Overview
overview
4Static
static
3epubor_ultimate.exe
windows7-x64
3epubor_ultimate.exe
windows10-2004-x64
4tcl8/8.4/p....4.vbs
windows7-x64
1tcl8/8.4/p....4.vbs
windows10-2004-x64
1tcl8/8.5/m....1.vbs
windows7-x64
1tcl8/8.5/m....1.vbs
windows10-2004-x64
1tcl8/8.5/t....0.vbs
windows7-x64
1tcl8/8.5/t....0.vbs
windows10-2004-x64
1tcl86t.dll
windows7-x64
1tcl86t.dll
windows10-2004-x64
1tk/bgerror.vbs
windows7-x64
1tk/bgerror.vbs
windows10-2004-x64
1tk/comdlg.vbs
windows7-x64
1tk/comdlg.vbs
windows10-2004-x64
1tk/entry.vbs
windows7-x64
1tk/entry.vbs
windows10-2004-x64
1tk/focus.vbs
windows7-x64
1tk/focus.vbs
windows10-2004-x64
1tk/iconlist.vbs
windows7-x64
1tk/iconlist.vbs
windows10-2004-x64
1tk/listbox.vbs
windows7-x64
1tk/listbox.vbs
windows10-2004-x64
1tk/palette.vbs
windows7-x64
1tk/palette.vbs
windows10-2004-x64
1tk/safetk.vbs
windows7-x64
1tk/safetk.vbs
windows10-2004-x64
1tk/spinbox.vbs
windows7-x64
1tk/spinbox.vbs
windows10-2004-x64
1tk/text.vbs
windows7-x64
1tk/text.vbs
windows10-2004-x64
1tk/tk.vbs
windows7-x64
1tk/tk.vbs
windows10-2004-x64
1General
-
Target
epubor_ultimate.exe
-
Size
111.2MB
-
Sample
240627-a1xs9stakd
-
MD5
9142d86fd2156eb941924ac2506ce574
-
SHA1
efe0a81527051ddf132ec1de8e5898c1bcddaa13
-
SHA256
ec380faf678645b608a84914e841b5304c7476e69001a46f9d5b6a898de185a9
-
SHA512
0678e0ec4d123435315b3e9b05c27c5663cb549efcc4120512fc52e980102efaccf969a14310619763c3b016eda1719cebfe7214219dde8118ef2eb3a0a35c78
-
SSDEEP
1572864:YdOynp+y4GPGJe0z7GwNWiD17ErR3qaVrASR0qtn3VmJ/hwNQytJvr+o7/vAyYV:Yddnp+DJ3z7nN5DOrR3oY0qZ3k4zv/o
Behavioral task
behavioral1
Sample
epubor_ultimate.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
epubor_ultimate.exe
Resource
win10v2004-20240611-en
Behavioral task
behavioral3
Sample
tcl8/8.4/platform/shell-1.1.4.vbs
Resource
win7-20240220-en
Behavioral task
behavioral4
Sample
tcl8/8.4/platform/shell-1.1.4.vbs
Resource
win10v2004-20240611-en
Behavioral task
behavioral5
Sample
tcl8/8.5/msgcat-1.6.1.vbs
Resource
win7-20240508-en
Behavioral task
behavioral6
Sample
tcl8/8.5/msgcat-1.6.1.vbs
Resource
win10v2004-20240611-en
Behavioral task
behavioral7
Sample
tcl8/8.5/tcltest-2.5.0.vbs
Resource
win7-20240419-en
Behavioral task
behavioral8
Sample
tcl8/8.5/tcltest-2.5.0.vbs
Resource
win10v2004-20240508-en
Behavioral task
behavioral9
Sample
tcl86t.dll
Resource
win7-20240611-en
Behavioral task
behavioral10
Sample
tcl86t.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral11
Sample
tk/bgerror.vbs
Resource
win7-20240221-en
Behavioral task
behavioral12
Sample
tk/bgerror.vbs
Resource
win10v2004-20240508-en
Behavioral task
behavioral13
Sample
tk/comdlg.vbs
Resource
win7-20240508-en
Behavioral task
behavioral14
Sample
tk/comdlg.vbs
Resource
win10v2004-20240508-en
Behavioral task
behavioral15
Sample
tk/entry.vbs
Resource
win7-20240611-en
Behavioral task
behavioral16
