Overview
overview
4Static
static
1VirtualBox...SX.dmg
macos-10.15-amd64
4Distribution.js
windows7-x64
3Distribution.js
windows10-2004-x64
3Resources/...nd.tif
windows7-x64
3Resources/...nd.tif
windows10-2004-x64
3Resources/...trings
windows7-x64
3Resources/...trings
windows10-2004-x64
3Resources/...me.rtf
windows7-x64
4Resources/...me.rtf
windows10-2004-x64
1VirtualBox.pkg/Bom
windows7-x64
1VirtualBox.pkg/Bom
windows10-2004-x64
1VirtualBox...fo.xml
windows7-x64
1VirtualBox...fo.xml
windows10-2004-x64
1VirtualBox...oad.gz
windows7-x64
3VirtualBox...oad.gz
windows10-2004-x64
3Payload
windows7-x64
1Payload
windows10-2004-x64
1VirtualBox...pts.gz
windows7-x64
3VirtualBox...pts.gz
windows10-2004-x64
3Scripts.vbs
windows7-x64
1Scripts.vbs
windows10-2004-x64
1VirtualBoxCLI.pkg/Bom
windows7-x64
1VirtualBoxCLI.pkg/Bom
windows10-2004-x64
1VirtualBox...fo.xml
windows7-x64
1VirtualBox...fo.xml
windows10-2004-x64
1VirtualBox...oad.gz
windows7-x64
3VirtualBox...oad.gz
windows10-2004-x64
3Payload
windows7-x64
1Payload
windows10-2004-x64
1[TOC].xml
windows7-x64
1[TOC].xml
windows10-2004-x64
1General
-
Target
VirtualBox-7.0.18-162988-OSX.dmg
-
Size
126.6MB
-
Sample
240619-rzpvpsxajn
-
MD5
fd2c0864ae22b1a0aabb305a5f4c89b1
-
SHA1
66f43d8de43cbbd2e416de1536e9c2c8ae97c0b4
-
SHA256
496002f5d9b4280ffaec9269eeae97b301c3cb30ec569a904d430808cd72c7e2
-
SHA512
069e056a98c58d0d0e281e3eb34d6b3960baeb6ba5fa3bf664f124f43e49adfd5b95a56dada2da350d7e740cea3c1e4e81d96f6a0027716f1dd2fdca114ee2ef
-
SSDEEP
3145728:x0FRcJW839y3yHwhwI+BQe/LWuUKw1cZMLwljeAEj2T/D:x0FRcJWx3H+BL5USZMLw9YaTL
Static task
static1
Behavioral task
behavioral1
Sample
VirtualBox-7.0.18-162988-OSX.dmg
Resource
macos-20240611-en
Behavioral task
behavioral2
Sample
Distribution.js
Resource
win7-20240611-en
Behavioral task
behavioral3
Sample
Distribution.js
Resource
win10v2004-20240611-en
Behavioral task
behavioral4
Sample
Resources/background.tif
Resource
win7-20240611-en
Behavioral task
behavioral5
Sample
Resources/background.tif
Resource
win10v2004-20240226-en
Behavioral task
behavioral6
Sample
Resources/en.lproj/Localizable.strings
Resource
win7-20231129-en
Behavioral task
behavioral7
Sample
Resources/en.lproj/Localizable.strings
Resource
win10v2004-20240611-en
Behavioral task
behavioral8
Sample
Resources/en.lproj/Welcome.rtf
Resource
win7-20240611-en
Behavioral task
behavioral9
Sample
Resources/en.lproj/Welcome.rtf
Resource
win10v2004-20240508-en
Behavioral task
behavioral10
Sample
VirtualBox.pkg/Bom
Resource
win7-20240611-en
Behavioral task
behavioral11
Sample
VirtualBox.pkg/Bom
Resource
win10v2004-20240611-en
Behavioral task
behavioral12
Sample
VirtualBox.pkg/PackageInfo.xml
Resource
win7-20240508-en
Behavioral task
behavioral13
