3add3f7f93d55414f5aa8fc7ad5d72cc7f991088436d8be1a9c7c3fa398b938f

Sharing

Copy URL

Twitter E-mail

General

Target

AI_HibikiKoto_Voicebank.zip
Size

29.3MB
Sample

240421-wwwlasgf87
MD5

8820abd9749300c2926d0358b23e584b
SHA1

f10e7f688f347297a0dfec22b5d5f6e3bf61a873
SHA256

3add3f7f93d55414f5aa8fc7ad5d72cc7f991088436d8be1a9c7c3fa398b938f
SHA512

85e7f153da5b8ea34ed79b8ecf33e0cc29cceb5bfa390bb5b666a1a821622c0eb4257d02c272ba2cfc49f5783f9a0d4e768f33b3a3adccd811f9e27739171b22
SSDEEP

786432:/caogcqezaznuWe+g4e2uVKuYTou565zyldAZjv9f0+:RonmruvJ28HWEzyTAZj1f0+

Score

7^/10

Malware Config

Targets

- Target
  
  AI_HibikiKoto_Voicebank.zip
- Size
  
  29.3MB
- MD5
  
  8820abd9749300c2926d0358b23e584b
- SHA1
  
  f10e7f688f347297a0dfec22b5d5f6e3bf61a873
- SHA256
  
  3add3f7f93d55414f5aa8fc7ad5d72cc7f991088436d8be1a9c7c3fa398b938f
- SHA512
  
  85e7f153da5b8ea34ed79b8ecf33e0cc29cceb5bfa390bb5b666a1a821622c0eb4257d02c272ba2cfc49f5783f9a0d4e768f33b3a3adccd811f9e27739171b22
- SSDEEP
  
  786432:/caogcqezaznuWe+g4e2uVKuYTou565zyldAZjv9f0+:RonmruvJ28HWEzyTAZj1f0+
Score

1^/10
behavioral1
- Target
  
  AI_HibikiKoto_Voicebank/0x0409.ini
- Size
  
  22KB
- MD5
  
  1196f20ca8bcaa637625e6a061d74c9e
- SHA1
  
  d0946b58676c9c6e57645dbcffc92c61eca3b274
- SHA256
  
  cdb316d7f9aa2d854eb28f7a333426a55cc65fa7d31b0bdf8ae108e611583d29
- SHA512
  
  75e0b3b98ad8269dc8f7048537ad2b458fa8b1dc54cf39df015306abd6701aa8357e08c7d1416d80150ccfd591376ba803249197abdf726e75d50f79d7370ef3
- SSDEEP
  
  384:CTmyuV//BiTbh/YgAwC2WrP2DBW5/Oa0Mhs+XVgv:CT6V//BiXh/t/lWr0pa0Mhs+XVgv
Score

1^/10
behavioral2
- Target
  
  AI_HibikiKoto_Voicebank/0x0411.ini
- Size
  
  14KB
- MD5
  
  b807ce7552e96dc1928775956b9f422c
- SHA1
  
  d25122157365130bebae6497617d28cd86e8c638
- SHA256
  
  3f0778538202a35483c084fb0b109f693a9853f64d6452daa5c92ac75620aadc
- SHA512
  
  bb06ca5784e77ceb15331c5c6a9abad27364b1c5b800f229cd7b6d955fb120cbd7879c299508b606760f714b17a4a50aba333ccf6da7fb9bcd88b50772f64f6d
- SSDEEP
  
  384:DKeEbO3nlKWDUK21OxgCvk3aV4ls8Gb8DVyl:DKtbO3lKWoK21OxgCl7Uyl
Score

1^/10
behavioral3
- Target
  
  AI_HibikiKoto_Voicebank/About Install_Registration.pdf
- Size
  
  159KB
- MD5
  
  0b6515ca4262de8c96aad1ea52fb3fd4
- SHA1
  
  503a30d66b0d5719a73e0aa399c23ab65918faa2
- SHA256
  
  ffe57ec017f76df5beef8536a8892596ba2a718b7591b27394a60de707046e76
- SHA512
  
  123e7216881628a16f139bce14771d84ca35e7885898f5c35c8ce6fed54cf3b87c849b1839c461f34bdd1903b573240ac21d67ebff45dc1362e58d87dcaa0033
- SSDEEP
  
