d8055b6643651ca5b9ad58c438692a481483657f3f31624cdfa68b92e8394a57

Sharing

Copy URL

Twitter E-mail

General

Target

vlc-3.0.20-win64.exe
Size

42.4MB
Sample

240219-t5zcfagh62
MD5

3d63e3a94c39a18f4da866b896b41e80
SHA1

c9520268936bfa6d060c8603cdee753db214d0ce
SHA256

d8055b6643651ca5b9ad58c438692a481483657f3f31624cdfa68b92e8394a57
SHA512

9dfcdeca8fbfb655d3a4a8d0297fdc7f4c34a46c1b4238436d6e51e8621cbcd866ebfbd2a738a50dccdcf18d162b213b086a5e2a720205751ae07147e800838a
SSDEEP

786432:3ESqSGUR5EpRsHXEiGxu9XjXlQGPmVaiTZiq+gB18wgMu232zhkYwWmA9d:0k1eqX6ucRX+C1xgMu232zhkYjD7

Score

4^/10

discovery persistence

Malware Config

Targets

- Target
  
  vlc-3.0.20-win64.exe
- Size
  
  42.4MB
- MD5
  
  3d63e3a94c39a18f4da866b896b41e80
- SHA1
  
  c9520268936bfa6d060c8603cdee753db214d0ce
- SHA256
  
  d8055b6643651ca5b9ad58c438692a481483657f3f31624cdfa68b92e8394a57
- SHA512
  
  9dfcdeca8fbfb655d3a4a8d0297fdc7f4c34a46c1b4238436d6e51e8621cbcd866ebfbd2a738a50dccdcf18d162b213b086a5e2a720205751ae07147e800838a
- SSDEEP
  
  786432:3ESqSGUR5EpRsHXEiGxu9XjXlQGPmVaiTZiq+gB18wgMu232zhkYwWmA9d:0k1eqX6ucRX+C1xgMu232zhkYjD7
Score

4^/10

discovery persistence
behavioral1 behavioral2
- Target
  
  plugins/video_filter/libscale_plugin.dll
- Size
  
  41KB
- MD5
  
  659fccdcf6b329f8da1d1aadbcc62587
- SHA1
  
  82d650707b54bcd2bd95fe993f64a1984f9414d4
- SHA256
  
  c9db217d7b4d56323ecfe189f7711f2f83f8059f4a0fc303ce7f571bfa75ce9a
- SHA512
  
  dead275738be4878023658c7a46dfa8cb080de2e5560b4a1401dfd49a8d72a8122b01b9fa03cb2a16bf88b9f854f7780dc09690de9d0ea1e35bf826a871f96fe
- SSDEEP
  
  384:i3fve3H+mPVM+IE1YWViUsJT7eSBwDVDToe0KDGuJNyb8E9VF3AM+oYY67oe0KDs:EsGAAbtwZDGAENAMxhKDGAENAMx5FPr
Score

1^/10
behavioral3 behavioral4
- Target
  
  plugins/video_filter/libscene_plugin.dll
- Size
  
  66KB
- MD5
  
  f0a736b3c601d3b20ae766218e8e18ca
- SHA1
  
  e745e5bdb765729126c46290da5ca831d2ad45d3
- SHA256
  
  e805db1e374d9c39cd3f9b115767be84eb2efc7b407fb1d341d7727ab13d3e4f
- SHA512
  
  1f963ead577ebc46fc071787c41c796c4f254cf82f574ec01b7d4c042d98c2d0af63b963648eefc03a7bbc36ed2213ca7c40b9e80c5cece690b16419a1350a08
- SSDEEP
  
  768:twasoLqvcsOx2JB/cU+ap677f0C3b4jXc4/tsWK4iDGAENAMxzkDGAENAMxd:m7FEPRg077pkjXFqWK4vxxxd
Score

1^/10
behavioral5 behavioral6
- Target
  
  plugins/video_filter/libsepia_plugin.dll
- Size
  
  44KB
- MD5
  
  f3e228fef704f06eb125cfe3d42e32a3
- SHA1
  
  fbceee7d5939bf7ac18e60ffc9dde0e3e131109d
- SHA256
  
  7575b91a82151295760b64e80503727070fbe39bff0af688dccb7ba8acdbb24b
- SHA512
  
  c3c16caa8032c17ac71a3dc36064677c88c491a6346dddca52ba47091bb620630b3e38e711143d3d25c957d08c6f9ced69b27d9d220f9ae3e8c2c4de475f1994
- SSDEEP
  
  768:dTqa32R5kCRjmoUWCFQwmBDGAENAMxGeQ/xDGAENAMx+:8aGePBWCOw9xRAix+
Score

1^/10
behavioral7 behavioral8
- Target
  
  plugins/video_filter/libsharpen_plugin.dll
- Size
  
  42KB
- MD5
  
  15a4f3ccaf93ae018ca9750d08fde56f
- SHA1
  
  b769deb7a12517817c39fb60d75cfba271ea42e2
- SHA256
  
  07631ab514c2d0c8b09e8e687a3e1161e0af3ef288a8ff9563ce16feff41322e
- SHA512
  
  111879e3c7e553d2aa06bee98d5d12dcebbc786e828dbc9d196437e965d4a93c4e6d63c070211d9961f59cd5c40926f9028abe0705e93406482ca9cb60a753df
- SSDEEP
  
