Overview
overview
8Static
static
3New_Taskba...24.zip
windows7-x64
1New_Taskba...24.zip
windows10-2004-x64
1ControlzEx.dll
windows7-x64
1ControlzEx.dll
windows10-2004-x64
1Hardcodet....on.dll
windows7-x64
1Hardcodet....on.dll
windows10-2004-x64
1Languages/Greek.ps1
windows7-x64
3Languages/Greek.ps1
windows10-2004-x64
3Languages/Luganda.ps1
windows7-x64
3Languages/Luganda.ps1
windows10-2004-x64
3MahApps.Metro.dll
windows7-x64
1MahApps.Metro.dll
windows10-2004-x64
1MahStatic.7z
windows7-x64
3MahStatic.7z
windows10-2004-x64
3Microsoft....ll.dll
windows7-x64
1Microsoft....ll.dll
windows10-2004-x64
1Microsoft....ck.dll
windows7-x64
1Microsoft....ck.dll
windows10-2004-x64
1System.Win...ty.dll
windows7-x64
1System.Win...ty.dll
windows10-2004-x64
1YLLibs.dll
windows7-x64
1YLLibs.dll
windows10-2004-x64
1[Setup] Ne...24.exe
windows7-x64
8[Setup] Ne...24.exe
windows10-2004-x64
8wdmode.exe
windows7-x64
1wdmode.exe
windows10-2004-x64
1General
-
Target
New_Taskbar_Themes_2024.zip
-
Size
11.0MB
-
Sample
240628-lx1arstbka
-
MD5
14fac80ecbec9bcac55bd3131ed02076
-
SHA1
4fdfe9e78cf23172ef222a3ebe23aa829c2620d8
-
SHA256
3262f80e64b0f6cad1f3308d4992edf971b383f2dffd2a462c83734cef784cff
-
SHA512
9f7140408d7686783302ec766c26c88272c74104c6dfeed35af907d153f6b57326d7bd6c88aa6375961ae037e7199ccce01d7c6c529d05e88d4a3af77b25161c
-
SSDEEP
196608:kBPAz6xJgBlNXkkm3j0rxjDO3vEZ9nWlsXCSrrVLWlDrra1z2uedLv2OhYeBG:sPqAJp3wr5C/ELAsXlLWlnuz+hlhYr
Static task
static1
Behavioral task
behavioral1
Sample
New_Taskbar_Themes_2024.zip
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
New_Taskbar_Themes_2024.zip
Resource
win10v2004-20240508-en
Behavioral task
behavioral3
Sample
ControlzEx.dll
Resource
win7-20231129-en
Behavioral task
behavioral4
Sample
ControlzEx.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral5
Sample
Hardcodet.Wpf.TaskbarNotification.dll
Resource
win7-20240221-en
Behavioral task
behavioral6
Sample
Hardcodet.Wpf.TaskbarNotification.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral7
Sample
Languages/Greek.ps1
Resource
win7-20240508-en
Behavioral task
behavioral8
Sample
Languages/Greek.ps1
Resource
win10v2004-20240508-en
Behavioral task
behavioral9
Sample
Languages/Luganda.ps1
Resource
win7-20231129-en
Behavioral task
behavioral10
Sample
Languages/Luganda.ps1
Resource
win10v2004-20240508-en
Behavioral task
behavioral11
Sample
MahApps.Metro.dll
Resource
win7-20240611-en
Behavioral task
behavioral12
Sample
MahApps.Metro.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral13
Sample
MahStatic.7z
Resource
win7-20240419-en
Behavioral task
behavioral14
Sample
MahStatic.7z
Resource
win10v2004-20240508-en
Behavioral task
behavioral15
Sample
Microsoft.WindowsAPICodePack.Shell.dll
Resource
win7-20240508-en
Behavioral task
behavioral16
Sample
Microsoft.WindowsAPICodePack.Shell.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral17
Sample
Microsoft.WindowsAPICodePack.dll
Resource
win7-20240611-en
Behavioral task
behavioral18
Sample
Microsoft.WindowsAPICodePack.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral19
Sample
System.Windows.Interactivity.dll
Resource
win7-20240508-en
Behavioral task
