General
-
Target
Batch CIA 3DS Decryptor.zip
-
Size
5.0MB
-
Sample
240509-vvxxasge37
-
MD5
61f5ea0a2e7553a9fa43c4dc208ea17f
-
SHA1
4b2fb1c00d55be894184f098a334daa5b08e555f
-
SHA256
e6c7b104a0a3f8f2f639b767e4be9ab483a1bc57465de106653f211f3b4205eb
-
SHA512
0935d4f5c70d26d74e865b1bace7521f28921aba5745e4621cb8d783f101966837e9eed48e8440e532ecb561d8ee2994c0bfccab461a2d5d8e806e0ad87e25fb
-
SSDEEP
98304:BqYqU2RGhR4qGipsHHF0Rf8KJ6K1jZG8y6Y7yAQlkt8FCEjnpoJyTG6UJj9/X5:AbO4qF+n6RfrJvG8wdbtipoJMUl
Behavioral task
behavioral1
Sample
Batch CIA 3DS Decryptor.zip
Resource
win10v2004-20240426-en
Behavioral task
behavioral2
Sample
Batch CIA 3DS Decryptor.bat
Resource
win10v2004-20240508-en
Behavioral task
behavioral3
Sample
ctrtool.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral4
Sample
decrypt.exe
Resource
win10v2004-20240426-en
Behavioral task
behavioral5
Sample
decrypt.pyc
Resource
win10v2004-20240508-en
Behavioral task
behavioral6
Sample
makerom.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral7
Sample
readme.txt
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
Batch CIA 3DS Decryptor.zip
-
Size
5.0MB
-
MD5
61f5ea0a2e7553a9fa43c4dc208ea17f
-
SHA1
4b2fb1c00d55be894184f098a334daa5b08e555f
-
SHA256
e6c7b104a0a3f8f2f639b767e4be9ab483a1bc57465de106653f211f3b4205eb
-
SHA512
0935d4f5c70d26d74e865b1bace7521f28921aba5745e4621cb8d783f101966837e9eed48e8440e532ecb561d8ee2994c0bfccab461a2d5d8e806e0ad87e25fb
-
SSDEEP
98304:BqYqU2RGhR4qGipsHHF0Rf8KJ6K1jZG8y6Y7yAQlkt8FCEjnpoJyTG6UJj9/X5:AbO4qF+n6RfrJvG8wdbtipoJMUl
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
-
-
Target
Batch CIA 3DS Decryptor.bat
-
Size
2KB
-
MD5
5d86ad3b724a51f72610afdb98c34929
-
SHA1
9e37208a037b7112773a865742b7cdd7124c4cd1
-
SHA256
8d412ad0edeeac91f56841f7d71076846e3b9d7acb7bc7214ccfb910661e3f82
-
SHA512
851b1da7142fd649cc51c390a1b0420beedf198d050a9f8f9bdcb4075ae39c98504b7f543a26fae48bdd6159f5ab722cd492c52636b5d3ad695311b5513797b8
Score1/10 -
-
-
Target
ctrtool.exe
-
Size
602KB
-
MD5
90d4fc7b0a49dee9865dd13f972a9fb4
-
SHA1
e98071516b54d7b39ce143b0d5ddc4921afc442a
-
SHA256
81281895dcc4c991ecddf9a3df94e969787840c7fefa2c137283fbcaf107618c
-
SHA512
101d0bf584d3485a5764e36ba9a1585a9576a6240dc7fec9ab66d6079318f3f5d247489d36169be3b478dc90ec2fcd852289a86d783f482cef98acd1bb0c98f7
-
SSDEEP
12288:VgaYy10l+I5tp9+PrnxxnHtKCMD2ik1ICM/WQpFI0j:VgaT10sWH9+PrnrHtDMDzbCM/WQpFI0j
Score1/10 -
-
-
Target
decrypt.exe
-
Size
4.7MB
-
MD5
2c037dd206414acbdf7d08604cb41676
-
SHA1
a30fef9be32c98a6be2bcfca38192434c1fa439e
-
SHA256
ab290f1a12bbd4526ef44ce87cd88a3babf0ec604cc64fcc43eb32bf4351b45d
-
SHA512
3237c9c269fe60ed4ec85ac52220d1f810758ecba0e859794702c11de780c0818915452aa8802cacfd27b790b1d52768fb055b819353e768a9f0bb1826ab6a9e
-
SSDEEP
98304:DMiKUYtizuTxI6OibE913yyN/R7d64P7W+emKY750J6xiEtZQWsewkKJ:DpkiOI69Abi+RhW+eSGJDXWs6K
Score7/10-
Loads dropped DLL
-
-
-
Target
decrypt.pyc
-
Size
15KB
-
MD5
d8190edf92bc2fb111cd8f3563e100dd
-
SHA1
bdcd6ec7925de3937875123bfde603e742d884a2
-
SHA256
c3ab2e8d826e37932b4ed23d4d4cc3a5094e83aeee6c31094aeab042a1d7fcb9
-
SHA512
499d057edc0b77d6d6570f28cc0f489768440fea1ff5cc6b5b3090b086dd10bdf6944e589694a255489d883c7ec336b69f43c4314bfbb17f1979763ad63f97eb
-
SSDEEP
384:wr/QD2INAgOFnLeb6LJwTWwH3s/DDv5JjBHxvZcZey:wbBIqg8nRiWwH3s/fxJlXAJ
Score3/10 -
-
-
Target
makerom.exe
-
Size
558KB
-
MD5
4ada3c6baea23da329067b5845e805e5
-
SHA1
9db7bc985b2868d80933c1fccac6112cbdab3f95
-
SHA256
80e2d084fa45d65f4a9d9a45689ad9fb8dadc453ffc18ec170a74893d83f258b
-
SHA512
0c3925654aed19148902aae7e75aa57952afe725f709a9504e547a9ffde9c8a3ee8d8be8154a8e8694ead79742eccbd9a9f5b8aecc6779593e9e0e055825d028
-
SSDEEP
6144:7M9+pnOtq1z231+Kn4vKI1GMxoPqxK/nxOGsFU8xowr/9rCec4:A0nGq1C3wK4iIU0oSmn0FBPtCec4
Score1/10 -
-
-
Target
readme.txt
-
Size
676B
-
MD5
5610d809cb6190ac2f6cf89ab2662f57
-
SHA1
1fd90cd6fc8114d76877958b78d2d5b5a883c054
-
SHA256
910ca6a6316115be2fdc79197f99e5f75c68646214a5cd47779c8e6d25fbe618
-
SHA512
3387d4a052889f007794016bda7f6605c3288e5ce7d4030d27aa728cfcc8798713b97f5e20eab1221d0f929a234561d618e963aa62b2a461860331b2bb95cd62
Score1/10 -