5eb30845e355c1e6c74f4f5c60e452be993b545e58c4944847c1b987b3bf2891

Sharing

Copy URL

Twitter E-mail

General

Target

PrismLauncher-Windows-MSVC-Setup-7.1.exe
Size

16.5MB
Sample

240410-dnghasfg7x
MD5

bc6b5ba6dad47bb8dad0dd5d56442e05
SHA1

173d11382b2474a95dabe2c2f6b2edbc179b39ad
SHA256

5eb30845e355c1e6c74f4f5c60e452be993b545e58c4944847c1b987b3bf2891
SHA512

ead834dc029bd21595596515b5cbe176f5f220dfa4ae03b7a074245fcf288191fb6cd9f765dadb44c4b65192134bc86d198b48863352b0566c3f759d1dbc9c02
SSDEEP

393216:L9zo+iQe0XFivTqz7aOKARMv9CtzxTVwRNniKoBEBdCaINFc/tgZKfU:L9k+iQeuiv2z7RRMv9czxZwPauDyTYU

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  PrismLauncher-Windows-MSVC-Setup-7.1.exe
- Size
  
  16.5MB
- MD5
  
  bc6b5ba6dad47bb8dad0dd5d56442e05
- SHA1
  
  173d11382b2474a95dabe2c2f6b2edbc179b39ad
- SHA256
  
  5eb30845e355c1e6c74f4f5c60e452be993b545e58c4944847c1b987b3bf2891
- SHA512
  
  ead834dc029bd21595596515b5cbe176f5f220dfa4ae03b7a074245fcf288191fb6cd9f765dadb44c4b65192134bc86d198b48863352b0566c3f759d1dbc9c02
- SSDEEP
  
  393216:L9zo+iQe0XFivTqz7aOKARMv9CtzxTVwRNniKoBEBdCaINFc/tgZKfU:L9k+iQeuiv2z7RRMv9czxZwPauDyTYU
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  12KB
- MD5
  
  cff85c549d536f651d4fb8387f1976f2
- SHA1
  
  d41ce3a5ff609df9cf5c7e207d3b59bf8a48530e
- SHA256
  
  8dc562cda7217a3a52db898243de3e2ed68b80e62ddcb8619545ed0b4e7f65a8
- SHA512
  
  531d6328daf3b86d85556016d299798fa06fefc81604185108a342d000e203094c8c12226a12bd6e1f89b0db501fb66f827b610d460b933bd4ab936ac2fd8a88
- SSDEEP
  
  192:Zjvco0qWTlt70m5Aj/lQ0sEWD/wtYbBHFNaDybC7y+XBz0QPi:FHQlt70mij/lQRv/9VMjzr
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  6c3f8c94d0727894d706940a8a980543
- SHA1
  
  0d1bcad901be377f38d579aafc0c41c0ef8dcefd
- SHA256
  
  56b96add1978b1abba286f7f8982b0efbe007d4a48b3ded6a4d408e01d753fe2
- SHA512
  
  2094f0e4bb7c806a5ff27f83a1d572a5512d979eefda3345baff27d2c89e828f68466d08c3ca250da11b01fc0407a21743037c25e94fbe688566dd7deaebd355
- SSDEEP
  
  96:o0svUu3Uy+sytcS8176b+XR8pCHFcMcxSgB5PKtAtgt+Nt+rnt3DVEB3YcNqkzfS:o0svWyNO81b8pCHFcM0PuAgkOyuIFc
Score

3^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/nsExec.dll
- Size
  
  7KB
- MD5
  
  675c4948e1efc929edcabfe67148eddd
- SHA1
  
  f5bdd2c4329ed2732ecfe3423c3cc482606eb28e
- SHA256
  
  1076ca39c449ed1a968021b76ef31f22a5692dfafeea29460e8d970a63c59906
- SHA512
  
  61737021f86f54279d0a4e35db0d0808e9a55d89784a31d597f2e4b65b7bbeec99aa6c79d65258259130eeda2e5b2820f4f1247777a3010f2dc53e30c612a683
- SSDEEP
  
  96:J9zdzBzMDByZtr/HDQIUIq9m6v6vBckzu9wSBpLEgvElHlernNQaSGYuH2DQ:JykDr/HA5v6G2IElFernNQZGdHW
Score

3^/10
behavioral7 behavioral8
- Target
  
  Qt6Core.dll
- Size
  
  5.5MB
- MD5
  
  970df5d767e87c18ebed28381b0f4adc
- SHA1
  
  7526a65c6de1ef8971076395655aa7a82f18a6e0
- SHA256
  
  238b6dad34d40eb3e1c4999ecd224be2ef0fff3cc7b2587d6b4d9dd260effa49
- SHA512
  
  01d7942bcc808a924b881cc9e12add558a70166472e446d787bad0881d69b1802dce4a2e9ab7e17bd33129c5b66528756045dfc189332391a4de49f894e235f5
- SSDEEP
  
