General

  • Target

    vlc-3.0.20-win64.exe

  • Size

    42.4MB

  • Sample

    240222-1mqe5sfh57

  • MD5

    3d63e3a94c39a18f4da866b896b41e80

  • SHA1

    c9520268936bfa6d060c8603cdee753db214d0ce

  • SHA256

    d8055b6643651ca5b9ad58c438692a481483657f3f31624cdfa68b92e8394a57

  • SHA512

    9dfcdeca8fbfb655d3a4a8d0297fdc7f4c34a46c1b4238436d6e51e8621cbcd866ebfbd2a738a50dccdcf18d162b213b086a5e2a720205751ae07147e800838a

  • SSDEEP

    786432:3ESqSGUR5EpRsHXEiGxu9XjXlQGPmVaiTZiq+gB18wgMu232zhkYwWmA9d:0k1eqX6ucRX+C1xgMu232zhkYjD7

Malware Config

Targets

    • Target

      vlc-3.0.20-win64.exe

    • Size

      42.4MB

    • MD5

      3d63e3a94c39a18f4da866b896b41e80

    • SHA1

      c9520268936bfa6d060c8603cdee753db214d0ce

    • SHA256

      d8055b6643651ca5b9ad58c438692a481483657f3f31624cdfa68b92e8394a57

    • SHA512

      9dfcdeca8fbfb655d3a4a8d0297fdc7f4c34a46c1b4238436d6e51e8621cbcd866ebfbd2a738a50dccdcf18d162b213b086a5e2a720205751ae07147e800838a

    • SSDEEP

      786432:3ESqSGUR5EpRsHXEiGxu9XjXlQGPmVaiTZiq+gB18wgMu232zhkYwWmA9d:0k1eqX6ucRX+C1xgMu232zhkYjD7

    • Target

      lua/http/custom.lua

    • Size

      474B

    • MD5

      3327d64fdf86ddcff03c16d22171d834

    • SHA1

      a2607d17d684d4b63b967d128172f861d1254b97

    • SHA256

      a6623694797e67dc0f22e4f64570825e489d2730676e02db9d6911a04d2cb1ca

    • SHA512

      72d32c7b15937f425f7f16d20295d9b4ee9faa76fb96b633b3ee54c3df94566f4eef38fd43e1890cf5e619dd2eb9bf8628c32e50838cdac93ef50b138c2c5fc0

    Score
    1/10
    • Target

      lua/http/dialogs/batch_window.html

    • Size

      889B

    • MD5

      f32ae14ca9d7673ebb23fc827d78076f

    • SHA1

      ff5bff0318296a910740411201cb8a4ca206b608

    • SHA256

      5189cdb57f5b2e8c3add7e6c4487f5cf8a018508c612f35c8e1305512f2176e8

    • SHA512

      f5e1994188c34753cdc0dc5143dcdf66a86e56b3a040c1f4b67f01fe5d443fa52f05abfdb8717e051284e5697d4a0ac5f46d2ae36b2c518c0d5a96358f5b0f67

    Score
    1/10
    • Target

      lua/http/dialogs/browse_window.html

    • Size

      1KB

    • MD5

      78f476640b27adfdcfe6e26edf4cc7e6

    • SHA1

      414d54995cc46fcf5a12b826df9b8f6f2be21100

    • SHA256

      d93c774a7aeb4594f56b37e81838ba03b6855c2bbd91eb8cb803dbd413c5e571

    • SHA512

      daeddd3974908fa314d072b37accaf3dc0f3ab694fcd8acde02a77176d54710fc9115c2ab915b3b063fe3ea89308cee9e3fd67da1641735027af74fc6bb8080f

    Score
    1/10
    • Target

      lua/http/dialogs/create_stream.html

    • Size

      14KB

    • MD5

      c38a93ae302612a55ccf7f11bdb79c37

    • SHA1

      f6064e146909323276c6c43410f314666e35b5a4

    • SHA256

      fdfc3417223b88d2e8f0421ced4711760ab11a3c18a50dc05b805a0f4f1a5134

    • SHA512

      9c38a52c10455ffa179f0bad0d09d50defddad25d850248a4a15ebf5aefbe0165e12ee7eace516ced181362062b7651c9f246c4a1c77a6da867bc8ad978d56be

