493e63fee6fd8194364582a65762fdede3a7445a52d01b96d940576c8233c76c

Sharing

Copy URL

Twitter E-mail

General

Target

os2go_4.0_portable.exe
Size

37.6MB
Sample

240223-njhvnsfg45
MD5

bc8ae4e80987bb2ca6206a47378ee612
SHA1

baa38f1a9623c1f9923550ab6da73b21213c9246
SHA256

493e63fee6fd8194364582a65762fdede3a7445a52d01b96d940576c8233c76c
SHA512

1bb969b3493c671c3d4c9173ac72193a54453825e4856d366df9ce6d1a069093a8b4dabb1004b4561ccaa1894cd1e7a5d1313fcc381b2460c981816ef86a1c87
SSDEEP

786432:5Y/aJxSd95G4OWHrpNl+8nRiRE26K/gznUDLy2GTh2RomsO0u:qaJ4FuWLpN1Rl26pzSLy2G92DsOv

Score

8^/10

upx

Malware Config

Targets

- Target
  
  os2go_4.0_portable.exe
- Size
  
  37.6MB
- MD5
  
  bc8ae4e80987bb2ca6206a47378ee612
- SHA1
  
  baa38f1a9623c1f9923550ab6da73b21213c9246
- SHA256
  
  493e63fee6fd8194364582a65762fdede3a7445a52d01b96d940576c8233c76c
- SHA512
  
  1bb969b3493c671c3d4c9173ac72193a54453825e4856d366df9ce6d1a069093a8b4dabb1004b4561ccaa1894cd1e7a5d1313fcc381b2460c981816ef86a1c87
- SSDEEP
  
  786432:5Y/aJxSd95G4OWHrpNl+8nRiRE26K/gznUDLy2GTh2RomsO0u:qaJ4FuWLpN1Rl26pzSLy2G92DsOv
Score

8^/10
- Drops file in Drivers directory
- Drops file in System32 directory
behavioral1
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/DriversPack/lsi/w2k-x86/symmpi.sys
- Size
  
  106KB
- MD5
  
  9bbae169484c6b6cc8bbc8f803652328
- SHA1
  
  d31203eec45ac833a3472d3aa3e9e2a48eb582f2
- SHA256
  
  95ac2a2106f71fccb530a327ae1cfba794dd526c7298f759cd86db32047a8f58
- SHA512
  
  58c4ebad69066c30a6c8f4076b509a959bdc0a25b94587a20851a7011ffed17ff2280372824d1be8910ca43d1fabc7eb99e47ca69908657c0aa51927819bc3de
- SSDEEP
  
  3072:d0npiSozIC+z8QRWbETIoWc6WsmIy1zn3xszok8m0PldT4O6B4PGSjJx:mnpQzd+z8UQRoWc6WsmIy1zn3xszok8W
Score

1^/10
behavioral2
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/DriversPack/sas/2k3-x64/lsi_sas.sys
- Size
  
  123KB
- MD5
  
  81ef8693451002ccc7aa4a152c00412d
- SHA1
  
  07fb6ebdfdb6e4a919fc25c35bd2b105ec906968
- SHA256
  
  99b673b74f90a981d35e2580037d6a35b269e5594c32ac623e7ef24b7a387429
- SHA512
  
  f4faa185273b19d0a2e7e37929117477735b5753033677b75b05fd97205af02939dfccc995fac930ffc576ac9ddf91032367a9c31349edb651a1cabd201236f2
- SSDEEP
  
  3072:lyK5a40mzXM8TcLXqPq0ENWviun5AbMMc:G40mb9qXTGis
Score

1^/10
behavioral3
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/DriversPack/sas/2k3-x64/wdcfg.exe
- Size
  
  126KB
- MD5
  
  b8273d836c8bc8af34a70cb64c203e23
- SHA1
  
  56a5d250e9e97a2b6fdc298a0bff3fda54e08e71
- SHA256
  
  8b9dd5e17aabbb5634c1d1c9aa38f0e892083cdb9bfc3ad518c8bd228296f48e
- SHA512
  
  c157ecc676153dfd679ed0400462b171073bb4090581de230fb50d75d72af920872c80eafa0ec5584106ce1554b04f5dc11727380ed47036289b36215fbd6e2a
- SSDEEP
  