Sample
VirtualBox.pkg/PackageInfo.xml
Resource
win10v2004-20240508-en
Behavioral task
behavioral14
Sample
VirtualBox.pkg/Payload.gz
Resource
win7-20240419-en
Behavioral task
behavioral15
Sample
VirtualBox.pkg/Payload.gz
Resource
win10v2004-20240508-en
Behavioral task
behavioral16
Sample
Payload
Resource
win7-20240611-en
Behavioral task
behavioral17
Sample
Payload
Resource
win10v2004-20240226-en
Behavioral task
behavioral18
Sample
VirtualBox.pkg/Scripts.gz
Resource
win7-20231129-en
Behavioral task
behavioral19
Sample
VirtualBox.pkg/Scripts.gz
Resource
win10v2004-20240611-en
Behavioral task
behavioral20
Sample
Scripts.vbs
Resource
win7-20240221-en
Behavioral task
behavioral21
Sample
Scripts.vbs
Resource
win10v2004-20240508-en
Behavioral task
behavioral22
Sample
VirtualBoxCLI.pkg/Bom
Resource
win7-20240221-en
Behavioral task
behavioral23
Sample
VirtualBoxCLI.pkg/Bom
Resource
win10v2004-20240508-en
Behavioral task
behavioral24
Sample
VirtualBoxCLI.pkg/PackageInfo.xml
Resource
win7-20240508-en
Behavioral task
behavioral25
Sample
VirtualBoxCLI.pkg/PackageInfo.xml
Resource
win10v2004-20240611-en
Behavioral task
behavioral26
Sample
VirtualBoxCLI.pkg/Payload.gz
Resource
win7-20240419-en
Behavioral task
behavioral27
Sample
VirtualBoxCLI.pkg/Payload.gz
Resource
win10v2004-20240611-en
Behavioral task
behavioral28
Sample
Payload
Resource
win7-20240508-en
Behavioral task
behavioral29
Sample
Payload
Resource
win10v2004-20240508-en
Behavioral task
behavioral30
Sample
[TOC].xml
Resource
win7-20240220-en
Behavioral task
behavioral31
Sample
[TOC].xml
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
VirtualBox-7.0.18-162988-OSX.dmg
-
Size
126.6MB
-
MD5
fd2c0864ae22b1a0aabb305a5f4c89b1
-
SHA1
66f43d8de43cbbd2e416de1536e9c2c8ae97c0b4
-
SHA256
496002f5d9b4280ffaec9269eeae97b301c3cb30ec569a904d430808cd72c7e2
-
SHA512
069e056a98c58d0d0e281e3eb34d6b3960baeb6ba5fa3bf664f124f43e49adfd5b95a56dada2da350d7e740cea3c1e4e81d96f6a0027716f1dd2fdca114ee2ef
-
SSDEEP
3145728:x0FRcJW839y3yHwhwI+BQe/LWuUKw1cZMLwljeAEj2T/D:x0FRcJWx3H+BL5USZMLw9YaTL
-
-
-
Target
Distribution
-
Size
4KB
-
MD5
406ddae868cf1333f1a5cffa49098ee3
-
SHA1
4a2c4d074b7807abc5142ce6347aabda14a38e82
-
SHA256
393f128c756e82874de3639589948b5efa77bc3fcb0209ff037a398482bb96cb
-
SHA512
2d5af75e594503c32cc98389167185fc7eb914d1c1ceba59360943e578660231391fe35dadb2cc791b069fc2837ad212f23716cd09e966d5b49ed46cbabc7d66
-
SSDEEP
48:crYd2RyJHMVqjs9NJXoMY93eUfV0t4ePD6dZBBg4ePsBd+fXhG97+TkH+eadbjIO:/MUh3fVcD62sBATk+NfsJHVfW
Score3/10 -
-
-
Target
Resources/background.tif
-
Size
201KB
-
MD5
b2470ff5aa729191fd9d946c1f3f0657
-
SHA1
f061ef28bbe10bf7d5b6e719a3df619e01a4ba75
-
SHA256
2a2d26fa1f0531ebdacd4d8e160ef56164bf25a7c60a924ef9cc42a7c5955ff3
