Overview

overview

7

Static

static

3

JIGUtility...zip.7z

windows10-2004-x64

7

JIGUtility...12.zip

windows10-2004-x64

1

JIGUtility....2.pdf

windows10-2004-x64

1

JIGUtility...SC.pdf

windows10-2004-x64

1

JIGUtility...PS.cmd

windows10-2004-x64

1

JIGUtility...LS.cmd

windows10-2004-x64

1

JIGUtility...rd.exe

windows10-2004-x64

1

JIGUtility...OP.pdf

windows10-2004-x64

1

JIGUtility...CT.exe

windows10-2004-x64

1

JIGUtility...CT.lua

windows10-2004-x64

3

JIGUtility...signed

windows10-2004-x64

3

JIGUtility...64.sys

windows10-2004-x64

1

JIGUtility...de.ini

windows10-2004-x64

1

JIGUtility...rm.ini

windows10-2004-x64

1

JIGUtility...de.ini

windows10-2004-x64

1

JIGUtility...re.dll

windows10-2004-x64

3

JIGUtility...e4.dll

windows10-2004-x64

3

JIGUtility...me.txt

windows10-2004-x64

1

JIGUtility...og.dll

windows10-2004-x64

1

JIGUtility...00.dll

windows10-2004-x64

3

JIGUtility...00.dll

windows10-2004-x64

3

JIGUtility...un.bat

windows10-2004-x64

1

JIGUtility....0.exe

windows10-2004-x64

7

JIGUtility...NV.pdf

windows10-2004-x64

1

JIGUtility...me.txt

windows10-2004-x64

1

Resubmissions

02-04-2024 18:02

240402-wmv86shb83 7

02-04-2024 17:49

240402-wd8g5sgh3s 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JIGUtility_V2.0.8.0_20230112.zip.7z

  • Size

    14.1MB

  • Sample

    240402-wmv86shb83

  • MD5

    6893edd1cddbd7739012c17982ec8001

  • SHA1

    fa5373f9f94a5108b298a7c09e665cc89138b70a

  • SHA256

    3c5e0085adfb6d60d77aa3b3f4a8cf2e3beb1139de69d1f921c6e1017da16a9f

  • SHA512

    add8768abe8ce1a3e2d5a36f5efd280df30751058c348e81ed4d888277cc95ed9a0609d876b824a20bf5e14158db94b649397dd36f8520ece9377d9bc3a4aa7b

  • SSDEEP

    393216:EJBXLLyRfK6WUZUCvZW6Ir6adMoGkEbdAJEkeaZI:EJFyJnvZW6IrlTl2dDj

Score
7/10

Malware Config

Targets

    • Target

      JIGUtility_V2.0.8.0_20230112.zip.7z

    • Size

      14.1MB

    • MD5

      6893edd1cddbd7739012c17982ec8001

    • SHA1

      fa5373f9f94a5108b298a7c09e665cc89138b70a

    • SHA256

      3c5e0085adfb6d60d77aa3b3f4a8cf2e3beb1139de69d1f921c6e1017da16a9f

    • SHA512

      add8768abe8ce1a3e2d5a36f5efd280df30751058c348e81ed4d888277cc95ed9a0609d876b824a20bf5e14158db94b649397dd36f8520ece9377d9bc3a4aa7b

    • SSDEEP

      393216:EJBXLLyRfK6WUZUCvZW6Ir6adMoGkEbdAJEkeaZI:EJFyJnvZW6IrlTl2dDj

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1

    • Target

      JIGUtility_V2.0.8.0_20230112.zip

    • Size

      14.1MB

    • MD5

      344fc525af58c82474e3a4d1072193ed

    • SHA1

      dee86e6992f9b585ab734e8620ababcfcc5060d4

    • SHA256

      199879ac19872d6b0ff820d8f502062f0efea37867b937dc04580cf170b8228d

    • SHA512

      129577965e6d09ab08a6ced4e9febae119ea8d40ab9fbdfb19a044bb5dda830f67a5ac2507cfcf9625dc296521e5b0c445f62738180d9425c6d2359f8d5b6d90

    • SSDEEP

      393216:GxJ8RDWlcoiAF7l8W6Y6UfcHEWyvMcyoW3BmSt2Gh6kh:AJuDTns8WCqPzULouTtXkkh

    Score
    1/10
    behavioral2

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUS JIG Board User Manual V6.2.pdf

