Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Overview
overview
8Static
static
3Bytelixir-Setup.exe
windows10-2004-x64
8VC_redist.x86.exe
windows10-2004-x64
7bearer/qge...er.dll
windows10-2004-x64
1iconengine...on.dll
windows10-2004-x64
1imageformats/qgif.dll
windows10-2004-x64
1imageforma...ns.dll
windows10-2004-x64
1imageformats/qico.dll
windows10-2004-x64
1imageforma...eg.dll
windows10-2004-x64
1imageformats/qsvg.dll
windows10-2004-x64
1imageformats/qtga.dll
windows10-2004-x64
1imageforma...ff.dll
windows10-2004-x64
1imageforma...mp.dll
windows10-2004-x64
imageforma...bp.dll
windows10-2004-x64
1libEGL.dll
windows10-2004-x64
1libGLESv2.dll
windows10-2004-x64
1libcrypto-1_1.dll
windows10-2004-x64
3libssl-1_1.dll
windows10-2004-x64
1opengl32sw.dll
windows10-2004-x64
1platforms/...ws.dll
windows10-2004-x64
1qmltooling...er.dll
windows10-2004-x64
1qmltooling...or.dll
windows10-2004-x64
1qmltooling...al.dll
windows10-2004-x64
1qmltooling...es.dll
windows10-2004-x64
1qmltooling...ve.dll
windows10-2004-x64
1qmltooling...er.dll
windows10-2004-x64
1qmltooling...ew.dll
windows10-2004-x64
1qmltooling...er.dll
windows10-2004-x64
1qmltooling...er.dll
windows10-2004-x64
1qmltooling...er.dll
windows10-2004-x64
1qmltooling...cp.dll
windows10-2004-x64
1scenegraph...nd.dll
windows10-2004-x64
1styles/qwi...le.dll
windows10-2004-x64
1General
-
Target
Bytelixir-Setup.exe
-
Size
39.2MB
-
Sample
240304-rdkzmadb22
-
MD5
b090d35c82104ab517c48bf5762e4753
-
SHA1
e97a054a44701241794a5824a44e3f2ec66070ed
-
SHA256
87bc165fa9bde98e3a0e93b8c71f5cbd23e3a8774fffc89fc3e5fc935d323ae7
-
SHA512
2c9171dba4aa7543672a1919b5428dac3a79bfbf3fe0ac69be39a7b711089066997fe537bf809a74fcb0c7ce656f403b63ffee15d78c817a64088322a83ba803
-
SSDEEP
786432:LeFA1Jlm+487S2lKuO+uM/wY98nCEyqByCKIdCTUo7jf/yqbvPtr7F2N63DwmGUd:Leizs+4Vu3yXnC8BGFKGvPtr7F2430mL
Static task
static1
Behavioral task
behavioral1
Sample
Bytelixir-Setup.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral2
Sample
VC_redist.x86.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral3
Sample
bearer/qgenericbearer.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral4
Sample
iconengines/qsvgicon.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral5
Sample
imageformats/qgif.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral6
Sample
imageformats/qicns.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral7
Sample
imageformats/qico.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral8
Sample
imageformats/qjpeg.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral9
Sample
imageformats/qsvg.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral10
Sample
imageformats/qtga.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral11
Sample