  3072:C+3Bpl1tSevWv8wyjNDtoxhQ+GNGSgeWshRkZBH7I:C+Rz1tSevWvo5qxGBNZWAij7I
Score

1^/10
behavioral4
- Target
  
  AI_HibikiKoto_Voicebank/HibikiKoto.ico
- Size
  
  382KB
- MD5
  
  7c00abba899b5c66361088c3be81988a
- SHA1
  
  5f97c83791ffd9612dc02bd047cc511130a63f7f
- SHA256
  
  2dfd749e5b9187441d00eb634f8ff9a0e2675b079b2e0dbb7e567f744184928c
- SHA512
  
  70173bc4e2b80d54029bbf5e5536b6b916fa4def22bfa4ea51b829c5386073884af06ed12b7be75280ec2c1414a661bb6aee06811e6184bdc65fbc66fb123f52
- SSDEEP
  
  3072:nEQTAxpmR9XGAlmw+D1ZNAtRFqW1G598Ih9iajRx6CCLpri8MIG9YNGKL97iz+gT:EnLmR9rMysW1+J7jRICCLpvTGAtiq2TN
Score

3^/10
behavioral5
- Target
  
  AI_HibikiKoto_Voicebank/ISSetup.dll
- Size
  
  1.6MB
- MD5
  
  167e3fe54e6c1cdbe65946d48ce0f64d
- SHA1
  
  43e594b0a3dfc5cd5a058ec1a9ca8edda510a9bb
- SHA256
  
  32d4359f82465e9da72ff964cfdafcef6ecfabf9bad1b58c10f2facb74ddf73b
- SHA512
  
  971a27b4d89d0248c3753a128fcf811758974e56a38685d1f5f03cf877c6e626080ccb67e3bf7245a9adeb321b7321642c783cb350bcb6430d9bdccc2156b270
- SSDEEP
  
  24576:ZZi9ulj/qpNYDUBo8YeX5gdXFQb5Ays+Hbl/xIJ6dL1Uve:ZWsj/qpWUBo8YQ5gt85Ays+R/40LW2
Score

1^/10
behavioral6
- Target
  
  AI_HibikiKoto_Voicebank/VOCALO Changer/0x0409.ini
- Size
  
  22KB
- MD5
  
  1196f20ca8bcaa637625e6a061d74c9e
- SHA1
  
  d0946b58676c9c6e57645dbcffc92c61eca3b274
- SHA256
  
  cdb316d7f9aa2d854eb28f7a333426a55cc65fa7d31b0bdf8ae108e611583d29
- SHA512
  
  75e0b3b98ad8269dc8f7048537ad2b458fa8b1dc54cf39df015306abd6701aa8357e08c7d1416d80150ccfd591376ba803249197abdf726e75d50f79d7370ef3
- SSDEEP
  
  384:CTmyuV//BiTbh/YgAwC2WrP2DBW5/Oa0Mhs+XVgv:CT6V//BiXh/t/lWr0pa0Mhs+XVgv
Score

1^/10
behavioral7
- Target
  
  AI_HibikiKoto_Voicebank/VOCALO Changer/0x0411.ini
- Size
  
  14KB
- MD5
  
  b807ce7552e96dc1928775956b9f422c
- SHA1
  
  d25122157365130bebae6497617d28cd86e8c638
- SHA256
  
  3f0778538202a35483c084fb0b109f693a9853f64d6452daa5c92ac75620aadc
- SHA512
  
  bb06ca5784e77ceb15331c5c6a9abad27364b1c5b800f229cd7b6d955fb120cbd7879c299508b606760f714b17a4a50aba333ccf6da7fb9bcd88b50772f64f6d
- SSDEEP
  