behavioral20
Sample
System.Windows.Interactivity.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral21
Sample
YLLibs.dll
Resource
win7-20240221-en
Behavioral task
behavioral22
Sample
YLLibs.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral23
Sample
[Setup] New_Taskbar_Themes_2024.exe
Resource
win7-20240221-en
Behavioral task
behavioral24
Sample
[Setup] New_Taskbar_Themes_2024.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral25
Sample
wdmode.exe
Resource
win7-20231129-en
Behavioral task
behavioral26
Sample
wdmode.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
New_Taskbar_Themes_2024.zip
-
Size
11.0MB
-
MD5
14fac80ecbec9bcac55bd3131ed02076
-
SHA1
4fdfe9e78cf23172ef222a3ebe23aa829c2620d8
-
SHA256
3262f80e64b0f6cad1f3308d4992edf971b383f2dffd2a462c83734cef784cff
-
SHA512
9f7140408d7686783302ec766c26c88272c74104c6dfeed35af907d153f6b57326d7bd6c88aa6375961ae037e7199ccce01d7c6c529d05e88d4a3af77b25161c
-
SSDEEP
196608:kBPAz6xJgBlNXkkm3j0rxjDO3vEZ9nWlsXCSrrVLWlDrra1z2uedLv2OhYeBG:sPqAJp3wr5C/ELAsXlLWlnuz+hlhYr
Score1/10 -
-
-
Target
ControlzEx.dll
-
Size
181KB
-
MD5
2d5035cb5a3678f2c2f5a889bd384813
-
SHA1
9c4a669a30a4bf0e27d5b373919c3f6017c8ec4b
-
SHA256
424cbe8f24a62c330149dbe0b80e214a984950c3b79b067058671608229fc2ed
-
SHA512
fda0592126c9b9835380457e1f55d984cd5fc7649be172a0de17006e60d05687fbd5454a5b3adceb4497f6bc7a780d15dc09b70fd642f2db792571e996c8f56c
-
SSDEEP
3072:3E0E4PCRvy5/ixiBU33nC0bZqSSvKKy/f1SV666AjwbbHyH6engMHdFtp04M9Y8e:3E0E4Pyy5/ih3zbZqSGy/fk96e9Ftppn
Score1/10 -
-
-
Target
Hardcodet.Wpf.TaskbarNotification.dll
-
Size
66KB
-
MD5
d5d708e9e7625ab2c4ac1c1faa099350
-
SHA1
9436c35fb72c4fd0ae1420effdbe5a8a14326077
-
SHA256
f6fadf0375d22512b2b3f075362433c0de173adfb290b4d8999cdcb7acedb0b2
-
SHA512
0321bbdee6a11275fd0f86696e0b244ac0415ca5cb64cdd0230bfee028e550587929c5d03402740307fa7b5370532d2e3c044b85838489a72f29ce1748fc093d
-
SSDEEP
1536:KfgDdceepOS3u594ww89rRwjwPxvjLbPxHZ:KfgP59Fw89FwjgxvjLjx5
Score1/10 -
-
-
Target
Languages/Greek.txt
-
Size
3KB
-
MD5
2fcac9b55f4e13e09213fc23173c9c29
-
SHA1
0224cea908daf03dc2a9ab3e0f2cb1c4d3263809
-
SHA256
ef09dcfd8e2b41adaa088f5fd8d8e1e330c23b0e9a4d24255bca2b53ecd0b9ed
-
SHA512
7c8f1aa64a589e64c0b742d1bd8fbe7216dceab21a7cab374b7445dc1bde62cc20be4c59a5c981a8fc3c608fd53c6a0999e94d207d4e60812bd9d8ae62f8ce80
Score3/10 -
-
-
Target
Languages/Luganda.txt
-
Size
3KB
-
MD5
514cb4e6b6b95efbea18e0c3ba5c2fe4
-
SHA1
14be322661794506f801e9665e18ffa4329960b0
-
SHA256
f77b147b70a524ff42a1ac4ab6137701c8675536dff629f188bd3c5cc31c2296
-
SHA512
183d2a13c26075724ea70b05209b6f982e3c121f3f9a786cf66a8a6f21855856efb3d93d3e84af28ab5268052397b5bcdb743865176155cd6eba2c6d3cfee5db
Score3/10 -
-
-
Target
MahApps.Metro.dll
-
Size
1.1MB
-
MD5
5657f460ba4582690a0b597d4ccfe81b
-
SHA1
4a5096e18a2fd3dd5ebfe428f2f3970756fa5835
-
SHA256
ee75da5388411d7eb1ba57dde951275cd5955b4d4e6e15ed0a4ce5b0152cb5a0
-
SHA512
c38274e95e5814377cb32359ebcae6b14acd45ae81fd181089bb9b2671ea064372da0401c1534059bfe132a0862350e4ecb5c94f95ac3a8bb9d15792ca187566
-
SSDEEP
12288:O4nMcYPZDTzENh4Y9OWKNxV/FZLv4IS7gG2QiHA:OVdPZvzENhDNQxV/FZLv4IS7gG2QiHA
Score1/10 -
-
-
Target
MahStatic
-
Size
9.7MB