imageformats/qtiff.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral12
Sample
imageformats/qwbmp.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral13
Sample
imageformats/qwebp.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral14
Sample
libEGL.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral15
Sample
libGLESv2.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral16
Sample
libcrypto-1_1.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral17
Sample
libssl-1_1.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral18
Sample
opengl32sw.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral19
Sample
platforms/qwindows.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral20
Sample
qmltooling/qmldbg_debugger.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral21
Sample
qmltooling/qmldbg_inspector.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral22
Sample
qmltooling/qmldbg_local.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral23
Sample
qmltooling/qmldbg_messages.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral24
Sample
qmltooling/qmldbg_native.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral25
Sample
qmltooling/qmldbg_nativedebugger.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral26
Sample
qmltooling/qmldbg_preview.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral27
Sample
qmltooling/qmldbg_profiler.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral28
Sample
qmltooling/qmldbg_quickprofiler.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral29
Sample
qmltooling/qmldbg_server.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral30
Sample
qmltooling/qmldbg_tcp.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral31
Sample
scenegraph/qsgd3d12backend.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral32
Sample
styles/qwindowsvistastyle.dll
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
Bytelixir-Setup.exe
-
Size
39.2MB
-
MD5
b090d35c82104ab517c48bf5762e4753
-
SHA1
e97a054a44701241794a5824a44e3f2ec66070ed
-
SHA256
87bc165fa9bde98e3a0e93b8c71f5cbd23e3a8774fffc89fc3e5fc935d323ae7
-
SHA512
2c9171dba4aa7543672a1919b5428dac3a79bfbf3fe0ac69be39a7b711089066997fe537bf809a74fcb0c7ce656f403b63ffee15d78c817a64088322a83ba803
-
SSDEEP
786432:LeFA1Jlm+487S2lKuO+uM/wY98nCEyqByCKIdCTUo7jf/yqbvPtr7F2N63DwmGUd:Leizs+4Vu3yXnC8BGFKGvPtr7F2430mL
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-
-
-
Target
VC_redist.x86.exe
-
Size
13.1MB
-
MD5
d3b594464f2312cde31af3f2aa516f9e
-
SHA1
15fe8e70c3c5582b70df173cd9b580331677735a
-
SHA256
b7ae307237f869e09f7413691a2cd1944357b5cee28049c0a0d3430b47bb3edc
-
SHA512
ccb19250b90eb629c35a897aba6d0ab16402305d9ec16b97b902fc810cde5d215cf8149a273cc8f8cae5a4b0665b116c085fe3b01a3ab3860c44f20ca95d6e83