  384:DKeEbO3nlKWDUK21OxgCvk3aV4ls8Gb8DVyl:DKtbO3lKWoK21OxgCl7Uyl
Score

1^/10
behavioral8
- Target
  
  AI_HibikiKoto_Voicebank/VOCALO Changer/ISSetup.dll
- Size
  
  1.6MB
- MD5
  
  bfbbfbe316b714c5564fb09561e84d60
- SHA1
  
  f7152b278d83cf305f6dc9e9b1ca80edc114ae3c
- SHA256
  
  1d2af11f057409ef8dfd452adad53c947121d4a9bade16bd3a3f2b407da10e2a
- SHA512
  
  1211d2c0b725cd63aea27074b35ba69d43f8287e624d45e10456ce41301a6073c5c36579ce23a0e24ce90bf3dad2707d428cc4dcd2a13d648d7a6c5e02af2313
- SSDEEP
  
  24576:eZi9ulj/qpNYDUBo8YeX5gdXFQb5Ays+Hbl/xIJ6dL1U7h:eWsj/qpWUBo8YQ5gt85Ays+R/40LW9
Score

1^/10
behavioral9
- Target
  
  AI_HibikiKoto_Voicebank/VOCALO Changer/data1.cab
- Size
  
  1.2MB
- MD5
  
  0ae2faa6a71477678f188e0cf8efe5e3
- SHA1
  
  2f23a4cfefc6742c0fe5962ce5909b17eaf4c002
- SHA256
  
  ed84a851bd4b813f13b238c393fb1b27a92e31a254e6d7c4f3674979fe55defa
- SHA512
  
  0c77c6efa0fee350f24d81ab5ac0e4919fc9a5f20606e330e03a22c32438894f434d82bcde2ace6253b24b467f8e6b84f5471ff9008867bf20db934fafa91e88
- SSDEEP
  
  24576:bB73l2TnnpMuqsfX+anyJr8Y0fTgNfGZb7i/5qqch+9kxd2MPTAHz:tLl2TnBvfX3yyY0Nbu/5qqcAkTAHz
Score

1^/10
behavioral10
- Target
  
  AI_HibikiKoto_Voicebank/VOCALO Changer/data1.hdr
- Size
  
  16KB
- MD5
  
  de37d6b1a7a99280d579a0285eeee08d
- SHA1
  
  833e261c6e3dfb8454bca5fc40e5fae2ac8eff62
- SHA256
  
  44361ba225a687f948b25b5018a9bbd0c2d95eed771a16b0abc1a8fe051d81aa
- SHA512
  
  938304aa78a0b7daff860e7360a8520719a485e955fe114d377e3640af433281313bdfebe23322d4bc35caaf120a807aa11015361952c5387c567a41a2aad734
- SSDEEP
  
  384:bzEaIZIO6SaJv15g5cq8Xk/elKaYHVdZ0HzQLhuz8ioMHHno8pOp:bzEaIZIO6SaJv15g5p8Xk/elKaYHVdZT
Score

3^/10
behavioral11
- Target
  
  AI_HibikiKoto_Voicebank/VOCALO Changer/data2.cab
- Size
  
  7.4MB
- MD5
  
  d89cd15e56eb44f5ba101c5252bcce09
- SHA1
  
  86d518724c1b21a0e78f278268347c45a704ebad
- SHA256
  
  75d1cb80ab6411a2915b6eaa63e10e88a870f8e34cff0f3094d2a650cd418b33
- SHA512
  
  a0d4d2a8229082e0bd33e6fcb784378081b4af39d83daef7641dd49c366f4644c4b7a20132c5900161f0b60237a1739199a397626a6829bfbc48fe9270060a9d
- SSDEEP
  
  196608:a2PQE7igRFBLNUKXLHt83h34AYbKhaUK5XJarTN+4DZ36:mD4hPHi+AiKTKJgrR+4F36
Score

