841a98464457d2fceff8a35e6b575b1e5e0681f7232cb3c2b94c698e38960a25

Target

Prefetch.zip
Size

21.2MB
Sample

240325-zswcxahd77
MD5

a394e06a529a62d8a0ced7b5209378e6
SHA1

90414df61e25dbaecc31fbb0beba6edf2f159520
SHA256

841a98464457d2fceff8a35e6b575b1e5e0681f7232cb3c2b94c698e38960a25
SHA512

6138832ff04c7f556b84b295d671f164104f905770a8e4c2a58c7855cfb8e42b31bf9daa5ad59964e34d7c82a0f5f760564151b1219bb1931c601491941c670a
SSDEEP

393216:jzAM2Eb2nznrCzQDkD7DbxxTfQndqURaAfOXxM4k5TZfZhmKX38FvCv:jz4wozrCssTEs+2XuRF8Fve

Score

3^/10

Malware Config

Targets

- Target
  
  Prefetch/TRUSTEDINSTALLER.EXE-766EFF52.pf
- Size
  
  5KB
- MD5
  
  15d917216c462eaab500c6c47fd82b13
- SHA1
  
  d3e0f113eb75669ec2ec3dc430739effd0c4ffb7
- SHA256
  
  05bdd8ab5cd54d22b06d91cffa5eae5762c25c3ac648b3815ea1a28fbb4cec02
- SHA512
  
  f9c7bc18b14e806df1eee05d1875e9aa62bd569c368c5ab59a7fab4b590730570104be6a0d58cf46043ab454b2ae1c02e0893b17b3b885b5be59abd36d025ece
- SSDEEP
  
  96:Q+eEXT0yWDxnrssR5IT0MUNIKW6TP0/5s9JlafeFtHI8Cf7aGP1tdVXGR:J6yenosR5IUnrTC5s3FFJIvjpP1tdNGR
Score

3^/10
behavioral1 behavioral2
- Target
  
  Prefetch/TVSU.EXE-8F40E663.pf
- Size
  
  14KB
- MD5
  
  54689efd5d3c049ddbe67cb7f60e62f9
- SHA1
  
  f14ff274326a1f8e701c054b5cef8cc039ddf54e
- SHA256
  
  b18bfd1e80bbb5b67a618c87b8749676a5d3fb6b8568762c742614adedf663e8
- SHA512
  
  626ad72b52a8f043378ed240f7ec06ad6c8007cdbf15cd1b2b2cfe7249c6a9298d7e81ceea4a8684c5734dbd676eb32a7f870359f54232b787bff87fb8afa947
- SSDEEP
  
  384:eCNwuWQGBYt10rcyPYzCUlnnnYDwe746hX3dG2Bot/x1:eCzCYtScyPYhnYDwCVX3dG2Bof1
Score

3^/10
behavioral3 behavioral4
- Target
  
  Prefetch/TVSUKERNEL.EXE-F0367088.pf
- Size
  
  44KB
- MD5
  
  cecc9adb43efc3fa278cb75f4babcc8b
- SHA1
  
  aef2d8e6432b62e3d3dcecd02f2905fed19b1a4f
- SHA256
  
  b14974ed8861a450ed34f88538726d321eda6fba8ada5764d7f63c9631d057a7
- SHA512
  
  2147a6d8b63245f2da38a293c3756bbfc7aab3b5edacbc925ab880aa428a4423f79f7b5ad7be5be994283eb4b4afac3360bef098c93e9dbc00b4a0aa8035d0b5
- SSDEEP
  
  768:+odD7XMvxrscf2f3O0PYi0CLjO7Uwc3DB5mkkHBKLUuxu:+oVXwscf2f3RR3mHw5bkhKC
Score

3^/10
behavioral5 behavioral6
- Target
  
  Prefetch/UACSDK.EXE-49ECDFF8.pf
- Size
  
  6KB
- MD5
  
  370a18b0bbe0c5030d372cdb978aacb7
- SHA1
  
  1f2fae869f14cb292014c33af7ef37721e1d05f8
- SHA256
  
  2a75c80e92d24f555542ea708b1aa29136226da6d050c511e1d957b3a05e56ed
- SHA512
  
  b91101667a6f6b3dd5b63324ec9ed96e12e522d2a1eb93af1b677b93adfc7af743610f03481e0e986883b6688ce536cd3fa298eba8a6a4f7c473ee5ca7878c9f
- SSDEEP
  
  192:rrgARCcuyQNlfiw+fj0J7upL5XXm10GO0xfUz8hcNi:rrjCuyZ8wJixNXm10GpxcNi
Score

3^/10
behavioral7 behavioral8
- Target
  
  Prefetch/UNCSETTING.EXE-1EA31F7D.pf
- Size
  
  9KB
- MD5
  
  6b64fc75331e61a911b68c046d412082
- SHA1
  
  8cf01b870e87273139115965beee3e03c77b5200
- SHA256
  
  6babfb4070f7eff283760e5a760c986c99c9190401ee251abc302c92327a97bc
- SHA512
  
  8326ec6016452c88d5ae005244da2ba0b1139f653e11cc2fd0864d67ea13a52eada3b8d846697c1246fc36cd1232b38c4a2cf190ca0c53cfb42d71b2481341ef
- SSDEEP
  