-
SSDEEP
393216:7/H+lptVYmfr7yBG/4tWp4uXK63Ntq+qS:7/upttD7yBG/cy4Aq+qS
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
-
-
Target
bearer/qgenericbearer.dll
-
Size
43KB
-
MD5
57f3ffcf6a99abdeca93d0bebd9f05d8
-
SHA1
f1b7038c4f6cad75b8a6d115255421d60f1de04f
-
SHA256
44b59c980ca26aca133bd3842155c55eb30630853c3c316e1955415e10b34c0f
-
SHA512
cbe0ed19d03540ffef93c4028ba7bf170ca82d1bfd15d432c7fb0edf96e450c9ddd85701b3ef52edabac96fd3cb6e3da2eadf4ed1de3907e986e8f3d64dd3b08
-
SSDEEP
768:EYnMoTheMJroMOENIFanla6PK2Jbga+5+yAXmjkJuDZbjV52dDGFeTUf2hl:Xhe8O6QalaYbga+PjkJuDZbn2VTUfy
Score1/10 -
-
-
Target
iconengines/qsvgicon.dll
-
Size
34KB
-
MD5
a85ea17fb2ca9258e71d0a60667eae6a
-
SHA1
9bc4333321611769a51bcb5292c0517c227614c6
-
SHA256
5456152400a84c153728007bd1c7d549788d2300441addd40c18d7e17f757856
-
SHA512
ead8a715f75c82fe85a2d475010d8c880b13700c847840810bd6f75f6a4a418ded406133404a1c3d196461d676f8819a7bff25e556d25250d031e513303f81eb
-
SSDEEP
768:crdZm5mjw1lQR8Z3Zf3V+hFem0wKk84XmydDGFUf2hE:6u1lQQ3Zf3V+Lem0wKk849kUfP
Score1/10 -
-
-
Target
imageformats/qgif.dll
-
Size
33KB
-
MD5
e3a1338efadabb9fc23d955af9a7e070
-
SHA1
dfbe82b183fff002a2e841d73474c78f646fdba2
-
SHA256
f1fa3bfeea6a600f2c6d209775154cee349b7f687cb4f7213a8cad8870dbb812
-
SHA512
0413a6116e227fa6a3dd7da6fa4bb8db59ed64fc16e37bfa49ca28c687fe791941b3a23193796eb0ece458e87f9f78f587b3a1fe0f188b63b9148037997df1a2
-
SSDEEP
768:aL5MPkjurnzyuVlfehyScQeOYGuOU9OOHhTNAYFdDGzUf2hW:aNYnzyuLeEfQeFGuOU9OOHhZAYFOUf5
Score1/10 -
-
-
Target
imageformats/qicns.dll
-
Size
37KB
-
MD5
862a826020dfe7ab690900a87250992d
-
SHA1
983117858f162f7eab3f4aee6e0d9619e20637ef
-
SHA256
f96e413dc1b8a67c025b3d1769241ee96dd8b079b367a6c868d650a6b68154c4
-
SHA512
a71cdfba3023934d0bfe25a05d2fda00f60caaf77122cc0d52c7c6f6555ebf43e13555b563a564023c02e9419471a8ed325d182508ad276517c68c9691d5704a
-
SSDEEP
768:nwFo5IoYXrOOmYaRCNOq9QNdhVJ0hBEH3lMwAJXGdtpZmPdDGGzUf2h2:wWBIf9QvJgEX6wAJXGdtpZmP3UfP
Score1/10 -
-
-
Target
imageformats/qico.dll
-
Size
31KB
-
MD5
7200f8e1af1c6a60501d5fef7772fd0b
-
SHA1
5f2bac81a60f7fdfbe8b1a01f111660a3614d679
-
SHA256
35cf0ae6bcd1b8322482d40bf2dd693e276548885284b88e6631ab18a0c2c60e
-
SHA512
097835d4c8c61c2489e831b31a8bb6f2feea277439d6697b6e3165ccb6e4758986c9a1fa754696da53b6005a041156ff8bc455a71dc31ea799f5891348a07f22
-
SSDEEP
768:1wLKUeP1ob4OgufLCJGqU2SZ6HseQdDG0Uf2hKT:4KUeP1WyufLCJGqU2SZ6HseQ9Ufz
Score1/10 -
-
-
Target
imageformats/qjpeg.dll
-
Size
365KB
-
MD5
438b696a9811cd821bbe2c54b5c1b4b1
-
SHA1
55eb74a0015228b1e6c1dc97e6f427c9dc804587
-
SHA256
84c23191b5e35eaf899358c21445a5377845c0653668bbd99b1aa8796e0248c7
-
SHA512
961ed9cfcd61a1fc32de89cb97100aaa9a9225c80673b2176975bf62af7f3a0e77a91fb723ed52c553e10a6f754a5e8c8085bdfbd56ef2de8144c53bf41f4e91
-
SSDEEP