Sample
tk/entry.vbs
Resource
win10v2004-20240611-en
Behavioral task
behavioral17
Sample
tk/focus.vbs
Resource
win7-20240611-en
Behavioral task
behavioral18
Sample
tk/focus.vbs
Resource
win10v2004-20240508-en
Behavioral task
behavioral19
Sample
tk/iconlist.vbs
Resource
win7-20240221-en
Behavioral task
behavioral20
Sample
tk/iconlist.vbs
Resource
win10v2004-20240611-en
Behavioral task
behavioral21
Sample
tk/listbox.vbs
Resource
win7-20231129-en
Behavioral task
behavioral22
Sample
tk/listbox.vbs
Resource
win10v2004-20240508-en
Behavioral task
behavioral23
Sample
tk/palette.vbs
Resource
win7-20240221-en
Behavioral task
behavioral24
Sample
tk/palette.vbs
Resource
win10v2004-20240508-en
Behavioral task
behavioral25
Sample
tk/safetk.vbs
Resource
win7-20240611-en
Behavioral task
behavioral26
Sample
tk/safetk.vbs
Resource
win10v2004-20240226-en
Behavioral task
behavioral27
Sample
tk/spinbox.vbs
Resource
win7-20240508-en
Behavioral task
behavioral28
Sample
tk/spinbox.vbs
Resource
win10v2004-20240508-en
Behavioral task
behavioral29
Sample
tk/text.vbs
Resource
win7-20240220-en
Behavioral task
behavioral30
Sample
tk/text.vbs
Resource
win10v2004-20240611-en
Behavioral task
behavioral31
Sample
tk/tk.vbs
Resource
win7-20240221-en
Behavioral task
behavioral32
Sample
tk/tk.vbs
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
epubor_ultimate.exe
-
Size
111.2MB
-
MD5
9142d86fd2156eb941924ac2506ce574
-
SHA1
efe0a81527051ddf132ec1de8e5898c1bcddaa13
-
SHA256
ec380faf678645b608a84914e841b5304c7476e69001a46f9d5b6a898de185a9
-
SHA512
0678e0ec4d123435315b3e9b05c27c5663cb549efcc4120512fc52e980102efaccf969a14310619763c3b016eda1719cebfe7214219dde8118ef2eb3a0a35c78
-
SSDEEP
1572864:YdOynp+y4GPGJe0z7GwNWiD17ErR3qaVrASR0qtn3VmJ/hwNQytJvr+o7/vAyYV:Yddnp+DJ3z7nN5DOrR3oY0qZ3k4zv/o
Score4/10 -
-
-
Target
tcl8/8.4/platform/shell-1.1.4.tm
-
Size
5KB
-
MD5
2a8b773513480efa986d9ce061218348
-
SHA1
85763f378a68ba6a1eee9887cdcf34c14d3ad5bf
-
SHA256
2f812a0550716b88930174a8ca245698427cd286680c0968558ae269ab52440d
-
SHA512
d3ec3891cc897a8abb949eba6a055d9283ba6e491e1caea132d894e7b3fd3b159e8226e0bbcdf369db3f0e00aa1e0347e5b1838353e75b8ae114a83016010238
-
SSDEEP
96:Wo05xaJIrnU0gEMydSv+lrnU0gEMPdSvfSrnUN4y1mP3jm5Q1/I+gYQ1KyHe36mV:Wo05xaJsnU0DMAK+5nU0DMFKfunUN4Oc
Score1/10 -
-
-
Target
tcl8/8.5/msgcat-1.6.1.tm
-
Size
33KB
-
MD5
db52847c625ea3290f81238595a915cd
-
SHA1
45a4ed9b74965e399430290bcdcd64aca5d29159
-
SHA256
4fdf70fdcedef97aa8bd82a02669b066b5dfe7630c92494a130fc7c627b52b55
-
SHA512
5a8fb4ada7b2efbf1cadd10dbe4dc7ea7acd101cb8fd0b80dad42be3ed8804fc8695c53e6aeec088c2d4c3ee01af97d148b836289da6e4f9ee14432b923c7e40
-
SSDEEP
768:joWBAxonz0L7KILBk0U8Vl9NFljRFpGA1TrPiBDxDFP8sCNl:MWBAxgzY7KIL7j1NFl1Fp11/PiBVBksU
Score1/10 -
-
-
Target
tcl8/8.5/tcltest-2.5.0.tm
-
Size
99KB
-
MD5
d34207f736fa9fc26785a4d87c867a44
-
SHA1
