a54e7937a7d8601f0cd2315e38837b7195bdd1b29d35e616a50b4568161a7906

Sharing

Copy URL

Twitter E-mail

General

Target

20240402-L-Connect 3-x64-v2.0.13-6658985a.exe
Size

462.5MB
Sample

240519-xp13wada61
MD5

c846cc743e3d44c7d14e415d743ff7ba
SHA1

e93dece8ec2313c6a5b6f9e46ab35718341d82ce
SHA256

a54e7937a7d8601f0cd2315e38837b7195bdd1b29d35e616a50b4568161a7906
SHA512

7a9b90dd92f214abd83f3773144b172449b67d5bb1b987963117b5ee880920aa764ac536d93d9aaaddd8fba27e65e5d8752f3f6faa0dde95a67f413c8d56f7c0
SSDEEP

12582912:aavkuk8OYT4KsgndI12xrEsz30RsP0DErO:aNu1kZ6dDrPzv8EK

Score

7^/10

execution upx

Malware Config

Targets

- Target
  
  20240402-L-Connect 3-x64-v2.0.13-6658985a.exe
- Size
  
  462.5MB
- MD5
  
  c846cc743e3d44c7d14e415d743ff7ba
- SHA1
  
  e93dece8ec2313c6a5b6f9e46ab35718341d82ce
- SHA256
  
  a54e7937a7d8601f0cd2315e38837b7195bdd1b29d35e616a50b4568161a7906
- SHA512
  
  7a9b90dd92f214abd83f3773144b172449b67d5bb1b987963117b5ee880920aa764ac536d93d9aaaddd8fba27e65e5d8752f3f6faa0dde95a67f413c8d56f7c0
- SSDEEP
  
  12582912:aavkuk8OYT4KsgndI12xrEsz30RsP0DErO:aNu1kZ6dDrPzv8EK
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  12KB
- MD5
  
  4add245d4ba34b04f213409bfe504c07
- SHA1
  
  ef756d6581d70e87d58cc4982e3f4d18e0ea5b09
- SHA256
  
  9111099efe9d5c9b391dc132b2faf0a3851a760d4106d5368e30ac744eb42706
- SHA512
  
  1bd260cabe5ea3cefbbc675162f30092ab157893510f45a1b571489e03ebb2903c55f64f89812754d3fe03c8f10012b8078d1261a7e73ac1f87c82f714bce03d
- SSDEEP
  
  192:VjHcQ0qWTlt7wi5Aj/lM0sEWD/wtYbBjpNQybC7y+XZv0QPi:B/Qlt7wiij/lMRv/9V4bvr
Score

3^/10
behavioral3 behavioral4
- Target
  
  $R0
- Size
  
  325KB
- MD5
  
  38a6652e7a8118942b44ffc0687d31eb
- SHA1
  
  91024291704982d9ba02a62528910d9edb5f147a
- SHA256
  
  9d902c723813dedea3b6f20e1537069cb3b4c93da111de8613f567128b186db7
- SHA512
  
  63e72b7c6ee2d30ff64dc6d7b4792429de5da91f316661454f90c0bafd7ac80ff2acb50c47f3ed2dd188f23f0154bd730f986bf9c3750b117fb89d1bfbd8eb59
- SSDEEP
  
  6144:fgqInfyzelVccLURaRRULJ2uyC/mCectRlJ:YqIn6OLSarFuz/FRP
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral5 behavioral6
- Target
  
  CefSharp.BrowserSubprocess.Core.dll
- Size
  
  1.1MB
- MD5
  
  e68366a5563208fbe61ed364d22d36e0
- SHA1
  
  37b9d2ef3323542b63d6ca7de07994693f0e6029
- SHA256
  
  e17d62ecf7133104a5114a12359c92bf12f57e8644c65f2173f85c2c66caf32f
- SHA512
  
  b861e011581f29a201f7c2c877cfc333a5b6a1a65a144c872afa64d7a733c1c962a0ac829f4e2c16a55268d73f8c3382dc0db75be42af55ceb4d1f8aef4732db
- SSDEEP
  
  24576:PRJcvQcFRNknC9oF5Rgn9j7JbZhrSfzR4z9gD8Es0ve/DCJ2ZiVxhEDssQjPc8DV:PRJcpgD8Es0ve/DCJ2ZiVxhEDssQjPcE
Score

1^/10
behavioral7 behavioral8
- Target
  
  CefSharp.BrowserSubprocess.exe
- Size
  
  6KB
- MD5
  
  8e501afeb89cbb270c2728dca490bac3
- SHA1
  
  4ec0f2ee72e4f66a0e47e4e2590f1f15823050a0
- SHA256
  
  f7c17540819de324498a7a638a3b824d24bccb67387d540aa88ca842bef93eeb
- SHA512
  
  30ecad788a3a83459dcb52750de04673964f1ffe905e4a58371dbcaf975890bb6517ef82e7b506496c4de80aa6e03c8e5f034dfe71721690185f5a3094170528
- SSDEEP
  
