Overview
overview
7Static
static
3DVR4000qud...un.exe
windows7-x64
1DVR4000qud...un.exe
windows10-2004-x64
1DVR4000qud...up.exe
windows7-x64
7DVR4000qud...up.exe
windows10-2004-x64
7DVR4000qud...nt.chm
windows7-x64
1DVR4000qud...nt.chm
windows10-2004-x64
1DVR4000qud...em.dll
windows7-x64
1DVR4000qud...em.dll
windows10-2004-x64
1DVR4000qud...ll.exe
windows7-x64
1DVR4000qud...ll.exe
windows10-2004-x64
1DVR4000qud...re.sys
windows7-x64
1DVR4000qud...re.sys
windows10-2004-x64
1DVR4000qud...nt.chm
windows7-x64
1DVR4000qud...nt.chm
windows10-2004-x64
1DVR4000qud...nt.doc
windows7-x64
4DVR4000qud...nt.doc
windows10-2004-x64
1DVR4000qud...er.chm
windows7-x64
1DVR4000qud...er.chm
windows10-2004-x64
1DVR4000qud...er.doc
windows7-x64
4DVR4000qud...er.doc
windows10-2004-x64
1DVR4000qud...er.chm
windows7-x64
1DVR4000qud...er.chm
windows10-2004-x64
1DVR4000qud...er.doc
windows7-x64
4DVR4000qud...er.doc
windows10-2004-x64
1DVR4000qud...EB.doc
windows7-x64
4DVR4000qud...EB.doc
windows10-2004-x64
1DVR4000qud...eb.chm
windows7-x64
1DVR4000qud...eb.chm
windows10-2004-x64
1DVR4000qud...up.exe
windows7-x64
7DVR4000qud...up.exe
windows10-2004-x64
7DVR4000qud...ck.dll
windows7-x64
1DVR4000qud...ck.dll
windows10-2004-x64
1General
-
Target
84728b48146559476d8310b4dd1d8d75_JaffaCakes118
-
Size
17.6MB
-
Sample
240530-rnb5gace53
-
MD5
84728b48146559476d8310b4dd1d8d75
-
SHA1
118f348a85cb373ab1eb70dc7402e2af7891ec2d
-
SHA256
4dbb413893d89a2ab0ad20db7e8ba364bcccc02fbd3ee9ac6f66b5f3e0b1f7aa
-
SHA512
dd27a12919a2bc07bada0058cfe8bb272e9947eecdff64f5e7766b2deae5d8c7413d0f9722ea523848459b6f2717c61216fe0a2437ab0fb73fe925906c8e8955
-
SSDEEP
393216:pito1fEwnRNtiXRto1HzGRLRkGSKHuRdIEg4K9zYWV9kqMX6to1osdg+ezcUszr:0to1fNRNtiXRto1S5VxmOy9xX6to1Zd7
Static task
static1
Behavioral task
behavioral1
Sample
DVR4000qud/Autorun.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
DVR4000qud/Autorun.exe
Resource
win10v2004-20240426-en
Behavioral task
behavioral3
Sample
DVR4000qud/Client/DVR4000-Client-Setup.exe
Resource
win7-20240419-en
Behavioral task
behavioral4
Sample
DVR4000qud/Client/DVR4000-Client-Setup.exe
Resource
win10v2004-20240426-en
Behavioral task
behavioral5
Sample
DVR4000qud/Client/doc/Simplified/Client.chm
Resource
win7-20240508-en
Behavioral task
behavioral6
Sample
DVR4000qud/Client/doc/Simplified/Client.chm
Resource
win10v2004-20240226-en
Behavioral task
behavioral7
Sample
DVR4000qud/Client/oem.dll
Resource
win7-20240221-en
Behavioral task