  98304:ZSWJxYVkF4WAXXuKFdu9CwJsv6tS2qy/3hrVO:ZxSVkFmuKFdu9CwJsv6tS2qy/3hrY
Score

1^/10
behavioral10 behavioral9
- Target
  
  Qt6Core5Compat.dll
- Size
  
  815KB
- MD5
  
  74555e92dba376e41f11b06bff3443dc
- SHA1
  
  93eb09d5d5e1ebe90e9bedca41eac30f182dc0fb
- SHA256
  
  0aa34eeaeff8f84c954ddc5b334d91fd51a9f19b1a1f3f18ef292a1fb43e94c3
- SHA512
  
  85d7304608c104ca18fda66a6b16388c164fee9b4bef4ed0de2656b081e5ba5ff94851eed5590f7da101897dc3eb2561d5ecbdc86469ceb09a662dc51380cd26
- SSDEEP
  
  12288:ZdFrujqAFH1h/biPGE/4717VKItBDPzHkSxGGffzYfMAbNkdEx:xruTHvKG7VdDPT6df9badW
Score

1^/10
behavioral11 behavioral12
- Target
  
  Qt6Gui.dll
- Size
  
  7.4MB
- MD5
  
  0ab8efed44e94227d814f456e51f0b57
- SHA1
  
  22a55fa81689d7314424083e515f9c8819c9cf17
- SHA256
  
  1c7b79a164335b8c43d7267fa8a0ee43a2bdeb957aef167b38bfedda21cff825
- SHA512
  
  95cf380fa921f127deb40da22788b1b41c0a47f8a31d7656e02c11ba69d360609527b6b9ff7ec236bec139cea59453634e845058d06adfe9fbce0dd82bd36b23
- SSDEEP
  
  98304:0EjW1ymxkr/7CFse/xrozk1x6+wzs0xS/a3:0vynr/uWAxrozk1x6+os0xS/a3
Score

1^/10
behavioral13 behavioral14
- Target
  
  Qt6Network.dll
- Size
  
  1.3MB
- MD5
  
  228f4d0df07520aa1fa57640fb6ec5f0
- SHA1
  
  13c65c16625fab847d474e1ea9dce1ffdfd98e51
- SHA256
  
  298257eb27353c47fcd811e8202f03aa7ea2eef0bcb6f3ee71e8060508b29d49
- SHA512
  
  ed1bbb2367e3d76ab9844d4212e8bb884573718781cdb77596a72e4b57b2bb9678b159387930e8adb7a01f4a56c6a0e1ae4d1dcda7d931a2fd21ac5cd1ba5d15
- SSDEEP
  
  24576:y5tH4RtervQx3TI2/4AW+gfy1CeWDlVYiPsoZR:QY2vQx3xUK19JiPZ
Score

1^/10
behavioral15 behavioral16
- Target
  
  Qt6Svg.dll
- Size
  
  355KB
- MD5
  
  8699b8bada8fec14462321757e89cf9a
- SHA1
  
  d5b7e1d0e96d3f73f65221a625e4d5f6033cfcfc
- SHA256
  
  70bd4c4cdf70865645e86a0b1dea58eff111a1d588f6654a972a137c000b87e1
- SHA512
  
  395e9efbe2e992e15a7a89424b86f394e32c19563a5da2dbc1afd14f1f453cfd72ae76754c475075e7b7f99b4a88a23cf8f2d5330ec211e44c4eee1623b900bd
- SSDEEP
  
  6144:+wH000KGSd8GuEw3zv0tgKG2iUt0+rcc+fymV5crvEz:+E000K1buEwDAsXEvEz
Score

1^/10
behavioral17 behavioral18
- Target
  
  Qt6Widgets.dll
- Size
  
  5.8MB
- MD5
  
  fe5d94996b8128747762cf0fdcab1f82
- SHA1
  
  3cb1bc591d55c4e5f76be53c3993eaab7e67541c
- SHA256
  
  05362dfd5ce0ab18988d878240f1daec2c505fb60cfb85636444c1843692e4a3
- SHA512
  
  c91be91786e38341ad83eb38ba27e4110d18c24b03f088aced46b32eb3fe9d81bf89c5bec4b8da1b84252fe78d3294dee1230ff79bd9308e979d0b9b219eab53
- SSDEEP
  
  98304:boAvLtXKWwH2IexfN6bI25x4s5yC/P9Mw8tNCs1Qs:FDtXKWwWIe1N6bI25L//PGtCsOs
Score

1^/10
behavioral19 behavioral20
- Target
  
  Qt6Xml.dll
- Size
  
  144KB
- MD5
  
  3a0b4fce55d035642b015472b0ddc5ab
- SHA1
  
  e1e9acf68e116c22c9f991fbfddf0b017ee49a11
- SHA256
  
  f907b1354f10b2278f4b8fc87e7f814f5ae0b4204e891a3d107624a19d6e7547
- SHA512
  
  dcf50c1d08234420b56b7ed585d6fd4a5f0fa5b3a29d1f21c1480c8d3154a3e5d054eeeaf1c4fdb6879641c885a0dae3c3ee7f4c23026f50bae9b8469706a08d
- SSDEEP
  