6144:QsC804cB4tEXoOitMk5R8vsLK0LXz5pmglF90l7s0aGajl8Z9cg:Qr4bOzk5R+s5LFg9cg
Score1/10 -
-
-
Target
imageformats/qsvg.dll
-
Size
27KB
-
MD5
f304a2c8067f804d25b98d360e92829f
-
SHA1
dae1d07de8c33912ff4ffc957f8817b2b3e8293a
-
SHA256
e45893bb7db31bfd32e87dc7a6b02709fca36eb83a25aedc45a39178ec80051e
-
SHA512
5bc122bea8de687820932666c6b76bb153b115263b31a40fd7823a2a36ebc88b27626e06e3a6c5dc5f62970c8c7e9c094984b494d7f279bfdb9bac7a8c2964ca
-
SSDEEP
768:WV5VVvwZ12uh991MD9dhQwe+oQQUcesJbT73dDG5Uf2hg:IvwZ12aC9Qwe+ZQUbsJbTLwUfX
Score1/10 -
-
-
Target
imageformats/qtga.dll
-
Size
26KB
-
MD5
367c723591fde64c38202d4c0f5ecfde
-
SHA1
c13d74f417601c656f343f00d15e56517ee03b6a
-
SHA256
ccd620e74045d9c9157903120140b97419cbbe91fd43337e640c67cd4522072a
-
SHA512
31c084ba00e094e30c6f912ecd045e19c4451d8783a80dc99b99098f84c5500665a35ac901b0fde84d04df898ad67448e83539a7daa4928e8c78f798b359b256
-
SSDEEP
384:kg8gKOwVg6VjbFnOfEIzPMoVhWyrsdnyBSxQrrVIyndDGdEDgf2hR:kPxOQXOfEnoVh5/BSxQrxIYdDGKUf2hR
Score1/10 -
-
-
Target
imageformats/qtiff.dll
-
Size
345KB
-
MD5
49b6f0ba901f649ab110744e34076951
-
SHA1
4c9eebadb5b86147ea94f48eaa6705a4b75b3e61
-
SHA256
5128aedf4bd9b747ac848bf85e0ffb99ba814bd8e671adff7d26391d31259050
-
SHA512
b42a13f0215a194f77781ac74cf55c24a0f0bc99cc872ea06125cfe12ffef93add0665991339db3b7962262e6d381f20227da3272360450b53993d06bc0ec98a
-
SSDEEP
6144:BpYIdJpn0zXsT6DP64icIkjEkaNCTjM+8kBHWNFnHJXGFkDQDWr:jYIp06+IkjeNGjIkZZKr
Score1/10 -
-
-
Target
imageformats/qwbmp.dll
-
Size
25KB
-
MD5
7a05c8435fb60f43958120b22b653b54
-
SHA1
79d7122e4ab89dc9978fcd48fcbf0c6b8ae3f690
-
SHA256
7c946f750413716a714884c8836d24aa6d2561b48e7f3397bab88af348e078ec
-
SHA512
74800a623e4789c245095b6ad0cc03ec8eb00431487e7977bd3bc5cbf0278480474d74fd194873f220dd5682eec88864095659315f68d650c1cc8b40435b182c
-
SSDEEP
384:j9NLeETizwsASWjsUE2rBiQtp4VmsdXurvZJ4EndDGgDgf2hcU:xNLXiHAS+E2rBi7mbrvZJPdDGgUf2hcU
Score1/10 -
-
-
Target
imageformats/qwebp.dll
-
Size
402KB
-
MD5
b9416990af043ca8cfa668121184c05d
-
SHA1
4181d92e91704b961a22b51713705d53dda0cf51
-
SHA256
50fcf1fed7612ae4c346d7ae7dec3ebbbd2ac31c5e954263a7bbc655502e3b03
-
SHA512
e303e4b166ada78dbe75639b73efe275a0e4f49a1cd2da5016e1f31a1a012aee383e6acc21d63561e78321b1e162ec9cfec3915909e698d2064b1fb0dd33de76
-
SSDEEP
12288:llTSf8S+PHunhrYzVcS/CQVy7wycv+QrUwDHHgxgG:L08S+PO1OVcS/XVykyI+4M9
Score1/10 -
-
-
Target
libEGL.dll
-
Size
22KB
-
MD5
371aeb50f7816108b346b67ef2b11e1a
-
SHA1
5de780b46d7663d1615727edaba32b5709286d38
-
SHA256
12903d93a7f57b479401602a533849e6f813ff5c2c92f3a02d468fc98e7ac1d5
-
SHA512
4aff94adbd97948766c7839220e15000a4defb7d46b5502872b16225e8c5b85b6b674b632455afbb3db729d5f2e9666b32b8db282ea3499ebd84fe4ce11d9631
-
SSDEEP
384:BH0ECfljwSVn5jd2J5uIVndDGn7Dgf2hOi:BtCZn5jMruIFdDGn7Uf2hOi
Score1/10 -
-
