52fe4c7867042a5e60df8e2d74ac9fff51d906374ba3d7299c0ee8bc46f59529

Sharing

Copy URL

Twitter E-mail

General

Target

f95df262a77695ce9641f9120b43fd32
Size

9.8MB
Sample

231222-vexlladbe9
MD5

f95df262a77695ce9641f9120b43fd32
SHA1

c72c625b4687281f10353d45938f1e1146a75353
SHA256

52fe4c7867042a5e60df8e2d74ac9fff51d906374ba3d7299c0ee8bc46f59529
SHA512

df4155168f05c5cb535456aa2465b28da5aaac379cdcc566eef351f1bbbdba3cbd09ae29c39c43670d94754fd26763e488667b19788a30d7a395ea3c9c2948f2
SSDEEP

196608:ZGizoFi5d3uotQvBiqCG+d74tXsYv1+WeQva9oaT+kgUzASOGqK8vs5wstw:lz4gd3krQUt8a1+aaSarZ8Sd8nsy

Score

7^/10

upx

Malware Config

Targets

- Target
  
  Public/drivers/amd64/WUDFUpdate_01009.dll
- Size
  
  2.1MB
- MD5
  
  ebf9ee8a7671f3b260ed9b08fcee0cc5
- SHA1
  
  d9688d1849a86dd209732529375c6ada272ff8fd
- SHA256
  
  015f26bbcd619a0b67b5eaa985b69582bac27d5cbca99ce747a76532fcde4aff
- SHA512
  
  ea869026b73b4c3d0249beb1fe81efc8b2686d66c5ddf916d314c21989e68a12191efc2a32ef13caf2676327159e95fc4e69100fc09df5a7bbf5c019ea383dd8
- SSDEEP
  
  49152:nFSDIHkg+yf6+ZsYx6h8hL8RWVtma96U1wrfjKClR4:FvHkWpsYxQgttBJ1wLXli
Score

1^/10
behavioral1 behavioral2
- Target
  
  Public/drivers/amd64/WdfCoInstaller01009.dll
- Size
  
  1.6MB
- MD5
  
  4da5da193e0e4f86f6f8fd43ef25329a
- SHA1
  
  68a44d37ff535a2c454f2440e1429833a1c6d810
- SHA256
  
  18487b4ff94edccc98ed59d9fca662d4a1331c5f1e14df8db3093256dd9f1c3e
- SHA512
  
  b3d73ed5e45d6f2908b2f3086390dd28c1631e298756cee9bdf26b185f0b77d1b8c03ad55e0495dba982c5bed4a03337b130c76f7112f3e19821127d2cf36853
- SSDEEP
  
  24576:oU4MsColC6Je/ZgY7OOfcEpiRLH87SyVXGe38uKUj+NFVov1PJLfVKZ8F5mEeZWF:BFCsfZRZA6Xn388avVovfLd+Mo4iEF
Score

1^/10
behavioral3 behavioral4
- Target
  
  Public/drivers/amd64/winusbcoinstaller2.dll
- Size
  
  979KB
- MD5
  
  246900ce6474718730ecd4f873234cf5
- SHA1
  
  0c84b56c82e4624824154d27926ded1c45f4b331
- SHA256
  
  981a17effddbc20377512ddaec9f22c2b7067e17a3e2a8ccf82bb7bb7b2420b6
- SHA512
  
  6a9e305bfbfb57d8f8fd16edabef9291a8a97e4b9c2ae90622f6c056e518a0a731fbb3e33a2591d87c8e4293d0f983ec515e6a241792962257b82401a8811d5c
- SSDEEP
  
