98598c90bd75b930aba968467f4b540a5784aa28612b8010d8a9cf31992843c6

Sharing

Copy URL

Twitter E-mail

General

Target

DriverUpdate.exe
Size

1.5MB
Sample

240615-xr1vwswapp
MD5

1dbb3736d491a2f652d350f3d535eef4
SHA1

2affdf99938bc10d32fa116241941115e0437ce2
SHA256

98598c90bd75b930aba968467f4b540a5784aa28612b8010d8a9cf31992843c6
SHA512

3c4c2a8328ebda8b5f601590f06771ae84a6739e2571512c5ed822cb16bed12c8c848dd327ee8529ad6622b11ec37c1a3cf4983f16b945f0dc748cc612721bba
SSDEEP

24576:+szPBVF4oBvzz6ttMA+z/fUtqk+1Vw3ijU8LLsYk/ve3Na9TZn1TH/4+RC17W2ZZ:PpV7Nz8tN+zEwxA8Lsb/ve3m7f4+RClJ

Score

7^/10

upx

Malware Config

Targets

- Target
  
  DriverUpdate.exe
- Size
  
  1.5MB
- MD5
  
  1dbb3736d491a2f652d350f3d535eef4
- SHA1
  
  2affdf99938bc10d32fa116241941115e0437ce2
- SHA256
  
  98598c90bd75b930aba968467f4b540a5784aa28612b8010d8a9cf31992843c6
- SHA512
  
  3c4c2a8328ebda8b5f601590f06771ae84a6739e2571512c5ed822cb16bed12c8c848dd327ee8529ad6622b11ec37c1a3cf4983f16b945f0dc748cc612721bba
- SSDEEP
  
  24576:+szPBVF4oBvzz6ttMA+z/fUtqk+1Vw3ijU8LLsYk/ve3Na9TZn1TH/4+RC17W2ZZ:PpV7Nz8tN+zEwxA8Lsb/ve3m7f4+RClJ
Score

7^/10

upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/DotNetChecker.dll
- Size
  
  84KB
- MD5
  
  f18364fa5084add86c6e73e457404f18
- SHA1
  
  6d87c4b9dbf78af88fddf0d4d5febe845c8e4e6a
- SHA256
  
  39c43d67f546fc898f7406d213b73dcb1bc30fc811ddfa3a02b6b50c29d11f91
- SHA512
  
  716892492390fe4314f3289286f733d07b8b84de1f5af0676b26e68c0be01808682d35ad2bb9e9491247b7bb5a0ea297a6850e26de9baf88621c789206107db3
- SSDEEP
  
  1536:AZBjgSXlkq8su+OudgGpGlmQSMqJS4HGsorJKQUDs0OsWPIcdGbk2HeJ:AYvo7PMqEuiKQGbk2HeJ
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/LangDLL.dll
- Size
  
  5KB
- MD5
  
  ea60c7bd5edd6048601729bd31362c16
- SHA1
  
  6e6919d969eb61a141595014395b6c3f44139073
- SHA256
  
  4e72c8b4d36f128b25281440e59e39af7ec2080d02e024f35ac413d769d91f39
- SHA512
  
  f9dc35220697153bb06e3a06caf645079881cb75aed008dbe5381ecaf3442d5be03500b36bbca8b3d114845fac3d667ddf4063c16bc35d29bbea862930939993
- SSDEEP
  
  48:im1nEhqneMPUptuMMNvimk2BAZuMTRCpYEvJdUJvR0J6of5dwe:F1jpl9NLBAZuYtR0xd
Score

3^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/Linker.dll
- Size
  
  8KB
- MD5
  
  14b655f0567e2d13459a4c77b2641ad8
- SHA1
  
  16f073c74680f4ef8b6b477e86b75d8f136824c2
- SHA256
  
  d5684110f61200ac1142648f06a4df3ee30acf38b96538496c33cac69942c4cc
- SHA512
  
  f64ab83cbb87986d0356a7b9f0ebd0314d1341aecb6be627861b6a35df80d765cf85157293950eff82d44901f65068de177780a829c4d34f55a4f5089a0ddebe
- SSDEEP
  
  96:tg6us/vKUU2vg4pRmr7IGMQao//g/XQV3LXOEsqCj9T5T0mRQY6r7CtR4:MizU2/RmyI/eQ1zIqCjtv6O+
Score

3^/10
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/NScurl.dll
- Size
  
  3.6MB
- MD5
  
  16e134ec014d74e9b798c9b3fae3ddcc
- SHA1
  
  1a8cc259f7b193018167484c30d8803b09ed228e
- SHA256
  
  eda02e626e8ca71dbff5389c062f9e9542661b43413b0a37ae3d262567145ce2
- SHA512
  
  3e5742934076066125b82f4b2da45a499b22440252dff4ec14660fc688f075f886ac76de89f4c6647a8c85e483c83507edfcb22e3dbe3363e509ae18b1c4636e
- SSDEEP
  
  98304:yXbm8hg9ZNN1FVyQ2Ufa2Zx/tlILkUYhK:yC8hg9vj3nfam/rykUiK
Score

3^/10
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  55a26d7800446f1373056064c64c3ce8
- SHA1
  