-
Target
libGLESv2.dll
-
Size
2.8MB
-
MD5
7ff6836c626bbc7f0833a66aa77a7a7f
-
SHA1
9ad21c1a5df940999ba9f884d21868d3b69e7155
-
SHA256
8cfc024d09a6784486da7dc0ebfd90c0c8136b27c08ec1c3f352cd4fa43b9273
-
SHA512
8ff378b9d2a1058396ff5e9795f7bd25fc3092f94b9274447c849c19294569197f6920bda448a3e2c06b012ba1468d75f2b26ed1bd4e54191f28ca209bf41697
-
SSDEEP
49152:OOs7dcfIlADvQs46Bw6OtkrSjfM0E66+k:cdcuA8s4Fte
Score1/10 -
-
-
Target
libcrypto-1_1.dll
-
Size
2.2MB
-
MD5
7e32d50bd39591ee3c75d498772e9a1f
-
SHA1
87cfecf31860c405f26208064f8095ee1c483817
-
SHA256
2c6896ff36d2f50c1a0cad0c991fa9cd9c944367c763a4b02759f17189fd2e1b
-
SHA512
8ded103c19f7203274f6f67cde9d80a46e417b8943e61e56cd4ae623b4acca3686d08392c25f05dd829f45265027c5d17d18e02ebcde81ea0d8df2accb91175e
-
SSDEEP
49152:TG5sP9ewUatc88+tvk/84OruV1CPwDv3uFfJCw:TG2PQwu8vC/8LruV1CPwDv3uFfJCw
Score3/10 -
-
-
Target
libssl-1_1.dll
-
Size
543KB
-
MD5
38d250a61992392b877cccf5c41dcd31
-
SHA1
5988e05b7f4408ffad36c0fa99e5e9378b19fa88
-
SHA256
4a0c0b9b6848d86c280ae5dd85c8ee98a2d51499417472f3c5441968955848e4
-
SHA512
19fb5f0766e1ba87678aabb5dcb486d6efe09e58ebdc4081da815395e2934c09a7f337318c641e1395af2e52a7a8cdd32a6988e78de01bc65e88451a10ad1146
-
SSDEEP
12288:KYnuWMmtLvxV0raFxxJ6VSQP/qfPLKUDfU2lvzKbSn:7uWNtLf+SQanWUDfU2lvzKbk
Score1/10 -
-
-
Target
opengl32sw.dll
-
Size
15.1MB
-
MD5
6be0d77c557717c18ebcec3c3e801bf4
-
SHA1
0ccd774e9a59789f5e6a52e6ce2f49741aa07fe5
-
SHA256
c19ee76a7446201436de88db68044304bcadf71d53497190b8c7d969433ae22b
-
SHA512
19ab2dd5e92d14041ebf9bfe67931c243498a9293119c36da3e25ccd03159552a355f3473bb16b1691fe915fc59c35b4380c7a85c7c3d96d96bf86c3c398c73b
-
SSDEEP
393216:FWf3wYhrRoiyh6QV8hbH6h3oASKIUx60Fv0n77k0Tzdv/8TOiRX:FCLhWiyh6QVebH6h3oASKIUYE0n/k0T+
Score1/10 -
-
-
Target
platforms/qwindows.dll
-
Size
1.2MB
-
MD5
b2af81698f607061986109b4a9004819
-
SHA1
36a789f49738de6a10bfe82a282ee7e5fefd396b
-
SHA256
4d1eaf41136ac3faefb76f5cf2efe8e7f8a11fd6a943a8b11f2f2a8be5cfe19b
-
SHA512
1786885032c3a7f4b4d6624dc0f1365322619f6ed92417a8671fe0a36e20016e677f254da0909395a5b4d0f4c3403072eed8c1471dc3b729cb2d687c4f78b6c4
-
SSDEEP
24576:JDpg2QmODTJROAxb4KHA2N8L+0C+6eCKMY3EEsBIzdCGvpzdZRE:UhwJN2NSC/glTE
Score1/10 -
-
-
Target
qmltooling/qmldbg_debugger.dll
-
Size
116KB
-
MD5
74fbd17a10ee7910658add7ad2a37abd
-
SHA1
31babcf18e4f0ef466750923f8c97fe41cebe86b
-
SHA256
07d9a12d9804691ae0d8933b5288d256752b85e72ed11f67ada4c238f8ed927e
-
SHA512
ce1d22453e6a1826bbdedd6427a961b712559bcc5d4482d8a0c558b14066ad84cd765900d959e67baef80208632d685eaa03d68734748cbcb4d77d906f4bb3cb
-
SSDEEP
3072:lz/uydNIV0Jo69p+v7UwuZ34FBVSIG3vwik+L:pNIVe6uZ3cBVSIG3vwT+L
Score1/10 -
-
-
Target
qmltooling/qmldbg_inspector.dll
-
Size
62KB
-
MD5
5d9288ac26c98de4ec4a67cd1151c0a2
-
SHA1
6a2928b67a9ecfe6a3af2c6fe3aa549937d63dc9