    • Size

      2.4MB

    • MD5

      a4278b0352edf24391004437f114fdae

    • SHA1

      e98051d0392197b52c94b3243895ba581593d540

    • SHA256

      6ef9cdc5f549a98b903da8aa5c17394786bfd204fe1bdb81451ade09dee76ebe

    • SHA512

      89e79e2b8d29365b2b4edb39a429aed1cec64c03b73ef57e8fbde5acd98f24b5d62e8e653d6df0ea7a5f184af7e1207eb13ab0b9bdaa549f84877503933efea4

    • SSDEEP

      49152:OkZkiENNxJzO02Kvlp3mMRz44wfSRBUwJoG5X5izctpXTL2BJuyk:Yzddlp3lRz44wGzJ/izcbyuyk

    Score
    1/10
    behavioral3

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUS JIG Board User Manual V6.2_ODM_CSC.pdf

    • Size

      2.9MB

    • MD5

      b10a655028416492436bc765b05e8cf7

    • SHA1

      019d8ca45b759386832fc02aa4915a5efdec3d47

    • SHA256

      5b43197ae223fd04eeb35d8d1d482ddcb905ddf439294b26646828ac60931bdd

    • SHA512

      63745c01eebddf2edaabaa6c4f5230bf0b7a72490689dcd92eb35e28809d65363c3073a69852aebf798103ba0da4cec3db415a6a51837c4443e7cb893c9a9a18

    • SSDEEP

      49152:vZkiyNyDDoOD2KHlX3mfWtsiRz+Ck/0sbU2wbVbqUJjIGYfabOaBBJ+4:VouJlX3iWtsiRz+tssbH6/JjIGYfaKax

    Score
    1/10
    behavioral4

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/ASUSEPS.cmd

    • Size

      1KB

    • MD5

      6ea3a1d6aca8845842e63c3c3aac62a1

    • SHA1

      b46fa37068e3b1352f7559f9a5e5679d8115416e

    • SHA256

      2b3a65d439fd1e341d797ed1934165e9fd019aac4b2c827f2118d621662633b9

    • SHA512

      522103c03c61d77666d3c43397f5520b3255ebc0c7fd80d5a411e56dfa81f174279f574d54a3b65a156069b8ab5fb7bbe91f6e7e2d23725190fbe2afca49713d

    Score
    1/10
    behavioral5

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/ASUSFLS.cmd

    • Size

      567B

    • MD5

      490c7401bc7a4acdbc9bf3cf524a1ba0

    • SHA1

      3606d3d7864223e7a8a1db2b7e192594f59353b2

    • SHA256

      51d734361b2474d9077bcf863415b9d44365f18b6ad27c5f219ea12e99c197ce

    • SHA512

      c6ded98733b9f6a04de1cd800b9ec478aa8da24d856b90217bc7aefcea12dfa541e41aac7d2dac018ebc8a618c3e2f35fa94b862686f93d3b8cee5d14c328989

    Score
    1/10
    behavioral6

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/ASUSR_ParsingRecord.exe

    • Size

      164KB

    • MD5

      741e6d5f8e726ed5367b2dd5ea1b67b2

    • SHA1

      841d1a55bb427069dc7fe17d72c453d514edf311

    • SHA256

      5b01d4a4de6a2382898f166650816464074aaf6b0e91388677fab2fbca396aa3

    • SHA512

      d5f2f5b155f0d1892d694752a83512cbec3aac70eef6b69802f10f733af7088b2d22f9d5e3065a063ca52bfc008ba5af6f9844cd2ea2b4f94256e0323cd3e5c3

    • SSDEEP

      3072:9XmxdlJaNIj87XCHFkzWAvvB6tPagw8ByysYP3OSr:9XcG7z5565hsYtr

    Score
    1/10
    behavioral7

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/ASUSR_ParsingRecord_Test_SOP.pdf

    • Size

      849KB

    • MD5

      e11315ef7b9e8cc4c3f987f2075957ef

    • SHA1

      321e162ab6d68dd72efc1825029f5062b4e5f9ad

    • SHA256

      5ff37152719b6cba3b4e5ecdc9c4493cad192ee6cff8dc0a7108d8e206263b0e

    • SHA512

      33920c2b8353d523396460196e8fc2931ee8e4e87c9556189d7450217ba17f52287b5715d1810ba0cb0a81d6b588c22f3d0bb3bce095ea862e8a8d3f401e753e

