Overview

overview

7

Static

static

3

Vector Mag...15.exe

windows11-21h2-x64

7

$PLUGINSDI...ns.dll

windows11-21h2-x64

3

QtCore4.dll

windows11-21h2-x64

3

QtGui4.dll

windows11-21h2-x64

3

QtNetwork4.dll

windows11-21h2-x64

3

Samples/Sa...ll.pdf

windows11-21h2-x64

1

Samples/Sa...ng.pdf

windows11-21h2-x64

1

Samples/Sa...cy.pdf

windows11-21h2-x64

1

Samples/Sa...ng.pdf

windows11-21h2-x64

1

Vector Mag...te.url

windows11-21h2-x64

1

blas_win32.dll

windows11-21h2-x64

3

imageforma...g4.dll

windows11-21h2-x64

1

imageforma...f4.dll

windows11-21h2-x64

1

lapack_win32.dll

windows11-21h2-x64

3

msvcp71.dll

windows11-21h2-x64

3

msvcr71.dll

windows11-21h2-x64

3

vmde.exe

windows11-21h2-x64

1

Vector Mag...15.exe

windows11-21h2-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Vector Magic Desktop Edition 1.15.zip

  • Size

    10.4MB

  • Sample

    240313-f6pyhadg7x

  • MD5

    7ffcfe458940d33b91c562eeaf6d4c2e

  • SHA1

    787dc40d085f7233cc1bfc55f40bd757b94a0272

  • SHA256

    583feea06538dafdcb84c84722b337bf945259c0d1cb9d1e5773e4b81d1638f4

  • SHA512

    f77d24f1c5629f4c3a72598d649b6cb7fbcc20054c079c52af9bed60b3797f85e688f3fefd0e870e4cfaca520544464520dc30a8254c8bc16f9df685d15ca9b1

  • SSDEEP

    196608:aknMiWCdlCIeBea1wJBGlyV4e54ZMOYr+kv1YCVTy+LVh88ROf:bnq7Nea1iX6e54ZM5r+kKCVTy+L78mOf

Score
7/10
discovery

Malware Config

Targets

    • Target

      Vector Magic Desktop Edition 1.15/VectorMagicSetup_pc_1_15.exe

    • Size

      10.0MB

    • MD5

      8652c48248d8b0bd2a2586b1fd7cd52f

    • SHA1

      a8ec0dd69aee4c4f49562737cd8195f9e8848ddd

    • SHA256

      2376d7b13f021efe967c00aeb5caf05b06b36763fbf2efa31f0d38efd319cf4a

    • SHA512

      4671b988f1da6dcb85611f4e51853e7dbbadde76f2c2277b10d21bd2fe078650f1c5c7cf5222ff7e06e510ce169859a3ff6fb694836bcd7f9f9fd4faeb297312

    • SSDEEP

      196608:LknMiWCdlCIeBea1wJBGlyV4e54ZMOYr+kv1YCVTy+LVh88RA:Anq7Nea1iX6e54ZM5r+kKCVTy+L78mA

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      14KB

    • MD5

      325b008aec81e5aaa57096f05d4212b5

    • SHA1

      27a2d89747a20305b6518438eff5b9f57f7df5c3

    • SHA256

      c9cd5c9609e70005926ae5171726a4142ffbcccc771d307efcd195dafc1e6b4b

    • SHA512

      18362b3aee529a27e85cc087627ecf6e2d21196d725f499c4a185cb3a380999f43ff1833a8ebec3f5ba1d3a113ef83185770e663854121f2d8b885790115afdf

    • SSDEEP

      192:86d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jwK72dwF7dBEnbok:86UdHXcIiY535zBt2jw+BEnbo

    Score
    3/10
    behavioral2

    • Target

      QtCore4.dll

    • Size

      1.9MB

    • MD5

      0620e2b97b7f7cd59a14e67e9905678c

    • SHA1

      259b755725a3815a2af3de31c0bec7a2a388e318

    • SHA256

      068468ec322c9e4b3bee0b172849f05b4657d52cde14bf378133a5693d19f3bd

    • SHA512

      f39b2014a70c783db9f3669a1ee44ea56ff22585571f5fe1683b63abf2afb7a0df588f322329e9bb942ddc4d4ff6160aa988c31ca009fddfbce439a88c488856