  80256857e9a0a9c8897923b717f3435295a76002
- SHA256
  
  904fd5481d72f4e03b01a455f848dedd095d0fb17e33608e0d849f5196fb6ff8
- SHA512
  
  04b8ab7a85c26f188c0a06f524488d6f2ac2884bf107c860c82e94ae12c3859f825133d78338fd2b594dfc48f7dc9888ae76fee786c6252a5c77c88755128a5b
- SSDEEP
  
  192:MPtkumJX7zBE2kGwfy9S9VkPsFQ1Mx1c:97O2k5q9wA1Mxa
Score

3^/10
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/UserInfo.dll
- Size
  
  4KB
- MD5
  
  c051c86f6fa84ac87efb0cf3961950a1
- SHA1
  
  f18f4bb803099b80a3a013ecb03fea11cff0ac01
- SHA256
  
  d0949b4c0640ee6a80db5a7f6d93fc631ed194de197d79bf080ec1752c6f1166
- SHA512
  
  6e9de5d07aaed2ac297faa5049d567884d817ed94dece055d96913ac8e497ade6f0ff5c28bae7cc7d3ac41f8795efb9939e6d12061a3c446d5d2a3e2287d49d2
Score

3^/10
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/nsArray.dll
- Size
  
  12KB
- MD5
  
  0917ee492308b691326e6581e8c793c9
- SHA1
  
  ff689c8051ffca7657461ac828bc46e303ab8e59
- SHA256
  
  81745087f193b6fa131189f4b3ee9caa93e9692e408d3955fbcb9a4ec8516e2f
- SHA512
  
  2a4ae4b93b0eac113a0e65f459798466120f1af4605a82a11f9022d790fe0b4f7d368b312f8a073b1dcfe8760e529ea56a5b5d4289321dc9f2fc8a22691b42b5
- SSDEEP
  
  192:L+QMtjhIz23Tv7QpAXXcxwtXexpnGOO81h2xXP:SQ6nDv70AXXcWtXexpnGIhW
Score

3^/10
behavioral15 behavioral16
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  ee449b0adce56fbfa433b0239f3f81be
- SHA1
  
  ec1e4f9815ea592a3f19b1fe473329b8ddfa201c
- SHA256
  
  c1cc3aa4326e83a73a778dee0cf9afcc03a6bafb0a32cea791a27eb9c2288985
- SHA512
  
  22fb25bc7628946213e6e970a865d3fbd50d12ce559c37d6848a82c28fa6be09fedffc3b87d5aea8dcfe8dfc4e0f129d9f02e32dae764b8e6a08332b42386686
- SSDEEP
  
  96:oCqZ4zC5RH3cXX1LlYlRowycxM2DjDf3GEst+Nt+jvDYx4iqndYHnxss:oCq+CP3uKrpyREs06Yx+dGn
Score

3^/10
behavioral17 behavioral18
- Target
  
  $PLUGINSDIR/nsExec.dll
- Size
  
  6KB
- MD5
  
  b38561661a7164e3bbb04edc3718fe89
- SHA1
  
  f13c873c8db121ba21244b1e9a457204360d543f
- SHA256
  
  c2c88e4a32c734b0cb4ae507c1a9a1b417a2375079111fb1b35fab23aedd41d9
- SHA512
  
  fedcaac20722de3519382011ccf22314af3edcd11b69f814db14710966853b69b9b5fc98383edcdb64d050ff825264eaba27b1c5adfe61d1fc9d77f13a052ced
- SSDEEP
  
  96:f7GUxNkO6GR0t9GKKr1Zd8NHYVVHp4dEeY3kRnHdMqqyVgNPS3e:zXhHR0aTQN4gRHdMqJVgNPR
Score

3^/10
behavioral19 behavioral20
- Target
  
  $PLUGINSDIR/nsResize.dll
- Size
  
  4KB
- MD5
  
  aa849e7407cf349021812f62c001e097
- SHA1
  
  4cbb55b1d1dd95dcb7a36b5a44121ad4934539af
- SHA256
  
  29b0e5792679756a79d501e3a9b317971b08e876fac1c2476180d0ae83b77ba5
- SHA512
  
  4556baa49e8182d72e29e8d809635312142eb127039f5803ca0bf011b4359f0b584a670a3bd26a9969165a332cfa14a39abeaeae0b4d90519f91fdea755c54de
- SSDEEP
  
  96:Grb+u7Dk2IFEZsO22AxqX4PJ7G17JAgX0:yb+u7Y2IFEKOHA0X8i1NAI
Score

7^/10

upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral21 behavioral22
- Target
  
  $PLUGINSDIR/nsisdl.dll
- Size
  
  14KB
- MD5
  
  90f7c0f400fdc219ae149ede95c06cfd
- SHA1
  
  a39c3bc64c9dc68fbc44d729511b03ed4573e6aa
- SHA256
  
  5f9d4b41a10578f98e469466e55feb0141644842a4e246b2cbae6666cebd69a3
- SHA512
  
  f9e0476a4078c5435274cf2d8bf00e115e75b37ff3355388c040b1386b604090b85ef3170114d50958ec2f8bc8fab5d3b3ebda30d4c84a0e5d49138e60817272
- SSDEEP
  
  384:o1ck76gi51kE5aYOMLDC4UnDp9B0Jc5HNw2vE:Eck76gibLCMLDLCx04HNVvE
Score

3^/10
behavioral23 behavioral24

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

ACProtect 1.3x - 1.4x DLL software

UPX packed file

ACProtect 1.3x - 1.4x DLL software

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24