  96:B6ZxDI7k8mQBDvj8bkXKeFZpetmATNt61OYcXe5U:6DIfmQBXzXKeFZqsAYcXeS
Score

1^/10
behavioral10 behavioral9
- Target
  
  CefSharp.Core.Runtime.dll
- Size
  
  1.7MB
- MD5
  
  8856837172a46a5e382cc1e9831fecf3
- SHA1
  
  24326369e3fea5deb2fee2dd7c4ad61f3c6fe7ef
- SHA256
  
  32ab80715c3a8e567e80d49519e0bdc7988090c13f7436248b9e8377d0af0803
- SHA512
  
  f26944bebf7a12bac91a7c795993d261e83b7d6a0ebe9acdd9053cb6739e60f054040d0b0250b464156307041527f200cd8e255105f4a0d431366d6ef3e8f18c
- SSDEEP
  
  49152:5hUM45fkGVgqcHCgrZi5t9xh0MLgS3esm2qCUD/yNWYxtYtUkjCKflrQKJ+N462V:T4A
Score

1^/10
behavioral11 behavioral12
- Target
  
  CefSharp.Core.dll
- Size
  
  861KB
- MD5
  
  483235fac89e922eb5caf51d60e659f7
- SHA1
  
  62a4947b5688f0b97a301e9ffbb760d42904ef48
- SHA256
  
  e9aef9eb4265f05c149d5a52893dff5e4eb0ee155a1e1abb908436adfa582985
- SHA512
  
  ca9e360b5ec07c613cc438ca44ef7426835ed44fceaf918e85096165941f1aa9ddffdde4280462e1a9aa8dba790d58fc32f0978f77ef61eab9dca09f9c5092c0
- SSDEEP
  
  12288:iWTgoSHd4WzO1RDyHVGW+HdqmerX7eKkcB7:WHfdHVx+MNrS9cB7
Score

1^/10
behavioral13 behavioral14
- Target
  
  CefSharp.OffScreen.dll
- Size
  
  40KB
- MD5
  
  1885e1873792a66068e3a9c25829f84b
- SHA1
  
  10b63f3f9f58251f74e84d5b224784a8668024a7
- SHA256
  
  4824f02406c741187aeda1f62aac9b43023b1fe352cfffc933d11665c2610c5f
- SHA512
  
  2188120a746f75bddd3434951d31546b82d6e3475c7de02105a7bae3cf45798606cbdbdbf8e49a50e8d1ea9eafd1602adab725d410d87e2457b0b3a1499ec3de
- SSDEEP
  
  384:fI92CoxuHwWhYlZTAOv4m1bhobTLVbnLvWBxz9Bnky4Zyt763qQMBh/7qYW4EFZf:f4E0O/FobTL5+5RkwNFQuqPJY/+
Score

1^/10
behavioral15 behavioral16
- Target
  
  CefSharp.Wpf.dll
- Size
  
  112KB
- MD5
  
  47161c3628c7b6df78b5b449b0bac95c
- SHA1
  
  620aa2c03e319e908117731f0ddfec3de7b73dd3
- SHA256
  
  963548c4f88ed21c08013df2e9add7b0f652aa9461748a6999e9af87f11afa1a
- SHA512
  
  5f627b8e7c32d5948c0ee894b3539c016fa045692f93d2e61c1ee9276347fc0e056369725023e9572e9fb4ae833ae30ec518527fa535355ccdc43aa54dadac5b
- SSDEEP
  
  3072:Z+kxtq1+SZIC4CJNoV+wFvV4TgGMwtOi56511wV:cLzICxMFWTgG+d16
Score

1^/10
behavioral17 behavioral18
- Target
  
  assets/animation/index.html
- Size
  
  468B
- MD5
  
  7b2ddaa9ff14c86cf115f3c53c52d1f9
- SHA1
  
  cc1d8c3a07587d3230380ac0fd2a11ce72e87468
- SHA256
  
  039b3ac6b8ba6cb677a84abaff034602d0dcf606c13345f5c6d4a5006009cf69
- SHA512
  
  1a0a82aaeafe05d6e7779845190cb86f3fd36e5ef99c9ba3d4bf281893d8b96a4e4a11f8cd4d5b99af5c7897abeae7e11071f381c9bf53eced163e3656e35b5b
Score