behavioral8
Sample
DVR4000qud/Client/oem.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral9
Sample
DVR4000qud/Driver/DrvInstall.exe
Resource
win7-20240220-en
Behavioral task
behavioral10
Sample
DVR4000qud/Driver/DrvInstall.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral11
Sample
DVR4000qud/Driver/hvCapture.sys
Resource
win7-20240221-en
Behavioral task
behavioral12
Sample
DVR4000qud/Driver/hvCapture.sys
Resource
win10v2004-20240426-en
Behavioral task
behavioral13
Sample
DVR4000qud/Help/Simplified/Client.chm
Resource
win7-20240508-en
Behavioral task
behavioral14
Sample
DVR4000qud/Help/Simplified/Client.chm
Resource
win10v2004-20240426-en
Behavioral task
behavioral15
Sample
DVR4000qud/Help/Simplified/Client.doc
Resource
win7-20240221-en
Behavioral task
behavioral16
Sample
DVR4000qud/Help/Simplified/Client.doc
Resource
win10v2004-20240508-en
Behavioral task
behavioral17
Sample
DVR4000qud/Help/Simplified/Player.chm
Resource
win7-20240508-en
Behavioral task
behavioral18
Sample
DVR4000qud/Help/Simplified/Player.chm
Resource
win10v2004-20240426-en
Behavioral task
behavioral19
Sample
DVR4000qud/Help/Simplified/Player.doc
Resource
win7-20240221-en
Behavioral task
behavioral20
Sample
DVR4000qud/Help/Simplified/Player.doc
Resource
win10v2004-20240508-en
Behavioral task
behavioral21
Sample
DVR4000qud/Help/Simplified/Server.chm
Resource
win7-20240508-en
Behavioral task
behavioral22
Sample
DVR4000qud/Help/Simplified/Server.chm
Resource
win10v2004-20240226-en
Behavioral task
behavioral23
Sample
DVR4000qud/Help/Simplified/Server.doc
Resource
win7-20240221-en
Behavioral task
behavioral24
Sample
DVR4000qud/Help/Simplified/Server.doc
Resource
win10v2004-20240508-en
Behavioral task
behavioral25
Sample
DVR4000qud/Help/Simplified/WEB.doc
Resource
win7-20240215-en
Behavioral task
behavioral26
Sample
DVR4000qud/Help/Simplified/WEB.doc
Resource
win10v2004-20240426-en
Behavioral task
behavioral27
Sample
DVR4000qud/Help/Simplified/Web.chm
Resource
win7-20231129-en
Behavioral task
behavioral28
Sample
DVR4000qud/Help/Simplified/Web.chm
Resource
win10v2004-20240508-en
Behavioral task
behavioral29
Sample
DVR4000qud/Server/DVR4000-Server-Setup.exe
Resource
win7-20240220-en
Behavioral task
behavioral30
Sample
DVR4000qud/Server/DVR4000-Server-Setup.exe
Resource
win10v2004-20240426-en
Behavioral task
behavioral31
Sample
DVR4000qud/Server/back.dll
Resource
win7-20240419-en
Behavioral task
behavioral32
Sample