  24576:aAEBXzGJ7fW6hHv62VYeL7WCE3wixdLZWQzMjp:uBXQz/hPzxRwPdcO
Score

1^/10
behavioral5 behavioral6
- Target
  
  Public/drivers/i386/WUDFUpdate_01009.dll
- Size
  
  1.8MB
- MD5
  
  e1bbe9e3568cf54598e9a8d23697b67e
- SHA1
  
  92e15dcab8dda0d4bf9cc9ae98e273567d3ecd57
- SHA256
  
  a902bb3bff785faaeb6432be76f798627a80b2cc45441e16440e46e6d7340f2c
- SHA512
  
  01a04dda0ee36196054d2cc45c9aea7c9467d9f46ee9cf354d8f93260519bd1968b340dc2be3e4ce966bbb6e332f5aa72f29edc1bfb8e8d19decba7c2df3106e
- SSDEEP
  
  49152:qHAPbyCYhUJodNcmvwwoaehBUfrQHtmr8UQm3:OWyCYhUJ0cYoa0+TQHYr6m3
Score

1^/10
behavioral7 behavioral8
- Target
  
  Public/drivers/i386/WdfCoInstaller01009.dll
- Size
  
  1.4MB
- MD5
  
  a9970042be512c7981b36e689c5f3f9f
- SHA1
  
  b0ba0de22ade0ee5324eaa82e179f41d2c67b63e
- SHA256
  
  7a6bf1f950684381205c717a51af2d9c81b203cb1f3db0006a4602e2df675c77
- SHA512
  
  8377049f0aaef7ffcb86d40e22ce8aa16e24cad78da1fb9b24edfbc7561e3d4fd220d19414fa06964692c54e5cbc47ec87b1f3e2e63440c6986cb985a65ce27d
- SSDEEP
  
  24576:GjG90oN2lj11mk/22yYzGrarZRm4X5Uh6rVh5LdfBwOyCSQM1fFhSWRA2+:iGtN2h1120R7m4XShYVxfBwrC21fXSz
Score

1^/10
behavioral10 behavioral9
- Target
  
  Public/drivers/i386/winusbcoinstaller2.dll
- Size
  
  831KB
- MD5
  
  8e7b9f81e8823fee2d82f7de3a44300b
- SHA1
  
  1633b3715014c90d1c552cd757ef5de33c161dee
- SHA256
  
  ebe3b7708dd974ee87efed3113028d266af87ca8dbae77c47c6f7612824d3d6c
- SHA512
  
  9ae37b2747589a0eb312473d895ef87404f4a395a27e15855826a75b4711ea934ca9a2b289df0abe0a8825dec2d5654a0b1603cf0b039fe25662359b730ce1a9
- SSDEEP
  
  12288:cZq3DFVAZjj5h7OqGDqY66s32+0SLqfhA50yWI7yBoM1oGloLwtxJYnPXrmQlT:cZwoP7MYG+pX501zBoC+wtxuPXrmQlT
Score

4^/10
behavioral11 behavioral12
- Target
  
  Public/files/zergRush
- Size
  
  22KB
- MD5
  
  aed52dbab0e924f3e7fbef8d314da771
- SHA1
  
  ca36fa51b87e87d9b3a15ef4088431703b0ab641
- SHA256
  
  191e8cbac8ef3a79eaf103b8a60f7f79a1668920d8009e3705c71c143f2432a3
- SHA512
  
  d3a602372da220f2316de057e051e819d855c4c770e0997a9c13698eddf8e4d233704526a1db0e81ba20d742e760894b9e6c0d11a7a7c760491f08e42beebd80
- SSDEEP
  
  192:zlBzPbAQ4lyBzCfHW0Wachajq6tnOrNT+vIUSxIdmj9uJrgaNc4p/IM7hyFqCL17:zlQl2z4tLmrNT+vIdxIdqaNc9suFE4F
Score

1^/10
behavioral13
- Target
  
  Public/install_drivers.bat
- Size
  
  1KB
- MD5
  
  4276f02b0da9d8e02caa9d5d8d816f31
- SHA1
  
  74790c549d9b626b8a11eb879bc043791fd6a79c
- SHA256
  
  39e31b7829733a5cf541104de0b626f85934c68721a6efa2f85c15fb0cf934d2
- SHA512
  
  c9542e6c68a6be54560927fda8932bf261a5bd01829ea7d99d45b7e289268a509a5160e0d425b1490a0af9b7fea2aeba34b209cb5cc6ba58cb164607df5242b9
Score