-
SHA256
806e2f98b282b0337268cd25e040a5feac31eb732d524dff83e9d569f145e364
-
SHA512
91ecc86988f5a55fba214e5d8cd783b17613a990185b0348fa7392fe4342f2fc103047e85acce083d54d56a0980f865eabfb30d488c76fddde20fc934f4fd4e0
-
SSDEEP
1536:etVcuXJS62Vv0uh0IJOY66SQYDjftO/cuUfM:ePZXJd2Vv0uh0j6uDjfmc+
Score1/10 -
-
-
Target
qmltooling/qmldbg_local.dll
-
Size
26KB
-
MD5
6e2f5c7eb8ba9a87706d7ecb9d00eb96
-
SHA1
2bdb161e89bc4b85bd0d9ce6001c03d9ea24b845
-
SHA256
0e44303bb24b21e56cad9b7f98109b6e0ee00eb7b244a12ffbb33845c50e6b85
-
SHA512
f5902c9e82906e28b96268eca205059b718445eaa6618110fcbd9b6388bd8b42ea78b9f8dcafeb87e7de6e1caca32d766a9a24ed85a403fe75c2cc34bacc970c
-
SSDEEP
384:CakqtaFMEym1RKhj+X50mmjXZt2bFAHu1a2bPOndDGolvDgf2hLl6:rknFMxmfnUbL25h1a2bP8dDGotUf2hB6
Score1/10 -
-
-
Target
qmltooling/qmldbg_messages.dll
-
Size
24KB
-
MD5
a4d0d1e38fcbe4e7d0ffbddb04c31aed
-
SHA1
8147e5c8d13d6f06654b06daa0542a07e734a0f2
-
SHA256
b833b2837dc09a645be20c8199dc4e7d267313af4e02ca04f82a976842a5969d
-
SHA512
c600790b7a989e9f11f508ac727e8f112c1631d43acbbe291adfa4ec195ba640d9eebf7c4ff74430250b856744fac16acfc3079f6ea228b7ebb663d8693ad371
-
SSDEEP
384:vpD/5FytuXbJNYFqvj/VXdrl5Ru41zH6Y1rUXu42OOqndDG8dDgf2hd:vpOtuoFqhXdJf/42OrdDG0Uf2hd
Score1/10 -
-
-
Target
qmltooling/qmldbg_native.dll
-
Size
31KB
-
MD5
9f4e572a830d316760a0a4ced3532ad8
-
SHA1
f9ba7a2f99d13d1cc77f3f656735acb9e5e8433c
-
SHA256
f51fd1b5d29a9620b2f5858acf6285f570b5a76744cf5b071fc6e1308c32c527
-
SHA512
b2ccc14a995be0f2bc42e091cba755c10573bc202d44938dd3e8ed598a0fac5536ffae26bc3297aa1bbd0f5d7fa0f373d24dbe2487ea815a6585a2b577b5009c
-
SSDEEP
768:n7h1eXQDldU9cmIGN0JbPPHAdDGvUf2hB7:n+XQDlnmIGGJbPPHA0UfU7
Score1/10 -
-
-
Target
qmltooling/qmldbg_nativedebugger.dll
-
Size
45KB
-
MD5
ac0dfc406356cc55235936da7cdd76c3
-
SHA1
3e8de54b84fb682b9dba54a42609dabb33e557c6
-
SHA256
422e6e8fe733694215f0e73ad0fba9f690d34c7343ccd5c80e55822b61a2cf56
-
SHA512
77f72a698ef1d654bbc8a4989d5e46fc436abb9b9713fa275b7b3887ae53f5fd15f2bf37fc8fa4431108cfe0813a59235d99f9197c6b1fa4d6740a9b4f91b2f3
-
SSDEEP
768:FbPEOpW3y9D8E3eyfeIwm7zAMGs55z5GsIhAdDGlUf2hQ:JEn3y9TeyZ778MGs7z5GBhAUUfL
Score1/10 -
-
-
Target
qmltooling/qmldbg_preview.dll
-
Size
75KB
-
MD5
267bab8d99772ba5e8eacc0ba9a4337f
-
SHA1
019cb909957e4e8fdfb7dfd8389c92ba31495c3d
-
SHA256
38ddfa76f6fe31cd4a11334772d05a3e26b1afae6fe84e0174e5db930ef42970
-
SHA512
b4d872dbca7c2f33e48065f8504b45d5df14ebfc7e9e69d8fbe3d76a74812a10d848f671320bcdfcf9c4127f6548c58f5cf2fbc5987e78e9b723d1b911408873
-
SSDEEP
1536:jy+L6sZC3q/lMN+hvS6Fgpk2Ljmi9GZy8qQjfPYP9oDUD8lHUfAb:jy66I6N+BSZpkUmi9GZtqQ4oDXlP
Score1/10 -
-
-
Target
qmltooling/qmldbg_profiler.dll
-
Size
61KB
-
MD5
4f1c656f4c1f9ef9a8d5a4307beda10e
-
SHA1
7d45e3fb9e56e0517435e6b40592781ba417c8b4
-
SHA256
