b1483abce8edcfd6183ef2cf211445e63535fb304d70b16077d847e3a46e2cc3

Sharing

Copy URL

Twitter E-mail

General

Target

57056d21c4871f7371fe9f672d8fe5f2
Size

1.7MB
Sample

240112-vlwb4scbcl
MD5

57056d21c4871f7371fe9f672d8fe5f2
SHA1

ff48a39f0f92293bbe603ebe09c21e65d26b3811
SHA256

b1483abce8edcfd6183ef2cf211445e63535fb304d70b16077d847e3a46e2cc3
SHA512

3e005191fb6f1e84a97eab66f69eab00827cfebcc5ddc7a055f9b015dd8e430de4dce4b72854cb839d6b18c6a9a19f5178dcb4b811baefcf97f4fd96afe335c6
SSDEEP

49152:oV3mDLGPKCgWjNEo+A+SBJGW0+pWqegq0a:wWXGP+Xx5SJGWxiL

Score

7^/10

Malware Config

Targets

- Target
  
  57056d21c4871f7371fe9f672d8fe5f2
- Size
  
  1.7MB
- MD5
  
  57056d21c4871f7371fe9f672d8fe5f2
- SHA1
  
  ff48a39f0f92293bbe603ebe09c21e65d26b3811
- SHA256
  
  b1483abce8edcfd6183ef2cf211445e63535fb304d70b16077d847e3a46e2cc3
- SHA512
  
  3e005191fb6f1e84a97eab66f69eab00827cfebcc5ddc7a055f9b015dd8e430de4dce4b72854cb839d6b18c6a9a19f5178dcb4b811baefcf97f4fd96afe335c6
- SSDEEP
  
  49152:oV3mDLGPKCgWjNEo+A+SBJGW0+pWqegq0a:wWXGP+Xx5SJGWxiL
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/CustomLicense.dll
- Size
  
  4KB
- MD5
  
  ae97fd89eec5000b400e6bc7e8db0e56
- SHA1
  
  7ec1073f712ff5bd68deec894c36c0385bacdd68
- SHA256
  
  bdf2d5ac95808ffe5b29aac71fcc2eb64bdca5b272a9c4082a74e20d0b1f20da
- SHA512
  
  2e0d0182d7fda547bfd3f25c56d0c20ba75809ac8d4c96c2b40aad3db9a61c730a650c7e02c6050ab37abdf8ce66ea1e4479921d72e21f55b6fd42a3dc033ec3
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/Firstlook_EULA.rtf
- Size
  
  92KB
- MD5
  
  7bdb34466392f623ae36f0eadf63e515
- SHA1
  
  4056d693b04f99bbf654cf7b5d3a90c3cdb7024e
- SHA256
  
  97dd5233cd1a60d2f5f07dddac6f9fd9edef811ce2300f67500112162284f3df
- SHA512
  
  57b276387654c171744e9048e4b614160b684d4ffbd948d285f5691dd59ade305ed406cb64227190ab24c8b2daa843059708e3124b310d26e948686d233fcda6
- SSDEEP
  
  768:3lA64dNaXAoDeu8bgSDYAa92TwS1MPSXolD+cQMlyfDa3X7LjShAZqCm:3lSabS1a92TqSXo0co0XVjm
Score

4^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  c17103ae9072a06da581dec998343fc1
- SHA1
  
  b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d
- SHA256
  
  dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f
- SHA512
  
  d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/Win7_EULA.rtf
- Size
  
  54KB
- MD5
  
  cb2be89f9c01e5c40cb62566840207f0
- SHA1
  
  361e1eadfcd7ad4a5027c93e66e83b0a5292cbf0
- SHA256
  
  becf1d183433fed6ccf8d0b659e62d68f1656556c425accbc42fd7cfe256cce4
- SHA512
  
  9a68e0ba091cc715d6fd3b08f41d2ddf93bbe0604c128c0880ec0c07f83ad21184f13a6b3f78b83bc85f4622d28a53920402bb171b067178bd40b653386a0d31
- SSDEEP
  
  768:AG7Qe+/wtplmgaEpOd5rXmgaiAynO8ctLtm3wHAOzhAZqCW:A8R833FOojW
Score

4^/10
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/facemoods_terms.rtf
- Size
  