    • SSDEEP

      192:jvlSM2AtdS0E2jSC+J3kuC6qSSSKyf+yO3zy6CGuGek+3LbnAilKyc7aSCWM2kco:jvlIATE2jJAhuDqx3J0vHEF

    Score
    1/10
    • Target

      lua/http/dialogs/equalizer_window.html

    • Size

      1KB

    • MD5

      06ac4c0cd41f6d82fbf3ac0053567295

    • SHA1

      5ddbf4e9f947a42819e00c3b5801ede0839ecf4b

    • SHA256

      62cac570011b9b07e0f421612571a1ce663e49dd3b90a16cf31d8855f1adddac

    • SHA512

      32ddf815ff7de04562ed71a0f2484770bc03a4730662a35cd93c42f0771742d0ddce1292cc96bea06251c97380291a54e9b89563cf078b36b684b58dcbf7ea72

    Score
    1/10
    • Target

      lua/http/dialogs/error_window.html

    • Size

      501B

    • MD5

      ad9769b13838d62653857ff47718c6c0

    • SHA1

      a4683573d5b43aca9e256d4a45dc5ac46db927ed

    • SHA256

      75d1a1ab807cd97801bc37ed547b26c7b357497e82d01221ac064497c9480304

    • SHA512

      58a7d9ce56936da79a8f46f0f5c1e465d63ee1b8f68701627ffa00e1c43267899a64a3dfe601bf660bfee66b5ea365a27ba8d68f7d598ab6e3a917b52d6e9fc0

    Score
    1/10
    • Target

      lua/http/dialogs/mosaic_window.html

    • Size

      4KB

    • MD5

      fbd60881ff01355e0acf55ae6ec77580

    • SHA1

      2b9b99f754bd7b85789a3ad6d3e4965c59093627

    • SHA256

      e474ca66e17ecad86fdecd0ff4db1eff7eee70083c2cb30498f81bce71d03e18

    • SHA512

      1ddfeed4b0530b9c8606b6d0e53d656ed19213afac2d16d13d8bd9bf159e6883fc2ea943d5c5044579a51b11c98b6854ceca8c6e44796c5c511ca83250f60cf0

    • SSDEEP

      96:9ODRbniQxE7XrCubCMJrhfrHlUdBrDjdjosn:9ckYaXruMLblSBrD5josn

    Score
    1/10
    • Target

      lua/http/dialogs/offset_window.html

    • Size

      1KB

    • MD5

      be2110a67187e5529b0b5c264d64ff2c

    • SHA1

      4b5d5f7c1ac90ad298c47323aa3e07548b9096a5

    • SHA256

      f0c8450d88f4a64396304652811c3b9d215b9cceb24c36a0753042e68a688ab5

    • SHA512

      7c305a2c9375f24e769a292d960f8e38ea4cf934aa3de2f80620badc6b20d68ab07adfe77840105d8721299bc3be794a27b1fc33e54c10f0b3fe52ab5de13ba9

    Score
    1/10
    • Target

      lua/http/dialogs/stream_config_window.html

    • Size

      1KB

    • MD5

      2ff24c036592efe309359ec7ee613d86

    • SHA1

      44cdd2f1d54c36772d6daad1657802c7ea7d6a58

    • SHA256

      1ef2a9fc7005712cd18effe0c6d644f6e1badce728c4bbbcdd675cd67d4fb9f7

    • SHA512

      bad05f89a5d52b3f7b92f4340f13398a8cca0512b06bff2cdac8e3db6bc1ad824c9d3440d0a9397d78c8321d6807591e5bfa6f883ec04854f8f41fd8cdd72d83

    Score
    1/10
    • Target

      lua/http/dialogs/stream_window.html

    • Size

      4KB

    • MD5

      042337f0f4a68ce50bff9bb174f1f148

    • SHA1

      dedb805ec6b0ddab566ad49ac44d75cd2fce676b

    • SHA256

      b103c0d7778d1694fdcab3aa28de6ee80aa9a10288355d2f47ee9ecf8a2462e6

    • SHA512

      f906f16eebf05378668ef3b472631af90178f469f3453727c95552091a0ef95d3c72c41bea6887bbbcd07b5781fe8d4244fc78e941b7a95abe0eb2287e12f14c