    • SSDEEP

      24576:RgXNqUc/RrH4w2oUke9PvDBrlCh5RUntpfQ9YoDvGPshR8ymlV1TuMYNtNHonbim:RgX0UcZ0hTQhsfQ9Ym+mXmdTWoC/ZBs

    Score
    3/10
    behavioral3

    • Target

      QtGui4.dll

    • Size

      6.8MB

    • MD5

      59ec3f382451aa86bbe36e5d5abdfc03

    • SHA1

      7009dbd5d34ba7f7431caff98da4d3f860fbf3ac

    • SHA256

      fe46f6aa86dae4c7815b2a3c2e7902bc215171086e86987488dc4d7e83979a18

    • SHA512

      d4a8e2bba87927b8f290bdee6cf1f8dfc109145a1f0997832f8340acf9fcafcd49911bf29cdfb88aeb72b16410368d735b1e917be4bfbe24208bc2f821ad51a8

    • SSDEEP

      98304:OXaLoDHMojnMRGmrC3RLwLqrzhCHzLY8WTvrm8SaOx4:zMjMiO4AF

    Score
    3/10
    behavioral4

    • Target

      QtNetwork4.dll

    • Size

      768KB

    • MD5

      0061dfa9a568d12e891cde1d7d23fc28

    • SHA1

      1ad14aba2c2308cf0f862ad534c97c0b5777a079

    • SHA256

      3f7c9b9fa5060f7fd2eea69c6423724aa3d7d77f968f4c5d3316801fbc6c969d

    • SHA512

      1d84bab14b27f582fe18d7898e7ecaaefb898c4798fde0c9e0556fb4e1f056c21584a0c7696cdc5ad8930ba2283e874ad69cd226bc22dea86af4b76fdcc1ddd1

    • SSDEEP

      12288:teYOgJAChKNPoHMif6A8k2KKCWOM/v0pQRWTjMWL4hPFgH:tNYA82N0aj2hi

    Score
    3/10
    behavioral5

    • Target

      Samples/Sample Output/Logo With Blending Small.pdf

    • Size

      5KB

    • MD5

      10c04273fdbbee40b2ae7838d2a74f11

    • SHA1

      36d8874ff7e6bbc3416164747283a0ec8eec2644

    • SHA256

      ec06b448537ec47322f8d32fa8e6680c855c48a49977930fe78589921309fbe2

    • SHA512

      3ef939bb9df677419fcf587450ef7a191aff5bd39d9e3bd5b970b97d91e216ee979e19606a3bbbab72204d84194e94b1aaae793561a92b2deb9a64fa7dee5027

    • SSDEEP

      96:6I1kXYpbO57IqsDwTPb8qXLD9VLOT1w0RAATZvEDWOVEUPOLTGNlsLtyUARun:6HXH9TPNbzwRDsWjUPOLTYlsLtxARun

    Score
    1/10
    behavioral6

    • Target

      Samples/Sample Output/Logo With Blending.pdf

    • Size

      15KB

    • MD5

      4081bc326b31e782f5f1060f50bfdedc

    • SHA1

      2706a30c227b2f91bde64400dd7c37310c35cffa

    • SHA256

      f51cb12b5fe7e5a388c6a4fb128d02b12b4e4c7dfc504b6f48a6dc6a59e9535e

    • SHA512

      8d3f84fa2499c13ba4d3b68f5516e3a29050b8c4a5674e1afd2408f24a5aff1bc46194568d4ef998b894a4c4d5c13c6834b7d18d50646204615e851c69b0fea4

    • SSDEEP

      384:xJRJJNYmk2ify79bPj24eki1C9lJrir/v/ExzP4WGhYwFroqXnmWAnANaeSnXqty:xhJC2uy797ri1WJGrncz41hYwF6JnAdQ

    Score
    1/10
    behavioral7

    • Target

      Samples/Sample Output/Logo With Transparency.pdf

    • Size

      10KB

    • MD5

      49840fe0a23c5fd79853846e4a1522ca

    • SHA1

      71ade768d134d46f33de213e279de2eec6a02000

    • SHA256

      ce635bdbb09c0c33efc3667cd73978be1cf02c9787ff2c570f28012f0d40c0be

    • SHA512

      88cea03d6dd102e6111ef6f2e57bc88afe233c02770c30b7f301a59e12386a392a3b8c8dbcc795bb8b9e8a78fa854ccb847b9c88dcd0c7e99c81feb10292dc3a