24e533ddd16c67e0d0b9ed303a40c9d90abf3e80
-
SHA256
3bfd9e06826c98490e22b00200488d06c1fe49e3b78e24e985abc377b04021fe
-
SHA512
1007e5812cbf7d907e33fd769fdc4e9a9d0e68852e91208f5c887a2a86849af69a11ce4b00358059193a46d17f19c26a255a22c107d30433482a8a0ce7ed0d03
-
SSDEEP
1536:r3UFHL/k3tqN0E7NkhtMcrQ3qoyX2/2rCmTMttfN/CrQnXcwIHmlDB/mizvB21J1:r3UdOAVfnPIHmlDFmiDB21cK/xasmhC
Score1/10 -
-
-
Target
tcl86t.dll
-
Size
1.6MB
-
MD5
c0b23815701dbae2a359cb8adb9ae730
-
SHA1
5be6736b645ed12e97b9462b77e5a43482673d90
-
SHA256
f650d6bc321bcda3fc3ac3dec3ac4e473fb0b7b68b6c948581bcfc54653e6768
-
SHA512
ed60384e95be8ea5930994db8527168f78573f8a277f8d21c089f0018cd3b9906da764ed6fcc1bd4efad009557645e206fbb4e5baef9ab4b2e3c8bb5c3b5d725
-
SSDEEP
24576:umJTd0nVi/Md3bupZkKBhWPRIlq5YZ6a2CXH7oZgKGc+erWJUVWyubuapwQDlaTR:umJTd4iMwXH7oZgKb++BVL4B+GITgr0h
Score1/10 -
-
-
Target
tk/bgerror.tcl
-
Size
8KB
-
MD5
11d758cef126c5c2edfc911237df80f2
-
SHA1
7911eaa0a8b6630d016d15730310935909632389
-
SHA256
da84d32d1b447f7ffe7bbcac0f7586b0b6dd204717c7ae1f182c6a91510ec77b
-
SHA512
9e2a767fbc62622c34f468958c861ee3afe2a63005bad80f1637045d045e1a82fb1d2698d948d375222ebd0b92514ace99c12df6d9cacf75acd03ec8057494a7
-
SSDEEP
192:tKrjbDL5//nNFn0rBnDQQ2d4YGpFAImoYyMxZ34wNsf9GnEF5SpcJV+H//iNx:tIjL5//zC/8HLx4XKKv
Score1/10 -
-
-
Target
tk/comdlg.tcl
-
Size
8KB
-
MD5
427ccbd25bb1559b9b21a80131658140
-
SHA1
b675c0c1b02a527b13aa5de2ae5a1aa754e9815d
-
SHA256
586cb7a3c32566efeb46036a19d07e91194ce8edaf0d47f3c93bcc974e6ee3e1
-
SHA512
fea82d6d7dbaf52ee1883241170ba95396ec282cdd4f682077a238b4fd9a47c4ce6f84b1b4829a86580a4ab794820e6cd4c1e98cfb7bdce23e09b54566bd6443
-
SSDEEP
192:Aq7cPy5HEOjKU8QHyWpSWNRYs50asAZ5QWlO+W0WvHv/3WvWHwV7vWKpTTk:Aq7c6HJjKCyWpZNRYEVVET1rvveuHSOT
Score1/10 -
-
-
Target
tk/entry.tcl
-
Size
16KB
-
MD5
be28d16510ee78ecc048b2446ee9a11a
-
SHA1
4829d6e8ab8a283209fb4738134b03b7bd768bad
-
SHA256
8f57a23c5190b50fad00bdee9430a615ebebfc47843e702374ae21beb2ad8b06
-
SHA512
f56af7020531249bc26d88b977baffc612b6566146730a681a798ff40be9ebc04d7f80729bafe0b9d4fac5b0582b76f9530f3fe376d42a738c9bc4b3b442df1f
-
SSDEEP
384:P/eFkH2fRdOnOeQod3tCAERebMIDlXVQgXwVviw:P2FDqUy8V
Score1/10 -
-
-
Target
tk/focus.tcl
-
Size
4KB
-
MD5
7ea007f00bf194722ff144be274c2176
-
SHA1
6835a515e85a9e55d5a27073dae1f1a5d7424513
-
SHA256
40d4e101a64b75361f763479b01207ae71535337e79ce6e162265842f6471eed
-
SHA512
e2520eb065296c431c71dbbd5503709cf61f93e74fe324f4f8f3fe13131d62435b1e124d38e2ec84939b92198a54b8a71dfc0a8d32f0dd94139c54068fbcaaf2
-
SSDEEP
96:mumhRUI7F2WyHm6BUyNhEf6jUHKRUI7F2WyQe6L763AcnK0/61sk2ko5AgEplauw:ERUQFU52CNRUQFpLOQIG1sk2TCLplauw
Score1/10 -
-
-
Target
tk/iconlist.tcl
-
Size
15KB
-
MD5
105529990cee968aa5ee3bc827a81a0f
-
SHA1
559bd1aabd1d4719edb60448cf111f78365a57a9
-
SHA256
de0195ccfb6482cca390c94e91b7877f47742e7a9468caf362b39aa36305d33c
-
SHA512
