50623f865bedcea99301e5b33e3c4bedf43e975e6297d5e4291009ef3ecafc35

Sharing

Copy URL

Twitter E-mail

General

Target

df0daae26fb3f58a6b9ce4d144a81b48.bin
Size

82.9MB
Sample

240420-cb79taed4y
MD5

df1e41b00f84ea0c36280c7ca52bfe7c
SHA1

8b1eb2381e74cc8d90ba3c07c9e6e9088172e445
SHA256

50623f865bedcea99301e5b33e3c4bedf43e975e6297d5e4291009ef3ecafc35
SHA512

9b9f293f8be900119d4cd90f0413d2a65389b7eca070fb70fedc86f870f9d4b973c4b6152a8faab73d960af66b9ec9e50513f0dafc4dc60fec13a323ac8b7f84
SSDEEP

1572864:Gq3aB/2hD2lqWWrUYnqnLR2GUFNaJTVc+pwC3xTlspD4:53o/2h6lT/YnqnLR2bNywCFlQ4

Score

7^/10

Malware Config

Targets

- Target
  
  ee9c745ec13fb4389968431701fecabaa3fd85f607e694e0d8747703a60fe0dc.exe
- Size
  
  82.9MB
- MD5
  
  df0daae26fb3f58a6b9ce4d144a81b48
- SHA1
  
  38e41ab0e2712f7762c6d8b56892362cbb1b6744
- SHA256
  
  ee9c745ec13fb4389968431701fecabaa3fd85f607e694e0d8747703a60fe0dc
- SHA512
  
  4ffc18191c305f0fc60f96dd293026694e8734052543ffdd2121a2649421b74cc0bf1d121c7513cbdd03ee385bb12033da17d04d10c0fc6717389e0a3d2704a6
- SSDEEP
  
  1572864:rryVzqhVL3BFk9+mLcrnjgntw0aJxf5NB76Rj8zMK7/Q+Z+0iwGv:rmohVL3aqrnjgntgJxDB7Sj8Y8NZbAv
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/StdUtils.dll
- Size
  
  100KB
- MD5
  
  c6a6e03f77c313b267498515488c5740
- SHA1
  
  3d49fc2784b9450962ed6b82b46e9c3c957d7c15
- SHA256
  
  b72e9013a6204e9f01076dc38dabbf30870d44dfc66962adbf73619d4331601e
- SHA512
  
  9870c5879f7b72836805088079ad5bbafcb59fc3d9127f2160d4ec3d6e88d3cc8ebe5a9f5d20a4720fe6407c1336ef10f33b2b9621bc587e930d4cbacf337803
- SSDEEP
  
  3072:WNuZmJ9TDP3ahD2TF7Rq9cJNPhF9vyHf:WNuZ81zaAFHhF9v
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  12KB
- MD5
  
  0d7ad4f45dc6f5aa87f606d0331c6901
- SHA1
  
  48df0911f0484cbe2a8cdd5362140b63c41ee457
- SHA256
  
  3eb38ae99653a7dbc724132ee240f6e5c4af4bfe7c01d31d23faf373f9f2eaca
- SHA512
  
  c07de7308cb54205e8bd703001a7fe4fd7796c9ac1b4bb330c77c872bf712b093645f40b80ce7127531fe6746a5b66e18ea073ab6a644934abed9bb64126fea9
- SSDEEP
  
  192:1enY0LWelt70elWjvfstJcVtwtYbjnIOg5AaDnbC7ypXhtIj:18PJlt70esj0Mt9vn6ay6
Score

3^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/UAC.dll
- Size
  
  14KB
- MD5
  
  adb29e6b186daa765dc750128649b63d
- SHA1
  
  160cbdc4cb0ac2c142d361df138c537aa7e708c9
- SHA256
  
  2f7f8fc05dc4fd0d5cda501b47e4433357e887bbfed7292c028d99c73b52dc08
- SHA512
  
  b28adcccf0c33660fecd6f95f28f11f793dc9988582187617b4c113fb4e6fdad4cf7694cd8c0300a477e63536456894d119741a940dda09b7df3ff0087a7eada
- SSDEEP
  
  192:DiF6v2imI36Op/tGZGfWxdyWHD0I53vLl7WVl8e04IpDlPjs:DGVY6ClGoWxXH75T1WVl83lLs
Score

3^/10
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/WinShell.dll
- Size
  
  3KB
- MD5
  
  1cc7c37b7e0c8cd8bf04b6cc283e1e56
- SHA1
  
  0b9519763be6625bd5abce175dcc59c96d100d4c
- SHA256
  
  9be85b986ea66a6997dde658abe82b3147ed2a1a3dcb784bb5176f41d22815a6
- SHA512
  
  7acf7f8e68aa6066b59ca9f2ae2e67997e6b347bc08eb788d2a119b3295c844b5b9606757168e8d2fbd61c2cda367bf80e9e48c9a52c28d5a7a00464bfd2048f
Score