    • SSDEEP

      192:E67ROPKRX6yFk3FwLUnvkxVIndARK/+b2O/WFAInk0l6NBw9wk6hzPLuWO4Oc+UC:DpRXiCJxVImW+B6nsv53BuWO4Oln0n/e

    Score
    1/10
    behavioral8

    • Target

      Samples/Sample Output/Logo Without Blending.pdf

    • Size

      11KB

    • MD5

      47b72f657372e17377ca22880f637480

    • SHA1

      3e7d21e0268b48743f14c0768a2055884cc19726

    • SHA256

      1b360d56abb31a2827851f6693a11db9a50ebd3c773e406e64f8ff37e7b52cd5

    • SHA512

      b0a1d35b205aebd812fc33c045877959619981f702d047c3b6d5933e9e4050376d915ba277be915197cfba7be1ffd7a8a41c4808263d3ced03d8b7487f505cd6

    • SSDEEP

      192:lUoNSXiNLJD2BuNonDPWw0yWvmx8Uunc2dxrN8WMf2OVYBSUzWT/ABbN3+OLIYlq:lUTab+WhjsSDxEfvVg8e+OLIYlsLtxAW

    Score
    1/10
    behavioral9

    • Target

      Vector Magic Website.url

    • Size

      170B

    • MD5

      6597bc9baf32b96f061ac3c6bf5cbf2e

    • SHA1

      7d9686a67e077b2c53ca2cc64700c63a9d2c6254

    • SHA256

      a6a2882d4bb48d34785880c713d3e6efa559e515f66f993430b0d58833dd6779

    • SHA512

      5aa6da316d0122d0526974ae4f09224e17141f0e160527e5d72da0852ee4fe52b9b8f0f7a4ca5a9d5e68e7bac1ccf2c1fe121d9e55c2194a6b5bd412ee83abcf

    Score
    1/10
    behavioral10

    • Target

      blas_win32.dll

    • Size

      640KB

    • MD5

      f098de45baafcf9a16762a5858f3e23a

    • SHA1

      f1b32e4e292cb5900eed35b5daa032c730e2a28c

    • SHA256

      d8406d39402634d15970215d7398d26cb8c1dc69a56c27ae32ed356b34415d20

    • SHA512

      3238fb9c9bf3682bdddc1eb9625f565d1084ceb227f666f6c33359200014ba31c040916083b45310a2d9deb11e5e055df5ed8e9e4ecef6f8902023a24b61cd3a

    • SSDEEP

      12288:fedIMn9VIGfETs3iko6XUqszwOle2Jtb:fedIM9Wmiko6XUqscwe2Jt

    Score
    3/10
    behavioral11

    • Target

      imageformats/qjpeg4.dll

    • Size

      128KB

    • MD5

      4da957411973f8318c73de9cf1d5e439

    • SHA1

      6a26c441bc40d6ca708c048622895c590bf30680

    • SHA256

      375beaa3cf374c2a41d26823415d7842bb92ffe27c9e67696d17ca3a8673b6a6

    • SHA512

      24184bf9d4a990f1e528238c0abe36d411e956485c724f7f9f5f3ee89a0078f3e7d0391566c4d8be05f118c6b3522c8ade77c8ee02a4c50f540d8fbd81583b98

    • SSDEEP

      3072:IPSPIqAz+qUVgV8mMafNmiJx1W/k35HVOhmJEIVd:I0IWVgV8mMaHJx1Ws3hVOhmJEI

    Score
    1/10
    behavioral12

    • Target

      imageformats/qtiff4.dll

    • Size

      276KB

    • MD5

      38696fda50e39c921f35abd03371d04f

    • SHA1

      2d2f791fae819ac36aae6eb46e3292f4232af9eb

    • SHA256

      f42c181f5a5e7e466456f12504b80e4bdd812ec8419031d10c0fa3ee8878ff5a

    • SHA512

      314a750b4be7e8a309241a186eecc144e7c1e7c00af852c724ed5f04a60843a017d15da98cdf730e1fe7449007da5f4ba052ce73e9799443d324169e44c09825