    • SSDEEP

      24576:03tn1wTs1Ifi9cf+e6UbyY5r73z9icQo0QURueI24UqS:y8xjfbyI73z91B01uJ2T

    Score
    1/10
    behavioral8

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/ASUS_WNECT.exe

    • Size

      1.9MB

    • MD5

      734f0a41fb6d587208e2dec212018e5d

    • SHA1

      471b0414bd57fe8edb747ffcad268afca23dfcd1

    • SHA256

      af7d057f97b74122cca7ceec26b73c27519f58b91ceeeac2553bb26e502b61fc

    • SHA512

      9faeede6a01c49447880f5aa138a42fe1b6d8adfd026a418be26d28e66877ce5593d8eefc42b588ebfb4fd0d8d9ceccaf67ac2b6bfc40c66a32ea7803c6a00f0

    • SSDEEP

      49152:kwg2PATUr4jr4bvnKRUxzLMrdgvy3f+OjPWYPIU6iIzlV:fPATUr1ca+4

    Score
    1/10
    behavioral9

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/ASUS_WNECT.lua

    • Size

      169KB

    • MD5

      a475ff983206ba9685536ea311a6dce2

    • SHA1

      32ea22be1f70ba1e758e85762814bcfedfb3ad50

    • SHA256

      588aa0eb74b361822e4e95dedcc929496af1502e3786ed28f6e55c6f10edc91c

    • SHA512

      7054fcb3158014c4131b67468712317dc77666b850ab49acd73295f62ce40039adcff50fcda290c6efaac40baba026cd6446cb7428db86cb19dd4db24927481b

    • SSDEEP

      3072:ynsCNpM3CMmHpmZ5uBG0VepHQeXnoqX6iZeVwt0MxuQFLNAGQ/N1h3bK0Vt:ysgJrNcnoCVt0uLnQl1h3

    Score
    3/10
    behavioral10

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/ASUS_WNECT.lua.signed

    • Size

      640B

    • MD5

      5490cd484c986164c440e1dea9218045

    • SHA1

      caff41bf191d792b9fe9ddb01c25e4deae83ac50

    • SHA256

      03e483082557c6eae34ecf883d10b440b7bf7121530ae17c113f3741415ac269

    • SHA512

      5a3cbeaf420a080b743a4f9165eac23fe2ea6c4734226abfc9a40d315e476f3124440fde9b81afdd15dddfc72d3458b291b59f79a64e49d4e7c6c58f8f769246

    Score
    3/10
    behavioral11

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/ATSZIO64.sys

    • Size

      33KB

    • MD5

      dbf11f3fad1db3eb08e2ee24b5ebfb95

    • SHA1

      cea540a2864ece0a868d841ab27680ff841fcbe6

    • SHA256

      e32ab30d01dcff6418544d93f99ae812d2ce6396e809686620547bea05074f6f

    • SHA512

      d34d21cfd2b5635933392a193615f02520465a746e1c9621d0e0c4f6fef4c4b1c1b4830c280a8204753d8a20953327eee5e32576a3e34f1ab9332a6cee87da7b

    • SSDEEP

      384:K3pYCwVahI4Ioww1y8603WhZh0/ZsHLc54i/8E9VFIJy/k6h3IVksRmuTcR9zusG:K5sxlo3G5KeEbb365RmuU9zud

    Score
    1/10
    behavioral12

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/BiosPostErrorCode.ini

    • Size

      5KB

    • MD5

      5e5d166921989e99404c460cd9048731

    • SHA1

      593d718b7e34fb8076f4fd3885ddfc986087dd19

    • SHA256

      53f1f1957f6d43bce05e2ab61f83e7edddc9303fc525439a3171ae1cab8f3e91

    • SHA512

      b3867ba6acee85e612321a2f1f862b63a9f58c62e1eb0aa7aed79aa777fd18664a0ba63dab7fd3400cc81b94d975cc286525404845bc7ca9fba90726a4dce38a

    • SSDEEP

      96:6IuZ/iXw7BZ+tWcjJ6uWMxp6TF4WbSF0vKyK10kTGEGbKla0lHPHg:675iXwt8tWCJwxEGb+a4vA

    Score
    1/10
    behavioral13

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/EcPlatform.ini

    • Size

      237B

    • MD5

      41054c96cba986541f4d6a928504a9ae

    • SHA1

      598ebc37e37dfbc762edae22146109433a187970

    • SHA256

      0c2e582fee6614db75179afe78e8e681b935fb22dea7923085e2d5b5b20b4c63

    • SHA512

      a9b0d5e010fd8dd915c87b93d26149d219388949798763193e4561cb7ce1b8cd0b1577e84e9a06a5472309648163bf75890123d025424a913c4ecb2045824985