-
SHA512
3dc0fe239b0f53e5c0fda4528ecf458b4f41cfdc0a406d52bda9b1889d81219c66652539ddf95ea7f29cdfb34b7e8a65443cc889215bbe7446124f6113074ed6
-
SSDEEP
3072:/gk7VnBMVf2RDUw9zXYC/X3NVtoQGCQMBkNYLVr7z839UzlTFY9bYyNGz0gYw7T6:YonBM1ITYClVtoHCVC0TC7JASA5
Score3/10 -
-
-
Target
Resources/en.lproj/Localizable.strings
-
Size
1KB
-
MD5
946afc08926dc0140dc2488e1ad7ec5d
-
SHA1
f6030525d17fa1baf742aa6f6c99d8525531b592
-
SHA256
3d455d3b744b4f29624a30602f1873b74e5ab341a91112a3d8da058c678cf985
-
SHA512
391cdc087c3dcd7e6599e270f34ac2020b47c6834d359b53875fbf46fe50383a5f521527f159c5392de46ef405afe3793b01c39f028a122649af69f4a3878d4a
Score3/10 -
-
-
Target
Resources/en.lproj/Welcome.rtf
-
Size
614B
-
MD5
b987c43ce9c45d04485139cb6287a700
-
SHA1
322f0949a4a0d3efc993a5341b6c52052d852897
-
SHA256
91a74c6bb9dc8fae868722fbd0b74693eb515aca666bbab81a43f82d9f5d17ad
-
SHA512
1c0e700ae4f5a90858fd3ce6742fbdd7dcc1b8db34756007cd65eae996e286b36dbb01904754c750c81245d1d98605fa88222b04c42a4efcd15c371504cb21e5
Score4/10 -
-
-
Target
VirtualBox.pkg/Bom
-
Size
64KB
-
MD5
6fafab9da5e36873bb1903a95d250558
-
SHA1
207bb90e2b26fcdfbaca4f9f1698609d768b42d8
-
SHA256
e3e26cbb3942869a791bf6876a60fa04b16221f58718355e5bb249e8eb34647b
-
SHA512
51c02455795c6e30a84d7b6ed5c29c9cb6a0ac547578706431d4cecbf7e501104d5718ff5902f16bb2cb3dc223609d87265717ad27e64d5e38b5779d5812bc9d
-
SSDEEP
768:8kSnl7rxCKLAXYxmeWNihEI7ePd+AqRq2XVABHyTqWUCG4NbBOGb3EXDvWK44DQY:8kSSY6Ngo1rLG53g8R6FOrlihPmPe
Score1/10 -
-
-
Target
VirtualBox.pkg/PackageInfo
-
Size
932B
-
MD5
3d5a75398f9a004b0c1f0a22cb981573
-
SHA1
77470435e4e6d4be12d02facfcd4a8ae04b79aa1
-
SHA256
1bc44054b4ed0ccf2f781f48eeaa2918a2a07aba54904bd7756eb354ca77cd1e
-
SHA512
99b510afffe0f4b9f149951414304420579c7ee867c3410213f418ac36dfc5412c4e73bcef163b9e573eaec6a5456c8c18643d7a883ceaf50963db88cf14faf0
Score1/10 -
-
-
Target
VirtualBox.pkg/Payload
-
Size
120.3MB
-
MD5
d9e1770b61c29bb0e9f21be3d505fa8d
-
SHA1
1cf00d05484d7477e5a744129ffd6e4db4e0c61e
-
SHA256
ef61271f5b3479a3292078caecbfe4b5e12da78c7b2e277b11d29d0f8508a9ad
-
SHA512
84a60c537bd746b1437c5047c270646e6826bda53f073f31b1ae36e10a7680455215c5d8ed47ccff51ff476d9ac474fbd281d6aea5e179dc38854343dce7eadb
-
SSDEEP
3145728:P3gUqMonvkIwQ9GgZbHaXZYBka+8zvMtbJTwcPUj:fgN3v2Q9GqbHaJ2kan7mIj
Score3/10 -
-
-
Target
Payload
-
Size
251.3MB
-
MD5
06f0ffbabd5289f9b8d2f74091469387
-
SHA1
abc3f52694c6a84ae396f72402c444881b6193de
-
SHA256
cce737c0fa81c80b253a87fcd34571cd80f049c82cc4c1da27f05fb9314f66b1
-
SHA512
6a952eac3826438b11bbb69113094d7a831f5fe9f071f1c295f0436e5fa9975b1751e4ce65a89f928180be2861fa85f5139a756b39dae6150e68ee1d133cf152
-
SSDEEP
3145728:YJOyHxDMBl+Es1ObzqFO41Ehdrwi+kkV7Et0x:QHxABl+tO3qoMj
Score1/10 -
-
-
Target
VirtualBox.pkg/Scripts