3^/10
behavioral10 behavioral9
- Target
  
  LICENSES.chromium.html
- Size
  
  5.1MB
- MD5
  
  6b84319ee8a0a0af690273d3d2dcbaf4
- SHA1
  
  857ca353e0582d100dcbc6cb6761bb4430d0cb90
- SHA256
  
  fc2a256467fb4d4ff72be6c423e5961e98b418554deeec296aded0e757b9a585
- SHA512
  
  26f9842bfdb429ef132cc1a930da9187071a339927eda402e8d54b5eb9e03067612cdadc3a2dad3d0977f8e6af18c05eab6ac91720221c6a0104f96638f85a8a
- SSDEEP
  
  24576:yd97B+mnLiLsrDy2VrErjKCqzkU98wwg3QeXuh:0P+mLAqHBCuRoeS
Score

1^/10
behavioral11 behavioral12
- Target
  
  d3dcompiler_47.dll
- Size
  
  4.3MB
- MD5
  
  4708566e8dac7300f15880fb79350b5c
- SHA1
  
  1b0addd9480729ee3b8ce043f7aa53fd03cf9dd6
- SHA256
  
  65f2b1201330ab8c3930d88a5b75811334e07db0c1c63f43168d41f136c35982
- SHA512
  
  d4afe1339e13fda3333558b415eae72e03df21ac8bc2a361d9605662749a9eea9aa8139df908c544dfeb01174f29fafd31bd91902f660388119695f3c8e8f00a
- SSDEEP
  
  49152:NYlc/220PPiMLKam+VMrLi21f4i3jn5ZO3XUDmOZQwVd2uQpN3WsGVUWd55i/jri:36KD2Mrdaix4NQnL3
Score

1^/10
behavioral13
- Target
  
  ffmpeg.dll
- Size
  
  2.6MB
- MD5
  
  853a2b43a6857ae07710d92f912b2794
- SHA1
  
  04d9978bb2eda9db63b353144249d6ca264d684d
- SHA256
  
  1db8124f9afbf0fbc15a5d3556a2afc31853afddeea4042d62c3b8abca42e635
- SHA512
  
  10a796d625b715959538faf7aeb677dedc6056f7fb9297bbe5ab68b20e965c8c1de15a588c84f75fc537d5c6c82f0831c92e5038946319801010192857eacdc8
- SSDEEP
  
  49152:dMnbcrH9v7eCZPxX+qzohT99hDoapghnshy43yBcxnyKbZtjB0HVEMGJSj/8NONn:KCZpX+q27saesDSjbNn
Score

1^/10
behavioral14 behavioral15
- Target
  
  libEGL.dll
- Size
  
  445KB
- MD5
  
  7ebbe9227156e3c4e600defb160555f9
- SHA1
  
  5b356f11daf55ce5240d796481ade9342c277b26
- SHA256
  
  deda663b1c080e2217a1241af285b07beed8117e416f9f814c02eb56a312f4a8
- SHA512
  
  6721082ce99ba227c8d45b9d8102d34ac66c165d50459b81d746e09bfdac60cf477807f564a77993d3bea3eaa145fb7f942ec41ace6388709643b6d99609888c
- SSDEEP
  
  6144:T7Udu1o3YnElXvzYhRk9o+3Re3wpcOQy5n+b7dPsfBT:HUdu1NElX7QR2osJ5+dPABT
Score

1^/10
behavioral16 behavioral17
- Target
  
  libGLESv2.dll
- Size
  
  7.6MB
- MD5
  
  085893afd97f40cce27bf5a898bc899b
- SHA1
  
  8bb8b85cc7055534ee1f12e4a7e5d18fbe22fe48
- SHA256
  
  bc4eae59fe7e073c06228cf6a304be3a1a19ae2bff2c491f52ed1c7a7854de51
- SHA512
  
  a711d42e87fdd1b6bf89673fb120bad2c53a71435c8f64f124af3ef734d2f24c35d4cb516d3ab6834b51cbb619fd7daa7edc1d682f03610b4d5992e241ccd545
- SSDEEP
  
  98304:toqTR4ufIQslQAipy5V0etFBLGvpD1dSS:tof5FBLGvbsS
Score

1^/10
behavioral18 behavioral19
- Target
  
  resources/bin/updater.win64.exe
- Size
  
  2.2MB
- MD5
  
  4bec9a3145bdf3e70e3f85d6dc96d20d
- SHA1
  
  b5bfa0123478506f1e6cd8dfbf9c493ae5488915
- SHA256
  
  4b4dc187c6ad2e5a31773f6b9054d979f0f9e6249ec175c4fc1df6ed75aa10ab
- SHA512
  
  728828d9e66641b43131fff101a601b9feb410f22220a03565b3120b607e89893e564b4e5710fb495a93307529b3f9c2ffb655d49567ea6372198823d2ad61c7
- SSDEEP
  
  49152:iLSYDuAhokCBDCxayOkHghUnBzQSJPoQPvZ+bvPP7aBnOSTB79F:BaorA5HPoQPvZ+bvPP7aBnOSZ
Score