  3072:RUB2wKnodTKRwvio0RHvsWUarvY7sThd3Cy3Zh5jox5HTj:RsTKR+4UaLYahhJZh5jo
Score

1^/10
behavioral4
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/DriversPack/sas/2k3-x86/lsi_sas.sys
- Size
  
  100KB
- MD5
  
  9437cffbb2b1e1f172706919005f4480
- SHA1
  
  11246201e43c9a43993fb540622378b013d9c8d9
- SHA256
  
  ada2836ea1143430888ec4be37b2862ea7b2bce9323e1d887006584225b6e8c2
- SHA512
  
  0150e7e21be8deb3a6ec9d86807e8625874a8371053a68ade8c2e7e8f8dd9eece69bd32bec3a3d9c3172c8020d7e66d960b23797b177247da1af29ba1d44fadb
- SSDEEP
  
  3072:sZV9qxONGXFhvv1neACpk6mp+RXLCRoCMnugnb/c:sZxNQvv1neACpk6mp+RXLCRoCMnt
Score

1^/10
behavioral5
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/DriversPack/sas/2k3-x86/wdcfg.exe
- Size
  
  116KB
- MD5
  
  1674232a62caf3d9680a6151155f3328
- SHA1
  
  361369be8cfc4635534d1f278dc56f8ced489993
- SHA256
  
  7a1ccb84ae1d91bdd9839bd0f81e8faf7cf3d9625f0e53cb080d44f3ff6e48d4
- SHA512
  
  1541143a9d21bbb91b83b27604f444dec4e9d1ed1ff2bd79e90e293e61842e112fcdcc64b3490b036a52b3d8150c57bd899dc8d909d192ff5e268c210a988575
- SSDEEP
  
  3072:NGfl7V+ZmPpa+A8m2+L6KI3ahwHyiXcsOO5O70:gN4UPpF8apcH
Score

3^/10
behavioral6
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/DriversPack/sas/2k8-x64/lsi_sas.sys
- Size
  
  102KB
- MD5
  
  799ffb2fc4729fa46d2157c0065b3525
- SHA1
  
  b7ba6ce6881a3d1c054e73eabd8833fce12cf002
- SHA256
  
  ab462a34d061c113da12641c45159a58d0aea1c440233d061a20df99586cfa93
- SHA512
  
  153624923e54dc3ae838edeb5eb782c1d82f438b8947768a12fba1fa8b7f036526f9f33ba2ed0b79a4af535b3dbd37d12ec652bf4a78c6e6fc1b64981582587d
- SSDEEP
  
  3072:idiCaw1AXVtt82/mYg7HMi94iS2nj3NOE7VfzafOafaQn:0awaVtt86hg7sMo2nROGwzSQn
Score

1^/10
behavioral7
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/DriversPack/sas/2k8-x86/lsi_sas.sys
- Size
  
  87KB
- MD5
  
  ee01ebae8c9bf0fa072e0ff68718920a
- SHA1
  
  2d97290409ba45e84a2aa093075e5d4274b59620
- SHA256
  
  655924440e611278998226299645bc72b3627a8a057286dc8d65a162cfbbe484
- SHA512
  
  09a7b854341cc913e18cdfb1634ea6bbdd5e3d6be87eeef28d6eae9d96ca4c23ed2d8f3c7c250b672ffd51d35307d8c40105be5106b6cb025f3491071b7ff739
- SSDEEP
  
  1536:piTDJv8bjd/fG9qSguaeQuJA3WrnAP6DWsxMtssoWY2pIvWyvfGxy/Vip:piT2VfiPguaed+W7APqWsxMK22vbvfYV
Score

1^/10
behavioral8
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/DriversPack/sas/xp-x86/symmpi.sys
- Size
  