-
Size
1KB
-
MD5
c56e91f89534bca423b12ef5d4ce6529
-
SHA1
eb31db7e2c3fef91f9d2f09b1495fe4b4191a54c
-
SHA256
1114a1f0f0ea3f6ce78df7ec6c731e6ea243ac2415802cef435571fa9ff0a100
-
SHA512
8386fc1c29be7f242f4b271221689e8453549ca35f27e8e006f4090a224899831103ae840d7f0ea0cf00fd44223c2ee06b5240711f9a3d5a586a36ba25066258
Score3/10 -
-
-
Target
Scripts
-
Size
6KB
-
MD5
c896532db7d51abe6682c837904684a2
-
SHA1
74b3834e61235bf14ef66632b5f2924d952adfaa
-
SHA256
f75a53ac932a07ff98e8849226aecb3d214699dd5222d32f1cb57aa396c11b25
-
SHA512
ad8cc33b62c3bb813645d0669ef53a72c25f8b635c628bbc1fe11e26e5b278a5c5b38a08947ee28666a1a48a8c37dc0963ff5f99a1628e8a7e862afa2039e298
-
SSDEEP
96:I/1/UNQsMaH2aSAFCjPF4qYh/ifkGALELUhkC7R88m/UjEtkeMG9:IdqQDM/SAIPFbYNifkGu6UhLtmaEtB
Score1/10 -
-
-
Target
VirtualBoxCLI.pkg/Bom
-
Size
35KB
-
MD5
e11da6e6370e4fd9047bbc2166b6c9a6
-
SHA1
2db3b408624d76d7347f9a2270c6fdd96d003a2e
-
SHA256
0d4da50890725fb138291f40a0b84ea0eb39bc8b5905c3b0e2ba30a8d071ce4e
-
SHA512
90e038fd85fc56f257cee909556f69fa16730298a3457a1a8ec923dfa6bfaa0586a42c91cea7fa34f956ccc3ed6268a7ee091097dff16a11e4f36ca6b181817c
-
SSDEEP
24:JWxz8iyvd9ZkLtm7D8ayee+mTFry58QxqWn8xDMr:JWZCvrywQayt+CFeyqCMr
Score1/10 -
-
-
Target
VirtualBoxCLI.pkg/PackageInfo
-
Size
496B
-
MD5
7699994595535e38e467405c25e297db
-
SHA1
9add82159c612b4480fb1f55e0d7ff745715d1f5
-
SHA256
1433682d4212d15c791104923861ad155089ee6f05ff9bd55bd6cca3091ef194
-
SHA512
70b91f18d8d156d01d73dcb4eb7b22b486f1bc55fa7bdab2a97aa1874b29490541baaa63419f0f6ba56de59a63971ef63e74f4cb888fd9569b7a8bdb074d5180
Score1/10 -
-
-
Target
VirtualBoxCLI.pkg/Payload
-
Size
406B
-
MD5
10a79c94a03c79f1aac77ee20001d330
-
SHA1
7553cefbe6a3961a95f1a057b88d8103c0064fb3
-
SHA256
95be65242d7d935c359223590ceb16f41e737030b9ccecee420f2031d1ce4bb6
-
SHA512
11fa0793d1ea4176704abf07129541357b6c24a4720e7df1cbef363ebe399ba7f8d28fbcfbcaabf10e47329d19615dc466a42126f2f7bd623ce769857e75c98f
Score3/10 -
-
-
Target
Payload
-
Size
2KB
-
MD5
ba2c6509f682720f806e89f022f80df9
-
SHA1
ecac1dd4e0193d8057fba509e4c084ab6a895c18
-
SHA256
15aa17841dce16a0b3fed4bd6e7a4b4e90947c6cbf37768b0b8796764d960229
-
SHA512
77f224793073fff72915c6f49762f76d0b706c4ee3963919c43503f403889b7b269e34c8229327ffb85c6c29b1c2b34cf0f2d7245742a33e66f4cc7b4c7e8371
Score1/10 -
-
-
Target
[TOC].xml
-
Size
19KB
-
MD5
f17bf74ee17951d1eed6c43a3f0411b1
-
SHA1
edf07564f5a5ccddaf7ce53c0c4e40ecd0564d12
-
SHA256
f8ae01319349dd4b4d040701a8f90b5c519243e76506bea18434eea9f1e04b6a
-
SHA512
d529cc2f062c28744c87858612b618075dea1934cc5d6cd2a9c95c681ecd4e339efdc9e7ee340bdc76c11754365c56f2d6bd65e55399ed7eda9ba232f26cbc22
-
SSDEEP
384:XvIgxrVpLDpeE/DPMXFUdQvIgxrVpLDpeE/DPMXFU0gd33hWR6X6grpR:/IWrvXp1FdWIWrvXp1F0gd33hWR6XrpR
Score1/10 -