4e68a591b4ed8ffe693619f7d98b7af388357eaf2d8005cf15b3fb5697fe69ce

Sharing

Copy URL

Twitter E-mail

General

Target

7875cd92b1448478a9c5ac43d162b86d
Size

5.6MB
Sample

240126-1j6yqaehe2
MD5

7875cd92b1448478a9c5ac43d162b86d
SHA1

d7b46efe61a3ea958f352e7669e333bf85d1bfe3
SHA256

4e68a591b4ed8ffe693619f7d98b7af388357eaf2d8005cf15b3fb5697fe69ce
SHA512

61ec0535f5a7d9f64e4c8ab4c0c703aa5f4376a9a0a9e6776e47cfce6775fc111352ba411d812607961db9e0ce6625b50df7cd9631da30474f268b499d00c8ba
SSDEEP

98304:TwgjUFZgphgUZAWDpi0W0Fd9+Wvz8TYRnqDAKOjPpZK+u8CTsWOdWVs/uiu6Tg:kpZgjnZAWDpih0Fd9boTYRqDAKOjxksy

Score

7^/10

Malware Config

Targets

- Target
  
  chatsetup.exe
- Size
  
  5.6MB
- MD5
  
  fc6eeb99ca8828a57f90914a00de9e76
- SHA1
  
  6029053fc46fa5d860a62a66cf2899ad885c9bdc
- SHA256
  
  3a5d6142bedcde67c84e4026106c984f3321f23767e08bbbb7e456dff0427761
- SHA512
  
  c6b3940507059d5fe63335d2c008bc653faf65d11518afbe52c63797cd3e092ee90d3fd78e61e31ca83a649bba90db610e4693051f2924e91ffa76bcd985dc1c
- SSDEEP
  
  98304:EF0i9KXEv7h2uz0GnjCFk8j5jg8UQxz20AO3pOZA67+NwxUNYHdaCOIEq35YhMv+:pi9Pv7NtjCh9jJNx6FakF7+NkaIEg6h3
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  12KB
- MD5
  
  1e8f2fefe3ce893b117b26948b8978cb
- SHA1
  
  59cfc6c3f5716e91609e54ca80ae8b06c93ef8ab
- SHA256
  
  8203ae1589a50e6ff012e5d27bdd4f8ed7506077ca9b052827f5e90aaeb98519
- SHA512
  
  b3c36e1aa5d3ee5f482f4175a7d6fe10cf2bf3bd3423ab4266d11c4181cfbc7e3f66a30855034a8ec026a4d5987598f0116e98519b7445d9e5687bcbab2c0e5c
- SSDEEP
  
  192:qzixixDOHhG9db9rd+oSVPECMlh3I8tqDyng7hwbbHF1QuCb:qOx0DOHqrdwTY6+ng72bbMum
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/StartMenu.dll
- Size
  
  6KB
- MD5
  
  5c6271fb9e292a5f970abc96e5b0182e
- SHA1
  
  95f9b6d87c142cb42882cb3ca38d1fd424ee5bc3
- SHA256
  
  0fd71473abf9bdb824772875c915ba4864af50666cb41782ea26db11f4ded7ae
- SHA512
  
  32ff24ede0d0ae99411e4780af0d9f774190cac5e965eca98a0003e772324f1d90ed9b27d2d4f700634aec29b906822f8c37640c840e8ed07adb35dafaf25a00
- SSDEEP
  
  96:HxLJdRZk8OkmE+WHw0FMXF6CWhFxKpKsVQhEfP0:HxLjPk8OT30FFAaCP0
Score

3^/10
behavioral5 behavioral6
- Target
  
  9liao.exe
- Size
  
  320KB
- MD5
  
  b6cf3b3f4b2f40f343e27bdc5976a151
- SHA1
  
  d276884f41e65173ef8754ed2ad86624e7a10ffb
- SHA256
  
  a654d8a6837112a61e51be6f4d7f3e34d07f6e96ae6c78fc6211688be5019ff6
- SHA512
  
  08f52a1f498fdf986c17f1a007c01ec20b929ddfccfc8e10f452e463b6ea06527ad32988daf4b8d23ad35412e192cdf0848c6d4d371973681468d46907d62afe
- SSDEEP
  
  6144:qH0nQrUiSKrWubrSGxvGTQrGI2Lu5Zdh5GnvfazH1uYwxds:lnQrUiSKCuSGxvgPPY6e
Score

1^/10
behavioral7 behavioral8
- Target
  
  AudioCapture.dll
- Size
  
  72KB
- MD5
  
  991ff7d5b4386018cc480fc31c40f534
- SHA1
  
  8472f3807cee65313ff9fea252c277b7902d12cc
- SHA256
  
  6df89d5ebb96e5e51c4e763eb5fb2cedd87d091ac3a9cddea303558cf8c5fcd8
- SHA512
  
  ba6ae363991144665e7e353b1c9c415c856277c9d69b4148b372b43e0d53dd294138e9ee88425062bbc7937971c0312c4c7b35f68ed41efe8027a7d34fe00f77
- SSDEEP
  