1^/10
behavioral19 behavioral20
- Target
  
  assets/ga2v/Rain3D/index.html
- Size
  
  7KB
- MD5
  
  d0b96c2dcd094c330a3c77114d373902
- SHA1
  
  7e785f29433c333b7b34af2dde02c9023f509c48
- SHA256
  
  b933699841f366131f19e429bea8462800dc5757b811044160203ab7ec985d98
- SHA512
  
  b90e5511c9ba307a8bd3cc0e80b52b019ac2d15020b8abc397fcb09117fa9ab8ef6f28b928bd733b9cc97f81595f27509330f8652706eb20801041c1192d5af9
- SSDEEP
  
  48:tGfHJXwBEfW0A2W8JsK2kaMr2AwNTEwXctsEWJRb5K5kEgEW1zGb5K5kE7nEWJsA:6HVwBdxiiUOEn5A8En41Egr0EgVaH1o
Score

1^/10
behavioral21 behavioral22
- Target
  
  assets/ga2v/Rain3D/index2.html
- Size
  
  2KB
- MD5
  
  6e500fbdb26f26481163842219b5336a
- SHA1
  
  49a174fb7356dff04fd58332037d61948c884b96
- SHA256
  
  2c978744784ad61d4ec7045caa60e82898effea1d642dd1f15a1646e7fef33eb
- SHA512
  
  6b6463e067b34a00b744e5d64382358d5771190b405b75513283cb072c8ffa1a9f5ae2fa17d5f88366656e09c3f1a5145b9780f9955d11fdee5c0ff18b2a2f19
Score

1^/10
behavioral23 behavioral24
- Target
  
  assets/ga2v/Rain3D/index3.html
- Size
  
  2KB
- MD5
  
  83ac9584d1c673e705cdf4896bee21e6
- SHA1
  
  3a8a2461faea4f364d8cf93b1fd214be08a737b9
- SHA256
  
  2b247f51d247c8f05f0064000240dc135d8620c641fb0b760b7f3f842de12f4b
- SHA512
  
  6353cf621e5ed03379ca1e4979b8aabb1e41310ee71cad7b14e77c4455a5a289ea0f8fd5860f939e28e8a39af3c086c33f560f33e7173b6ab71311c9d04b0bba
Score

1^/10
behavioral25 behavioral26
- Target
  
  assets/ga2v/Rain3D/js/index.js
- Size
  
  1.3MB
- MD5
  
  6387157b68ff525f9da968da1782f6e3
- SHA1
  
  fb00c5103f48c39759e14d470b1156a4b26321e6
- SHA256
  
  193adb2e81675002fd041e9ea0664f7e7a0d0b9b5ee3c2aa790412f2b13f8536
- SHA512
  
  f35ae769a497f8ec7771912dc5f4d6a35ae0b93f6991c6c93f8be2f953e44992f20474dc723c3c01696937b3b393bbd89c4ee6056072acb717fb44fa0f18bdc6
- SSDEEP
  
  24576:j2P4sTlGbOMz+nmopEKh0D1bFfmuqP0apVkxZYM4AdJvlVO/Fbu8EmpAT:j24sTlGbOMz+nmopEKh0D1bFfmuqP0a+
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  assets/ga2v/Rain3D/js/index.min.js
- Size
  
  1.4MB
- MD5
  
  112fbd1b7e7770f33f90c59a9410ead2
- SHA1
  
  a2c22c457b90e538f13c1ab89297330d80802eeb
- SHA256
  
  0f5c4877340cb7b889c3eaeb22964554e128e2ea49ff85c55b4d82f363052b9c
- SHA512
  
  9c894f2a83d191d5920f6e6adbe9ce1b81f190b4f3105cd8748b10bcbeb6f4c0e37ed3f9d6a0851c0074ead0c32630c99bdae45079ce1596b314b49d2b9205f4
- SSDEEP
  
  24576:75383U4Ze/zZnGofMetjr011CrUYuqHdtcVkVZYK+4sYB32W6DiTNfr:9383U4Ze/zZnGofMetjr011CrUYuqHd9
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  assets/ga2v/Rain3D/js/index2.js
- Size
  
  451KB
- MD5
  
  8c987210ae3adf2a696c7c6062c80612
- SHA1
  
  9b558769e143e8d95c681ec56d7d5f36ecd45241
- SHA256
  
  6a75ea807d72685d13cbaf77b9be76a11ad25d06e1b73d14ffe34a645e1dce80
- SHA512
  
  8b3f749928589c0aa5965a7ae74a0967c46ff1b4aa27f1e84a1d9b13be81b5dcd9221274a0cb46a420c5e7c022eb806988311944d92f994e040ffa621e0c6fde
- SSDEEP
  
  6144:jOtPChsb+JPTy9C83DhCVkxZYaZzH+aQkclHITu/SgkwPbFyG:j2P4sOVkxZYaZAkcN//3F5
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

Enumerates connected drives

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32