  768:b2rpyFmBBiZqPwfDGAENAMxlMDGAENAMxCD:1gfiAwsxldx+
Score

1^/10
behavioral10 behavioral9
- Target
  
  plugins/video_filter/libtransform_plugin.dll
- Size
  
  56KB
- MD5
  
  c8f0a0c4882b87c505ccf24d69fe0c5a
- SHA1
  
  2906d8e82fdc6ac36f6d2fdf0869947d755264a9
- SHA256
  
  88174ad66732ca9c964e6e68e1b29e15d42aa601d3fe1f43d777fa34769fd5e4
- SHA512
  
  62e81b01c2409ae3ee57f4e6d7bfc1d7c8fec9cb6cb05231e9169778774b8458757f65d23779019e719e7ad648faa100c25ce4905b12e1bb165f74ac208376d6
- SSDEEP
  
  768:AjZ13RvAZ3EzUGzI9IwtLQpGdmNNow9YDGAENAMxoDGAENAMxP8:WXRvYUzBI9Iwt0cmYw9xxBxk
Score

1^/10
behavioral11 behavioral12
- Target
  
  plugins/video_filter/libvhs_plugin.dll
- Size
  
  44KB
- MD5
  
  7b35be05ee9ef76244039dc6389a6de6
- SHA1
  
  1b1fb7249944522d6307f6327948dd60df449577
- SHA256
  
  121c1a68a1db595fe7113d27c56a6e90d283896e1d9480c747f54c5680a892ef
- SHA512
  
  c79e8efd02bfa8733fb574bdb786b6438ecfaf1a853371d4e931983311f9bafa35017124b9a84ea922b2e0937929dace59376408b19881f431d49f4d38d7b389
- SSDEEP
  
  768:tHZk81Aa/ZC+afwfawFDGAENAMx9tDGAENAMxo:VZk8u+ZL0wux9Wxo
Score

1^/10
behavioral13 behavioral14
- Target
  
  plugins/video_filter/libwave_plugin.dll
- Size
  
  42KB
- MD5
  
  1f0fd5215210ac34875e3bca62bca391
- SHA1
  
  e40846171261be293d786762a00b023262609956
- SHA256
  
  b117b5f96973278f99dd0a4aa941bf7137fde83b834d951eb035129513b3fa99
- SHA512
  
  b3718b4ed119145dfb74c78a59894f145f31f71627ad07b86d51663fb41693590dc0ad70e416d19da615420976d786e560c353a71ba1dadf107be65470d3f7f3
- SSDEEP
  
  768:Rq2FrK7U7GJ5GoMDGAENAMxdxDGAENAMxS:TFeI7Gj9dxdixS
Score

1^/10
behavioral15 behavioral16
- Target
  
  plugins/video_output/libcaca_plugin.dll
- Size
  
  825KB
- MD5
  
  3b65bc017feb2f4762a96cd4e766ee59
- SHA1
  
  82a2019fcdd0a6620646495f8100a1ab49c9aef0
- SHA256
  
  723361636dc46611f04a0a47989016c18fbca989c99c9b80c0b9cfc87cb6f0fa
- SHA512
  
  c7c9d2bdbcf2de2a2c3c675a86058c83a38ec08ed5a2159f6dfdf61aff0769755cea0836fcc8df2842913795e6e89f27dcdbc2c05bdfa0222062bf2f24543520
- SSDEEP
  
  12288:jEtGZvTmShx/ofBVJCpte+AqZxoBHA4ddJ4fNF:jE4ZvTx4bJ4F
Score

1^/10
behavioral17 behavioral18
- Target
  
  plugins/video_output/libdirect3d11_plugin.dll
- Size
  
  360KB
- MD5
  
  40e4b1241f56a332cedf6607723dd106
- SHA1
  
  94219cbecf2311c8545ee80ae5a468af8b9bfb87
- SHA256
  
  7d01a6821ef07c9fb98085f03801c1415bc4783c12fbc909011782154dff049b
- SHA512
  
  be2651119374b93fe4a971de63b8bf2b287d7d7809b782c4ab2d306965c78bc44acc3c48246efe8390b13dc68c3baaff892552ae7f3e9a1b806801735318991f
- SSDEEP
  
  6144:AxP0GPfXszsMAJyyh1TFYzP/ff5N4gcW9YfmNvc9574VmUvzgBFXUAPd:AxPN39Jyyh1TFYD/ff5pNvc9B4VmUvzs
Score

