9c3dd40b4539a812baabc3b8e1cec9ae45a39ec8d799c1bd6e53d9d64a2366f0

Sharing

Copy URL

Twitter E-mail

General

Target

Graillon-FREE-2.8.zip
Size

29.5MB
Sample

240420-n3gfysgg51
MD5

78523cf4ef2cf5072d9bf9ee778cc5ae
SHA1

26ef6cee3fab33b8cc78f69582f2aa6d97c23b3a
SHA256

9c3dd40b4539a812baabc3b8e1cec9ae45a39ec8d799c1bd6e53d9d64a2366f0
SHA512

fa74a08ca0314bb4ab7a2383f37a6c2425aeef15fd01790698e130d129bc55ef7a65341d52338445da6c709ddfa3ddb8231d917338dc8fd62f1483e0cf6ce9ec
SSDEEP

786432:otrrFG6p7wip1Pl6txW/CyRU/JT9heTgxmyYgpapjDLiRM:ahJbd6tg6yS/JTvYgUpj3iRM

Score

4^/10

Malware Config

Targets

- Target
  
  Graillon-FREE-2.8/Graillon 2 User's Guide.pdf
- Size
  
  1.3MB
- MD5
  
  59b3677c6e3062fed2caeff815ff92af
- SHA1
  
  c88a30f959b5fe27201a2d7e46ac25036b4654d6
- SHA256
  
  44d4ab58ab19bae55b1b31a60ffac4d7a17529356c94270251aa0ef43581c2e0
- SHA512
  
  d540ca3881c5af6be62fd0e0d183ede2b8c4a6ae08d499b015780e8831ea84eeeabc2c276e4144e0e168e8cea7b282de677e9a534100c74d1dc3b4f9d02b31e7
- SSDEEP
  
  24576:TdXU+4DDZMGWh8T5isXXS1As81LBVfeddbxsAKvD:1U+4yGW2bXXUAz1dVedHFKL
Score

1^/10
behavioral1 behavioral2
- Target
  
  Graillon-FREE-2.8/Graillon Datasheet.pdf
- Size
  
  1.2MB
- MD5
  
  1a002aeb0e728c249c15c01cb9d6b3b7
- SHA1
  
  c5f4b709a2147cdee87d067fb912c5b5c8967b9c
- SHA256
  
  b74f3bdf456155b6e7eccb1099653a88e9f3215a7e88b60c03451a4d127a408f
- SHA512
  
  ec869faa02323279087307821e0f9718992dc610df8f7ccb3c370101b6febd0af02b16ea6c453e537dca1af5d0c74b74d5ac89fc362a2f73c03dcd1002d2d9ca
- SSDEEP
  
  24576:z8Lj5F4nwiZImhMN+1wZXtgkNKFbbbyIqtQ9Fx3Q9/:zWjMZIvgONKFbny8FN4
Score

1^/10
behavioral3 behavioral4
- Target
  
  Graillon-FREE-2.8/Linux/Linux-64b-LV2-FREE/Auburn Sounds Graillon 2.lv2/AuburnSoundsGraillon2.so
- Size
  
  3.3MB
- MD5
  
  50709bc20ad31df746665ee7e6905b4c
- SHA1
  
  ad03efd4df18c6b9567a21f664494c194aaf2745
- SHA256
  
  d5c762d5f7607754ccdcfdece17758b21ea6d6bd8b2cd650bbe53d98cdb5f25a
- SHA512
  
  19b540b6c975b383364fb28b320893d2e7d749aa1e2d1dc5fcd326bf8058ad4646aa09cd01778fb7c4d3f0e646bb955d9527a4b54242a2cafcb0737b38cc2439
- SSDEEP
  
  49152:irJPegB6Ifeyqbz8x8GgcqJCSDscuZ/LdiSnHS9ey+bDVq7V0Y/U5+ZTa3JU0/kp:irJ2g7etng8uHZ/Lxy+bZqxscQufzJ
Score

1^/10
behavioral5
- Target
  
  Graillon-FREE-2.8/Linux/Linux-64b-VST2-FREE/Auburn Sounds Graillon 2.so
- Size
  
  3.2MB
- MD5
  
  246002573c22c75c579efd07dc76f137
- SHA1
  
  007fa7370729f8543fd04c40bb8780de40526db5
- SHA256
  
  f7817040e79ad2d313113b40faa666c37e4ad0d9b066251d8dfdd74706dbeb71
- SHA512
  
  7bdf5dc827c7f5bb84dc5689c8550c4267d008e7ce24c4836e180dfc0c59d29319cc499d9d10e5424ecfdd93599d82034dd027c7b4f1fca5e21b745a94755e01
- SSDEEP
  
  49152:zHFxtevU2F/RpNfZSu5knaPnzHlUnknqEey3bDVq7V0Y/U5+WTVbA6x3LU7Bx:zlxMHJbfPnzUy3bZqxscBdx
Score

1^/10
behavioral6
- Target
  
  Graillon-FREE-2.8/Linux/Linux-64b-VST3-FREE/Auburn Sounds Graillon 2.vst3/Contents/x86_64-linux/Auburn Sounds Graillon 2.so
- Size
  