  192:AjbzqoWm3wYGzV+/QTp6G3kaWTQQpgf2zhLs1W4K9m0c6k80iy9I2KkS0Kb5yoHz:0odp6+WcQhzh9dAx6kcpIY5pT
Score

3^/10
behavioral10 behavioral9
- Target
  
  Prefetch/UNINS000.EXE-1FD81499.pf
- Size
  
  8KB
- MD5
  
  cff2ebf45854c9059941a0f8492b03fc
- SHA1
  
  ce8759a27371dac0354407d7958a6d5ef412897a
- SHA256
  
  b46a3e1cba6573694ef43ebfd51fb4c061e0b32dc14f3ecc2cb275de59a49c75
- SHA512
  
  fd767e5bb16dae8f30addd9d9406bc40865babd8bbe97e412d0dcce7a7bd0b1e070e32059eda4e2c139c9571afcfb842208464cc2eacf7edb272cafacd79c8ee
- SSDEEP
  
  192:oBrwTRIgV7YUEcpDErRb6/tVUajvAOti1DDdJ1/b5B5SFm4dCu:oBrwRIgxtLErh6TvA1xDDJk0Vu
Score

3^/10
behavioral11 behavioral12
- Target
  
  Prefetch/UNINS000.EXE-96BE8F9A.pf
- Size
  
  9KB
- MD5
  
  ec8c838d35935d47b4a6f07555267050
- SHA1
  
  249a1238849fef5491b77e5324ced98e3024c037
- SHA256
  
  2e778bb7b547183c845f598d1350f3884ab914adecbe4c8fc73c048054aa2eb7
- SHA512
  
  5e3d4774cb5a60d27c66fff36a89a5660d77d19bbc6e3ff1b898ae8cc07d738597de5e978a8fbc68ae36680065f6cb2a7cb857102f168f26542040e9dfb0910d
- SSDEEP
  
  192:M4q1WGhSqVrb+ffirDFRKMoy9E99NtRr+qJkA7HQXz4mk+t:M4qrhSqBb5H7oye9fX+WcXbZt
Score

3^/10
behavioral13 behavioral14
- Target
  
  Prefetch/UNINSTALLFB.EXE-E48BF053.pf
- Size
  
  8KB
- MD5
  
  d58a85d08b18d5c944d94fc12a8f1166
- SHA1
  
  bbad8a9d2c304cb87cd24ba24e7f0fda9d3fb73c
- SHA256
  
  1bb6ef8d55cfdf51b0b30c4b782ff9c201031aa71c487a8b5573a2d19dc1d654
- SHA512
  
  3a9f8c19ac18e05ea2e08aa03bb3ea62cd63cae02a716cf92e554f489912d735659b2d8fb5bda82c7845e7f028e111f7188ad27566ea5370e7c26a16a0742d95
- SSDEEP
  
  192:0hZOR8BqCXYZm92tD5nuvZAe9EU6zqw/a/39U28qBL/eE:0XdBqCIZAEuCesNy/9UeBLz
Score

3^/10
behavioral15 behavioral16
- Target
  
  Prefetch/UNIVERSALADBDRIVERINSTALLER.E-B475736B.pf
- Size
  
  9KB
- MD5
  
  5d5d7e52816f8338984a20d8328eb808
- SHA1
  
  0098d661a1ed616a3ae629ff9e54558e8d1d3599
- SHA256
  
  b41b1d221295a5ad00c39c4f1d86cc5cbadd1b07794866d1da8c68b84a7d3b59
- SHA512
  
  b6afb3c23c97a87905cad4f7c38c06c12b00f33ae4a4be6dfbc7da07d041b955775c79f2a798499a7042734a75fbbbd31194b94c894ef8b4d208e8ce3e61b72a
- SSDEEP
  
  192:xuxV367CsWP3zz1eHi+EM1Y+MB5NuphnEccAxJSKUnBPkfYrAN93QubCMzNW:oxVq74PjzsCf+MnNuphnEccG4nBWYYWN
Score

3^/10
behavioral17 behavioral18
- Target
  
  Prefetch/UN_A.EXE-0C2A88E9.pf
- Size
  
  19KB
- MD5
  
  2796527d29406ba7d0fe986df89c6f12
- SHA1
  
  a67149de5ddcbcf0ae1877fdcd099902bdb0ffb5
- SHA256
  
  de53ff8a64f9ca6dcefa8ff3372d86a06fe0ec403a4cbd383753044c22b5a3f9
- SHA512
  
  5a016c98b572ace0302d9b68234a93b8cd67533851907e063384dd91a34175b1a85c09b1fe3f6fffb128500d48bd776900014fa0033047a1213245ada24186e9
- SSDEEP
  
  384:Jl3pv3F9jXdPJ27GJk035JugH545xUnyGmmji4VOiC9kL9j8CQXtJ:Jl79jXLEg37HebfKji469m4/
Score