1^/10
behavioral19 behavioral20
- Target
  
  plugins/video_output/libdirect3d9_plugin.dll
- Size
  
  265KB
- MD5
  
  0925ffd2603af79c1d20a7da9e831149
- SHA1
  
  46e11511763b9f25b6b063786e6f0a79dff40084
- SHA256
  
  a4d07f3f861ea7f399d32b63e7e8a5c7317c87434197eba76ba23f64435c2912
- SHA512
  
  1e31f7197bb004ece9f4052b9d4434a7b08caf31cb8671824ee166c857e9985190404e3e7c645ebc73dc3e8a8a32de3579904a6f6f063a80f42fed276b267cb6
- SSDEEP
  
  6144:dBazP+820jJyxc1TXYXP/ff5Z5f7myge3y4UAgX:dBuJyxc1TXYf/ff5ZntWX
Score

1^/10
behavioral21 behavioral22
- Target
  
  plugins/video_output/libdirectdraw_plugin.dll
- Size
  
  247KB
- MD5
  
  670a3a9193301e98742c7ebc3ecbc7fb
- SHA1
  
  f52c03728e1c83f991ed45879f53388bc78d1a20
- SHA256
  
  3b78c29965bbd77fd90c8963a55b01eac2ad6aaf1525b64ec4421243e45bd4d0
- SHA512
  
  5f8a045c4bf5284a35535eb7314ea47afad6522589b97c85df106b88cb1758cab83d7cf30e693ade9286c581466e4230dc22dd2ffedae941d11f0aa1ac6d113d
- SSDEEP
  
  6144:kjmHRFu56Jy0r1TuYobnP/ff5sf2j40hiDy5UAru:DJy0r1TuYkP/ff5G6i4u
Score

1^/10
behavioral23 behavioral24
- Target
  
  plugins/video_output/libdrawable_plugin.dll
- Size
  
  40KB
- MD5
  
  d9040f710750fbb0226ce7b66892d692
- SHA1
  
  9b98f244f364806b9fff387b026f185dc8b95cae
- SHA256
  
  b3c989cc971cc74ce24deb6a48b1b1024d465fd2b54bd35322782950b5f46d06
- SHA512
  
  ed82803ccb6022e0b0bbd3049cc68a1030ee7f16c963f3c0b7bf7645093f7c6972fbab06567ed731cd434035662177186552417d5d8ec87d554e4ffc00482592
- SSDEEP
  
  384:dZP0oIrXcu8N7j51V2/wVKvSBwuo3oe0KDGuJNyb8E9VF3AM+o8ZE45Ev3oe0KDS:QrCfdnVKEwfDGAENAMx8YfDGAENAMxqQ
Score

1^/10
behavioral25 behavioral26
- Target
  
  plugins/video_output/libflaschen_plugin.dll
- Size
  
  65KB
- MD5
  
  2d251c95bbcde8703a269e5cbea214b9
- SHA1
  
  764d7ece6ca85d0240c08760f60a6aefa3b8e6cb
- SHA256
  
  15051b7074f253f1ecb84d44073913db47fcf0f9c1cfe46541a1e778a967a561
- SHA512
  
  76b993e646434d6440f3870743f92f71a5c39742573be6faa346de892254e8ac05dc4fa68211f7a785777f3e57fb5ae0338906e5d7b4693bb8bb3faac04fb727
- SSDEEP
  
  768:kNnKECUHgAR2D6/KuY/ND7JV6h5sqvN/fuTRkY4GIDGAENAMxnHb9DGAENAMxW8X:GnKE1AA0Fx7JW1v5uTx4MxH6xXb
Score

1^/10
behavioral27 behavioral28
- Target
  
  plugins/video_output/libgl_plugin.dll
- Size
  
  243KB
- MD5
  
  7e2f2e3ded6c19e41a5b16f6c97ccd58
- SHA1
  
  18ff4f137268277f4a5434248d7ddc1b40f34b94
- SHA256
  
  8f3d444ead072b1991a9c1b570be8528b4b660d039e3084ecf6f35656389e344
- SHA512
  
  8bbb4b0e11857242fe7362307b74115ea851e93c96aac466b91e6daa241216079cfe5cf51eb355a523ff38e2e2bdf2c7bc70f44681e4d9ffae616c6943570103
- SSDEEP
  
  6144:YG2h+i7BtAyx+yyutJtrf9vG2HP9q3K5pi:YG2Ii7BtD+XutJnvG2v9q3K5w
Score

1^/10
behavioral29 behavioral30
- Target
  
  plugins/video_output/libglinterop_dxva2_plugin.dll
- Size
  
  126KB
- MD5
  
  e9dbc0ac3de45ed536d8dc39d1a91b37
- SHA1
  
  3c7fa20f4244535059c3284d75babc33c8abf275
- SHA256
  
  413ba2727b29c6da992fcb9b449d50fb188dd86eb0cedef060461d0583ffac44
- SHA512
  
  e044905bf58d0ab350a5faa6586b8fb3d40c275ca600e971598c5b9e12299cee8c94d4bbe103fc7d14d91fbb862f6f6c9c7c892aab8a1cf384d7436bda034590
- SSDEEP
  
  1536:tcnKcPIJ/dGvmzY2OSxJkRAHUmWpJwRpHpPmETzw635jJTPewXr222222wKY7hPM:iKcCJy051T/YdP/ff5K82X3COf4mBz
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32