1^/10
behavioral12
- Target
  
  AI_HibikiKoto_Voicebank/VOCALO Changer/layout.bin
- Size
  
  552B
- MD5
  
  7dd94c7d0a4d8f5901b9877c2cf89c60
- SHA1
  
  e6cd1c683854e1a88a55b3cd2101e01e9614a3a1
- SHA256
  
  c2432c2f2400f59642555dd9b26789788982e3778eac3394fe783fca7828fa32
- SHA512
  
  4b8e19b8ad2ca0392f6818aa95fd4ea83254a14d815f4a8946866179dc23bd274728df36244510687b778924e3fc21805257441089fdbcd712396e3199955a43
Score

3^/10
behavioral13
- Target
  
  AI_HibikiKoto_Voicebank/VOCALO Changer/setup.exe
- Size
  
  946KB
- MD5
  
  b294762deac4630e6540f0c62b24e04f
- SHA1
  
  5789877398d75a814a713fffe777a0904a8de3f1
- SHA256
  
  4b2990d79ab4ad4c2cd422dd295b6c43d6a425c2bbe96da8e8dae25974b5d7e1
- SHA512
  
  e1c4d706f319888339af8d6e87cfceca4e327f0eb2be2506d2f1ba92a0bc2aecebd9296268356b3e7b89ea3f1262dd59651b52d8371f205fca68fc3dffb9c097
- SSDEEP
  
  24576:qaJ1IJhJe2uheJr8eo965XtwcICba0mJRi:FnIo25XDpmJQ
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral14
- Target
  
  AI_HibikiKoto_Voicebank/VOCALO Changer/setup.ini
- Size
  
  2KB
- MD5
  
  f371014fe300343b356b74709c4d01fc
- SHA1
  
  eec15bcd5703ea135ab6694c0e5e97875a55b06e
- SHA256
  
  7bc42f6ad8a906f559c459d93c322a70b66db6f11f85836f2e8208be9e33f28c
- SHA512
  
  f4475c930d5e0f29c1580adc52830d9b53749791d894f84517198aedbc3331035326f3a1a559ac7a032d5ba7dab1f8f5af9442593c1479d0bb50178c3d76d357
Score

1^/10
behavioral15
- Target
  
  AI_HibikiKoto_Voicebank/data1.cab
- Size
  
  1.2MB
- MD5
  
  91fa7f6edb341e7585024273b8fb17dc
- SHA1
  
  14c29d8e93723595a2b08efb49b1ff81e814418e
- SHA256
  
  a0a942caf2b7549e1aebb14fced5e08cf0a9f6efb0e332d1600906752531b83e
- SHA512
  
  fba0b08cd58c75d9dde31c0d3f31ba62d85c8e439a8bcb7d615230fbb5c99c231f4bbffceba8626544dd0d983dd875d13111a110942cb6a44cf35cc081c920cb
- SSDEEP
  
  24576:J0L57YDFl2TnnpM+qsfX+anyJr8Y0fTgNfGZbmi/5qqch+9kxd6MPTAHz:J0mFl2Tn5vfX3yyY0NbN/5qqcEkTAHz
Score

1^/10
behavioral16
- Target
  
  AI_HibikiKoto_Voicebank/data1.hdr
- Size
  
  17KB
- MD5
  
  de6f0a7ae258a104489f8a30a8cba0f4
- SHA1
  
  76bd6b4d5cc7ec81cec4e68e96b9663819af6211
- SHA256
  
  a754186d7ad2677bd587957de79c82ad2fb5b01e055fdef8c14d5f7fe76ef71b
- SHA512
  
  0ce733d3abc0829cdf8481b4fa8b22872fae5b7b920f0d3d0a61b5290bbde987f133d659037d1d0a192aa426b9f089704618a0adb86ba8f6c9b79cff3ad7962e
- SSDEEP
  
  384:zrdaIZIO6SaJvy5g5cq8Xk/elK/ik3GLrZMLtHUspAzCTAH:zhaIZIO6SaJvy5g5p8Xk/elK/iPLNMLU
Score