    • SSDEEP

      3072:Q7mJMvEFiAoJgLBGcL2QnEy+T+X6E8ezJROIvh+fkK+FKOhq4L2U:6AhGwBSUROCc2FXBh

    Score
    1/10
    behavioral13

    • Target

      lapack_win32.dll

    • Size

      3.7MB

    • MD5

      0ad0ae2ebfa4ebeef917bbb7a1de028b

    • SHA1

      a995c87707a5dc2b3cbbd0644c7a68ebce5d84c2

    • SHA256

      3f4ce674e73b654aeb08ff10694a3baaea4c0774b3f75b08ff8de970801fdb0f

    • SHA512

      0b7103bcc654ba36b1ce7ba932e892a0e95bc52ae52c472d22d32e6857c560fce10cbf2c78376201fd2d79ed4f7dcac46d692f25b8131fc813a97baf25d279a9

    • SSDEEP

      49152:u26a5XijluuHe+D5bDdt5Sa+dtCcdQCWdlNgCyPzfMZVpa55elvy7cCPHyDW4sYJ:V5GDmyd2j067rShv

    Score
    3/10
    behavioral14

    • Target

      msvcp71.dll

    • Size

      488KB

    • MD5

      561fa2abb31dfa8fab762145f81667c2

    • SHA1

      c8ccb04eedac821a13fae314a2435192860c72b8

    • SHA256

      df96156f6a548fd6fe5672918de5ae4509d3c810a57bffd2a91de45a3ed5b23b

    • SHA512

      7d960aa8e3cce22d63a6723d7f00c195de7de83b877eca126e339e2d8cc9859e813e05c5c0a5671a75bb717243e9295fd13e5e17d8c6660eb59f5baee63a7c43

    • SSDEEP

      12288:fJzxYPVsBnxO/R7krZhUgiW6QR7t5k3Ooc8iHkC2eq:fZxvBnxOJ7ki3Ooc8iHkC2e

    Score
    3/10
    behavioral15

    • Target

      msvcr71.dll

    • Size

      340KB

    • MD5

      86f1895ae8c5e8b17d99ece768a70732

    • SHA1

      d5502a1d00787d68f548ddeebbde1eca5e2b38ca

    • SHA256

      8094af5ee310714caebccaeee7769ffb08048503ba478b879edfef5f1a24fefe

    • SHA512

      3b7ce2b67056b6e005472b73447d2226677a8cadae70428873f7efa5ed11a3b3dbf6b1a42c5b05b1f2b1d8e06ff50dfc6532f043af8452ed87687eefbf1791da

    • SSDEEP

      6144:OcV9z83OtqxnEYmt3NEnvfF+Tbmbw6An8FMciFMNrb3YgxxpbCAOxO2ElvlE:Ooz83OtIEzW+/m/AyF7bCrO/E

    Score
    3/10
    behavioral16

    • Target

      vmde.exe

    • Size

      6.4MB

    • MD5

      d35c2d8f4971b97677d7a4a3b018179e

    • SHA1

      1b2a862a7d6cef7b36cd3c4b4c16beac0cb0b0fc

    • SHA256

      c491656b962debc215a8b6e757a9b2949ffe50a36b5f2db692706bcd4ebface1

    • SHA512

      ea3d1cf3f8769b0666875157a40346dd09c5cc9712086bb7d49c28de74a482412335aaad142080b14b05ced306e229195d757df01108dd6801aa9fc7e5deda92

    • SSDEEP

      98304:rr8Gw3iR25yVFV59b+6iUBc/bgS+2SqIeii:C3iJ++BEMrti

    Score
    1/10
    behavioral17

    • Target

      Vector Magic Desktop Edition 1.15/keygen_vm_1_15.exe

    • Size

      366KB

    • MD5

      2f5a3c6e2b15a1751f10025affa1c8ee

    • SHA1

      48a54090c43370c0327bd8967c9ca1b134be1d80

    • SHA256

      c15a78b7c5f41aa80410b08150e5ae73e43eac1d8556dc0b237a5aa6fd42c374

    • SHA512

      588f73344817b0781d8d814563cac5286b808acf549ed6204613ce5da4838d02b32a6e9997c966c387471b3d928129ee0ec01d3663f12e529a47ae7e2d5f1527

    • SSDEEP

      6144:I81c4nDWgRAkPUPNAOgQETcLjE+jFkO6o6qErtv0GPsbd7ULIv22lRV0xsY3y7Dn:t1VR3PU8TcLw+pkFoOrPsx7Uy2ERyCYq

    Score
    1/10
    behavioral18

MITRE ATT&CK Enterprise v15

Tasks