1^/10
behavioral20 behavioral21
- Target
  
  resources/bin/zenshot/D3Dcompiler_47.dll
- Size
  
  3.3MB
- MD5
  
  5dcc1b349ba79639022fad009ea6613d
- SHA1
  
  44b358a1bb912592a0e5832ec2df4154ab7550f7
- SHA256
  
  1248c8c8c98bbd8433a21892b15fdf17224a7f5e202b98277ea4390020602d66
- SHA512
  
  2a2c0704b7db6422e0726b07b4fcb1a381be745d921fd96349eb878e611a99dec51680bc2ac1faf675bc7f72714f129194db0977537d52d1135567be1c20c777
- SSDEEP
  
  49152:myZ9lnpmVm/w+EwVOmufvkQS8MH2J9CqS5Sqr88pPWW5KhQYPsXqUiQ3:z9fWAwVBC8MH2JNSF8+YPsXqUT3
Score

3^/10
behavioral22 behavioral23
- Target
  
  resources/bin/zenshot/Qt5Core.dll
- Size
  
  5.1MB
- MD5
  
  89074a4117d80804f9d832a74fa633be
- SHA1
  
  d6738bacb770ed0e3ac8d0662ab456edef6bd1f5
- SHA256
  
  086a3bf1a105f9919b06a8d9ed662f6c0923b9249b3a4c5ce2f621b34f06b7b4
- SHA512
  
  321a042d16aaffc15789de06691f4534b8b2c0149327170cb28ea07316048d9e9eead8bd7dc3aac50f5d902e37840dbc72877efaaeda052f513a808a0351d78b
- SSDEEP
  
  98304:93QkIHj14FdDhqJsv6tWKFdu9CjzHveRnZyxEdmY:9gdnJsv6tWKFdu9CjzHe7
Score

3^/10
behavioral24 behavioral25
- Target
  
  resources/bin/zenshot/Qt5Gui.dll
- Size
  
  5.7MB
- MD5
  
  26e939424e333cb2c71cadd5df76aa40
- SHA1
  
  56a2b2fb7d0d11407b21ef5409e768d8735482a6
- SHA256
  
  8b12aacf901a17a73e495c7277a1249c56c7c5dbbd0a64b85bda54b9dab043c9
- SHA512
  
  b8d282be49f70a9ec3a4ef9dfd7c9f8df70dabf9d8b13d8363daf0afc2956fc29477c1d6de41e791bb2de678adaef23b992dd1665bace1c9e8ff5d14b86ea66e
- SSDEEP
  
  98304:98oNJzx4w24LwWotu+PNlwL9PmEZ23Cec:nBbUuCPwNj2CR
Score

1^/10
behavioral26 behavioral27
- Target
  
  resources/bin/zenshot/Qt5Network.dll
- Size
  
  1.1MB
- MD5
  
  57a3618e90618fa434325e478049e5e8
- SHA1
  
  c05081caee8bccf27b0995ec3abec6b32234dbc5
- SHA256
  
  757ce98e65ade9d093d4e0d2dd9e03b279b1f0f9c5349dde667060a973ffae4d
- SHA512
  
  cd59c3bdc57fb0fffc690706a023ff24852997b4e67d854a23fc3d2a6b4fe49aec79b142d88810ac4733986e57ffc4be201b98272bb340df3e100c53ce72c61c
- SSDEEP
  
  24576:hNfY4/b8d22Gmou3ZjRkjZgUPiV69DrOMxpqDc0EGQVzKaHBp:5Ad22GrziVaSDcka
Score

3^/10
behavioral28 behavioral29
- Target
  
  resources/bin/zenshot/Qt5Svg.dll
- Size
  
  276KB
- MD5
  
  3668b615e1f9e74f1bd238d1dd7b66f9
- SHA1
  
  4ff579439b2be35e2b640f4ef987d7446e8c549c
- SHA256
  
  43c7e9c2ee148497184ec7b91687b128e67b06ef3492b62674f029002477fdf5
- SHA512
  
  0d713589572ad350126afc1b017576612308772c80e4a0ee73c01d53d2b69f1e9682efa56678e85058cce575888dde1a7ffa991324554edb6a05f8266466bde4
- SSDEEP
  
  6144:44II9g1KI2MdfiJl/13VytiQ8y8DvEt/Q7FYxyFUUv6Wa32VXxWFaHKX6PC:4P/V6Jd7LKqPC
Score

3^/10
behavioral30 behavioral31
- Target
  
  resources/bin/zenshot/Qt5Widgets.dll
- Size
  
  4.4MB
- MD5
  
  6ed28be1c72c4ebfe33e7972f68c88f8
- SHA1
  
  6f5a4832c81db6dba7404fed05438e586f5e1aea
- SHA256
  
  2cae494dc1e85e77da97750a52a6a628560c8db5c102e9a69e4c40a1bd4a74f6
- SHA512
  
  62c6fe09c4b3bf3af466f5db575f2396c012dace1b86a9f30529aa3f5c64b5eaa3600c0581482baf16b7842524e912841581dc8617fd4c4e6ff4c57800d72de2
- SSDEEP
  
  98304:81CmFlF05UMNO1ulAjhDfTbz7quDp+bXa6gYzdkSPD1UZlH6uV75uDdHBclxooGc:Cf59iJ5u
Score

3^/10
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32