3^/10
behavioral17
- Target
  
  AI_HibikiKoto_Voicebank/data2.cab
- Size
  
  17.1MB
- MD5
  
  15731e68a3bd7941e37f94ebe1aa2a77
- SHA1
  
  878b2c5ee1a5e04c94e84d22a1219e413b896bc3
- SHA256
  
  20fc85aa3952f44f360f3f06459d036decb6a1779afc170d2eb0a8bc020f749f
- SHA512
  
  77294986bbfe9b0b8c246dd22607f201f5b99f0fde1c3e82fac3a7dd0844e3030ac1c3d91c1f1dbc6904906276fcbcb25e40f51ad967e6e8f899ad5f45fb5407
- SSDEEP
  
  393216:4VckeK0+Ni1RcceOvOGfsN71WYm2bPm4wD7mf:4ekeKLU1REOmGyWYm27m4wPmf
Score

1^/10
behavioral18
- Target
  
  AI_HibikiKoto_Voicebank/layout.bin
- Size
  
  552B
- MD5
  
  e108829f6b295f9cf860416cecbe7c77
- SHA1
  
  5a8821fd71d51ccf9240398c796d3fdf9c28bf62
- SHA256
  
  87c2de3b3d71ea28b2d4e8f594489565e9a2187455f42dc403c4500b2a18b4b2
- SHA512
  
  ba8ad661060752626055de4bc2f8d1dc77a2e9a01d5eac4a0100b7bc61945b8f4f1b1da8a8ee193eccbc65ea33710652987cb39bb76b7744da57bad65704610b
Score

1^/10
behavioral19
- Target
  
  AI_HibikiKoto_Voicebank/setup.exe
- Size
  
  946KB
- MD5
  
  303d226c43253df17de25bfee869a6b5
- SHA1
  
  af6b2db221195cb4ec0527aaac92e2437e30959a
- SHA256
  
  edc919040b6bdf449ec938b50add2612fb2922406395adbcaf6e31017a423f28
- SHA512
  
  94a1dce0c4c7f1c487d4db0402af124044a34e460ae49ac2a55301cebb25a42c80cbeb056320f087b478ee29cf643ae2f4e07d8ac5487141dab738165fde1a68
- SSDEEP
  
  24576:vaJ1IJhJe2uheJr8eo965XtwcUCcM0mJTS:CnIo25XDMmJu
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral20
- Target
  
  AI_HibikiKoto_Voicebank/setup.ini
- Size
  
  2KB
- MD5
  
  a32415a259c6fa68f5d63543efdee1c9
- SHA1
  
  9b268dfd591a99f9b6e9a972ff151cd9e3e7345a
- SHA256
  
  5a086eded2b023c197e8e958a61ed603f997969cfdb4e4b461588ccb8ae0484f
- SHA512
  
  756316ac10df03c20b500256e6470413579927aef266eb4a939bf80b624d267a8f838e1c7cff0f7eadafc614d81d7ec9fb071cc2251879dbb827a9895458b894
Score

1^/10
behavioral21
- Target
  
  AI_HibikiKoto_Voicebank/インストール、認証について.pdf
- Size
  
  135KB
- MD5
  
  8f9299eafb677b8518eb9d1e1e3c8102
- SHA1
  
  c1d94256f01cf5b4e1be3fc373f3d29930a88e7b
- SHA256
  
  d48666b7c96b4b54d7693817d0da71be33f6ce3454968863e6a27cb0e63c50f1
- SHA512
  
  b668c448f2da9b08ceb28406ccd34f212eea32f82d6c9bca44b72ecffa8b892e0b49811a8aa19a74dc024c6b3ec7843773419f89fac9f3bdc88c824def1f67ca
- SSDEEP
  
  1536:SeB6s38Yaq/kaEY5vDT4Fju2uDKX+ciw2B1SBAToiCIlW36U0Zib5cs2dmF+RUb0:SEz9D0jZn2xozNP00b5xIykU0bUTEg50
Score

1^/10
behavioral22

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Peripheral Device Discovery

T1120

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

Sharing

General

Malware Config

Targets

Executes dropped EXE

Loads dropped DLL

Checks installed software on the system

Executes dropped EXE

Loads dropped DLL

Checks installed software on the system

MITRE ATT&CK Matrix ATT&CK v13

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22