  80KB
- MD5
  
  021f978d062bdf04b58327f3b67c8aeb
- SHA1
  
  704ddc83f32a5ce6c95a1ce9af74f8f7b60c2a95
- SHA256
  
  7faf940cf5a2abc900639ade3262db9a9b0f623047a67e6b165c73aa33b90d35
- SHA512
  
  f69264f3aff95d0fde5a582fa75a8d8bd74eeac255e6e7beb7723ae5260a5e1fc05e25e446a786b0003b40f3e75610ccf82013e6a86c73dd3c9a32ce20d7b97b
- SSDEEP
  
  768:l813p3VdAkF8bmrF5oa5Fscm0GEsGugGcQ/yK74fsWc24hAZqC3:l8TN8bqbGZytsWcwj3
Score

4^/10
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/facemoods_w7th.exe
- Size
  
  1.2MB
- MD5
  
  efd793f95b2215d81f3ebfcb347aa8ad
- SHA1
  
  35ebdd540900ada9359e91694a5ad9bce972c090
- SHA256
  
  be7ccbe3ac66d45c5f8f046bdebbab86abfe1e34c2705ca243747be8afefdf7c
- SHA512
  
  7be89a4921545bcb6042e507a2b372b2f3bdc3ea8c1752456d7ae580a728c4d3daa51d2e996d82face599f41a3cd3aeadafa9b165190cf0646dce58f7c0d5560
- SSDEEP
  
  24576:a3M1dk4yO1bzppgJLo01dvXjyoLTkyXN3VOBj7mEsLt:VtNCLbdzLTpXDOR7ELt
Score

7^/10
- Loads dropped DLL
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/ExtractDLLEx.dll
- Size
  
  7KB
- MD5
  
  ba4063f437abb349aa9120e9c320c467
- SHA1
  
  b045d785f6041e25d6be031ae2af4d4504e87b12
- SHA256
  
  73acba7dd477dfd6cf4249911f4e3c781196c7cf6b28425761dcb2d4f90c36c5
- SHA512
  
  48a813f55834069f8c6b90740de3df01564a136b0fe637f9f85cc1a19d7f32b1f70205ff2462526508fe3c1962d7c1e8e384c40463e328538aeba28e8d0fb92a
- SSDEEP
  
  96:lyEPmi/06iLbX8SIP59L1MmqPbgkk/eWKCHGojGYYIF/ggiomsTeZUzI:lyEPmymbMbPZOz+/eWJmoUItiopTeZ
Score

3^/10
behavioral15 behavioral16
- Target
  
  $PLUGINSDIR/InetLoad.dll
- Size
  
  18KB
- MD5
  
  994669c5737b25c26642c94180e92fa2
- SHA1
  
  d8a1836914a446b0e06881ce1be8631554adafde
- SHA256
  
  bf01a1f272e0daf82df3407690b646e0ff6b2c562e36e47cf177eda71ccb6f6c
- SHA512
  
  d0ab7ca7f890ef9e59015c33e6b400a0a4d1ce0d24599537e09e845f4b953e3ecd44bf3e3cbe584f57c2948743e689ed67d2d40e6caf923bd630886e89c38563
- SSDEEP
  
  384:nUOPTbiJmdztwwKq8W1cyMjPzV0Ac9k+LMkIX1+Gn+XHdjf:nTikliwKq8W1rMjPzz+f
Score

3^/10
behavioral17 behavioral18
- Target
  
  $PLUGINSDIR/NSISdl.dll
- Size
  
  14KB
- MD5
  
  a5f8399a743ab7f9c88c645c35b1ebb5
- SHA1
  
  168f3c158913b0367bf79fa413357fbe97018191
- SHA256
  
  dacc88a12d3ba438fdae3535dc7a5a1d389bce13adc993706424874a782e51c9
- SHA512
  
  824e567f5211bf09c7912537c7836d761b0934207612808e9a191f980375c6a97383dbc6b4a7121c6b5f508cbfd7542a781d6b6b196ca24841f73892eec5e977
- SSDEEP
  
  192:tUZTobBDJ68r67wmsvJI5ad9cXzFOVu+mZ/P3p+57CvpVqDxVp01Dwn2GRPgsfA:6Bo/680dCI5adOjFOg9//p27uNw2Go
Score

