0

    • SHA512

      bd618fb6f1108bd9488f8afcdbeb975cd2a5095f534c34161d98fbdfe92309b8c9d338439c1d2a0dc306e3dca0ba9087f5c48654afc3c1716e5d2d77d8ad7489

    • SSDEEP

      24576:TvJoj2nC9Ab7MX/Z9cSqGqIfo/2m3Db0nMKbVOIKRswRiXUiqGqIP:TvG1kwvk7bWOI3vXl

    Score
    7/10

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral7behavioral8

    • Target

      smartsoft_4.1.7/license/SmartSoft SSI License.rtf

    • Size

      8KB

    • MD5

      58a6ab9ba235e1054bd0f406a10786d5

    • SHA1

      e78a9d31122c3e17be3342ffd71634afbdf517fb

    • SHA256

      8ccd1cf3d6c8278131474fda8f6c2348073c2aa8664d624d901d81eb4457d449

    • SHA512

      8202283003731354cd770ee3a4da84a53df2f3565a6179e0c42d811180623099839f0d1bdcd81a9568aa6d1124d1890b155f54f284d2eba36aaff53b68b72803

    • SSDEEP

      192:CKYmfJJn6lHd8OpIzMxKJBcKezczLBIzTzmVTzTttBIpO7+uq:CKMK3JFx+Ln

    Score
    4/10
    behavioral10behavioral9

    • Target

      smartsoft_4.1.7/setup.exe

    • Size

      1.4MB

    • MD5

      fe5c2e1333b4477d029dedc9c1b5dd4d

    • SHA1

      ce7e5a597b98eb1ec36a48e4368997b787228544

    • SHA256

      fc91558efb40b16dd9f6b0e93c972a0f1ff85cad3ddefdd7028c2628d75a9ab9

    • SHA512

      04892dfb3d356952a3bd4cac9026a3fac52b220af6b8a6371e81293483dbdeb76f08e8182ae0301dedef4d2904a6c113d02d8d48307fe498a428b595b0ec03b4

    • SSDEEP

      24576:wJx22KNk+2ygEZZU6xUohcGGopn9iWsq/A9fzIDODmJfbtvyYtQEnRA2S/Y:w+29+2yn5+ohcGHpn97s7JzIa6dY4/RC

    Score
    7/10
    upx

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral11behavioral12

    • Target

      smartsoft_4.1.7/supportfiles/customResource0009.dll

    • Size

      2.0MB

    • MD5

      7c72d53d3bf993653f562143d2f4765e

    • SHA1

      36739563d986c659381b027e66ca3e4b4479fab4

    • SHA256

      41cfefacfaadba868b7ee46efbceb4f08f2271fcb375846dba3585f3535038fb

    • SHA512

      4a671e431d8ef92dfea548c40a799739b111ca59634032aa9f4bcb8c15df7b9e5026c78520e6803802b936bec1376abf44c51797396bb69d81ba89650eccdbd0

    • SSDEEP

      3072:hIXatRRGSPVA8Oxp0he0npsMv1gcORJUB+0nJUVn:hI6q8Oxp0he0nyMKcORJUB+0ny

    Score
    1/10
    behavioral13behavioral14

    • Target

      merged.bin

    • Size

      1.4MB

    • MD5

      cdbfcb13ea6bc3eaf18374bdff15fb68

    • SHA1

      b6a201bca8b103e24394c44928ea1a0079ba3dc3

    • SHA256

      171a0fe1c4969e3c669671f8725d99af7db37d7aa0268c1f8cd4bfdb9ff57f20

    • SHA512

      8a87ac6d5597630ba46979d411c0661837e10b9d9eae28ca8e2fc0a9146267aa1287a2ced5d99772ff3d64f35d10d5c3a459154e67228e89ee07d3fff2a4e3a5

    • SSDEEP

      24576:X8Ccnb7Ms/ZEcgqGqIWoVL6o/IfFpenMK1tOeKRuHw6NXViqGqDr:XTmwy5mVGngOeZHxX

    Score
    7/10

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral15behavioral16

    • Target

      smartsoft_4.1.7/supportfiles/niPie.exe

    • Size

      71KB

    • MD5

      601fda01efb1a22e18a19793158b51fe

    • SHA1

      925f30c4a425c133915ee92dd4c0900f31536c04

    • SHA256

      5020bbc58ef082a5ac8e42e394c4235e88b9c5bd1ed3cdc126a24a649997ebf3

    • SHA512

      0db9ac45dfa3e4530fa4a945e3cac301e1ee8b26fc2690739741d72e1b7712e205f4bf83463e51c70df141af663ffa54c4e281d93f3bc386487a42eb1778a03c

    • SSDEEP

      768:gjan8GnhwDHcnrkqAAO8IEwm8iNWTGzvtKsDsoxm3whvI:gjanoDGrkbAO80mhN/ZKsDnmghw

    Score
    1/10
    behavioral17behavioral18

MITRE ATT&CK Enterprise v15

Tasks