  1536:z88/fFUb9e0ytzUa/2z/lMaywUeE/OktDug3E:T/29+ho6yiOktDug3E
Score

1^/10
behavioral10 behavioral9
- Target
  
  AudioCodec1.dll
- Size
  
  88KB
- MD5
  
  457dc4b86e997fa740108c1d1e623919
- SHA1
  
  fbbe40f68cd4228d239b4dc78e04a194387d5326
- SHA256
  
  71b817c4a5fcf8c77932c2c3f6937d1a0be55817ec31ef0e3c84bb846d0038cd
- SHA512
  
  4c38d6ab1563ace34d53ebf000d9e8d91636d78c2f697acfcf80ec465442f850e91604893e59b9d1076cae0bac4a83a4bfb54b18659b3648d9b4c70fc4e78de8
- SSDEEP
  
  1536:ne+OUST7CZjls5ZYqPBFrVkM32BqB8LsHxmQD6aOOOLAstp:eaST7CZjlsrYIl32BbrQD6a+t
Score

1^/10
behavioral11 behavioral12
- Target
  
  AudioCodec2.dll
- Size
  
  244KB
- MD5
  
  18412978b0fc0fbe65edf6082518e390
- SHA1
  
  c4b1e83db4b3dd86fac9b97b736861af61f31a81
- SHA256
  
  2cad343678f71606e5ef225eccf9fed3c4da2edad0f1c2574e5cd2f2be7525a8
- SHA512
  
  768f3c31306a78c2146578fbc620ba99c3cb3427b52cacad1102511f290c76c238bc3961c466a6bc9ef79cc0330b5f4186547d1e54ac5e1373bb95bfa5f7674b
- SSDEEP
  
  6144:UjnDn6tRH0icgm9o+0feviaDNT0FiGAn4:s6RH03gm9otaU
Score

1^/10
behavioral13 behavioral14
- Target
  
  AudioCodec3.dll
- Size
  
  256KB
- MD5
  
  649a958cec0eb85f8b442e7049342323
- SHA1
  
  fef92e88dcb7c59bb114bafc44a4be847396fb0f
- SHA256
  
  e2aae5a9c83ba15a149a68ff104ca471c888f660704ffc6a9e505facbdd36909
- SHA512
  
  9401ca679dc6d58a1c5c9b57c59f3335f47fb916487fdd0479589a473a0cee7ba113f245662c7c6c650f8d8558b128627c4319e544b4a850b299be73129b8d25
- SSDEEP
  
  6144:ri8q+CjKa9pcgnM6L/Y0+aKDGQCbF4NdAOD1dy:rPYdFMZzCbF4NdRDy
Score

3^/10
behavioral15 behavioral16
- Target
  
  ChatRoomClient.dll
- Size
  
  252KB
- MD5
  
  10a7f9b81d94120caf39fd09f354f207
- SHA1
  
  ba5b377b7478ecd9cdc7f09f44092441eb355af5
- SHA256
  
  1e7c9fb93a52b460bc89f4598dae07b4e620ae5f576886d7d1806df2be772925
- SHA512
  
  6a66603f0a524fcd7628f43c2e3c63d0ae803fa4a18a3e0943d8bc80d3724e6262df9a7777a103118dc587207dcb5fadd1eff36b0719f7d550e142ce854ea36c
- SSDEEP
  
  6144:fVojANUqdvN3mDKTporQ+sukqfJqqDL6J:fvNUBDKTpZ+fkqfkqn6
Score

1^/10
behavioral17 behavioral18
- Target
  
  ChatRoomUI.dll
- Size
  
  1.0MB
- MD5
  
  7e6000219e482e79fc162bab7cd90a3a
- SHA1
  
  ba280f673c87cfe62e690930e176398fad06092e
- SHA256
  
  faf1a2ecf814bf8a4a6a0651132916bd5ba383660f43139ac5c895cd62a0b963
- SHA512
  
  1d1c5bc015937068dc6b8173a83454ad8c3fd85d815e5438b5ed06cedd8142c0c701260b1d3e4001b7622aef8ed44b1f8baf765e8b238ebf7000f5546cc6f4e5
- SSDEEP
  
  12288:/EQ7Zg0u4/dH0JcQ3EyRn9WGGaMhj09kBRu2SToppDV56CuIdt32Auu9:JtgYCT3Ec9WG6Rdpdr
Score