3^/10
behavioral19 behavioral20
- Target
  
  $PLUGINSDIR/Processes.dll
- Size
  
  56KB
- MD5
  
  cc0bd4f5a79107633084471dbd4af796
- SHA1
  
  09dfcf182b1493161dec8044a5234c35ee24c43a
- SHA256
  
  3b5388e13dab53d53e08791f492ed7d3094a0cee51e9841af83ce02534e0621c
- SHA512
  
  67ba90ec04366e07d0922ffb4dbbb4f12f90b6785b87700adaae29327db9ec2a03d750b229f858db0594f439499d6346fbf1ebc17c77162bf8da027515219ee3
- SSDEEP
  
  768:WmswCIbuzwEmd7Fp4KpDAKngV9tV3rJy63JgaVwoz7si4uYqUYWu1gYwmj552RFB:WmswCIbuzwEy7n3YD3Jgw7shKrp55io
Score

3^/10
behavioral21 behavioral22
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  c17103ae9072a06da581dec998343fc1
- SHA1
  
  b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d
- SHA256
  
  dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f
- SHA512
  
  d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10
behavioral23 behavioral24
- Target
  
  $PLUGINSDIR/UserInfo.dll
- Size
  
  4KB
- MD5
  
  7579ade7ae1747a31960a228ce02e666
- SHA1
  
  8ec8571a296737e819dcf86353a43fcf8ec63351
- SHA256
  
  564c80dec62d76c53497c40094db360ff8a36e0dc1bda8383d0f9583138997f5
- SHA512
  
  a88bc56e938374c333b0e33cb72951635b5d5a98b9cb2d6785073cbcad23bf4c0f9f69d3b7e87b46c76eb03ced9bb786844ce87656a9e3df4ca24acf43d7a05b
Score

3^/10
behavioral25 behavioral26
- Target
  
  $PLUGINSDIR/chrmPref.dll
- Size
  
  160KB
- MD5
  
  e02590b95a6be07cea5c5f3daf66e775
- SHA1
  
  28b6350c43d3804f69faa5f48cab70e229dd182a
- SHA256
  
  a87ec5894c667c5eb22201172792027a525a375a9e6468aa4612ccf6875b1112
- SHA512
  
  30e3abdeb2fa3c2e1bdc94e1e2b9f7fa9c85ff3d10198166e99e66a92a0ae4d62871a621eab069b1dfe2a99a7a4d457a494d91c811f1bd93c51f120f5ff692b5
- SSDEEP
  
  3072:0DNlF2bX2rBTxNwIjCRMOwt+kG2Dkq150yurKNN535xzFHcu:0DNlF24BmXH2f50L4ji
Score

3^/10
behavioral27 behavioral28
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  c10e04dd4ad4277d5adc951bb331c777
- SHA1
  
  b1e30808198a3ae6d6d1cca62df8893dc2a7ad43
- SHA256
  
  e31ad6c6e82e603378cb6b80e67d0e0dcd9cf384e1199ac5a65cb4935680021a
- SHA512
  
  853a5564bf751d40484ea482444c6958457cb4a17fb973cf870f03f201b8b2643be41bccde00f6b2026dc0c3d113e6481b0dc4c7b0f3ae7966d38c92c6b5862e
- SSDEEP
  
  96:hBABCcnl5TKhkfLxSslykcxM2DjDf3GE+Xv8Xav+Yx4VndY7ndS27gA:h6n+0SAfRE+/8ZYxMdqn420
Score

3^/10
behavioral29 behavioral30
- Target
  
  $_34_/extensions/[email protected]/components/FFHst.dll
- Size
  
  363KB
- MD5
  
  4d858f32da07588f97a992cd083334ca
- SHA1
  
  75572a0793acb41e977c8ae0adc290f5b23da946
- SHA256
  
  73f1c3bed7c14088ad837cf6468aecbdf37f8e9ca86faeb4fc7e5d79af071e09
- SHA512
  
  37bb7b0ce98c2e345ce5508af2d7dbb30a85a2ce90d55887318105d71a88965445c2d1e7d7c129c400fd38435ea01bc72fac93e75770f01a8a114ad35e279fb4
- SSDEEP
  
  6144:XyWoZ5OaHK/HHWAV4/yZj8sNkWS4P7voGfk:if5zHK/NVpwsNkWSAoGs
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32