DVR4000qud/Server/back.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
DVR4000qud/Autorun.exe
-
Size
2.1MB
-
MD5
e4cc37a313630251e5274eb045b56079
-
SHA1
08dcf76ce3bba596d53d5b3b6dad671377c84234
-
SHA256
070693526aafc1fd9be1cd60f92a1f9429d0af41c07ed7f19493e2e93d4a9e17
-
SHA512
1b8aa9edc020415ed992c100141a94e15ccf3c277162413aca1b6a714fbb99a085580183d07df629a2f78d9ca21271ea741a95eaf9c329ee2849456e6da55e28
-
SSDEEP
24576:mLCoB6R0VLnf6nuTdzBvIuvpBPwcLZCJe:HYcIL6uTN+uvpBPwcl
Score1/10 -
-
-
Target
DVR4000qud/Client/DVR4000-Client-Setup.exe
-
Size
1.4MB
-
MD5
ce16a2e1e6f4b86834fc1b2b737490a6
-
SHA1
a003f627e5bcfd0b21534dd1d471d828de76ab33
-
SHA256
71b7bcc43def69079781ad9b5ee495f64cc6e99595283d3e42cef2ac6803991c
-
SHA512
e7fae233cc83ff85e2f6e5f36e7b7e26f5c38566604f59e832cc400a25335d9a9729538bab1cde632e5e431bd58e82951f8fd19a4241317d212b10fdbb6d5e84
-
SSDEEP
24576:04vDh0+JQF32yCeFWryU93Ey7OwgpxLJQtGM/osjPteMxLKXyoaY+3JzuCI:hvV0mveF4yUVE8apQosjPtHu8YoPI
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
-
-
Target
DVR4000qud/Client/doc/Simplified/Client.chm
-
Size
353KB
-
MD5
9f98275c60e339557a22b5be4a609d8f
-
SHA1
c7e0974fc5046afd28d85de88fcb72c393103388
-
SHA256
754eaa92301abe87c215f039a6c10039c848766343e87d2fb984655894c11904
-
SHA512
969d566dcf4ca9f76d5e7080eea265df9c04e6fc5e406b69519d84311d9abde84dbadedcba1acee05a2cd25220e4a6b7766a64e833d5395ad4b4fa6348fe9cef
-
SSDEEP
6144:iBbTGM46TM2e8zKXshJdKKQHJFOsJOz3BNwXuCEnlI:ebTrMeEshJdQpxuRNweCEu
Score1/10 -
-
-
Target
DVR4000qud/Client/oem.dll
-
Size
2KB
-
MD5
1f98944e669e8a88ddd2def6dffca99c
-
SHA1
d52aaafd2c7fb584315054b69fc3d13475a849aa
-
SHA256
49f9373d7e9b9a997fe33405379e4f1f529de4f3e1d64545f46f0af1a257f13d
-
SHA512
1b4448cc64306a9d71cd0d784c17091b6500795dc4a3bcca12f870ea4eb2b139a6cb47e2b3b0d0da7da2089a9ab525ecfdbc80349855150d2b69c1c05ee3a71e
Score1/10 -
-
-
Target
DVR4000qud/Driver/DrvInstall.exe
-
Size
303KB
-
MD5
ff84509116255fd3cbee12c61b6aa27c
-
SHA1
8cdbb65e0af39021a21daaab0da8dad3c38dfce1
-
SHA256
767aae4accf7fce8b374e963f280e6debf0ee75fc03abcf8110ad065b8fcd659
-
SHA512
2befcc552d49207e591e04543334834e87c95e5b014b641a64df2990f06247838311dea70df2e95d0bc03fadf0d50f663737b7a247b0f00a7024c832edd57a91
-
SSDEEP
6144:sMJYE1cNwPLvoqg0R2VhPefm0ToyJTlb7oiSdHPDz4ptd/HQg:sMJYE1c2obY7TJTlvoiuvDz47d/HQg
Score1/10 -
-
-
Target
DVR4000qud/Driver/hvCapture.sys
-
Size
40KB
-
MD5
6b8c293c061e5b76c2a0a1ce2fc96468
-
SHA1
7776965b39c6679aeeec9afaf82ef26899a27a4b
-
SHA256