03cb42dff7ac4f801aa7ffe8a4f07555cce6874aa1b7f568acf0299e4dd7f440179838485777f15183ee7c057ccb35868672b1783fbfe67b51d97dbbdac85281
-
SSDEEP
192:xj0OECzN+8JERNLKZhbgIDx3VM5BxBTSgvpn8WYYW5Xb50To3u8PYHPtJYa5PWDx:xrDJE36a7BegvV8hFI8gvXaSn9HqD/U0
Score1/10 -
-
-
Target
tk/listbox.tcl
-
Size
14KB
-
MD5
c33963d3a512f2e728f722e584c21552
-
SHA1
75499cfa62f2da316915fada2580122dc3318bad
-
SHA256
39721233855e97bfa508959b6dd91e1924456e381d36fdfc845e589d82b1b0cc
-
SHA512
ea01d8cb36d446ace31c5d7e50dfae575576fd69fd5d413941eebba7ccc1075f6774af3c69469cd7baf6e1068aa5e5b4c560f550edd2a8679124e48c55c8e8d7
-
SSDEEP
384:ZBjtAc4YusFvbg36UFchqHjNw8wSdy+1a22YDE/q:ZFgqUBjW8RQcf
Score1/10 -
-
-
Target
tk/palette.tcl
-
Size
7KB
-
MD5
abe618a0891cd6909b945a2098c77d75
-
SHA1
a322ccfb33ff73e4a4730b5b21de4290f9d94622
-
SHA256
60b8579368bb3063f16d25f007385111e0ef8d97bb296b03656dc176e351e3ca
-
SHA512
2df5a50f3ca7d21f43651651879bcae1433ff44b0a7ece349ccf73becc4780160125b21f69348c97dcd60503fc79a6525db723962197e8550b42d0ae257fd8e7
-
SSDEEP
192:ZUW5yUd51URCJWgWWWuWVWUKoDOdnAjLDlJymGH91QOW86vkQI:ZLXaCI3dFUlPdnAP69W89
Score1/10 -
-
-
Target
tk/safetk.tcl
-
Size
7KB
-
MD5
efc567e407c48bf2be4e09cb18defc11
-
SHA1
ededb6776963b7d629c6ace9440d24eb78dea878
-
SHA256
9708f5a1e81e1c3feaf189020105be28d27aa8808ff9fb2dcca040500cf2642a
-
SHA512
bda5f92bd2f7b9cd29c5a732ec77a71291778a0ec3eabe81575c55de3e207f663ba28da4c95174045a74efff71b95d907c9d056baa9e585e6f6dc14a133760bc
-
SSDEEP
192:keEoaa0QfsimXZrjpgj47e5QeO9uMfUKvLAN6Zo:keEoRHsiWddgkoiUeG
Score1/10 -
-
-
Target
tk/spinbox.tcl
-
Size
15KB
-
MD5
9971530f110ac2fb7d7ec91789ea2364
-
SHA1
ab553213c092ef077524ed56fc37da29404c79a7
-
SHA256
5d6e939b44f630a29c4fcb1e2503690c453118607ff301bef3c07fa980d5075a
-
SHA512
81b4cec39b03fbeca59781aa54960f0a10a09733634f401d5553e1aaa3ebf12a110c9d555946fcdd70a9cc897514663840745241ad741dc440bb081a12dcf411
-
SSDEEP
192:aR1yvxxVRQRrclOniQ14Yvg5bbVFMio1UF9w9P75uaMY+c6RhO1ON6Ql4qRiZ0NO:MyF5XVF61iwZ75/YRhO464z8wdEt
Score1/10 -
-
-
Target
tk/text.tcl
-
Size
32KB
-
MD5
03cc27e28e0cfce1b003c3e936797ab0
-
SHA1
c7fe5ae7f35c86ec3724f6a111eaaf2c1a18abe9
-
SHA256
bccc1039f0eb331c4bb6bd5848051bb745f242016952723478c93b009f63d254
-
SHA512
5091b10ee8446e6853ef7060ec13ab8cada0d6448f9081febd07546c061f69fc273bbf23ba7af05d8359e618dd68a5c27f0453480fe3f26e744db19bfcd115c7
-
SSDEEP
384:ThZXGSuWlNGbyBFFRzGagUNKEFx8wredkG/gVVFaO/9bembFWaHnla98ffRiqiPp:TYaNGKF6uNdyO4Ona98ffRUAlde
Score1/10 -
-
-
Target
tk/tk.tcl
-
Size
22KB
-
MD5
3250ec5b2efe5bbe4d3ec271f94e5359
-
SHA1
6a0fe910041c8df4f3cdc19871813792e8cc4e4c
-
SHA256
e1067a0668debb2d8e8ec3b7bc1aec3723627649832b20333f9369f28e4dfdbf
-
SHA512
f8e403f3d59d44333bce2aa7917e6d8115bec0fe5ae9a1306f215018b05056467643b7aa228154ddced176072bc903dfb556cb2638f5c55c1285c376079e8fe3
-
SSDEEP
384:dmAlIQ7ylH462gngqeObubqLwvoGah0QSA4jLGn3WB0MCdPAWD+g190K5TzMSW4d:dmOIQulHokh0QzMemB0MCD+g1bk+
Score1/10 -