  3.3MB
- MD5
  
  304929932aa0a962a284823e887ed74d
- SHA1
  
  0934ec2bfa4303361af13734381379a4248b02e4
- SHA256
  
  2d4e008706a88782c19d5c18ed5171983cb13c41f25ab8507a629bb10541fa5e
- SHA512
  
  b19841f406f6181cbdc1c2a42e726ba9863a9c1c08c7aa73256905c8b29cb918610465eecb388ecbb38dfe03e90985abe34e3ad51793d96829514ea420bc1347
- SSDEEP
  
  49152:7uaD7EAXBL5kDrtrgGaCydyVHHZLMrTvyeysbDVq7V0Y/UG+8Ty7A6x3LiJOD:7LDVh5mRrTHHMysbZqxs3EYD
Score

1^/10
behavioral7
- Target
  
  Graillon-FREE-2.8/Mac/Graillon-2-FREE-2.8.0.pkg
- Size
  
  12.7MB
- MD5
  
  35e28833d89c33c03ca54bffde68f0c5
- SHA1
  
  504c2b44bd7f275eba21e38436b33fa00523a809
- SHA256
  
  13b38d812daf62bb83c51104d79a3af63722b01a3828a949b23e1d72d6da6934
- SHA512
  
  117c0c5d01d570d948411d90d8ffadab273259520cb697c6ce9925dbd271cdd82f42637e90597e5d2707ff883c5070003cc5c4fe23d53b8b87d0a497a0108018
- SSDEEP
  
  393216:EgpL3mSU/XqWitXzCs4X+kIliCYjd1q3C4Ay9yv:DLltDK2l4jdKC4/u
Score

4^/10

evasion
behavioral8
- Target
  
  Graillon-FREE-2.8/Windows/Graillon-2-FREE-2.8.0.exe
- Size
  
  9.4MB
- MD5
  
  b15e6247e307fe3438f17aa05688ae5e
- SHA1
  
  f68fe99bf6e6ed87b8d192406f01a3669e440cd2
- SHA256
  
  b17c4d698a7ff93edbe0512bbf180c896e3ff96c6be8495d3b08dfa1d5c1cf8d
- SHA512
  
  cdfe99a47ada756f5898dc91dda695926293b4ac5207d585d30d7572b17246443a9ddeba1f9d440e6e800cef535d8b9f6a4be21301f67c6f55cb0795ddf9032c
- SSDEEP
  
  196608:1tJV+nIDBO8XnlxYmRtxtGnScMHRAErNWw+xOE1h5hOUOkqkDioCnck10:1taIDBO8XlxYmttdcMHRzOxDOUO1CXCI
Score

3^/10
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  12KB
- MD5
  
  4add245d4ba34b04f213409bfe504c07
- SHA1
  
  ef756d6581d70e87d58cc4982e3f4d18e0ea5b09
- SHA256
  
  9111099efe9d5c9b391dc132b2faf0a3851a760d4106d5368e30ac744eb42706
- SHA512
  
  1bd260cabe5ea3cefbbc675162f30092ab157893510f45a1b571489e03ebb2903c55f64f89812754d3fe03c8f10012b8078d1261a7e73ac1f87c82f714bce03d
- SSDEEP
  
  192:VjHcQ0qWTlt7wi5Aj/lM0sEWD/wtYbBjpNQybC7y+XZv0QPi:B/Qlt7wiij/lMRv/9V4bvr
Score

3^/10
behavioral11 behavioral12
- Target
  
  $PROGRAMFILES/Common Files/VST3/Auburn Sounds Graillon 2.vst3
- Size
  
  2.4MB
- MD5
  
  7516514ab90f60a60eba7be2d657314e
- SHA1
  
  cee2add663154c929db160c0b16af7aac15c999b
- SHA256
  
  fd68d2ec8126c19d94a93cced22b11c902653a6eca9fdccc2a51fec51546896b
- SHA512
  
  667f7ba40b4c3dace058f17fea9b4bc95ad17be403767a9872e059bfeeef4c78111504086f60cb354c6b4eb7da8afcf52e4c52444bcd23b472d98a13da95e061
- SSDEEP
  
  49152:qT4L9oBX/QcHbTIR7bDVq7V0Y/UC+/GkTrffugjY:qT4+X/QcHbTIR7bZqxs7Dc
Score

1^/10
behavioral13 behavioral14
- Target
  
  $PROGRAMFILES64/Common Files/Avid/Audio/Plug-Ins/Auburn Sounds Graillon 2.aaxplugin/Contents/x64/Auburn Sounds Graillon 2.aaxplugin
- Size
  
  2.5MB
- MD5
  
  c7a35c830b424269d92f08e0b806e47c
- SHA1
  
  97899e1fa3244ab2e89d405db5f636a6d7348c46
- SHA256
  
  891819d7959f6864fb51f4b0ac46b42f991107d2b1b04ca9031097808d056c1e
- SHA512
  
  a5d0a0e2faf778dfff06f879dcf4e8c5eb1d11c78172777d7b72e5a6ce391178241e6a51783b2cb4dbe860a72c2f043e2c149076a3f6595c95364d17ca68a2b2
- SSDEEP
  