-
MD5
763d972996d9cf89b90ddb823e61528a
-
SHA1
753a3be1d59c2339989e976a61e43a226c734bf8
-
SHA256
d89312733dd0d5f10b93f3cc3f005f4ffca87d0d83ff9a334dea8e64a666c43b
-
SHA512
8cbb5fc35931ec07d8d2ff430656a67b44ab8eee7398fb3ac1e77e96c50267b2dabed49ba7fab79185d3a8046bd32938ed0fa715a1b04fc3512f28d468896a1d
-
SSDEEP
196608:3BlxRqaS7PmPpjPOfZ2JTjMdA1eSpHVto9dzdG1zI28DXLOI:M7+PJmh21QA1pto9p0zCbL
Score3/10 -
-
-
Target
Microsoft.WindowsAPICodePack.Shell.dll
-
Size
552KB
-
MD5
18a46202a1636b985208e2183d756617
-
SHA1
7f8d0ca687ac82067d7a79c011a2688336b71b82
-
SHA256
513d386fc084ad355d1a8668d8b4e43cc3b21f135ac3eabbc6b96adeb3ee9e84
-
SHA512
70420dd03f338201801afb0ea2742bb08cd860192503906734de7306d1349a5524a12fc45c84dfa2e38f1178c3ad62a8656a9bebcb2bb5b9ff02f0f5543ea851
-
SSDEEP
6144:vtIgLGv5WBfXkYlsL/Nz++R1yji08n3uzxRQKEPmBm9C5vEx3tcQ8Vub8xPtwZEH:nz81Dn3GQ/9C58x3tWXH9gvHYF9
Score1/10 -
-
-
Target
Microsoft.WindowsAPICodePack.dll
-
Size
125KB
-
MD5
ace419174e1e0c792d028f25f60d6e5f
-
SHA1
5325579a4d960fc09c359c2ec7f2b03a27a9a698
-
SHA256
90d56b0a1c7e631e5a12985f9b7cc943a1ebc31e40ec53d56dc9149bba74ba24
-
SHA512
53177394027846161c296a25527f266814157430c8620e474ab1c2f6b2b54f7c401a4db087ea26af7e854ed07a006413e99f0384e06b1b4b194acb61981c5542
-
SSDEEP
3072:QfBa6TWUNuRhicznzcSZRazyDG43vjyMcnFlizejgxKmjkx7:VUNuZjAI+mvuMOj9mjk
Score1/10 -
-
-
Target
System.Windows.Interactivity.dll
-
Size
61KB
-
MD5
e991d47605bc04629af29939ac2cc9b5
-
SHA1
70dcb9c81d5c8351d19d3a3fbc5530085ca8faff
-
SHA256
eda12487c479ff31202a3c60f88f1f0e2bf7392919099315d0d951683f14609c
-
SHA512
25355edf41f7e08b1a725a920fcab7c04d4c91c3c015a8a9ab6c7d1224b5f3f83baa81f867167369ae91a8f11f317e9a3a1092348ee4e44f89dd8b086a67f2ca
-
SSDEEP
1536:23wBccZdxuB8mQen6JxKjrlMZgR0Eo1jwPxb/JjAPxH:wcHmQPUk1jgxbBjwxH
Score1/10 -
-
-
Target
YLLibs.dll
-
Size
36KB
-
MD5
3744d4fd7ba093923174696b56d05f9f
-
SHA1
f5ce183eae50c86baae034aed1ce11c0ad15fecf
-
SHA256
3101a828d70c878e777a15ebb522b6a2f82e30fb2217ce66df0f161a57656301
-
SHA512
2269e1b99f2998accb13a23f55806a636edfe374ab14ffbe93eb653868b935b83ab38c998905e8878156f96b4f2c85c18bd61fb374c9079eff5fba7cf6ec9800
-
SSDEEP
768:3/ImTZNNBGXjO9hwjLZEJPx4SjL8PxWEY9iYX:pT/u6wjwPxvjoPxm
Score1/10 -
-
-
Target
[Setup] New_Taskbar_Themes_2024.exe
-
Size
376KB
-
MD5
a8bc7fb55a324f1ba1c7807b7c1c4f29
-
SHA1
9286664648e7629ff1cc35ca030e22a45a913c9d
-
SHA256
f17b6dc2f1dc25b982d1d3da8601121a1f21e16be3fe406d3cff62100cf7562b
-
SHA512
726d8dca09ed5173f17a7c271cfb8faf6e83547390a55c7afcca6213c25da0e5f55599616b65b297ddaf606d0c2194ef98e9df9a45490950f23a0a3c9bb1d534
-
SSDEEP
6144:CNwt6ykfy77nrjTPhSVQBFD7sxBUXEe9OmGC0GoOwwmVQBFv6jOjK:CNwz3nrj4QB97sx0d9OmGcwwyQB1OyK
Score8/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
-
-
Target
wdmode.exe
-
Size
574KB
-
MD5
42badc1d2f03a8b1e4875740d3d49336
-
SHA1
cee178da1fb05f99af7a3547093122893bd1eb46
-
SHA256
c136b1467d669a725478a6110ebaaab3cb88a3d389dfa688e06173c066b76fcf
-
SHA512
6bc519a7368ee6bd8c8f69f2d634dd18799b4ca31fbc284d2580ba625f3a88b6a52d2bc17bea0e75e63ca11c10356c47ee00c2c500294abcb5141424fc5dc71c
-
SSDEEP
12288:myyKdVnyNhXCV4EkP7AIfzNXZ0b5NrnkcAqIV0A1caRI:mKvyNhXCV4E8BXAfrnkcAqU0A
Score1/10 -