99be20dfd493a12528a844b8b5f02d17e306d2a7cebeadeec08d620c0311f592
-
SHA512
bf5661c950b8adc8111311d674a78195c6c23672edafd348e0dc940cb9adbc6186dbaa2327cf9a51db0af96102bdee41b8045bc0d12ae3d8adeaa20b82205ee7
-
SSDEEP
1536:74d8mAKz+746tOVkcKtrfOD0GWW+2bHPI6L4TMUfm:Ud8x74hVCfc0GWr2bHb4T+
Score1/10 -
-
-
Target
qmltooling/qmldbg_quickprofiler.dll
-
Size
28KB
-
MD5
2ea6df682c77a0e744616334fdaa03da
-
SHA1
5ae14f05a79869b79ebf7bf1e78ff77c717e57a6
-
SHA256
43bd861a6a64712e2c77be8cdd8a9bba7c068749a3cc824ffd14359f52c0b5d5
-
SHA512
ec71a4912979b2273b6e2e0a6e0ab458da2276e77076a77a4a4057b4eac54431d782640a01d1cdd02f27ba310cc4bb8915c735375a06595f46e9e192e0b985f0
-
SSDEEP
768:wHhZBz8gerWblJvJtXepGqUsngSNdkdDGj9tUf2h4:eZmgerWbBtupGqZngSnkQ9tUfH
Score1/10 -
-
-
Target
qmltooling/qmldbg_server.dll
-
Size
50KB
-
MD5
874b54d11fecfb8ea6754758eecec152
-
SHA1
5adbe0ccef68e9228d2e2e5ba742be3fcdfa2d66
-
SHA256
2036f2ea1f63cffb3c9de563c3b51c8834f3664fdbd124da90beab786255de0e
-
SHA512
7c7e024ac544fe6a226c29770626a421f6d0b30e27c71078692a0cf0b354dcfd6473b876eb4def326567e0e190c7106525b07035a42c243007dfd70fd8ea1f11
-
SSDEEP
768:tHFdR4Hi7JAV1r9RvYW29bfFxdYAZK8Mxe1RqsMUh/rliAdDGK72iUf2hN:5FdyCC1r9cFG8Mxe1RRMUh/rliA8iUfC
Score1/10 -
-
-
Target
qmltooling/qmldbg_tcp.dll
-
Size
25KB
-
MD5
d3d6429e0bab0dae84929599deffdb5d
-
SHA1
d02b69d938d4eae917aedcb978ef7f184723ac05
-
SHA256
38c79b70680ddfd823968551a85e1fd1081f213c0cc65d0f6593beeaa6bc5260
-
SHA512
22d4e5d8377ff396072b941adcdecfe1180ae22d1259db1a10d34793d6e7a84b48f10f4a1fd2b00f76dc27cd8724a968245ca7edfaa9392cc7952b7a7d5efaca
-
SSDEEP
384:ox6BLeacqjsQJxcENj7TfNe77myDT4onaAXuIDgZ3ndDG5Dgf2hHb:ox6BLgqBcEG/TohIDgZ3dDG5Uf2h7
Score1/10 -
-
-
Target
scenegraph/qsgd3d12backend.dll
-
Size
251KB
-
MD5
93b303c417071f1e7ff40d0a3bc99dd1
-
SHA1
c3a14b15fcb4344d3b6fea4fb5720347a6b8d54c
-
SHA256
ee23a80b129c7583d71e0318d10925846b1ba63fe72063036e2448698a7a7f7f
-
SHA512
60da781b815f68d9fc007e2633d6386052dec34def619d488f9b392a43aa785fb955f9df2a55c1c56099396b649b3f697b00565f9b3bfc477fd1f85042fe74ad
-
SSDEEP
6144:fOj8+Wcr7GIArXnlwlBg4bHAoVRp5UtkX14rWuOIlbowGWybg2Xbj2OG/6OxESPp:fOj8+Wcr7GIAr3lwlW4bHAoVRp5UGl4p
Score1/10 -
-
-
Target
styles/qwindowsvistastyle.dll
-
Size
129KB
-
MD5
53af56ea898bb82775fdd0f940c429d2
-
SHA1
5675fd1243ea87e59256b05e5a7c6c64298312ea
-
SHA256
547606fc8a6b20a2616a4f390c6cf0e7aa713f6ad53bae23c8d1b021885aab0e
-
SHA512
401f9b346a3da18e750cf26cc05e1013ec8446955344d0e353012abdcb4af4e836515531b1bef4c2fa5a07ec5b41a9cd74c68e39b977e43f9ad1a06ac32fa27e
-
SSDEEP
3072:Ef08LJXP50EuapXuJWd62ymc7xliHCTBIm2/40mwr6D5RXffv3xf6D:ufFRQLTBImI40mwr6D5RXffv3p6D
Score1/10 -
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Defense Evasion
Impair Defenses
1Disable or Modify System Firewall
1Modify Registry
1