  49152:gNGjDDeQVs7EgpsCUKd+bSsHmhbDVq7V0Y/UI+M5:fYU7bpmhbZqxs1S
Score

1^/10
behavioral15 behavioral16
- Target
  
  $PROGRAMFILES64/Common Files/VST3/Auburn Sounds Graillon 2-64.vst3
- Size
  
  2.6MB
- MD5
  
  71f6082ed29918f18761f11179f33a89
- SHA1
  
  6f22eedfa8b7665e30a115fb3764aeaa49b58e06
- SHA256
  
  8467a95685b096a9f5e52a5378a1f221964c2d150ca9902221d32d1aef204c2e
- SHA512
  
  1f0bf5abef53395355b40421966a328b60dff64f5e9418e7e3a4906cd5bdbfc2cd8258ddcbeb002ec720359f4e7a05adde610feb9a9d02664d216e23757a0529
- SSDEEP
  
  49152:15l4RB5lr0YOzY9tEWEObdpMxbDVq7V0Y/Ui+9614:glEwbzMxbZqxsbf
Score

1^/10
behavioral17 behavioral18
- Target
  
  $_26_/Auburn Sounds Graillon 2-64.dll
- Size
  
  2.5MB
- MD5
  
  9c517e37aed2a0466aac62ded29df6af
- SHA1
  
  0385b97f7e65517088d3f203ba11de55f99e4e7d
- SHA256
  
  bdd255cd980dcec364e93dfb86cb79a5f0d693753f4d0faff6f6b6c4c2424bb4
- SHA512
  
  a582f527729243490bbedb0bc88fdfae5b657e9b5efed7e0bc8e53db10df61a432f3f97fe9396711d0e527bbc0a90913d5e7c2e8bc250524694b8a23f77f1665
- SSDEEP
  
  49152:z4cnv7ZFpe+XZWVa6o6bF8YmbDVq7V0Y/U9+X8bfU8Nkz:pQaMb+YmbZqxsY/
Score

1^/10
behavioral19 behavioral20
- Target
  
  $_27_/Auburn Sounds Graillon 2.dll
- Size
  
  2.4MB
- MD5
  
  9b6953c41811355a418269e4fcf3ee4d
- SHA1
  
  629e470a051ebf84b53eb0819238f8e2c60a2929
- SHA256
  
  33bb3fabe7c08cd9ebf5f5aded545720bc9628aee89debbbf676e38af8f20818
- SHA512
  
  129f4a25109b1311ee90e963c3d9d11cc5fd9d414d1e5989cac2f826c4b0b3273239b8690259f6ba55a568ef38f4424c898f4f37fa80702917773f5a2e77eb5b
- SSDEEP
  
  24576:nKzMoNy9b5HRrd+3xZEVrL3HxOYOYPqfxpluPTW0Gxk/q8PeWHqbP7VqzAbqsOGj:nK3Yb/yEexU3hBHqbDVq7V0Y/UP+LNjQ
Score

3^/10
behavioral21 behavioral22
- Target
  
  $_28_/Graillon 2/Graillon 2_x64.dll
- Size
  
  2.5MB
- MD5
  
  9d350aa10c955eaa4676c39a9d9f8384
- SHA1
  
  b139da873b89f646e90048a52749f271e4eabf79
- SHA256
  
  9b8addd0ab24db5218939f0c2195ed3c55b22c2677f8446b1a52373742f493f4
- SHA512
  
  84699a3121f7128ec2976887cf71f1f8ebf22fced707d839ec92267dde4407cc1d5cbc6919d8230741ad650396111bb0fa57cc25d0bd5e95e97281d5440e773f
- SSDEEP
  
  49152:8GXUtKP1DJIYRthtOtubOl8bbDVq7V0Y/U6+OMtF:umhqubs8bbZqxsjP
Score

1^/10
behavioral23 behavioral24
- Target
  
  Graillon-FREE-2.8/license.html
- Size
  
  5KB
- MD5
  
  6c32024856003d2fa55133b17b6c7cde
- SHA1
  
  d12d861c31d0e9620f3bfb521e0280b6099ced2b
- SHA256
  
  9145868c8fa75bdb51f30e7b81ff941737ccd9d7535d0a4e5ca3bdb9da2686d3
- SHA512
  
  dfbaec21f86870b2822e3bf44bf54c371cd6ddd67875b901d2575a0c7ebfa506dcba4ae022e4ad286f28c88672ac1fb252771b1d3f4f977f8151b36dc19183f5
- SSDEEP
  
  96:4U2VNNT8OwnR7XVUNAjzbdZnLtm5EitdgZX5/+8vPQXn1Zro9/HWh:4n3cnR7lcAjPtmCZXYIYXXo9U
Score

1^/10
behavioral25 behavioral26

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Hide Artifacts

T1564

Resource Forking

T1564.009

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix ATT&CK v13

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26