Overview
overview
3Static
static
3MediaCAT.zip
windows10-2004-x64
1MediaCAT.exe
windows10-2004-x64
1Microsoft....re.dll
windows10-2004-x64
1Microsoft....ms.dll
windows10-2004-x64
1Microsoft....pf.dll
windows10-2004-x64
1System.Dia...ce.dll
windows10-2004-x64
1Weather-Mi...re.dll
windows10-2004-x64
1Weather-Mi...pet.js
windows10-2004-x64
3runtimes/w...er.dll
windows10-2004-x64
1runtimes/w...er.dll
windows10-2004-x64
1runtimes/w...er.dll
windows10-2004-x64
3General
-
Target
MediaCAT.zip
-
Size
6.9MB
-
Sample
240612-xaprasvhje
-
MD5
2678617530868d4f0a4d421ef6b38842
-
SHA1
10fd2b80dd6497be5edd0038860b3292a002a433
-
SHA256
9a0ce0a06a7e1bcc59e6ecba974fdea9800d77de2231cf71aa41aaaa2f2d0b80
-
SHA512
906a5e43e0fe667a31742b0fde22a4e3363f8917f6ed9f48ac1ef6c1bc2d67a90731e048831a91843e343e3d301a809027234ed278f5e78678020b339e8c9701
-
SSDEEP
196608:S7DoHbP1yUEQNIExU26TM7xdRu7xBip6N8IfDVy3:S7kHbPPqExwIGPy3
Static task
static1
Behavioral task
behavioral1
Sample
MediaCAT.zip
Resource
win10v2004-20240508-en
Behavioral task
behavioral2
Sample
MediaCAT.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral3
Sample
Microsoft.Web.WebView2.Core.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral4
Sample
Microsoft.Web.WebView2.WinForms.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral5
Sample
Microsoft.Web.WebView2.Wpf.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral6
Sample
System.Diagnostics.DiagnosticSource.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral7
Sample
Weather-Minsk#.exe.WebView2/EBWebView/Speech Recognition/1.15.0.1/Microsoft.CognitiveServices.Speech.core.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral8
Sample
Weather-Minsk#.exe.WebView2/EBWebView/Subresource Filter/Unindexed Rules/10.34.0.52/adblock_snippet.js
Resource
win10v2004-20240611-en
Behavioral task
behavioral9
Sample
runtimes/win-arm64/native/WebView2Loader.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral10
Sample
runtimes/win-x64/native/WebView2Loader.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral11
Sample
runtimes/win-x86/native/WebView2Loader.dll
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
MediaCAT.zip
-
Size
6.9MB
-
MD5
2678617530868d4f0a4d421ef6b38842
-
SHA1
10fd2b80dd6497be5edd0038860b3292a002a433
-
SHA256
9a0ce0a06a7e1bcc59e6ecba974fdea9800d77de2231cf71aa41aaaa2f2d0b80
-
SHA512
