0055ab2c26082ca69dbf1ca8e92ce03869d9992b7a44db9ff201f96d1999f8f4

Sharing

Copy URL

Twitter E-mail

General

Target

GoogleCloudSDKInstaller.exe
Size

148KB
Sample

240613-ecwzaaxalq
MD5

ea36404ca2394e5d93d1d11e34ae3327
SHA1

5313a0c1b3ceab74b5fb15bb2ddbeff7ca2518c4
SHA256

0055ab2c26082ca69dbf1ca8e92ce03869d9992b7a44db9ff201f96d1999f8f4
SHA512

f1622431cf1a1d80f2fb4f0381dedc13f8f0a0181b17729ae76bbca0a01fb108b3c916d930b423808f00490176c334b9704c43448bd41e54445868ac0b8904a6
SSDEEP

3072:t8cFgUdOpDyTdcl4vN0HjHsGu03JXi+7YMa6oTWqE9G21BwIa1:tlTe4vS57zomZ+

Score

7^/10

upx

Malware Config

Targets

- Target
  
  GoogleCloudSDKInstaller.exe
- Size
  
  148KB
- MD5
  
  ea36404ca2394e5d93d1d11e34ae3327
- SHA1
  
  5313a0c1b3ceab74b5fb15bb2ddbeff7ca2518c4
- SHA256
  
  0055ab2c26082ca69dbf1ca8e92ce03869d9992b7a44db9ff201f96d1999f8f4
- SHA512
  
  f1622431cf1a1d80f2fb4f0381dedc13f8f0a0181b17729ae76bbca0a01fb108b3c916d930b423808f00490176c334b9704c43448bd41e54445868ac0b8904a6
- SSDEEP
  
  3072:t8cFgUdOpDyTdcl4vN0HjHsGu03JXi+7YMa6oTWqE9G21BwIa1:tlTe4vS57zomZ+
Score

7^/10

upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/ExecDos.dll
- Size
  
  5KB
- MD5
  
  a7cd6206240484c8436c66afb12bdfbf
- SHA1
  
  0bb3e24a7eb0a9e5a8eae06b1c6e7551a7ec9919
- SHA256
  
  69ac56d2fdf3c71b766d3cc49b33b36f1287cc2503310811017467dfcb455926
- SHA512
  
  b9ee7803301e50a8ec20ab3f87eb9e509ea24d11a69e90005f30c1666acc4ed0a208bd56e372e2e5c6a6d901d45f04a12427303d74761983593d10b344c79904
- SSDEEP
  
  48:6jOBtU/BXN8kUByyy/Aklkcrkyg7Vg5RibGoTCTo0gqVeeaeQqzM5rv774YRljmB:y/DMy4ncrkyg7tbpQFLUEYRxe
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  2ae993a2ffec0c137eb51c8832691bcb
- SHA1
  
  98e0b37b7c14890f8a599f35678af5e9435906e1
- SHA256
  
  681382f3134de5c6272a49dd13651c8c201b89c247b471191496e7335702fa59
- SHA512
  
  2501371eb09c01746119305ba080f3b8c41e64535ff09cee4f51322530366d0bd5322ea5290a466356598027e6cda8ab360caef62dcaf560d630742e2dd9bcd9
- SSDEEP
  
  192:vPtkumJX7zB22kGwfy0mtVgkCPOsE1un:k702k5qpdsEQn
Score

3^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/UAC.dll
- Size
  
  14KB
- MD5
  
  4814167aa1c7ec892e84907094646faa
- SHA1
  
  a57a5ecbdfa9a8777a3c587f1acb02b783afc5ee
- SHA256
  
  32dd7269abf5a0e5db888e307d9df313e87cef4f1b597965a9d8e00934658822
- SHA512
  
  fb1f35e393997ecd2301f371892b59574ee6b666095c3a435336160481f6ef7ed5635c90ce5d2cf88e5ef4a5affb46cb841b7d17e7981bd6e998531193f5d067
- SSDEEP
  
  384:3A7q72y8XYDSDJe7H+KXKKK2KRKuKZrjVo787foI7:3sygyraXjQ7Zl99
Score

3^/10
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  13b6a88cf284d0f45619e76191e2b995
- SHA1
  
  09ebb0eb4b1dca73d354368414906fc5ad667e06
- SHA256
  
  cb958e21c3935ef7697a2f14d64cae0f9264c91a92d2deeb821ba58852dac911
- SHA512
  
  2aeeae709d759e34592d8a06c90e58aa747e14d54be95fb133994fdcebb1bdc8bc5d82782d0c8c3cdfd35c7bea5d7105379d3c3a25377a8c958c7b2555b1209e
- SSDEEP
  
  96:oyqZ4zC5RH3cXX1LlYlRowycxM2DjDf3GEst+Nt+jvDYx4yqndYHnxss:oyq+CP3uKrpyREs06YxKdGn
Score

3^/10
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/nsResize.dll
- Size
  
  4KB
- MD5
  
  aa849e7407cf349021812f62c001e097
- SHA1
  
  4cbb55b1d1dd95dcb7a36b5a44121ad4934539af
- SHA256
  
  29b0e5792679756a79d501e3a9b317971b08e876fac1c2476180d0ae83b77ba5
- SHA512
  
  4556baa49e8182d72e29e8d809635312142eb127039f5803ca0bf011b4359f0b584a670a3bd26a9969165a332cfa14a39abeaeae0b4d90519f91fdea755c54de
- SSDEEP
  
  96:Grb+u7Dk2IFEZsO22AxqX4PJ7G17JAgX0:yb+u7Y2IFEKOHA0X8i1NAI
Score

7^/10

upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/nsisdl.dll
- Size
  
  20KB
- MD5
  
  67a436c3d5bf33f894e65f37668e9657
- SHA1
  
  4fc574460bec80faf1c96a403b84da6c44656cc8
- SHA256
  
  58576947f44dfff1b71b834f88f157674be0ade6c8c9032a3e8f658aad4cf373
- SHA512
  
  00403a45f0fe4797deb8f4f3d5531fff37c28fbfa56b17cb4d97577e458d620421564a2bfcb802ca6e440a82794fbb83c1b0661d9824a000faaf4b0619cf8cb6
- SSDEEP
  
  384:dMv8+dLFm0+pF38hPPNoIZBruMkp5R4so5zyoZP2vDOG9wjlxzdXTj8:+vPLFm0Y3eXOeBtkpwTPeDOG9wjXzZH
Score

3^/10
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/nsisunz.dll
- Size
  
  40KB
- MD5
  
  5f13dbc378792f23e598079fc1e4422b
- SHA1
  
  5813c05802f15930aa860b8363af2b58426c8adf
- SHA256
  
  6e87ecb7f62039fbb6e7676422d1a5e75a32b90dde6865dcb68ee658ba8df61d
- SHA512
  
  9270635a5294482f49e0292e26d45dd103b85fe27dc163d44531b095c5f9dbde6b904adaf1a888ba3c112a094380394713c796f5195b2566a20f00b42b6578e5
- SSDEEP
  
  384:KExN66Yf2xL5Q4IsjuUjUZfqRDpImexpf88FwHxXvjX3hwlHt6oIfESxSHoOO8n9:O2x64GcVpI3xC8ynToIf1SIOhW4
Score

3^/10
behavioral15 behavioral16

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

ACProtect 1.3x - 1.4x DLL software

UPX packed file

ACProtect 1.3x - 1.4x DLL software

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16