6bb390bddaaff3e75a6a2b1ecafa3f49bf6e4d93747302a6870698fb26285a32

Sharing

Copy URL

Twitter E-mail

General

Target

gdfdgfd.zip
Size

114.3MB
Sample

240124-zmne4sggh4
MD5

23aaae69e1d897782345aeb6b59c60f7
SHA1

0d1823006d746f101c5639b68c99831b647b8aa5
SHA256

6bb390bddaaff3e75a6a2b1ecafa3f49bf6e4d93747302a6870698fb26285a32
SHA512

cc3bbd861b531a38e26ee6f786be0abdf859edb511b7f63d87c0c9f729c2fcc075eb4d6cf816da27ca0cdb77045ea1d491daba30d449a7d58ef87cfaa242b2ba
SSDEEP

3145728:E3+xhcKc3gFL845LoL1pjGVP8+d4GCEciOLz0Sh:ETiLvLoLTu+GCE7OL3

Score

7^/10

Malware Config

Targets

- Target
  
  AdbWinApi.dll
- Size
  
  143KB
- MD5
  
  8a04ac36c33a788f629746713873b1c7
- SHA1
  
  ce8afe0229facdae17f31b216a9e0ced2ab6aa1d
- SHA256
  
  c46cbe8b5472e4226dc92a21b673d7046c8a773eb1a63fa7e08f4aeb027b0e02
- SHA512
  
  02ad60c4e98b9799d16237ce5e234b31d86c5a61d3b75df60c887888c7c4ab5333d8e309233bca4d97d9691904f5c914ba8e6bb70d584ffad5552c705a9295d6
- SSDEEP
  
  3072:TWdNubaIX+4TtbGmwMai6UY8+nQUbCm7CQeqNddfxF:LLTtbGJvI2biqrZ
Score

3^/10
behavioral1 behavioral2
- Target
  
  MiLoginTool/MiLoginTool.exe
- Size
  
  559KB
- MD5
  
  7ea56572cbd4bdfec92d361ba8f99bc9
- SHA1
  
  b54035462c51f17c46baeec42bcfb6afb8ec131b
- SHA256
  
  1b07b3289e3ea10d749bb60a59c5c9ba0a412ce4ef359523dd8e1491479287c9
- SHA512
  
  e47133fdac866ffcdb5540a29144cf27dbc2a8317f1f86a0fb3987b16ee7e38b011710cde7565e07a06cfa75f93e639c231d3cc15948ceb0ba6532989624b724
- SSDEEP
  
  6144:2GiJIrQkQ8tMW3MxpY/2FONYLfKOoCSDzrXiWbgzEAOInYLWMsL:gIrzT3yCO8OfKOD0U46RL
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral3 behavioral4
- Target
  
  MiLoginTool/chrome_elf.dll
- Size
  
  972KB
- MD5
  
  d6b6a647df9d936f6a08494a25a65e69
- SHA1
  
  1ba75e165204cc280e1fd40de7636dc26a724475
- SHA256
  
  f75323a64c4248c2e5e4947479419b0932d369136635b58de22691e25d687ba2
- SHA512
  
  da9c142f847d79ef35dd0b35487bc4b5e81bcff4a1868b1e8da33c1a378e404eba39f90b2bc3ca671dcd4371e67d93c49d418f0d43c12c84b2dc123e64aee7f3
- SSDEEP
  
  24576:QejnyQsJ9F4yr2yjyMXYotlDi9CI1qbNmB5eCYp8N8pQYHzWRYh+:NuQ69Pyl18THzhh+
Score

1^/10
behavioral5 behavioral6
- Target
  
  MiLoginTool/d3dcompiler_47.dll
- Size
  
  3.9MB
- MD5
  
  e1677ec0e21e27405e65e31419980348
- SHA1
  
  666de481c46e2c21b8f0decc7e9115fc61d28acd
- SHA256
  
  c2c7ca6505ad10826e6b92319ce7aa355392b0cbd092a0fb8d4381c2d31268bf
- SHA512
  
  31ea9e22a2de873ad71c56386b45f510cc89b63eff5526f75a9de7987c65e91bff9ae141cb47b49b986992a53d9a6e73fa3199a04f0bde665d4928112fd13070
- SSDEEP
  
  98304:q4Xyn7IfxiYMzgom1mEU/AJC/vujMD9rw:809om1hU/Aavu4D9rw
Score

3^/10
behavioral7 behavioral8
- Target
  
  MiLoginTool/libEGL.dll
- Size
  
  346KB
- MD5
  
  cf78a952e22c69130eeb60a1fa726bdf
- SHA1
  
  668bb991364009598d4cc0a9b61657fcf84621a8
- SHA256
  
  a8e16173ae6e8f0e922ad418a7b2e4fb49eb6565e0fad532f42a790bc5d5597e
- SHA512
  
  d5c62d9e8ed9dee0848419dd252d9b4d7203b87e7ad2589f0dcf53536e52effac6ae6df70d2c10c881b3c6d1b1d3d18bf4011f487240bc62b311dd705a6e805a
- SSDEEP
  