906a5e43e0fe667a31742b0fde22a4e3363f8917f6ed9f48ac1ef6c1bc2d67a90731e048831a91843e343e3d301a809027234ed278f5e78678020b339e8c9701
-
SSDEEP
196608:S7DoHbP1yUEQNIExU26TM7xdRu7xBip6N8IfDVy3:S7kHbPPqExwIGPy3
Score1/10 -
-
-
Target
MediaCAT.ExE
-
Size
14KB
-
MD5
98c50baa3cf282338f9a31394e74cb83
-
SHA1
30ea562539c0d5609b2c1c2798dbddec326754d9
-
SHA256
206185c8a066d1b39441a2cbf3e809b821d6c5d1ab2ab1059e95372fb832a8a4
-
SHA512
52352aeebea88d5b5df163de9dfab8452e664c6ca769b1973ce75e044559deea12354fa74d1661c95c5f6f95984f29324322bbbed821262f85091ac0e73fb6ad
-
SSDEEP
384:GzyySk0jwW9uYZsmiqXkMVSfBVG6kYcV6PUiJFnh:GuwW4YiSkM00YcV6cizh
Score1/10 -
-
-
Target
Microsoft.Web.WebView2.Core.dll
-
Size
550KB
-
MD5
deff469adb75cea11ac8e5cc91905ca1
-
SHA1
9b245973197b2b1a48f4c0d515aba21ad9a9963a
-
SHA256
406d5cc45417ddf6f69ea5cfa6748fea19920eb6b3bbf80d65d927ce8ef1cb30
-
SHA512
5ad75832b27d4a4c6ec50ff33fb0cb6812c3847bebc9d8b3bec7c53e15a82d6b1cfe38b595b941a3957b922949279cd470d08e1f5b66a2547093aec49ad6648c
-
SSDEEP
12288:2tftLjaE7cJrpQ322zy+uFKcDoRFNCMmeA+imQ269pRFZNIEJdIEY0lxEIPrEIgI:2L+R
Score1/10 -
-
-
Target
Microsoft.Web.WebView2.WinForms.dll
-
Size
37KB
-
MD5
130875870f28ab1bded4c90d995bb844
-
SHA1
6f49ee3ec9aa3ba47025438e79cf171135eb47f4
-
SHA256
275255c348447db0dbf8b5dba54c6a3af356347d83325c6442145cfd8890de89
-
SHA512
e597193bbb3a4824bfea738ea90ecb2e15409d64c4e723a778705a9b02d968c2504b0e932d96a9e0f716afb9fcf4a8ba8dc28b732d7f57eae8166e70651409a5
-
SSDEEP
768:9ijOv/1uo4D/iyUdvtYZDgcEST3p4Jjrjh2jJFSUyauTv1JKia5/Zi/WGQK4u6bm:yOvlyUZtYZDgcEST3p4JjrjaJFSUyauz
Score1/10 -
-
-
Target
Microsoft.Web.WebView2.Wpf.dll
-
Size
44KB
-
MD5
c308e6533f40204d9af0b70197f6f41e
-
SHA1
c44c094ac421c41dd6ac6506b7f0d1b7eb8021dc
-
SHA256
abfc3d269544ebe42797cdd98c65b42ecc04fab74c53b3b5942a08d9b425bade
-
SHA512
45f8b9fc82832231874f8219e226c5f9faea7de352d8014877628233d7f6ccf9d0c3a1c71504cd7985b891480dd48fae022351a34d4703e47fef59e381f054d7
-
SSDEEP
768:FL/qse45WV1aLLJ3PGJKUjx7oUmQHULeLQYmLNZ8cDP/ryEH0tBy4JjrD1h2j5he:FGsesUvgeLQYmLNZ8cDP/ryEH0tBy4Jr
Score1/10 -
-
-
Target
System.Diagnostics.DiagnosticSource.dll
-
Size
34KB
-
MD5
8d9df432109f1cfdd86723b5f171e3d7
-
SHA1
85dc92edd4b0049ed9049e075c4def8a3d64e43b
-
SHA256
d22133818a30313e0becf010d78a556a56b34ea361dbd33588c9817631fed540
-
SHA512
5c83303934eecfa61c43a071d29c98e5804d37a5dc7f7b035772d6a168b0c5e65dfabef20b46214e65493c4bda44831cafee83615498fbe9e718c884f4650edf
-
SSDEEP