    Score
    1/10
    behavioral14

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/PwrSequenceErrorCode.ini

    • Size

      1KB

    • MD5

      8699fb95866d1a3ba3ca71460bf2a349

    • SHA1

      310f2955a1be8a974d6772a5fa607c1b3b735e31

    • SHA256

      217539274e9a9c4503d1233415404f6d19d74b96db4ef9c42dd6da32ea9b2be3

    • SHA512

      9822c1a6b302e775884205435b504eb65e0c588c730c624eac709af15673f26ee703b6e062e067542a2b5057942dca1c342f049c60f6d51df9f92785a56681ff

    Score
    1/10
    behavioral15

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/Qt5Core.dll

    • Size

      4.9MB

    • MD5

      1849ef00f2b0d4bb8c475df4d714b8ff

    • SHA1

      10bd730411fe8c6c3fa75994763c542591fbdd72

    • SHA256

      fa6c28d6fc6e319f9c6348541cf8803ee5d32e6afccb666b3c67a54c50c81ba3

    • SHA512

      c41794646549b5d7c22ee0cbdcff78450476f965bbf6cb83d07d97a2e23c5c2085366deaad62e37e0cc3dc072ac9e15bf40b39cf20e22a0980dfcae318f35136

    • SSDEEP

      98304:D/cPFLQEJuMEaJsv6tWKFdu9C9Ed74Gx80MEcUsk80MEcUsk80ycUsk80M6Ou:DsFJsv6tWKFdu9C9y7g

    Score
    3/10
    behavioral16

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/QtCore4.dll

    • Size

      2.5MB

    • MD5

      8bb8ab53f24b3f37ffc8d9818a96b711

    • SHA1

      5fadc82e34210c23095b1a96f6b5c88ac109d391

    • SHA256

      df2f1fef45edcc147c89a71898e1ae4be0274adee81a8c9d8848b5e8be6cbbab

    • SHA512

      766a92861d234a7a186cf8cf2fbce9fa5678425e6953b9c9c49dad5bfea6ae81101dcebcabee9afa55fd2c8a7cbd369db750c966310c4486cf4ab706e9a87cd9

    • SSDEEP

      49152:vNt3iB8mwK6LX/DE4G3Jsv6tWKFdu9CAT/LyvL/6mShMZtmjNUVrciV5P+7QVg0M:vn3iaw3Jsv6tWKFdu9CQ

    Score
    3/10
    behavioral17

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/Readme.txt

    • Size

      518B

    • MD5

      a0684d21a3ca683d64e0e2c31304eaff

    • SHA1

      8051b5274800266e483fa5831cef2d7be25a1c26

    • SHA256

      84759f01b9ef14fec30d3ef1ed0a138d95b0fea01092f307f92f105ab061ac4e

    • SHA512

      e163fb1f8facd4f40b2889986a37631a3cf13b8256b36ad4c0d19c0447566bfd9a1658f5192864dd3e1fe7b8debbc70956f7ccce4b81f072a9b5c25c74191d7b

    Score
    1/10
    behavioral18

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/encryptlog.dll

    • Size

      8KB

    • MD5

      247428532adad99033a09269e22ae413

    • SHA1

      260bbc18ed9eb0c3d3cb8fd0b6a04f4e020de55e

    • SHA256

      02fc1b602e832f2448c061a8d2496180ff7dc63979c111056155a2b75d3e4122

    • SHA512

      5bb9380b22c050c7591bc9dc578fb2c6ea72bf601022c7ccb55dda9a55f3899a7370c2c67f66092851c711ad1346976c36ab7d54bd484b54fda0d7d01cc6fef8

    • SSDEEP

      192:jWJLsEbrSYSWDXOXGKiMQ03X73s4Fm74:GLsEbnxXO0Mdr3HT

    Score
    1/10
    behavioral19

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/msvcp100.dll

    • Size

      411KB

    • MD5

      03e9314004f504a14a61c3d364b62f66

    • SHA1

      0aa3caac24fdf9d9d4c618e2bbf0a063036cd55d

    • SHA256

      a3ba6421991241bea9c8334b62c3088f8f131ab906c3cc52113945d05016a35f

    • SHA512

      2fcff4439d2759d93c57d49b24f28ae89b7698e284e76ac65fe2b50bdefc23a8cc3c83891d671de4e4c0f036cef810856de79ac2b028aa89a895bf35abff8c8d