  3072:PhOHnwd4FmZVml20AtNWggupa95u/Kzn6KWEpA:JIn1AzPRNwu/qjWEpA
Score

1^/10
behavioral21 behavioral22
- Target
  
  iconengines/qsvgicon.dll
- Size
  
  63KB
- MD5
  
  bf3ae484446b9dee7102ca01941a2675
- SHA1
  
  76fac9993bcd4b5f7dcf7a412f653e48e9f0f0c0
- SHA256
  
  7ca34f1b353e5f02b0ed1fc32b689a98c4d36c2dc2a30b561d1079c901c55526
- SHA512
  
  ab089da9dc5be237a7bacf2e02f328b1942ca027a315b3ef3661b8a2c2ee866eadad3bbdd656f24c18b0bcd387cc637ff62c7b5eab1afa31d5573cc291a55d37
- SSDEEP
  
  1536:PxRzna0CFubjJTUeGhzD8pZjz6TBDwV+qgzuxh6H82cA/gKxngeuEHvpf:aFAJTUeGhfSZjABDwV+Juxh6H8UIKiEx
Score

1^/10
behavioral23 behavioral24
- Target
  
  imageformats/qgif.dll
- Size
  
  47KB
- MD5
  
  26574147ca3f4b70e868cd717e69a58f
- SHA1
  
  fd3f725c56c4d2baa2d831b077a9ce2f101e2689
- SHA256
  
  ce34841b2350a0fcfc9250203c81192ea4babca587375ec9fac2e55267a6fcf3
- SHA512
  
  8b75a6afb0ccd50f5a1cbbc16f0a04e170263e7629980e8fc7406dfa6f4e074d33317a4a3c8c6f9e201faf14ebfcbe99a7584a88351d3786b4e2dbf31ca41911
- SSDEEP
  
  768:Lb1BgMAbGKdSySwa0r3EDVQPiQbuqZi9iYVQxCozZOgKxnVbGYJlUMN0EHXe:X1tAbSXInPuFiYVQx7FOgKxngeUlEHXe
Score

1^/10
behavioral25 behavioral26
- Target
  
  imageformats/qicns.dll
- Size
  
  54KB
- MD5
  
  642f364074eb6c96a7282561688cfb34
- SHA1
  
  c3225409478c1bd5baa746360aed5ac7915dddf3
- SHA256
  
  26a605b9db40012d2935d1398d90d01a6333c5eb432a5ef2868fc332d57d7717
- SHA512
  
  92c05dbab1560a92e5f0c616fa213160e9bf19a79805540ad83921079f124676463b7f1c428f4c929c5ea1c5adbcae057db8db7f855ecc70020e532e637d39f2
- SSDEEP
  
  1536:MjqRvB8ohA3VJPX3C+u+7n6/EHbgKxngebEHe:nvBqVJHu+7n6/k0K/E+
Score

1^/10
behavioral27 behavioral28
- Target
  
  imageformats/qico.dll
- Size
  
  46KB
- MD5
  
  3db1047b43a8eab09b9789529889341d
- SHA1
  
  4604eb1d86c6bb1561d1f2fb75ef61c3f959a1c3
- SHA256
  
  7d689613ff4784dd8afd3ee4429027c46432119b25786691d7da67f24b7ebd6d
- SHA512
  
  6490788dcc4b8f071d52dbcb12967ea37e4dda930f2fa548621f88e28ae096b084ada0822676a3ba6157b802fe0b40d9185cf3715efe5d78cbcfb830e3f104da
- SSDEEP
  
  768:Cth/WA3M4aHKzXM7ZODsLiPZDxPT9gKxnVbGYJlCN0EHF8:sYZ4aqzXQOgLiPZDxPT9gKxngeHEH2
Score

1^/10
behavioral29 behavioral30
- Target
  
  imageformats/qjpeg.dll
- Size
  
  445KB
- MD5
  
  ee879fe49a874af52b6abf9076ae8fe9
- SHA1
  
  7bc23a9615bdf2ff32e961faae1d0223e40d5fdf
- SHA256
  
  3e1d675563585303e4c3276baa3915a88d540af2a22d04fcda43f4645d1c05e6
- SHA512
  
  f3e9cbdbf9fef3e9014c5fc3edb6bd8e001b6575b263d43dc8df7281e6104f88a8bf7ad25657183b91368e6fd8a8c6da608b7dbdf3f8fee393c4a1a9ac8722a6
- SSDEEP
  
  12288:Am9lKVxoBleOPVrmVtv7kcyULT/PFEa0kPr/hAKosPRlH3Qu8kFpj7w6yqDZXLhD:Am9OxoBl5kp
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Executes dropped EXE

Loads dropped DLL

Checks installed software on the system

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32