384:iQobG82oiaPaf/gn5LQ0+0zdQUv2CtyW8fiFISWbW9pWJbWivT1Nq0GftpBjAvnC:nA299fI5dxzL2CC11vimvnEBBNFT
Score1/10 -
-
-
Target
Weather-Minsk#.exe.WebView2/EBWebView/Speech Recognition/1.15.0.1/Microsoft.CognitiveServices.Speech.core.dll
-
Size
2.6MB
-
MD5
0ee2b50c85a110689352fccfa77b5b18
-
SHA1
d9ecc4b12d2d50e3cbce40e75edad804c9988b25
-
SHA256
62a13d8459e0992c311dc3551bf3c2d1ce167ea7fa40f0ec62193f3bd760b36e
-
SHA512
a4f94a05a69b5ae3a0ecf8bdb7592f698d0df81e2f1fae679f38890ad04a2384883837bc792c73848955ff4af7afed49d38839f7ab174454e61919ed78655bff
-
SSDEEP
49152:NodIJ85qaIU7ui8DDR5s8L0Oty8CvFqwsNcrCY2/YUZzQ7L9qhV6O8mOn0k10:gEDRwrcAwDl
Score1/10 -
-
-
Target
Weather-Minsk#.exe.WebView2/EBWebView/Subresource Filter/Unindexed Rules/10.34.0.52/adblock_snippet.js
-
Size
2KB
-
MD5
4dfa3a341bfcdadb42f25a9a4bfdf152
-
SHA1
94cf328db1e1c355f2e008ac5408d1d929582863
-
SHA256
a12f977a31624efa0d30eaf0a4e613fc1924e7494411fb8584530016b6cae1c0
-
SHA512
5273b146edba6a1465f2360b9be46771f575c43c6240c822cab0ddb475e980d048a8f5f9c87312ce425122d70f7c8f6d6c7b700774746fe9c155c344547c9d67
Score3/10 -
-
-
Target
runtimes/win-arm64/native/WebView2Loader.dll
-
Size
134KB
-
MD5
ec73ccd3368ceb251f6343fcf3c874a3
-
SHA1
b711d5c301416040bbac72cfe45f8c5d2afe2573
-
SHA256
063c3bb49d774e0738a2ec4cfa0355db08a72793947136cb162174742f44ba53
-
SHA512
c700e1c7962ca654cc18eda978d2212e66c4aceaf13b36102b30552e9dec21e3492c2d06e8319562d3b9032d1f54f04d0b0879273e6964c3e4375772be05250e
-
SSDEEP
3072:TMDEAzM0LCPArzq7QOSkoTT/njiEtJmAgIYnp:ZYM0WPD6+EtJPgIm
Score1/10 -
-
-
Target
runtimes/win-x64/native/WebView2Loader.dll
-
Size
158KB
-
MD5
a41460ef2efe780cd3325d936827da77
-
SHA1
e7973e47bb18154243dd8dc1228a09665ae6a2c0
-
SHA256
eb03373996c56f0ce3ef457fac0040a72804be9fd8c243927cb87bd71aa2abd2
-
SHA512
990a723e135507c735393645cd8b6c2a3b6acd86fa4a98a45f8c65b722f656a0da2f3532131a345379e934a8e92b8003d1dd9df771e9f333984a198ee784426f
-
SSDEEP
3072:kq6KkhxAAElHykdtjM/FX6Ezu8SqcTtUEtJyT4z8Fqr:3wxAAElSUy4ElEtJ+U
Score1/10 -
-
-
Target
runtimes/win-x86/native/WebView2Loader.dll
-
Size
114KB
-
MD5
498ec9d51485ebf9522687ff5c853664
-
SHA1
6e8667e766a21b6648acbab4b7d0204a6e3caba7
-
SHA256
7dd7dcf920414e3629c7313fea95dac8f49de4a67d9bba6506fae2eb9bb437fb
-
SHA512
6804fbafebd5438caaaf167a7871beae1724e87393826ef7b6854d7e83f836f3a4ca783f128a802fc8ecc3af2bcada5e8000bee90ad1d2e49e011cfe7e97e635
-
SSDEEP
3072:3jKHlE2KhajAN92EuUWmZ7948U9M3QKHySTlvEtJ4Al2V8NeI:3jKy3aj892E9DFUqEtJ10yNe
Score3/10 -