038cf61d21beaa2f08661f035226e4c8b2b453bb8a245fb81ea71b9c61bf09cf
-
SHA512
1493250340548ea098161648de01268dd6580cd0f429b44659daace70276356f6add2baede0b2f5f1602884d239229636898fc11d9600b2dc23663674d0df717
-
SSDEEP
768:9PS3vNB1uGmURVxlrbi7nPCzknJt3sZu0pcNUfHOdsp:1S/NXuGmURVzrbiGzueFp
Score1/10 -
-
-
Target
DVR4000qud/Help/Simplified/Client.chm
-
Size
353KB
-
MD5
9f98275c60e339557a22b5be4a609d8f
-
SHA1
c7e0974fc5046afd28d85de88fcb72c393103388
-
SHA256
754eaa92301abe87c215f039a6c10039c848766343e87d2fb984655894c11904
-
SHA512
969d566dcf4ca9f76d5e7080eea265df9c04e6fc5e406b69519d84311d9abde84dbadedcba1acee05a2cd25220e4a6b7766a64e833d5395ad4b4fa6348fe9cef
-
SSDEEP
6144:iBbTGM46TM2e8zKXshJdKKQHJFOsJOz3BNwXuCEnlI:ebTrMeEshJdQpxuRNweCEu
Score1/10 -
-
-
Target
DVR4000qud/Help/Simplified/Client.doc
-
Size
591KB
-
MD5
ca078c68bbdf9969d9b6e96e7fde31f6
-
SHA1
635676433d50b88b1b514930aca6c8e4c65fd111
-
SHA256
c7ac97b169d5c5fef79c1ae747a340ab4714a436b7888a35ae9c54f1a23d43e8
-
SHA512
5a266bfbdef9d6dba76c5540558d6b90600daadfb905e638b71ebacfac5d54720ad8169296367e7dab7d47126ea1ac40ad0247b1d342876c644b48e39b262d72
-
SSDEEP
12288:Gm6bDExpNr2cV6FIKaw5RQXuPLNprKhSp5nmE:GmcAx6cyIKHRQgLNRGSPm
Score4/10 -
-
-
Target
DVR4000qud/Help/Simplified/Player.chm
-
Size
287KB
-
MD5
a1b82750b9724e146c0566e2d1ed8446
-
SHA1
d81d7d0d44974bb79cb01cac0aca0c598eed1aa1
-
SHA256
65da75cca849fe8b94379397d4260981b77e779b4ebd09082e80ad8329a37d2f
-
SHA512
f2485df069bd2a9e1f546deb564a8490e72268ec6fd0e32b2adccedd0291d8df9fc191559f1857df276d8609604439e140ad5d19c1fe2c5ec6caa27531c98eae
-
SSDEEP
6144:SljOarlf7wsxWyree8OK1XZrGpDZUsPlJJBKV4Ih/o5Su3Q:ILs9MRYJrGzUWJ9I9Su
Score1/10 -
-
-
Target
DVR4000qud/Help/Simplified/Player.doc
-
Size
344KB
-
MD5
dc33e9c7076596993327f8eb3e60d303
-
SHA1
d2b223bac490908d8dac2c843b93f70ea13cccdd
-
SHA256
9f405abdd960b78464c741eaadfc430a077accefb3a0a542e6125a9c183bdabe
-
SHA512
b7baef5351c9ba5eada9a3b81aea4db39e310948e35825e16b84da42fd36429e19017e9ea0af7bce5f185462530252bd8e16a9d25f71cd9b56380f7099694dd0
-
SSDEEP
6144:9XM8+YoSU+yRpReUwqAox8h8HHreo+oM3c9csu/Ehw428493l6oR7j:9XM8+YoSU+HUwqpCqHHreo+oM3c9cyh4
Score4/10 -
-
-
Target
DVR4000qud/Help/Simplified/Server.chm
-
Size
1.0MB
-
MD5
fac90db1b39f2bac5f49acb9dd1ec02d
-
SHA1
4a74746848c29eed1699367158f5c8ee6094866c
-
SHA256
1b485cd920e0a06640635be6d2e8d815eb1de2a1da724b329ab45426682a833e
-
SHA512
80ed4fb6006acf587a5ad1e69d169c8e440c4a12976c0eb509b860ae7c45bc94397701275722f1d370fcd0f0542a87f00ed2aaff1249688c776ba8899f3a347a