    • SSDEEP

      12288:iHEqYsrMWIqz473PTiPoH/aGhUgiW6QR7t5qv3Ooc8UHkC2eKq87:iH9YsIWIW4rPTiPofaDv3Ooc8UHkC2e8

    Score
    3/10
    behavioral20

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/msvcr100.dll

    • Size

      752KB

    • MD5

      67ec459e42d3081dd8fd34356f7cafc1

    • SHA1

      1738050616169d5b17b5adac3ff0370b8c642734

    • SHA256

      1221a09484964a6f38af5e34ee292b9afefccb3dc6e55435fd3aaf7c235d9067

    • SHA512

      9ed1c106df217e0b4e4fbd1f4275486ceba1d8a225d6c7e47b854b0b5e6158135b81be926f51db0ad5c624f9bd1d09282332cf064680dc9f7d287073b9686d33

    • SSDEEP

      12288:fQmCy3NeRjkpQmj3oaMtQqjoygfXq3kon9IlbgaOxQdVJJ6j5EBKX8hR5:ImCy3VQs9MtLjTgfa3kon9FaOdEz5

    Score
    3/10
    behavioral21

    • Target

      JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/run.bat

    • Size

      445B

    • MD5

      e9b66659059fb09bd910851557f01a4b

    • SHA1

      91799b761661882dccf6e10bfb1b15078cd41467

    • SHA256

      71d3617055ea34bfda2c87dfb2d0bb5f916597fbe7b2a5d6c39a2cddbf64a891

    • SHA512

      f96393b70cc3987dcad41640cceabc4cac6f23b89d25f98cfa95dfdba427e1a5b5a3120fa3bc56c5c23a2a2ea88c338e8e581216bd839e8c3180818246bff66e

    Score
    1/10
    behavioral22

    • Target

      JIGUtility_V2.0.8.0_20230112/JIGUtility_V2.0.8.0.exe

    • Size

      9.4MB

    • MD5

      3c41b25f4048eb64bc885cc08aaee53f

    • SHA1

      a57295bb0e78ae6a3ddddd6efb30e82cc8c14df4

    • SHA256

      1288b83462626e8f2ec920ca3ad059defdccd449e59003642b227efb632a40f7

    • SHA512

      3532848d0e4a731bd9cc37579a66fcd5d408e4867ebc2ac12caa68a8774fdacba62f2c218729b5ce7af7c76089056bdd5c2a9d858b0738a957684e447b095274

    • SSDEEP

      196608:4jLXJELbAynJwbXvGFLOyomFHKnPkuSE+ok0:4HJ2wbXeFPED

    Score
    7/10

    • Loads dropped DLL

    behavioral23

    • Target

      JIGUtility_V2.0.8.0_20230112/Save&FlashGPNV.pdf

    • Size

      602KB

    • MD5

      3c2d373b51b8d7b7646de96803d26847

    • SHA1

      f11591d0a8a456639b2452c2260c162b5fef81ef

    • SHA256

      25364e19ffe9939af85d53be86d7e016d129be9e8c6e225d5757a149865b3585

    • SHA512

      677b2004dc0980d52bd6c56c8ff057f343bab02548193406ec9398b162024dd5378b7ed323ede22a8d1d0d1c12e5a387e69cd75ab3f404e01ac2acbb6a932d49

    • SSDEEP

      12288:6qtP7haSKVnj/IYo4oZkLhTd3HZObAXuBxsGN85HsuwjrCKNmvi9Y:6qtP7ZKmYUsJ/ObAGxsGluwjrbaiy

    Score
    1/10
    behavioral24

    • Target

      JIGUtility_V2.0.8.0_20230112/readme.txt

    • Size

      6KB

    • MD5

      48f3d46b84e727d01e822ad194fdcaad

    • SHA1

      ac3cefa3dad3053e7a7abe6c3b0883882edaba2a

    • SHA256

      ff9a81f334b2263de647872cffca21ad8a7963d93983a87251ea6747dbed1538

    • SHA512

      aa59d1583564ae3db25d5001fc31f37a44a3896962265adbdf3d1f745501b2bb68e8651504157d50746b1568db5cdc47da68f7cc315e2d64644aa75d37946e07

    • SSDEEP

      192:9PJ5joBIeaze1zEUV8BXPcDehocEjWeeOJUotHeh:9R5M2150ySeGxjTeOUOk

    Score
    1/10
    behavioral25

MITRE ATT&CK Enterprise v15

Tasks