4^/10
behavioral14 behavioral15
- Target
  
  Public/run.bat
- Size
  
  15KB
- MD5
  
  dc3e558fcc4e091a57ed9eafc47db270
- SHA1
  
  acf2de4e069dda1de34866cb5d953efeb6d50455
- SHA256
  
  17a08894935a660cae3bb1b5bcb3c55984138b7f46e5fae038c8482830618226
- SHA512
  
  365d2cbe3e6b60e34578ebc228d7715d893b15e9d893b18194d947fa2e1b5163c990873821ce85a964e67fb03ad84666119f62a978f5535a9b17b1487e535ed2
- SSDEEP
  
  192:XkZPtqxvl6V1pWhirR1mTCX1ww7CvFTm13Tvo4H45nZuejKkw7Q6fgXc9cb:UpOAVysO0QvU9Q4n1g7
Score

1^/10
behavioral16 behavioral17
- Target
  
  Public/tools/7za.exe
- Size
  
  574KB
- MD5
  
  42badc1d2f03a8b1e4875740d3d49336
- SHA1
  
  cee178da1fb05f99af7a3547093122893bd1eb46
- SHA256
  
  c136b1467d669a725478a6110ebaaab3cb88a3d389dfa688e06173c066b76fcf
- SHA512
  
  6bc519a7368ee6bd8c8f69f2d634dd18799b4ca31fbc284d2580ba625f3a88b6a52d2bc17bea0e75e63ca11c10356c47ee00c2c500294abcb5141424fc5dc71c
- SSDEEP
  
  12288:myyKdVnyNhXCV4EkP7AIfzNXZ0b5NrnkcAqIV0A1caRI:mKvyNhXCV4E8BXAfrnkcAqU0A
Score

1^/10
behavioral18 behavioral19
- Target
  
  Public/tools/AdbWinApi.dll
- Size
  
  94KB
- MD5
  
  47a6ee3f186b2c2f5057028906bac0c6
- SHA1
  
  fde9c22a2cfcd5e566cec2e987d942b78a4eeae8
- SHA256
  
  14a51482aa003db79a400f4b15c158397fe6d57ee6606b3d633fa431a7bfdf4b
- SHA512
  
  6a2675de0c445c75f7d5664ebe8f0e2f69c3312c50156161e483927e40235140d5e28e340112ac552d6462366143890a8ce32dbf65bd37e27cb1ea290fe14584
- SSDEEP
  
  1536:npCxybY0FS6MqS6WvgD9xj03TabrFvY5J6sCGt:npo0k6ZWVTaif6sCG
Score

3^/10
behavioral20 behavioral21
- Target
  
  Public/tools/AdbWinUsbApi.dll
- Size
  
  59KB
- MD5
  
  5f23f2f936bdfac90bb0a4970ad365cf
- SHA1
  
  12e14244b1a5d04a261759547c3d930547f52fa3
- SHA256
  
  041c6859bb4fc78d3a903dd901298cd1ecfb75b6be0646b74954cd722280a407
- SHA512
  
  49a7769d5e6cb2fda9249039d90465f7a4e612805bba48b7036456a3bbd230e4d13da72e4ade5155ddc08fe460735ec8d6df3bb11b72ff28e1149221e2fc3048
- SSDEEP
  
  768:HLNk0yiFYWkgALpW+QvSugX0wUepQNXTQXdF+Q+An70edrqqOkIW:+yY8wugEwOVEXdz70e4gI
Score

3^/10
behavioral22 behavioral23
- Target
  
  Public/tools/adb.exe
- Size
  
  2.4MB
- MD5
  
  2cb52a59fc0231c75125dd01612c6c89
- SHA1
  
  69e2d633b9928c8fbb0c7293d0916761fbf46ef7
- SHA256
  
  0a3a083986251f41b77aeeaa411d843b4cd5d305018e1ccff3dd12521bf230ca
- SHA512
  
  28f9d1dc8965afc25d74a5c74e9fe59b98c2f70a4c29e27eb4c4f2905dfe1ffab0cf8442765b47b54642c822163bd9751ceb1ef1219fdeef069e46e114ccbb78
- SSDEEP
  
