649453c43b998ed2c23c87a950e6d4524cc435f995f6352676b09e043e381d5a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ValhallaDSP_KeyGen.exe
Size

559KB
Sample

240126-gm2zdsggcr
MD5

a4352482c6c31a8722e7a04b83a5cf49
SHA1

b9a4ece533737ffcc0e226f990511748b75af814
SHA256

649453c43b998ed2c23c87a950e6d4524cc435f995f6352676b09e043e381d5a
SHA512

740e7db44137dfda82c082969784fc6b16f7e5ceead61b6ef0ca923e5812077329282a78ad882eadccba0aa0be9778b224957da48eb4148d887d9476ed1d0b24
SSDEEP

12288:XYkc9t2Sll/UA8w4vQuo+KF76OyD/kyS2uB:XYkcL51oQd+KF4/BpK

Score

7^/10

Malware Config

Targets

- Target
  
  ValhallaDSP_KeyGen.exe
- Size
  
  559KB
- MD5
  
  a4352482c6c31a8722e7a04b83a5cf49
- SHA1
  
  b9a4ece533737ffcc0e226f990511748b75af814
- SHA256
  
  649453c43b998ed2c23c87a950e6d4524cc435f995f6352676b09e043e381d5a
- SHA512
  
  740e7db44137dfda82c082969784fc6b16f7e5ceead61b6ef0ca923e5812077329282a78ad882eadccba0aa0be9778b224957da48eb4148d887d9476ed1d0b24
- SSDEEP
  
  12288:XYkc9t2Sll/UA8w4vQuo+KF76OyD/kyS2uB:XYkcL51oQd+KF4/BpK
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $TEMP/BASSMOD.dll
- Size
  
  33KB
- MD5
  
  e4ec57e8508c5c4040383ebe6d367928
- SHA1
  
  b22bcce36d9fdeae8ab7a7ecc0b01c8176648d06
- SHA256
  
  8ad9e47693e292f381da42ddc13724a3063040e51c26f4ca8e1f8e2f1ddd547f
- SHA512
  
  77d5cf66caf06e192e668fae2b2594e60a498e8e0ccef5b09b9710721a4cdb0c852d00c446fd32c5b5c85e739de2e73cb1f1f6044879fe7d237341bbb6f27822
- SSDEEP
  
  768:qQmS5iUgi5czW+DlrQOS1DeDdjgNtbX4O6DHix84H0:qQz5Tgof+DdpS1+djctLSHiZ0
Score

1^/10
behavioral3 behavioral4
- Target
  
  $TEMP/R2RJUCE.dll
- Size
  
  242KB
- MD5
  
  90a452c84f7f2b5ca5a61bccaaa17e92
- SHA1
  
  3fb5829be5db5af55ee4043f0dce7f9253d800dd
- SHA256
  
  674a6eafb277261cd6959a4145329ab8b612fe5948fc8daf064192498fa65f92
- SHA512
  
  41304120d3b2d0489fa82c13abce47fca967c6415e28c05382c0c567a167ff400f7d58b843afdfcc33227d4caa8fbb32af38fa7175fd066631fe1bb82615975b
- SSDEEP
  
  3072:BsUYsLox8+vwJMcr7HKKQnpkrsvPmp55kIlzjjrfFO75Ag0Fuev/TBfoxzV7i94:n0x8fO0KD2AvPmbeQNcAOe3TBgDtDc
Score

3^/10
behavioral5 behavioral6
- Target
  
  $TEMP/keygen.exe
- Size
  
  733KB
- MD5
  
  b42891de36d265662c5ae7bef4432958
- SHA1
  
  760f557163dd295fb9f51dc3c6304debabe1fc3f
- SHA256
  
  0586b5996c1ecd29d05c3f159f2a74857bc1dcab40552a2495cca936d1349c39
- SHA512
  
  43bb4a637465e34544aa5c9b25f236daaa44285b3c8936a4b2e477ec4efc41a30e2a4b1735a0c36006f945b1c1f60e0426c228bee94176115e0c5361bff8b078
- SSDEEP
  
  6144:bcmzikEPDonRgNgz1+hw6hNgPfHv9PAimIAOyIJd/Z05t5460caYqtYryIl4INJM:bc/kEPDonR6Y436vRp/iK60X9z8VOB
Score

1^/10
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8