Overview

overview

7

Static

static

3

74db459fa4...22.exe

windows7-x64

7

74db459fa4...22.exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...ry.dll

windows7-x64

3

$PLUGINSDI...ry.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...sh.dll

windows7-x64

1

$PLUGINSDI...sh.dll

windows10-2004-x64

1

$PLUGINSDI...ce.dll

windows7-x64

3

$PLUGINSDI...ce.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    74db459fa4253ae77a92e6fb176933a7205a0413a92b722ce6821b11ffd22422.exe

  • Size

    164KB

  • Sample

    240523-ck6gksaa2v

  • MD5

    1b00acaa7a8aeac7b7cd384474779ff0

  • SHA1

    a174d06c8ae8539c69cb2beb2bcd98cac74af4b1

  • SHA256

    74db459fa4253ae77a92e6fb176933a7205a0413a92b722ce6821b11ffd22422

  • SHA512

    eefc1809be377d896f617c52142a50fd36c82a68bd82b4d98c757de114ead0fc62d6468be019f2b0caaef6de9a7873b8589f02f2814bfd98f760c956db7e2982

  • SSDEEP

    3072:sgXdZ2VQD3XJlGIC4VpTKypXYUJLbF2lQBV+UdE+rECWp7hKx+LpQ7I:seuCa4VpDNNJL1BV+UdvrEFp7hKxGpb

Score
7/10
upx

Malware Config

Targets

    • Target

      74db459fa4253ae77a92e6fb176933a7205a0413a92b722ce6821b11ffd22422.exe

    • Size

      164KB

    • MD5

      1b00acaa7a8aeac7b7cd384474779ff0

    • SHA1

      a174d06c8ae8539c69cb2beb2bcd98cac74af4b1

    • SHA256

      74db459fa4253ae77a92e6fb176933a7205a0413a92b722ce6821b11ffd22422

    • SHA512

      eefc1809be377d896f617c52142a50fd36c82a68bd82b4d98c757de114ead0fc62d6468be019f2b0caaef6de9a7873b8589f02f2814bfd98f760c956db7e2982

    • SSDEEP

      3072:sgXdZ2VQD3XJlGIC4VpTKypXYUJLbF2lQBV+UdE+rECWp7hKx+LpQ7I:seuCa4VpDNNJL1BV+UdvrEFp7hKxGpb

    Score
    7/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

    • Target

      $PLUGINSDIR/FindProcDLL.dll

    • Size

      3KB

    • MD5

      75e7351a0f836b8659e6f315683c29f7

    • SHA1

      66b733d1c978d68cadc245e7efbfcae32807429d

    • SHA256

      7ffc549e7f679a08c77fa230654b77cdffb3444296bb7c6b8b5769db374b61ee

    • SHA512

      f03400798b07ccca5e12fa119a586ee9444deb0d2419aced24d93fd84a4702d66864a71b40a11b04b1dbe56e36481cd6a644aec0347bc82bc7375b27bc403fe4

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/Registry.dll

    • Size

      24KB

    • MD5

      2b7007ed0262ca02ef69d8990815cbeb

    • SHA1

      2eabe4f755213666dbbbde024a5235ddde02b47f

    • SHA256

      0b25b20f26de5d5bd795f934c70447112b4981343fcb2dfab3374a4018d28c2d

    • SHA512

      aa75ee59ca0b8530eb7298b74e5f334ae9d14129f603b285a3170b82103cfdcc175af8185317e6207142517769e69a24b34fcdf0f58ed50a4960cbe8c22a0aca

    • SSDEEP

      384:W2mvyNjH3rPnAZ4wu2QbnC7qB7PnrvScaeYA4CIDEge/QqL2AQ:/75w/OfrzB4CUxuQfA

    Score
    3/10
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      a78507ea1078cadaa8b2ec1a2e1d874f

    • SHA1

      77fe20488444ebbaafc5b2c0743251a94edc3b8e

    • SHA256

      93d1e681daebfd24ff9fab3952e8ae94eddbdfb3650937988c1fd8085991610e

    • SHA512

      0399452c7305f23576d4175ec198ad8da8a530215e9304632b20bcb41a38fa0ba2c1c0b0b734b9f887851c92c7f2cf4cdfad403ace84e63318c0694402e1f270

    • SSDEEP

      192:8trS5c+oKreH53n2fUC1lfeTf9OJCzD4/IVqh88GrgU6H:/jrd09O3/IcG8U6H

    Score
    3/10
    behavioral7behavioral8

    • Target

      $PLUGINSDIR/newadvsplash.dll

    • Size

      8KB

    • MD5

      7ee14dff57fb6e6c644b318d16768f4c

    • SHA1

      9a5d5b31ab56ab01e9b0bd76c51b8b4605a8ccce

    • SHA256

      53377d0710f551182edbab4150935425948535d11b92bf08a1c2dcf989723bd7

    • SHA512

      0565ff2bdbdf044c5f90bd45475d478b48cdbd5e19569976291b1bdd703e61355410c65f29f2c9213faf56251beb16d342c8625288dad6afc670717b9636d51f

    • SSDEEP

      96:qD5UDaGxZH52QhtZafDP9BTS9nPg83UniV/zRzGEl1DMl1zN6LmeYt4dO:W5UDaGxZH5T0j+9nl3BzG0IZ6LqN

    Score
    1/10
    behavioral10behavioral9

    • Target

      $PLUGINSDIR/textreplace.dll

    • Size

      5KB

    • MD5

      72d1177bad86f4df8eaee2a8afe50e6f

    • SHA1

      c36019dfa2ff5c90c9da31c89dfcda08f93df68d

    • SHA256

      c058f4439617bdb2019c90abd9920070a23f751b9349051d0744280cd5d9c5d7

    • SHA512

      e0e764fcafa833f94ad2d5ae2a407f3e35bd27efa078625d5a2c9372ea28d7889c4b339e457d6fd7c3c90475b2d1603142a8c46a23f59b5784478860b06ee1b3

    • SSDEEP

      96:RHbaG527tDIdcuPYyKV20sWt5yzASW3zRvDOfGq:RHba5JCcmgV20sqhZ2

    Score
    3/10
    behavioral11behavioral12

MITRE ATT&CK Matrix

Tasks