  49152:OeBhTQN3vk6WodvYsCK6QzqX9Ze603onC6TPKsVHyjjmL0cQvq:OGks
Score

1^/10
behavioral24 behavioral25
- Target
  
  Public/tools/fastboot.exe
- Size
  
  175KB
- MD5
  
  08ddbe844c494d0c64427f2dd7d602d1
- SHA1
  
  d0136773a166834f79fe08d439e9c5b57cff9904
- SHA256
  
  9908b8421d6f4275e81319ac1355333ab868ef6bd4ecd70c1363a91347ee6cdf
- SHA512
  
  58c5e56c6c7523f2e313ead4c06ef41388de6a172ef588bb0566cb85017630b3fcc30f9cdfc96b8a76ec065023e0ee607993cbb60a21b7a632b4ebf443d0f844
- SSDEEP
  
  3072:lP9VnlrMBuVVqvbOzBd42kTBfLPKDpCISK/bTS3zFjLH9lPWuHa:F3nrVEvaBi2kTBDq7SwS3zFjLH9Za
Score

1^/10
behavioral26 behavioral27
- Target
  
  Public/tools/wget.exe
- Size
  
  392KB
- MD5
  
  bd126a7b59d5d1f97ba89a3e71425731
- SHA1
  
  457b1cd985ed07baffd8c66ff40e9c1b6da93753
- SHA256
  
  a48ad33695a44de887bba8f2f3174fd8fb01a46a19e3ec9078b0118647ccf599
- SHA512
  
  3ef1b83ea9821cb10f8bc149ec481d1e486d246a0cb51fe7983785529df42c6fe775e0d35c64a97f997cdf294464c7640df392239b96ce1be6143ce8f07b5a8a
- SSDEEP
  
  6144:eoxkuaVJiysgokd+8L2LZ9aUedgk+TGk57rrpmNDEpO/YIPOWCiwYFnY:JxkJLiynXvqjggpl57rrpmNQp2YIGRY
Score

7^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral28 behavioral29
- Target
  
  Public/tools/x64/devcon.exe
- Size
  
  80KB
- MD5
  
  3904d0698962e09da946046020cbcb17
- SHA1
  
  edae098e7e8452ca6c125cf6362dda3f4d78f0ae
- SHA256
  
  a51e25acc489948b31b1384e1dc29518d19b421d6bc0ced90587128899275289
- SHA512
  
  c24ab680981d8d6db042b52b7b5c5e92078df83650cad798874fc09ce8c8a25462e1b69340083f4bcad20d67068668abcfa8097e549cfa5ad4f1ee6a235d6eea
- SSDEEP
  
  1536:MP2K0pa0WfEYp9Y/XQhpgnbP212YCJpDhiF4O7W:MePOYe4bu1epDh8RW
Score

1^/10
behavioral30 behavioral31
- Target
  
  Public/tools/x86/devcon.exe
- Size
  
  54KB
- MD5
  
  c4b470269324517ee838789c7cf5e606
- SHA1
  
  7005597d55fb26c6260e0772f301c79f030e6d56
- SHA256
  
  5f9b898315ad8192e87e21a499fd87d31b886513bb39d368476174aaa89a2bf9
- SHA512
  
  dbadca544434a847238bf107e59aa84bf8df9df899d0c2da2ee62cc28e12d175a81d4e4e0f85d7c394323bf66fb4ac0f413c949700ecdec9a73ed5cf9340aebb
- SSDEEP
  
  768:xgEuhGUsQ9Z7lVQpjagwpKsQt2IJU1evxHs4gZWk:+1/9ZisQtBU4xHeW
Score

1^/10
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32