    • SSDEEP

      96:I3cQXljXrc1tXrc7XrVkXrSwzZb0hLEOXrHTBXrKjXrr1TwXrXi9XKK0Z:WcY1XraXrSXrqXrJghL1XrHtXr8XrrNs

    Score
    1/10
    • Target

      lua/http/index.html

    • Size

      15KB

    • MD5

      a54d7ea1d54ab1e8857c1c36a867531b

    • SHA1

      f36a3ea3a06a77f96d1e26b9608bdf63361e89fc

    • SHA256

      3ba76bc7289762cfb5aa4dc88d31ad37742740dfb31ea7efbb80fe4e7f870498

    • SHA512

      7e1eaa0bb2d58639b692c1991e25e6cc3e069f15de9324073bcdb5617613775b533dabf526e2b45a55a6e41ee2ca4f0e92202922e70d7bba28a5923510e3e4f2

    • SSDEEP

      384:U2HKVFP1ccA0BANiAnWStiKruUnfpNdypPmF6s92BEvIu/Jh:U2HKVFP1RAGST069/3

    Score
    1/10
    • Target

      lua/http/js/common.js

    • Size

      5KB

    • MD5

      b6a6845d1f74559c55a83040c9426939

    • SHA1

      ca0be71f319959342cb161aca0e280950fa17f63

    • SHA256

      47cad1dbde4ad4d5eee0a7306c7e20df3f2a080a986cac5693c50b8ff1434b27

    • SHA512

      fbab1598ed06590f5dfdcfaa1f76c14da5d3d0e517a21f43d186509e9107515310f07dd41f1fe6e7979c7b841cba55962ef8da765e5b56b941326f9be5a1a0eb

    • SSDEEP

      96:dsCejmDgHdEf7TbFILjW2fd+dla+KYrtJxto5lGDWtVARrV74ErE5EfP01Z2mp:lBCdEf7TbFIv1fd+dllKYrtlo5lurVcz

    Score
    1/10
    • Target

      lua/http/js/controllers.js

    • Size

      23KB

    • MD5

      d84707c521b0af1bf5ec19bc26eab8ef

    • SHA1

      42957025f21e197a02535d58e527f1d9b60dc14e

    • SHA256

      696f9e83ec6105a036fe2e0f2c25084a4730ed5673d9d8220ee9ffb74779c609

    • SHA512

      123ffe73413658fcc6a37878adbae24e945be19e6936d2c71e2a35486c1ff4a34c63d148db0fa99a2fa91354e502a1e1159acb6173b14fb19d74421c480a1be4

    • SSDEEP

      192:Z5jsO7z3GzqPec9x/h8Duxud79RtEZRtykbcJJznPeJdHsEyET+v55:3Glc9x/h8Duwd7H1JJaJdHsEpT+v55

    Score
    1/10
    • Target

      lua/http/js/jquery.jstree.js

    • Size

      180KB

    • MD5

      a7e9487245d3e2de0c0fb5a85dcf79a0

    • SHA1

      e98d67d52da28beb790d5218567317597bd3e4c1

    • SHA256

      5169fb1e68e1e30f244452d6ca8587fc195c280966d52d1cef46630f53e9f2d2

    • SHA512

      ef5f582b45a98380c47a6bb88eebe22cccff5d44a7fb14dd98300610d31d0bf91b243be97919105a94b3baa255c0ad11027950ce70a3ae271c197bd0c08249fc

    • SSDEEP

      3072:Fvjw57nI+7XpvJSwaLG6SDvG76od804VUeEKSc2KWLXd8ZF5Dypcyvo7J4NPwWA3:FvU51SKLVU9KS68XODQRv95w9D4R398