3^/10
behavioral19 behavioral20
- Target
  
  Encrypt.dll
- Size
  
  104KB
- MD5
  
  9481b184532e216fcbd79c0353cb7ec8
- SHA1
  
  2e60b8f06815eab9d14e4435e5a8d5eb1b41e1bb
- SHA256
  
  f6ef54986005f8aeb73bdbeab7c8fb5903c76a4fb7462fcf1d3ea7ab574753c2
- SHA512
  
  21506f8e43a7a42b3dacdff23d1da2429bcffd330164b9fc4466c56819bd324a44ae09a92a0594b1ff785fbd660e087b9820512f44b13c6dec57cb9010ec49c9
- SSDEEP
  
  3072:JarDQK8CJfFHBeN+a0BkxECcTYMqqDL2/OXlUI:JarDQK8CJfFHBFUEjTTqqDL6g
Score

1^/10
behavioral21 behavioral22
- Target
  
  GSMCodec.dll
- Size
  
  48KB
- MD5
  
  217c9db91722f0be0419fc33d9ab443c
- SHA1
  
  df5cf70f07209b1226dc277868d2701c93f21d3e
- SHA256
  
  cfe4d77f07d613e06f9837249f4cb3d01aa167a065ec81c5fdc432961cb8b377
- SHA512
  
  a9ac64406525918aa0ca2c29f878410e18cc53022c05c88fdb2a9367d4b6e362c5fecc2e3641b66b2d0a52c21b79e98859b8f34d895ea87100924fbca2d6c83e
- SSDEEP
  
  768:3kozqlQFiba52PKylkD+oRKIXgjLniUrTJPl7RXNjZNLzxznztzjzJzfzlzbzBz5:3OSQ/7TJPl7RXNjZNLzxznztzjzJzfzP
Score

1^/10
behavioral23 behavioral24
- Target
  
  ImageOle.dll
- Size
  
  64KB
- MD5
  
  923125c9329d4d7a430a58337301d481
- SHA1
  
  482d3bde46200fdf6942248208eb49945501880b
- SHA256
  
  75d7e0ce37452d941620837328445258a153702dda756bb75bb3ece56dbf8f5a
- SHA512
  
  4c01c22d87d76f91a99d61f1fc52c154e59da2c446f72011fe26b1f9df5b43f3d2135f5fbb06fcc238682786fbef29d633751d1d674807a02f37b8ffae1be9c1
- SSDEEP
  
  1536:xyuq6O0Zby62ZMDy1Mt7tcXsq/IdMjacOO2:QFcZm68Mt7tcXsq/IxHO
Score

1^/10
behavioral25 behavioral26
- Target
  
  KeyboardHook.dll
- Size
  
  10KB
- MD5
  
  ede839d4d98fd0f8bac141086d291747
- SHA1
  
  4ef4ebbe879b47a2ff9da713d2b95642f880d243
- SHA256
  
  254c0bf971f8f8e455ec74a011afde9a66ac8a6b9ccf0a0e82adf9997fdfc9be
- SHA512
  
  c732453725a4e060020d708e7c4c0a508d8d3abdb34233de7f05a49641bd919410a0f3578e97cf95678c22f818066dd990b0481cc5cc65455a73d9428ca1f4a1
- SSDEEP
  
  192:rCFz1atsTlMZssCkPHF8HluGR9TRWVfXQ2Bq:Uz1VpeCkPHF8ES9TA9Q
Score

3^/10
behavioral27 behavioral28
- Target
  
  MFC71.dll
- Size
  
  1.0MB
- MD5
  
  f35a584e947a5b401feb0fe01db4a0d7
- SHA1
  
  664dc99e78261a43d876311931694b6ef87cc8b9
- SHA256
  
  4da5efdc46d126b45daeee8bc69c0ba2aa243589046b7dfd12a7e21b9bee6a32
- SHA512
  
  b1ced222c3b7e63e22d093c8aa3467f5ea20312fe76a112baed7c63d238bbe8dee94dfe8f42474f7b1de7aa7acb8ba8e2b36fdd0a3cda83ee85ac9a34f859fa4
- SSDEEP
  
  24576:Tnc0xa+xDaWhzSenZncQfT0ExftQqDEu:Tn7VxWWhzSenZncQLVxft5DEu
Score

1^/10
behavioral29 behavioral30
- Target
  
  MediaPlayer.dll
- Size
  
  76KB
- MD5
  
  80bfd104899973eb776e2a0506317d6a
- SHA1
  
  d2211875a4b1f5fb6a89ad20b33176238824ff0b
- SHA256
  
  00a32bae7adacae1fb5c17a6e1650536931c4a9d4f0e1cf06c2928e3b0ea7056
- SHA512
  
  2b4b0fa2a0cc6a119631fa50cbe14e73a8173996a61573d694e39c876a370b21df72a9693d3adfe4d625fdde777d77fec8bd0f228b2e820a6364e1fe385e24d7
- SSDEEP
  
  768:ofqqBs8Ure35NRUm6oc2COI97NQBJh7BbvE5U2aeO0x26kSuOkc:qqqBsrClL6j2COI97q7Nvv2afxS3n
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32