  6144:PHNx9cfIcqB5HsMofnaHt0Fmq+/QM6sJhQj6nV/Gu/0yvHCLM:PH/9KIcs5MnfnaHtYM6sJ2YMu/0y0M
Score

1^/10
behavioral10 behavioral9
- Target
  
  MiLoginTool/libGLESv2.dll
- Size
  
  5.2MB
- MD5
  
  2d1d06bcdb44e2595477ea9b16245abd
- SHA1
  
  40987014f07a62c4907551d72db1541ca4639b76
- SHA256
  
  f7484be5acb0f2f6c45ddb0c428e8679549f6220deff5c39a219ccedc3779bef
- SHA512
  
  f8322c78463a8248a9f7c52cc53f0e7056105f0eb3675dc9654be8509654fa5d5ee0fcfa3b529f00c8145023752302a8d3bf74ee658cc842250c9cb7591e6598
- SSDEEP
  
  98304:DiISg3ycXG0ksexcqYtC4rJ9Ws4u5Z6njOWlDQOzZ:eID3yYG08qqYrrJos75o1B9
Score

3^/10
behavioral11 behavioral12
- Target
  
  MiLoginTool/libcef.dll
- Size
  
  139.3MB
- MD5
  
  09f3b5aecaf76eba4935163f6303e0d9
- SHA1
  
  0ee857b613ac2fbdbb16cea1b18b24dd25dfc002
- SHA256
  
  c18b6c3d8cd15ff7166eb0a0cb57b0fb866ec582181de1727ec6c8fbfcf53dff
- SHA512
  
  ebe8708d3ca3da395c8cb32b37e7011d8d5464f316c914b5a46289cc0f6b060eb754a98c0c44b825280b8aa52740e74a3a9af48d668ebff8ebef94a2ecec7c3d
- SSDEEP
  
  1572864:Zl9/VCdGBOSX4GkGoZXwrSdtvy4EYj5tEAw/R+Un+gsanf3u9iQkx0jwU1EgpuF9:xGP/l5HolSqXX3
Score

1^/10
behavioral13 behavioral14
- Target
  
  MiLoginTool/vk_swiftshader.dll
- Size
  
  3.3MB
- MD5
  
  3603df78384717b7d3ed341e89267b38
- SHA1
  
  7774970591c20b390adcdb2be5de79390da56cd1
- SHA256
  
  d28586303c67656223028cb424d583fa75f970edd5c4baaca2b35fcbce131bb0
- SHA512
  
  ac2124542e46b0c3110201baf99a38c992b802d3083820b8fe8d80466a72689415a264352ec5bd6b59715894bc9bb896b33564a466d2e17bac3cd3451113e95c
- SSDEEP
  
  49152:BrI+Ndbyd59uhzpmlqLciqxdWUTHu9mLVGbnLzTbsPu8tYRA4hioGHrNotkfYU5j:N/ywzUuul9IHafDaI089
Score

3^/10
behavioral15 behavioral16
- Target
  
  MiLoginTool/vulkan-1.dll
- Size
  
  700KB
- MD5
  
  c0100648bfa19939d20d9ffcb75a3778
- SHA1
  
  3c5ee2e7a354b1b320cb8532e85c298dedd9a218
- SHA256
  
  7961b5e312ae6cd21c0bec5d71eeb271df33d376a57cb0c60599e6e63a797cd2
- SHA512
  
  42d3ec4cba975123d3c38db646be1a81770468b67ad5f6dad46cf2194824e58f8bd7e9cd82d95f815ef6fa4c52c61dc7447f2202bfe930f6d2612344386c74d9
- SSDEEP
  
  12288:R3PPkUGjjALrjfW4IMZg9uwIP85ShK6KfCXounxCsikGSdM:R3PMU8jA/jfW4nZe6K66i
Score

3^/10
behavioral17 behavioral18
- Target
  
  MiUsbDriver.exe
- Size
  
  899KB
- MD5
  
  6b2893f1e2c1e1075970c207a9365ed9
- SHA1
  
  70397f7a39651a175f6fe9fab8e170d0082e465d
- SHA256
  
  f055d5e9e6a64b9beb8ffc632b584e1c45e8c2e70b59641a100c1fe8e24f41b2
- SHA512
  
  2da82bb485652a2eeb32eefaddba3486bbc80d68aebeb54af8d4fc5575295dd5872579ddaf0e4e49a9675a6871d260659350d2aa3ff00eedd602cfde232ec9d3
- SSDEEP
  
  12288:Ep91GhOiM6imhzM8n9f0TJNGAAtPJD3h7HDmcXzxdUUinTlv/:U1GMY5JqTGAAtp3sgx2VnTln
Score

1^/10
behavioral19 behavioral20
- Target
  
  VMProtectSDK32.dll
- Size
  
  108KB
- MD5
  
  ba83c922c8784b6878834341c7feaab5
- SHA1
  
  ae8d7e4f615f331cedbbff0a1c4de00299ba3ab4
- SHA256
  
  20c4f4cc603335ab39bffa24e335f4adee51b0520d12364d1070691b33216091
- SHA512
  
  331296af7431af0554e0300b0cd578adfadf866753fad9399ee378099d41f34ee6a0b7305f86f308eb8a9c8683dfd7b0ac7e31bc2b8f3110bb74e963c59a2c3e
- SSDEEP
  