    Score
    1/10
    • Target

      lua/http/js/ui.js

    • Size

      3KB

    • MD5

      662f2ea91dd90c577ddbeb14074c4a0a

    • SHA1

      3783282d9ac213fc767dc43155d158af0a5f9085

    • SHA256

      b1a990a068123eb73baf4e7fd5f959dd96fc8fd2093f564da456745ea534f46c

    • SHA512

      31ec9ca76fe5b6ab01b77cda5c1da7208bf54d81359b757b91c83969b3c0f453273a357ac83cbe6a16cdaa2466d17e84e906218845fcb092d760399f6a391570

    Score
    1/10
    • Target

      lua/http/mobile.html

    • Size

      5KB

    • MD5

      dd29dd60ae15114fe1c027982c15fa26

    • SHA1

      25989551a385c1f52fbf4221e2287b977c6cbe0e

    • SHA256

      0a51d360b893589899e37689c40f08a7d3132555f29942962a3096ef02f40589

    • SHA512

      8f899395a07f9017b1926eebb3f3dd839c2160cf6a1297805f26fc974d4271a6fade96cfadce851b13058698e2e939be70282cfe7ed3e93c94f12de92d51f763

    • SSDEEP

      48:zS6Zi+Ey9+k0y4Hfyt1YPZ44URKNXIpQq2widzUiOzOHKjVqo4rrhkKfJtdBtlyC:6kEfythP8qmrtfPFLhXv/j/wL/R8

    Score
    1/10
    • Target

      lua/http/mobile_browse.html

    • Size

      2KB

    • MD5

      38dc10e6535b7217ef97a98ee584d687

    • SHA1

      f19fd72967cac5c3172394b6a3f62157e1ebb487

    • SHA256

      400ab7330b6a36fec3ed1254d10b7297f003141e8b33f3d0140802b8cc729771

    • SHA512

      946592a1db6ea30914204d17c58e024e74490c4c56c796385dd42adcc3a42c1bc70f37a3385395ab91c5508d09640ea8043e10812505f4107aa4dd1fbca88429

    Score
    1/10
    • Target

      lua/http/mobile_equalizer.html

    • Size

      2KB

    • MD5

      1ee208e5d7e0f89b9d00c64eca63549a

    • SHA1

      13b31e01de4aee01831cd9f42a0f11842dd8d0eb

    • SHA256

      adb1eafa9ab357b5a4f930f4ad8dd65e67140eb2e12240dbcf7c7695b02c7f50

    • SHA512

      d8f0eebf95a230ea90e7e6b69f2629cb6ebb57e0504121efa15f0ddf30827a59a3a3ee195bf3401af25f2381965a6c1f018c7534664332498b3f2cb1c6327671

    Score
    1/10
    • Target

      lua/http/mobile_view.html

    • Size

      2KB

    • MD5

      0bb26bd2526d43c293cf4afa1f94eb2b

    • SHA1

      85ea44e1d6aa9db1e8f818233312072338b39a66

    • SHA256

      062037d130761ad2cb4c8859f4adff50eabbba71d6702676157d694a5fcb0961

    • SHA512

      1a05bc62e29be01207668fb8da91fbbd25798a0427ea666d5c872c0f469af7324011ca15d2bd76422c374cf86c262dd2b6fcdb13e5d166f3fb395969a0e35444

    Score
    1/10
    • Target

      lua/http/requests/README.txt

    • Size

      5KB

    • MD5

      c4d360400d35590e1398719c8bde5ca8

    • SHA1

      a0de4fadbbb5721d284f570f9bf1d851810ae9ce

    • SHA256

      2ad28742d23d327c4fdf121214b4b3be3ac5dd18c395522f909575e29a2c914f

    • SHA512

      55d3e0b657161eedb639a0aaa2ca6be358c90226307c3ce404c662d2a89879669bfd2359fa051b44c62724d95d47faddbf38bc9d57d2332b8dafd35b40465a77

    • SSDEEP

      96:PMpnnCLuR9ZNdBsLZtyjogPAbF5ryb47zRl1QEn3c3eOR1hy/5BT/3ZGIab:PMniuR9DW3yj5AbF5rybez3dYI/5d/3S