  106KB
- MD5
  
  ed50af9c0174e8dafccd9929cfa051a6
- SHA1
  
  9766981cdc887834850714836759e1da0ddb9e63
- SHA256
  
  47c03ab2065e698cb151adacd47b4b64a988384f108a718de1d6701b24d437f0
- SHA512
  
  8eea29fa05cf03828262a7e2658afa385db054a14cf75ad44cf8241cc32e91507c43e5b9c8e5aa0543c77e626da5ab9fd0e66e4ec692426805a5e4a022a9f770
- SSDEEP
  
  3072:RUDg1DNU56C+hX+V7Md/YFvyScWqMaBx+DqNUQtzwWzFEi4IPGSz3NH:RYg1Dm4C+hOtpFvyScWqMaBx+DqNUQtN
Score

1^/10
behavioral9
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/FileExtend_default.xml
- Size
  
  28KB
- MD5
  
  37fd55f8efab63059a754e4edf689e1c
- SHA1
  
  7a580ef42cec64aadc4f1501208b9f985178366c
- SHA256
  
  82dd3ae435a5e23adff312d2f77f1657f5015ef9e91deaab24c8b36fef2ee3d5
- SHA512
  
  7b03008ffd048bacc2e50caab5e4c37ceeb5127ee6d97422d9a9d529110f8f7ddde8ba2a016e369312badde165f64b415b705c8686c35d4d13225a58670e34f4
- SSDEEP
  
  96:cX4k3m7t1tNxJ7QvU0kTLkftpn+/4+kycL2Bi0Hc/aZySlqlib:cX4gmp1XHjQrA4+kykpb/aZySSib
Score

1^/10
behavioral10
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/LastApp.manifest
- Size
  
  640B
- MD5
  
  0f3b71d0fa474d73aff7de9cdf842732
- SHA1
  
  7990f81c60b8ab722c5ad7367f69c85106be5ed5
- SHA256
  
  5055de34114f55b1bfafbbbda68ec60c4291109780b9c197557b7c222c9a4e09
- SHA512
  
  afead4310e0d994d212c9e2ba1c783382fd8a434c3422d5d58eed998f9dc71f3583ca98480cec776b0372ddc9f04fd48a2008ee14ce7aed73d65d05663cf5868
Score

1^/10
behavioral11
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/Microsoft.VC90.ATL.manifest
- Size
  
  853B
- MD5
  
  69e6e75b8251a7749435e331e29912a4
- SHA1
  
  6467c2f533d43ac6e9154cd4e4a0114ca820aec8
- SHA256
  
  9a900c1d0801730b675a8c67048f80fde41af58d52c72d8545d4a405cd10f4d6
- SHA512
  
  847d7962af49acc5c1b8f4e01b917df029971112163d8a5a42d4bf798b13fabb04e2bba37257612c52588ee280b29abb2dcecf02d4b8db268bc0cf3ccc4b7482
Score

3^/10
behavioral12
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/Microsoft.VC90.CRT.manifest
- Size
  
  1KB
- MD5
  
  4f9ed5efa4f7b75bcfe0f36c36ee5cb6
- SHA1
  
  29f568508a65f5177c6044544248893a876a666f
- SHA256
  
  ff718390133b400ee679177b2902bbb918db148bbb4ababa03d0a1df325b3303
- SHA512
  
  a94aa869b8420d3965fad7b05e1e894e8ca00465cd8c2be2ac135f44d0689afa7257bb468c69b7bb33bbb036d6b66fbc693c964bf17a85a209aeee9f8dffc3cd
Score

3^/10
behavioral13
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/Microsoft.VC90.MFC.manifest
- Size
  
  2KB
- MD5
  
  17683bda76942b55361049b226324be9
- SHA1
  
  594ce635a06029b7206cb8ac7d68883b122a07f9
- SHA256
  
  27c573d1de24a2cef2b2cac0850bf079a02d478d54cf00617a1d2f08a17109f5
- SHA512
  
  5c0f1d2a0c054a3e26d579963a044dc1b32cbe307c54acf167eec194d3de2525823570564844971b7764a7ef93c60956e4ce17d76a720ef3c6a114a17137180b
Score

3^/10
behavioral14
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/Microsoft.VC90.MFCLOC.manifest
- Size
  
  5KB
- MD5
  
  6439b46d6d9cb337ddf2d8e643455951
- SHA1
  
  ad2d3c5e60da82f66cf0561c22741ebbe3dec39e
- SHA256
  
  81e13dc44e21fca2b095e82c34294c199d37428f32de36d5ffa6cd3b54f88d7b
- SHA512
  
  2dfd9080bc705d98c017824fc0e42eb9840f478529536d152876e48d700003301b78326c24c173a040864bf51b42b657aaf80a318d1cc82aec05374d04894c73
- SSDEEP
  
  96:CltlXXkkXXkc8XkXF28Xky1XkQIXknhdHUXkPbXk1zACXk3DXk88:VkkctXsyuQJnhdFPo1zG3Q88
Score

3^/10
behavioral15
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/Microsoft.VC90.OpenMP.manifest
- Size
  
  858B
- MD5
  
  1b2b5a8fa0ab8c76ec505f786a74cdb2
- SHA1
  
  bd226191a48c1a268b5f57cdd1bbc10ec146ae30
- SHA256
  
  b189460384701bcc280c0ac3c9e007e705106d6b8ac8ee52e118036f496b3c1d
- SHA512
  
  b9a6ecb6f809880ff6fca388f6b91cc362fb416d21d5a8eabdf7582a134e5408b82ed1e94e6e7aba8d89c2f5f26ad08013afb09c88314f52798bf8ebddcdb27a
Score

3^/10
behavioral16
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/NASOperator.dll.manifest
- Size
  
  616B
- MD5
  
  f45fedfcce4a78fd25ea62ce9c2f089f
- SHA1
  
  ff2f255a5a9342f3b494b96bad04f3687623f0a7
- SHA256
  
  355f202ffd0106f6af1810742223cd92f96a63f0e4867d963152cb52b171653b
- SHA512
  
  01740f858ac78561f447710f00590f160e9faee7e7ac085ff4ccdda0ac9a0147bad8c810f52ae78cad13b8dc81f6fd2869121beb3acb3bbc04a48861bbfb59a3
Score

1^/10
behavioral17
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/OSConfig.ini
- Size
  
  202KB
- MD5
  
  f33d377440ef93831889d3286812bec4
- SHA1
  
  68ac2cdc5455d068553f43136319bc3fb159f28c
- SHA256
  
  e8f8457d705e051222049f0a77c854176cdb685f72ce5ff8e832eeb18cab9c38
- SHA512
  
  5d9702523ff0713e4bfbf7a38f9c3ec821009093a7ce04c9391a3e1bf1e5b7f304714078ab13d8174a833cc2d294de86a2b88c14c3f070ed9f6ae91d75de0ee6
- SSDEEP
  
  1536:oWsA8MBvxFTCK4GCeshUCJgJR5BUBJu7YlsC:oWsA8MB5BH4GCeeJgJ5iu7KsC
Score

3^/10
behavioral18
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/Options.dll.manifest
- Size
  
  616B
- MD5
  
  f45fedfcce4a78fd25ea62ce9c2f089f
- SHA1
  
  ff2f255a5a9342f3b494b96bad04f3687623f0a7
- SHA256
  
  355f202ffd0106f6af1810742223cd92f96a63f0e4867d963152cb52b171653b
- SHA512
  
  01740f858ac78561f447710f00590f160e9faee7e7ac085ff4ccdda0ac9a0147bad8c810f52ae78cad13b8dc81f6fd2869121beb3acb3bbc04a48861bbfb59a3
Score

1^/10
behavioral19
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/PEtools.xml
- Size
  
  12KB
- MD5
  
  0d14f3eb891e132eea91e3af15afce7b
- SHA1
  
  5db3076a15e4f633528f49dfd22fa9c7de41fd5c
- SHA256
  
  a05864295895e1294958d7df60c996575d53c2a7bdacc5bc60bc9ef5e404538c
- SHA512
  
  e78a6f2dea7081e8462600d7e33776d0ac9b80d79e1dbfda39fb7e930af2d9e39ab1dadd2236f61ffbc3f3f9e6eb4b977ccd9e7ab52f6f4d9ef85e98149909b5
- SSDEEP
  
  192:2O/cRwddpOPcRwNdlQ51IfpEN5eQkaBja5n/30os1V:Wgr5eQkaYl/30os1V
Score

1^/10
behavioral20
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/TBGetRemoteNetInfo.dll.manifest
- Size
  
  616B
- MD5
  
  f45fedfcce4a78fd25ea62ce9c2f089f
- SHA1
  
  ff2f255a5a9342f3b494b96bad04f3687623f0a7
- SHA256
  
  355f202ffd0106f6af1810742223cd92f96a63f0e4867d963152cb52b171653b
- SHA512
  
  01740f858ac78561f447710f00590f160e9faee7e7ac085ff4ccdda0ac9a0147bad8c810f52ae78cad13b8dc81f6fd2869121beb3acb3bbc04a48861bbfb59a3
Score

1^/10
behavioral21
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/TbConfig.ini
- Size
  
  57B
- MD5
  
  f1e8e80c8b444c4f0f22042fbb79d066
- SHA1
  
  4d1c61bca3c69ab89a643a666569d0a11ed3bf7a
- SHA256
  
  42cebbe65b51ebe599bd15b2315014336ff686935bf501ad5f0704c4d4fadb4a
- SHA512
  
  8c2999886cef1554fec1709807e26352c721fbe67b591c0f53c026e9d729afee8b666d57e3940703c95cf5aea88d93a47860e07543e01a9c7405d65dc240821a
Score

3^/10
behavioral22
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/TbConfig_OS2GO.xml
- Size
  
  6KB
- MD5
  
  4d0bb19cfe9e4104ad635705ac108023
- SHA1
  
  0099107daba0719501859d0ff9c5f08e06bf6098
- SHA256
  
  c265e0545a178c327efd49ef7c928e3142a19c07bd487ce896d46b294388c7f8
- SHA512
  
  8b14ca00cc8f603babe7c8c05fb04d6ce54fb51fb42b8d7f861fac5ca2c071f9d7449193d868f764e3ba1fe4cd3eeef6588a07f5898b7ee836f234ae4e8bb6c5
- SSDEEP
  
  48:cbFL2H9kw0ZZZZZZZZZZZZZZZZZZWWUZZZZZZZZZZZZZZZZZZZZZZZZ6ZZZZZZZb:AFyH9kj
Score

1^/10
behavioral23
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/Thread.dll.manifest
- Size
  
  616B
- MD5
  
  f45fedfcce4a78fd25ea62ce9c2f089f
- SHA1
  
  ff2f255a5a9342f3b494b96bad04f3687623f0a7
- SHA256
  
  355f202ffd0106f6af1810742223cd92f96a63f0e4867d963152cb52b171653b
- SHA512
  
  01740f858ac78561f447710f00590f160e9faee7e7ac085ff4ccdda0ac9a0147bad8c810f52ae78cad13b8dc81f6fd2869121beb3acb3bbc04a48861bbfb59a3
Score

1^/10
behavioral24
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/UIConfigAdd.ini
- Size
  
  144B
- MD5
  
  cbd07f71da5034d3a8421613c75a6f80
- SHA1
  
  dd281ba2e1688e6de028728074faee55b9cc933f
- SHA256
  
  4943f1060e5244bfe8ae1f7b34dae5ff808ea13a26949f488d72316a58dc1293
- SHA512
  
  e0d8fbd1d3b6ac3f0b0dde6025c556bd2d969070d10b366776575d04db7f9015e7716fbce2fe71fdb516552bce8a33e6788579617565f0a71a2fca86a26e9b02
Score

3^/10
behavioral25
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/Universal.dll.manifest
- Size
  
  851B
- MD5
  
  ee45f127c55ef85ddfca0f7a0087240b
- SHA1
  
  9647dd4a6eb34ad4324c582f5108edb80228c42f
- SHA256
  
  ea9a5cf003e5cc55ab8f2aa81c38646648f4acb71fa408ace428ce0144cefaf4
- SHA512
  
  543361602177a99b32b23b7eb0e1cda79ab4d77c9f2e64ea7a1f80216f488e7461e8663fda28381bc4d337c1983eef8005951dfbd05a006afdff11d7f7f55d62
Score

1^/10
behavioral26
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/XSnapShotTip.exe.manifest
- Size
  
  658B
- MD5
  
  48c8cdb8289d9333bf0efae39f6eeb59
- SHA1
  
  9a0b0b6b71b762eec349b4cc13b6419c80a45caf
- SHA256
  
  b7d21810a8aacbe2324a3a815e944b5ae063642ad1d8477d6e422f3e62bfd929
- SHA512
  
  b8a29e98244e876fe0bffeeecc104e6ef539ad161dbaab0596f72e3971697d6d0b2140cc1906d5ff37555d4d2451328814dab7c830f7c0f03c26cb4b4fad4436
Score

3^/10
behavioral27
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/XmlWrapper.dll.manifest
- Size
  
  616B
- MD5
  
  f45fedfcce4a78fd25ea62ce9c2f089f
- SHA1
  
  ff2f255a5a9342f3b494b96bad04f3687623f0a7
- SHA256
  
  355f202ffd0106f6af1810742223cd92f96a63f0e4867d963152cb52b171653b
- SHA512
  
  01740f858ac78561f447710f00590f160e9faee7e7ac085ff4ccdda0ac9a0147bad8c810f52ae78cad13b8dc81f6fd2869121beb3acb3bbc04a48861bbfb59a3
Score

1^/10
behavioral28
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/YNET DVD&CD Burning SDK license.txt
- Size
  
  185B
- MD5
  
  2b8b6494d704afe8776214c367e586b0
- SHA1
  
  dd0ebb499afc6ada6ed076a61a737a12f3a289ec
- SHA256
  
  6f1967b5bcef21da98a9e809de788ff40118fdaa69de16827efaaaee8ff220e9
- SHA512
  
  d2882aa995b01301e6cd25d624f9ada72f438dce4a37dc022b9c84af5126b55c85137608c7f531366f747af99e95e3d866c75e894b622583be8248057fd5b298
Score

1^/10
behavioral29
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/lang.ini
- Size
  
  3KB
- MD5
  
  fa504f157c0725923732633706c4008e
- SHA1
  
  eafd83ff3482dbeefc072a66cb74bc9643debb3c
- SHA256
  
  f1003ad921a712802bd58b554249b2f3512eb9357dc4800fc1a2f0cb1290fef5
- SHA512
  
  a0a9e78db52750d50547605aabfb8d4a6a2d546df2e357816b024a20fda66eafc7c656e7eb6a2293f6993dfc6e45e116cd6b0dfbe57375510b7ecffd76d266f7
Score

3^/10
behavioral30
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/loginHistory.xml
- Size
  
  144B
- MD5
  
  6144426eb5fbc0b53788720015cdd934
- SHA1
  
  38b4a816d1e992ee31bf9d6cda9fcb1d21f5269b
- SHA256
  
  70544b831cadb45b4881c1f872d27f7bfb36ad13ebe10f21ab84b114f6fa740e
- SHA512
  
  ec8d4fc85193d0c36831e5f90452cbf667f5004b9587ed234411529381110d0a7c7311e718f2ae479ed17cd02a084639ab60976fc5d31fe972c98e26b1c4981c
Score

1^/10
behavioral31
- Target
  
  $APPDATA/EaseUSOS2Go4.0/os2go/bin/ntldr
- Size
  
  251KB
- MD5
  
  418b54cad38b9ea48a8da2774e15959f
- SHA1
  
  e73cbcf2b27e0a62221e36efda7a8e3a8925ee13
- SHA256
  
  7f27c6a7bc77387055d46eaf7a7ed53fc18fc64f6576c1fb4d3338daf622f120
- SHA512
  
  e572589b81a8e53ecbc24e8f6a64ad72402978fb77abd86bad004c016a64df5401dbe3486be102cfecaff77758f306f3ac3b0b5b5b7035178cbe0db4b7f921fc
- SSDEEP
  
  6144:xG2WfK03M5fuixixxWLAr03LgDGpes/b+dIQZNkNtxaPpDXDcN9Im6:B9BaxzQ3sDGpes/b+dIQZNkNtxaPpDXt
Score

1^/10
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Drops file in Drivers directory

Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32