-
SSDEEP
24576:wIdB9FLD0h+iqeQ62Z6MvxDYVCikDmO7fL/8Fkg8oAc:wIdB9BDu+iiDpx8VCiQL/8Iod
Score1/10 -
-
-
Target
DVR4000qud/Help/Simplified/Server.doc
-
Size
2.1MB
-
MD5
0d4c796c4d5421bcdeeaee7284cf7b0e
-
SHA1
8b14873c5d8e7bbfdbea3fa549bab7bad9a29810
-
SHA256
858368cebcbb539b941a2554bbed5b160216c84484f132a56537463342e375f4
-
SHA512
89b1b07c4c985fd0846bc0ac20aef67236201ed18768a2ee94e276e1e55d5f217e51e0a0d8a32a7a021ce37162b2d38e88175c62c23d40a7db2b7f7b76211908
-
SSDEEP
49152:xAgwXgET3ImttBWWXW4IFiRQVXZLcmlKEpYZ6Tdx:k9WWXNYpaEE
Score4/10 -
-
-
Target
DVR4000qud/Help/Simplified/WEB.doc
-
Size
832KB
-
MD5
16fefc9a8ec86980d85ccaf3ec078e04
-
SHA1
0453c85309ef94c448191aed1e3a1940f0f87d43
-
SHA256
d5bc2f6487984eeb2e47da51d43c2efb6c00b1ab622929c37ff67f163801e5ad
-
SHA512
627a94cb709b90bd1b6837bf20a95d7fe321bc732fe709ff931a1eefa6a719f1af1db10bd7f516aeaccbb4bf69328102e5ec3d83926e4d0002d9e6cbab42d097
-
SSDEEP
24576:1pwykKY5a0ObQaDkw8om3pppppppppppSyS:rwykKY5a0ObQaDX1upppppppppppSyS
Score4/10 -
-
-
Target
DVR4000qud/Help/Simplified/Web.chm
-
Size
317KB
-
MD5
4c6a0951c845bcbeaf4f346f1e905ae8
-
SHA1
f781893a96e3b35715361f28e1146aa1591e19c0
-
SHA256
73e5fc0ae3a4321a9d814671db75ad3502e8f19349326c26a15685aa7c8ebc6e
-
SHA512
088ecd321c53c85df216959cca3b159eb9221006712ee10458dffd08a9a138a63f08ac59f2ac10669e59cef4f7c1c48e6e4967a3c4f8ee119f4673a62719a262
-
SSDEEP
6144:TsLpMmqvHV8y6tIUkBRxDjfs+Wgx2C+ztHzNuLO3DGmYhgtjTnJmQfgpmdYW5:oDS8/gBzjfhx2C6NIoGjh6nJFfgYdYW5
Score1/10 -
-
-
Target
DVR4000qud/Server/DVR4000-Server-Setup.exe
-
Size
8.4MB
-
MD5
9827031a80570a7e8a088e3ac868a895
-
SHA1
3e6d589901b48b240e4e7232f36be082a5a99d6f
-
SHA256
5a7be97b308b22f7472d1cb8afa8c264848a9dadd5d1d63ba46d6891548aa16a
-
SHA512
74054523542f683c48ea9a05e001a98530f58f2cc40ef8cf48befecb5ca9ae36c0170722844850010f2a939a00666cb0559b65f751059c77b9210bd37e2639a4
-
SSDEEP
196608:o7lP3bTVOWSXuP96gxwQvmziIgRbHho7qc6H7DsS01:y1ZOWSXuPEgyQiiIgVq5M7oSo
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
-
-
Target
DVR4000qud/Server/back.dll
-
Size
225KB
-
MD5
f5cf208cd3fc785833b5115273e0cfa0
-
SHA1
84b673548aee6ade79afa607b52e4d3724f2ebe8
-
SHA256
83674c3f035ff909d72f85abc7ba579f0a36483967a50f464fb7f0c82e3b55cd
-
SHA512
24b134fcca5c9fc68675c4ab9449ced7d70f95a26e828e11c3f90a09e5fef971a82646d52cd7e6ba68ba07ce2fdbf9bc52fd56ac750cf862c336be1897b9eff4
-
SSDEEP
384:wHR4fpIyw5F2PUnTWOluW2tU7NqCSZigP8iQxqfjMACsLGnVnBinbCSt1MO7yx41:2RBosVJ4cWNzaCbTyJvRuxAu
Score1/10 -