    Score
    1/10
    • Target

      lua/http/view.html

    • Size

      3KB

    • MD5

      567852a80447d73c3abdf0e0180e97e7

    • SHA1

      a743d724fce300c2f857d417f81c89a29c135641

    • SHA256

      ea2910aa8e3359ceaa47afef1a267c0cd629ff30feca9113d4c7ca827d708e52

    • SHA512

      9d74c354790ab912dcd2df5aa8296619d6c899aa4195e473177790080643768a14b4ce0e559f0ff0101e8004e293de21b59f47b6c70b417fd96a80d97b6f7b75

    Score
    1/10
    • Target

      lua/http/vlm.html

    • Size

      1KB

    • MD5

      24df9442565fa3dd24c48de5dcebb856

    • SHA1

      102cf8ba9ed78e407906990181a934e8d7cb1864

    • SHA256

      4800ddaa370be2bc8660b8559c10d8650034d65e70adcf89dad4779aa4aad93f

    • SHA512

      f69de9777e812aada0c7ab5ff96d8a1e0b6081f86aed1c0ab8952f89cc5aa439239351179b6c7039b57dabb1ed56d047d6c6f00abad32a4c1b22f9a20b7cfc1f

    Score
    1/10
    • Target

      lua/http/vlm_export.html

    • Size

      308B

    • MD5

      40671579947f74d8826d641c94814b23

    • SHA1

      127e2b856c1e4cd0eb3a541e627962cd570295c5

    • SHA256

      09bd722b8c4cd442d56c7c730c2a363cf9bdfcb6a8971f00be002c90c40215b9

    • SHA512

      8cec6d4b727d9c1cd86841f4407cc2777ade072bb6bc1f7229aed0f730068225c58db6a063de1b15418c2c9341369480043398f2f60bb9038423923199e5f760

    Score
    1/10
    • Target

      lua/playlist/youtube.luac

    • Size

      32KB

    • MD5

      5de2a1054a3abaf6e900084a427bac6a

    • SHA1

      d625024e4592020bb516bf89d13faeddceb0af6f

    • SHA256

      b3b55554894b0367d9d1e6ac1dd1a0b18e1b043810dae0c0fd79518dec8b9587

    • SHA512

      73a8c30dd2bf7ebd491b657927430390a9b3bdec139867eaeb731b8e433e0597f05f8a59c321b06ad8e1cbb873e87cd6e91eeea6fd121ee06b319b9498141162

    • SSDEEP

      384:Reg11qGNDUvLAaZo3sAtEuMppppppH2v3ZwKnFe3knEI5Nmn6AAAAArhfAAAAM:Reg1p2TAaZKswEuWYZFno3kEI5NmFhE

    Score
    1/10
    • Target

      npvlc.dll

    • Size

      1.1MB

    • MD5

      8f9e896eb3e0a7265ae5cc52685a294d

    • SHA1

      705bfd53514fb953991331e664973975b637b1d0

    • SHA256

      0d3906318aabeda94d89596cf4717ecece731cd48dca1eef15cbac60b5c38956

    • SHA512

      824d7073b33eb79b1067931a5f0eeeae6494e323c3f7413099bef4c393645acb76b57416903e493aeff7524e0e325b2b9fb63395d4dc3decd74d6f5548d1b06c

    • SSDEEP

      24576:MfcTu+tsEMCucEdlmB+9HHsnWTxAfMfYWWE8THi1K1esXlPjhP+++S+++y+++0+a:MfcTuUsEMCucEdlmB+9HHsnWTGfMgWWp

    Score
    1/10
    • Target

      plugins/access/libaccess_concat_plugin.dll

    • Size

      42KB

    • MD5

      399c70d81ee56fee27778f5df76bcffb

    • SHA1

      61a55e01280e7de7d0d01490f5cee31eaa607db0

    • SHA256

      8b6a92c5e127c876f273b52b05c8325d45832e1ba0be6e3ed160135287908a1c

    • SHA512

      50d4c01fdff9d7ec138e409cef9293bec1257f3f93a45835d254e888f1daf5438f4ca37e2c18c46668b35dbd04d9bfa960a69bfe9a843a0085114c999e30c41f