  3072:3hQC2mCYK3RhrZ9dPk2Q9yMJwb0YRGRfxu:KnrZnjQ7Klx
Score

3^/10
behavioral21 behavioral22
- Target
  
  driver/win10/amd64/WUDFUpdate_01009.dll
- Size
  
  2.1MB
- MD5
  
  313d9fb6b34d6c735646d89184a16f45
- SHA1
  
  12db7d0cd85162e2e270554d4487451b9bdcd44b
- SHA256
  
  705df79e4cbaed116f2ad3f8651a5d858c86e63288723c59734efacaa08c63f7
- SHA512
  
  d818dfadeacae677c952636667546c6934f7905536b202773bc04b06bb335bd6a7f443daa0a079baa152ca125b420ad0384d4fbe6ed6d5cf6d6e8a3111817fde
- SSDEEP
  
  49152:2FSDIHkg+yf6+ZsYx6h8hL8RWVtma96U1wrfjKClRc:kvHkWpsYxQgttBJ1wLXli
Score

1^/10
behavioral23 behavioral24
- Target
  
  driver/win10/amd64/WdfCoInstaller01009.dll
- Size
  
  1.7MB
- MD5
  
  f5ac9585ed0958306353f088ec61a2be
- SHA1
  
  6d45686bd9f362ed174494ab5d04ce079b24b817
- SHA256
  
  0616d29c81cc404cf29fb83f6587bde1538e756b8e5eb76f1861a3130e6d280c
- SHA512
  
  f507c68943f31b79272e2ce5a8c266675ea5188b7f37de085a348811110da895a4f587d067aeec9961da8dbe4bd1acec4fe05126688e402dbfd575d680e58878
- SSDEEP
  
  24576:wU4MsColC6Je/ZgY7OOfcEpiRLH87SyVXGe38uKUj+NFVov1PJLfVKZ8F5mEeZWG:pFCsfZRZA6Xn388avVovfLd+Mo4iE
Score

1^/10
behavioral25 behavioral26
- Target
  
  driver/win10/i386/WUDFUpdate_01009.dll
- Size
  
  1.8MB
- MD5
  
  bdefa06b2ca73b4506e9b8814c64d054
- SHA1
  
  6d6639b23e42558c551e23bbadd2805b5d11cc5c
- SHA256
  
  b6fdcb4dfbea5fb0271e6d9bf85b5f5d3ea0a0a33df8c016681b17ca18ec2c1e
- SHA512
  
  51628f179d76802e6f926dfc5023a48facb3dca9a63994c289bb69da21516c5464c13ebe3e3c79607f7a0f346fdebef39338a67a02f883d71e5411c04648823d
- SSDEEP
  
  49152:8HAPbyCYhUJodNcmvwwoaehBUfrQHtmr8UQmB:EWyCYhUJ0cYoa0+TQHYr6mB
Score

1^/10
behavioral27 behavioral28
- Target
  
  driver/win10/i386/WdfCoInstaller01009.dll
- Size
  
  1.4MB
- MD5
  
  941118a852afc3c8f9544caa9d7798af
- SHA1
  
  01005ac13cc159bb4f45dc8d78f19c7a455b639d
- SHA256
  
  b15f62ffb36c5f8d86ddcc92e24ca7b3d3ca05f38815a371fedbeacc32358c47
- SHA512
  
  f8d34d9bd727216ea577bc971999545f9051bb6b94ad690ce1bccf8b6acfc55c5f185d527db436aab5e1811d47450becec192fcfa8dcdeb97d099b9b8ebb4f10
- SSDEEP
  
  24576:ejG90oN2lj11mk/22yYzGrarZRm4X5Uh6rVh5LdfBwOyCSQM1fFhSWRA7zq:aGtN2h1120R7m4XShYVxfBwrC21fXS4
Score

1^/10
behavioral29 behavioral30
- Target
  
  driver/win10/i386/winusbcoinstaller2.dll
- Size
  
  849KB
- MD5
  
  3952093fdada8dffc636ef08230f887d
- SHA1
  
  d017b9560fd27728bf928bd5fa2b71ac0c01acba
- SHA256
  
  9e587f7878b56a0e1038de64e314700bbc4c5489f4deae7be9b13003139de828
- SHA512
  
  463dfa63fc73f8fa0f8e585eb8b3def2a5f459b60be53a93c7d99b4e25082c7da4f3c46a4d448045d5311673475b27d167a452df736d0a7b1ab053f43ed17a80
- SSDEEP
  
  12288:wZq3DFVAZjj5h7OqGDqY66s32+0SLqfhA50yWI7yBoM1oGloLwtxJYnPXrmQlVM:wZwoP7MYG+pX501zBoC+wtxuPXrmQlVM
Score

4^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

Install Root Certificate

T1553.004

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks computer location settings

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32