3^/10
behavioral19 behavioral20
- Target
  
  Prefetch/UPFC.EXE-89D4FAEB.pf
- Size
  
  3KB
- MD5
  
  6cfedbda039476a4ad0bc89a39ece733
- SHA1
  
  e35ea1f98ce8e4241d95d9ce95f8ea9f7e7d1520
- SHA256
  
  41f0a0fbe8851319e36b840215c383b99e5785a2734264b56fe547a461f0d9b1
- SHA512
  
  4d3d89a5f7feeeac8e733e14afdbc1556dc06499101b61e73cb951fe18e90a956839d6d77c2d01b12ea6fbc7f39f09df025a96b3a18192e388baa485903a6627
Score

3^/10
behavioral21 behavioral22
- Target
  
  Prefetch/USEROOBEBROKER.EXE-65584ADF.pf
- Size
  
  5KB
- MD5
  
  f3478d434c74971f82c0cf28ea97e9c2
- SHA1
  
  e34517fe6bba48bf93f85e504f987e8c6eadf7eb
- SHA256
  
  9804f7a05470c751c39467999eb5996682d192d5fcb7017f418a502aecdfe33e
- SHA512
  
  f01a955e8280379eae5a0cf32f1d4763ef5e0dfc9b2b2e1f71e1b87202eb0b611ac17efda440af158258d7bf755d186e04bff3252d06ae9c7fb3ceda4c8696ea
- SSDEEP
  
  96:2gQgXBrdcUbiWUr0fuphkprzndQrXWa20cjPnA4IBJ8IxazqXc7Oxenj9IrF2GMv:9NNhBt+rX40svA4IByIx1c7njmrdtgn
Score

3^/10
behavioral23 behavioral24
- Target
  
  Prefetch/VC_REDIST.X64.EXE-996BDD8E.pf
- Size
  
  26KB
- MD5
  
  7367449e1fbb3e854c0a3f7be1c8fa9c
- SHA1
  
  3f43be8ee52a01281fc9e678263c62fe4a6434f0
- SHA256
  
  b27e77a1714b6d4ab7991ff3e049ef74818683bb78d0bb51f6d1c7b1572537c1
- SHA512
  
  c3a8abdfd34ef33a442cd166a69f56293d0db693fca7fb20058b9455ce93d5263e953a1edb3ed58bd42be4df4c733076931fc5427a222e7fbdab2a9996b967e3
- SSDEEP
  
  768:A8NLc1Nuvq+6u8GMJ1CmkJryS/yPiTV+h8qlA9Hj2Qtb6NBu:A8NLc1Nuvq+6u8GMJ1CjHjPO+
Score

3^/10
behavioral25 behavioral26
- Target
  
  Prefetch/VC_REDIST.X64.EXE-ABB5DBF2.pf
- Size
  
  13KB
- MD5
  
  66cd7ad996b790c0aaf08cf96bafd24d
- SHA1
  
  2156cc0bc23ec78df54cf71914f4f24bf52c3a1f
- SHA256
  
  0b5e6ee963badbb175fc559902961f0d39385fa8b4e82dda7d7f35ab03d49269
- SHA512
  
  19f376d2c4f59a20dc5546aaa817e5aba44261e27ff040a96bdce40a34aa155f7bd18647d188114416f198c36479503daa6fd29ce630fc21280b0bb867eaf479
- SSDEEP
  
  384:eSSP5AYr2/8p0y9cHpi91LBlwecKTxodCXXJ:sAYrt0yaAL6KVSo
Score

3^/10
behavioral27 behavioral28
- Target
  
  Prefetch/VC_REDIST.X86.14.32.31332.0.E-F067952A.pf
- Size
  
  21KB
- MD5
  
  494a76d07573ceaa6014091c10ecbabc
- SHA1
  
  1ecab609efaccfe33d4d9447dac202751dee1c6d
- SHA256
  
  92ba91c8943d8e76f52df1f13b34a8ec1297144f522639a2fc07054ac2f06d43
- SHA512
  
  3277eb2a3928ae08960a54576649f924dee6b00e5a39ff7985400d4044f456d5c58c1db3d3082fff8f9d76b051c6725677e3e6676d2cc3fff5a5cf76d0f32c00
- SSDEEP
  
  384:+QB0/v8gslF3wOg0fjBPtTrHZfeqz5qJ72srb7qQbaVclf1:Tgs40PZ1fsbaV4f1
Score

3^/10
behavioral29 behavioral30
- Target
  
  Prefetch/VDS.EXE-2FCA9D16.pf
- Size
  
  7KB
- MD5
  
  62bed167649aae2b80ea70ddd56913be
- SHA1
  
  0e86c64e76e95a40d391629bbc69d56decd661ee
- SHA256
  
  a656956269ef56878b79599611038a04b18cf60c1977965277aa092aa2843c94
- SHA512
  
  2314ff31146ad6d35c1a615dc7c5a0160c641334660c428196e99ca2581fb96246d90fc2b3fa5bab0b8ed273e95f2fb9f571d3a8a4399c831a4f92b7f389721b
- SSDEEP
  
  192:5aHJ4ThBsdxX7GoEk5D/h5oOzRljOSjHLpUsqqz+wb:5oJMhBgX9d/dRRjHR+M
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32