    • SSDEEP

      768:KlJXHefWDkeeS9w+DGAENAMxwr1pDGAENAMx4E:rfsJ7wDxC1ax7

    Score
    1/10
    • Target

      plugins/access/libaccess_imem_plugin.dll

    • Size

      71KB

    • MD5

      0e15e4a2a2c4ca6596fadba8fd698886

    • SHA1

      b4400814c9e6b8b4d81444de1d6582ee29543b84

    • SHA256

      05d894562b569132df7ce2f285bcf3bc008b0d112f1f5acceef210e4ea3096b4

    • SHA512

      4def562b67fb37a16c1f7ef725ebf8ab5b0cc91f3a9fd78e061b8031e67baf3d34b51e6b82c9e717a1699b8642c94a3994021cd06e2430605eed17674cbca369

    • SSDEEP

      768:m4X8hAFd798I1NFjpyY2yy/FfjoLOY7saCfWs6H8lg4RDGAENAMx3SDGAENAMxSH:Ymv7L1Ne/M/7sNWs24Cxvxm3

    Score
    1/10
    • Target

      plugins/access/libaccess_mms_plugin.dll

    • Size

      105KB

    • MD5

      e71c982fe2454d646e7b648e32164b9b

    • SHA1

      6d0a9bd50732f029bd54aa226c873d33b9e99864

    • SHA256

      bf5c5862e72ee510b31f4b2fa12d3515c21f3b5da8f0b0d6378bbd051673ff14

    • SHA512

      8061381c96173d95ef83067ff61283aca982d22ed87838e349caa8481b63a20c3cfc4b7ce7ed008a8d95faf1dea693f28daa7633bc05b02b6f05fc73eb3322c9

    • SSDEEP

      1536:P3rtFHuRkAzdTE2XCJD1SwdhBs7tyh5FoDWsux6xb:qzdE2XA5Bd2tyLyx

    Score
    1/10
    • Target

      plugins/access/libaccess_realrtsp_plugin.dll

    • Size

      146KB

    • MD5

      ede792db2e18a21b797ef5fed54b8c4b

    • SHA1

      4000bb059d1da7ad794edba3a4214913c12ce9bf

    • SHA256

      482eb8d973a09ced4ad2a2373026d7757a708057977a5a131f875cb5962e1f9b

    • SHA512

      503d879df0c1bffb530482f4c0f84ce30947b513ae49a24d01611839205d4177450fe4d5a73d0cd37cd2c4a09f10a2fab983827d0ebe626b1d45c3d83d0ddf89

    • SSDEEP

      3072:dWXGEHuBRHEIDyGGyBhm5f3N98ic2+scTtvf3jM:doGCuBRHPDxTu5f37XcGcxfg

    Score
    1/10
    • Target

      vlc-cache-gen.exe

    • Size

      140KB

    • MD5

      c314f48471d34bc89863326324d00b8b

    • SHA1

      d245a30303952f5573db6aa1c5e8f72b5a945bd3

    • SHA256

      80b33a61cd53f82dd7f784310842fb1a8f28909a1f10e7a1abbfcda3794eb759

    • SHA512

      82e994ab0685d075cd13f72d981fe3d2759efd58daccf032abf311f51a52be0168032118665720aabfe8455fe748d4f931b3a8e8c20a668da12afd7f596b38ad

    • SSDEEP

      3072:VENWNJnE2k9Hc3/nl6LAHkzI1UfgEA6IIyRwh:6KRzk96kADE

    Score
    1/10
    • Target

      vlc.exe

    • Size

      966KB

    • MD5

      3740507a1dc4ff4cb5c6e52652c10c20

    • SHA1

      b2c8a0a736fe81c101f4ab4cd6be8099c3f902b3

    • SHA256

      6a72cc8649a63b017844c4c1f3885a250d1a982ffe5f1e58b6f1432fe9198e62

    • SHA512

      d5299859a6121c6ae5813be61648ca1f005970ebe34a8217d05b570ffbd4651f64ad7b3a7bf5129e708e07b36e097333f754b213e73d5fe9246347afd8fa3c22

    • SSDEEP

      24576:0e3xAibB85Z1HrWtB8z1L1O6J75zzz3zzzozzz3zzzzm:LxAibBEZ1LWtBzkOm

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks