2fa51d9e1f5ce2b519169d52b98576fb5a8cf138944156bdfa6a6f62f846cd2d

Sharing

Copy URL

Twitter E-mail

General

Target

ArrowDL_x64_Setup.exe
Size

30.1MB
Sample

240225-pcaq6aca3t
MD5

4210328fe99089231977546e835434b8
SHA1

6bb2f973c14a769ddd5954419b3eec6ad0d84209
SHA256

2fa51d9e1f5ce2b519169d52b98576fb5a8cf138944156bdfa6a6f62f846cd2d
SHA512

2d5b3e66d88773c22626ef9f4fc7f3eb3b2d6912cfccb0b34c481b1fcf3c6854467460ca6d6fb5395882e95872295e6774f579ab3880a53cf0dea429020b2e15
SSDEEP

786432:8nfxrHhE4iim3VJxh9LBtZzW/HDrDx0ga42NGecVUn9ds9q7M6G:8nfZhpiLXpZzIPxfa/NGecVJd6G

Score

7^/10

pyinstaller

Malware Config

Targets

- Target
  
  ArrowDL_x64_Setup.exe
- Size
  
  30.1MB
- MD5
  
  4210328fe99089231977546e835434b8
- SHA1
  
  6bb2f973c14a769ddd5954419b3eec6ad0d84209
- SHA256
  
  2fa51d9e1f5ce2b519169d52b98576fb5a8cf138944156bdfa6a6f62f846cd2d
- SHA512
  
  2d5b3e66d88773c22626ef9f4fc7f3eb3b2d6912cfccb0b34c481b1fcf3c6854467460ca6d6fb5395882e95872295e6774f579ab3880a53cf0dea429020b2e15
- SSDEEP
  
  786432:8nfxrHhE4iim3VJxh9LBtZzW/HDrDx0ga42NGecVUn9ds9q7M6G:8nfZhpiLXpZzIPxfa/NGecVJd6G
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/LangDLL.dll
- Size
  
  5KB
- MD5
  
  50016010fb0d8db2bc4cd258ceb43be5
- SHA1
  
  44ba95ee12e69da72478cf358c93533a9c7a01dc
- SHA256
  
  32230128c18574c1e860dfe4b17fe0334f685740e27bc182e0d525a8948c9c2e
- SHA512
  
  ed4cf49f756fbf673449dca20e63dce6d3a612b61f294efc9c3ccebeffa6a1372667932468816d3a7afdb7e5a652760689d8c6d3f331cedee7247404c879a233
- SSDEEP
  
  48:S46+/pTKYKxbWsptIp5tCZ0iVEAWyMEv9v/ft2O2B8m/ofjLl:zbuPbO5tCZBVEAWyMEFv2CmCL
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  12KB
- MD5
  
  4add245d4ba34b04f213409bfe504c07
- SHA1
  
  ef756d6581d70e87d58cc4982e3f4d18e0ea5b09
- SHA256
  
  9111099efe9d5c9b391dc132b2faf0a3851a760d4106d5368e30ac744eb42706
- SHA512
  
  1bd260cabe5ea3cefbbc675162f30092ab157893510f45a1b571489e03ebb2903c55f64f89812754d3fe03c8f10012b8078d1261a7e73ac1f87c82f714bce03d
- SSDEEP
  
  192:VjHcQ0qWTlt7wi5Aj/lM0sEWD/wtYbBjpNQybC7y+XZv0QPi:B/Qlt7wiij/lMRv/9V4bvr
Score

3^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  1d8f01a83ddd259bc339902c1d33c8f1
- SHA1
  
  9f7806af462c94c39e2ec6cc9c7ad05c44eba04e
- SHA256
  
  4b7d17da290f41ebe244827cc295ce7e580da2f7e9f7cc3efc1abc6898e3c9ed
- SHA512
  
  28bf647374b4b500a0f3dbced70c2b256f93940e2b39160512e6e486ac31d1d90945acecef578f61b0a501f27c7106b6ffc3deab2ec3bfb3d9af24c9449a1567
- SSDEEP
  
  96:o4Ev02zUu56FcS817eTaXx85qHFcUcxSgB5PKtAtoniJninnt3DVEB3YsNqkzfFc:o4EvCu5e81785qHFcU0PuAw0uyGIFc
Score

3^/10
behavioral7 behavioral8
- Target
  
  ArrowDL.exe
- Size
  
  7.5MB
- MD5
  
  2985a995aee69874b2fed2c7b8cabdba
- SHA1
  
  44d318f9073b757d3b7bd233160e4c2f204c2a59
- SHA256
  
  4ea0bb5219295941bea1cd9c079e9ba5dd582a505d5cc880596db966cb4e084a
- SHA512
  
  a4f09709a1489563b5a5e21853b44e74c10e20b8eb500102197fa3898106b2882ce23e87fb795dd946fd916461a2b4e82af3c07368ad049c9feefe027fb4064b
- SSDEEP
  
  196608:h6+rKbqoCsjvcv1ANjtD5JxK/3+hAHR49ikD53YdBPUHbPUoN2tm8txjSy:h6+rKbqoCsjvcv1ANjtD5JxK/3+hUR4M
Score

7^/10
- Loads dropped DLL
behavioral10 behavioral9
- Target
  
  Qt6Core.dll
- Size
  
  6.2MB
- MD5
  
  127ff5ac4b4d2139c82ce18945460ac8
- SHA1
  
  3fc005704247fc60578817bda7cdfb81cdc916a6
- SHA256
  
  926979cdafef6a4d13212357e52ed7789a1645a4ba5d5af306f860dde949dd97
- SHA512
  
  be3ec5e68eb24b165ba2e90453d9e0cbd246036cfe44c284e0e41c3f13338d66dbe47f317ec9784e8ab578b88ce69603568514e9c16ab9c22029e36a885f9de4
- SSDEEP
  
  196608:3+IY8+hbXHq7WdIQCERLXRZEXjj2ZTIHiO7FNbscSxfSYoOAe0p/zCKqpCKitUaX:3+IN+hbXK7WdXCERLXRZEXjj2ZGiO7Fv
Score

1^/10
behavioral11 behavioral12
- Target
  
  Qt6Gui.dll
- Size
  
  9.5MB
- MD5
  
  9007c3aa16bae9c76958982f0cc4a206
- SHA1
  
  a84af262e3811f3ae6ade7bcb81c93d4728b34bf
- SHA256
  
  7a55a42354175a42f4108e9c52f6942dc61cbb83be8a95cf2e3b1b8064b36064
- SHA512
  
  0c2d82ce9eaa4b8a420cc8798ce818cd54167777661c581201665d754b0dbd99617e9386ebde97c53c85ebe1214859a34f22a91c8f081707c3b5d9ee4c42a62b
- SSDEEP
  
  196608:MKDe2C0EaNK5NdJcZlKJ21ME1QmwIfzmu12m4jKNVVGIV7a7e83EwuqZIS35h6nz:MKDe2PEaNK5NdJcZlKJ21ME1QmwIfzmG
Score

1^/10
behavioral13 behavioral14
- Target
  
  Qt6Network.dll
- Size
  
  1.6MB
- MD5
  
  32514badf58670b6c464a5907953838a
- SHA1
  
  c513a59c5ace7b8697d8e04192278b61ece9fd95
- SHA256
  
  fd9d621900516fb8398824df23415224c3a63fcd74d23f6840a5e8fa08379967
- SHA512
  
  c88835a3963e7538aceeecae732bdf8e5f750eaa08dd7eebe59b8e38a1adcac0ff1b6a12695ded28c2058996f1fa8d212d54c2c53d88c227b416cade9e00ea72
- SSDEEP
  
  49152:T1ln1DvFGkth1KR54Dz19ioL2jSEkTAtTeVpNXy+AEU8i7tlop:bRFJzMR54Dz19i22jSEkTAtTeVpNXy+J
Score

1^/10
behavioral15 behavioral16
- Target
  
  Qt6Svg.dll
- Size
  
  355KB
- MD5
  
  2c25f704b6ba0abae9fa62e08d11e239
- SHA1
  
  27dc55d21880e3897860a660f26113b74be06377
- SHA256
  
  2f01509421dad69171efe03d2bc87222baea00419d295a0ad4606966c74ffea8
- SHA512
  
  8605da0d100c0997ee5dbdf5dd877ba4a37b6a1c4bd6a55308c4d122f67c623fe154c647bda603762bc1b42d76d890a4e4f52d18df1eefc59885c9254236b525
- SSDEEP
  
  6144:4MVf4zOrKlO4lHhcJTV/NkvRkunIEhrd2E24meo4Og4tYn1X66RXu0EA:4MVf4zOrKbBhXvRkunXZ2DX414yNu0EA
Score

1^/10
behavioral17 behavioral18
- Target
  
  Qt6Widgets.dll
- Size
  
  6.3MB
- MD5
  
  cc35f474fa216235e41c2819095c7da2
- SHA1
  
  17689d77d092f133089595a464a2365246ed3151
- SHA256
  
  ac0eb38c90bc087bb1ac6b1250bdfe5886d433912d72052499bb939121bd0cc2
- SHA512
  
  1d24939ff9e97f09751fd86a7026339cadf5e1f5a758f00163aa11d0d1bf01d1ea9310d7728ee4e6a03d3b424e070ec6765f94ef5ab752ccd2b4c51b229ab2f2
- SSDEEP
  
  196608:dLXTgu3C95r6lTPZw3+DEDAWZEJVztLXc7glYynUFQ0Yud4SU6zj4z2gQvL98fO8:dLXTgu3Q5r6lTPZw3+DEDAWZEJVztLX1
Score

1^/10
behavioral19 behavioral20
- Target
  
  Uninstall.exe
- Size
  
  240KB
- MD5
  
  8f3b6a3809244cfbc192989472f7cfe2
- SHA1
  
  2ca0425bdf0a31a08af5262c685a2554fc2324b5
- SHA256
  
  03a3a705037da584dc878ca84d02876107571ecf1c2d735f75361f20f2b55e39
- SHA512
  
  a17afd41bd37641d12eb286c9bbcd09198cdbbe39e437eef9e2dc03e8a3fc62a052c96f0cb20c1a1f11aedee1827ab6ab58690a7dbdb53d45da832d61e9063a8
- SSDEEP
  
  3072:+fi3k+oWDBDh1duXR6uVti1H4YnsTvxcPowV4qaQVCJo0+n6XtvPB:+fL+oqoR6uyJVTPowGPQoR+OJ5
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral21 behavioral22
- Target
  
  $PLUGINSDIR/LangDLL.dll
- Size
  
  5KB
- MD5
  
  50016010fb0d8db2bc4cd258ceb43be5
- SHA1
  
  44ba95ee12e69da72478cf358c93533a9c7a01dc
- SHA256
  
  32230128c18574c1e860dfe4b17fe0334f685740e27bc182e0d525a8948c9c2e
- SHA512
  
  ed4cf49f756fbf673449dca20e63dce6d3a612b61f294efc9c3ccebeffa6a1372667932468816d3a7afdb7e5a652760689d8c6d3f331cedee7247404c879a233
- SSDEEP
  
  48:S46+/pTKYKxbWsptIp5tCZ0iVEAWyMEv9v/ft2O2B8m/ofjLl:zbuPbO5tCZBVEAWyMEFv2CmCL
Score

3^/10
behavioral23 behavioral24
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  12KB
- MD5
  
  4add245d4ba34b04f213409bfe504c07
- SHA1
  
  ef756d6581d70e87d58cc4982e3f4d18e0ea5b09
- SHA256
  
  9111099efe9d5c9b391dc132b2faf0a3851a760d4106d5368e30ac744eb42706
- SHA512
  
  1bd260cabe5ea3cefbbc675162f30092ab157893510f45a1b571489e03ebb2903c55f64f89812754d3fe03c8f10012b8078d1261a7e73ac1f87c82f714bce03d
- SSDEEP
  
  192:VjHcQ0qWTlt7wi5Aj/lM0sEWD/wtYbBjpNQybC7y+XZv0QPi:B/Qlt7wiij/lMRv/9V4bvr
Score

3^/10
behavioral25 behavioral26
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  1d8f01a83ddd259bc339902c1d33c8f1
- SHA1
  
  9f7806af462c94c39e2ec6cc9c7ad05c44eba04e
- SHA256
  
  4b7d17da290f41ebe244827cc295ce7e580da2f7e9f7cc3efc1abc6898e3c9ed
- SHA512
  
  28bf647374b4b500a0f3dbced70c2b256f93940e2b39160512e6e486ac31d1d90945acecef578f61b0a501f27c7106b6ffc3deab2ec3bfb3d9af24c9449a1567
- SSDEEP
  
  96:o4Ev02zUu56FcS817eTaXx85qHFcUcxSgB5PKtAtoniJninnt3DVEB3YsNqkzfFc:o4EvCu5e81785qHFcU0PuAw0uyGIFc
Score

3^/10
behavioral27 behavioral28
- Target
  
  iconengines/qsvgicon.dll
- Size
  
  67KB
- MD5
  
  f9475d02ee9f9f6081072af1e283110b
- SHA1
  
  5029831f3fe96731ab369f3c1c0cfb8d353229f5
- SHA256
  
  25dd22c56a1caa93f489ab38ca4fbcd27075be939b2ac3c9cfddf8ee8c291cd8
- SHA512
  
  f16e50c0b03dbc984c5b3ed7b933d4c653148943f7672353c56c9e4798ed15b5171f849c95170f29eb109acd20bb8a92c821fbe90f4d04653e5c68a82d0eb6e6
- SSDEEP
  
  1536:VDZc1Xg2CksrBgtn9s1FrXqavsqin8LTAxd8cl6GLJvgKxnge5EH5:tubsNgtn9s1FrXPvsqin8LTe8cl6Gt4h
Score

1^/10
behavioral29 behavioral30
- Target
  
  imageformats/qgif.dll
- Size
  
  47KB
- MD5
  
  68ba31c5939bb82857ad306e2ffae7d3
- SHA1
  
  cead315c0ce6c1caad1db2f578e045a42fb38078
- SHA256
  
  2c39a0a31dafa54214fdfddcdc1731fd16ba0aa72b60c55d3923bfb183cc4352
- SHA512
  
  53396309ea4e31a5ba65ccd33705f3bc4c4f06a2aa8034e50b61b3ed01f144666bf33cfbbf3aff00757b9c10fababdefc2e5b922da1ac34131ba18a0912c6700
- SSDEEP
  
  768:Jo3j9W6L8FZYDFwAAqnSSvfz+6JAp3gKxnVbGYJlsTN0EH8f4t:qj2WDFwAAAS6up3gKxngesSEHW4t
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

Loads dropped DLL

Executes dropped EXE

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32