7068d5032a371aba5c573a63ec6b7b4d4317ab4eff86c7ad1669111823bf9425

Sharing

Copy URL Twitter E-mail

General

Target

External.Menu24 UPDATE.rar
Size

60.4MB
Sample

240713-rjslnawcqh
MD5

a5b4cdce030a256983f4be9cd00d8d21
SHA1

e853cbcd5d6db1ab346e458170d2030f85229b94
SHA256

7068d5032a371aba5c573a63ec6b7b4d4317ab4eff86c7ad1669111823bf9425
SHA512

9b64bf45d4e4a9e4356a47febb8a077e4523cfd2c029bebf5d615e652d8656539843b5ee2368390f2edbbb36a328fe8e97bf6a921b8484ab5e56462f80c36a37
SSDEEP

1572864:+EvfFZ1FSD4WT0a+uYiZviX7peEyD86YfTUQ/kGL2EeeO:+EnFXFXmBZvi7pe986YIQ/d6E+

Score

3^/10

link pdf

Malware Config

Targets

- Target
  
  ExternalMenu24/About/About.pdf
- Size
  
  185KB
- MD5
  
  f8e98d604f7c63275ee8739708345baf
- SHA1
  
  218bb6ab3a6b4899c22ae798691c30acfe423a7c
- SHA256
  
  dafccfc02c2ad502683ddf61224d6d66eba1e6d5ba13a92b15381af51bb4715a
- SHA512
  
  05076043c463a3483cd6be000407ba6a5641413a4e0928b2ea1f6ab84bf2b1244c6737b221be7dc9db7a1ea8fc5ea2c34782307babe77916d33ae6cb19b6de05
- SSDEEP
  
  3072:GdbzlBgmxq3pSxw8FE92HVePu0kiFRiNifT9hQfmRcUQ88k4YLs3L2yFAVxVRjKm:GdbvTq3Mk21GuUFENYTsmRcOoY46yFAV
Score

1^/10
behavioral1 behavioral2
- Target
  
  ExternalMenu24/About/DscCore.dll
- Size
  
  2.0MB
- MD5
  
  22c0340bbe6179ed5566c4fcb03dd9d8
- SHA1
  
  6580a382e188bac8e2f80418db5825253cb9c204
- SHA256
  
  5a71b21d121baed254bc76f9bb656459b4c54bee8a15b1d525c301e472ddf619
- SHA512
  
  7a0124a052c2a1c30f2e72ae3e81fecc279617af37267ef22ad99ac8fa7fc3de4ae7ce29d32c2d6efdb95ad2052d2a445db73678b5bf23ca2ce16fd0a1124ff5
- SSDEEP
  
  24576:K+uHVSpBokRvl+L8na6LUwuN5AteIM1GrbalQPEQlPkm:UVMBoElpoZ16CyGm
Score

1^/10
behavioral3 behavioral4
- Target
  
  ExternalMenu24/About/PSDSCFileDownloadManagerEvents.dll
- Size
  
  3.0MB
- MD5
  
  51b13162427ea472df37cf20554f6b63
- SHA1
  
  4b23397ba1442381fd5476a0df1ab0f561bd5d0d
- SHA256
  
  253fbda23d8b34fc7d1a6b6802071d044f3df11130f04c4731a74a2870bd56c6
- SHA512
  
  74bbfb78463ff57b6b7cea2d2116249c5b4ce68c70c4c3d16aa3f1a2767ab90431f248352252c91e3c245a8c5e301184cc3d9919b3df518dc585bfa8ca57047f
- SSDEEP
  
  24576:3hkgVLJfdPP46tK89rFPmQFk4yOg2rXEbPWnx9h/0NIGQIgw8bvbeb0n58up4BlS:3hkgN4B8hMQHTkWNgNgw8bzeeiFKB
Score

1^/10
behavioral5 behavioral6
- Target
  
  ExternalMenu24/About/eulaLic.docx
- Size
  
  8KB
- MD5
  
  a729d63514511766fcdd2de19cdbd017
- SHA1
  
  737827e5c0ab0adc287d3b3bb16d26a9a42f0939
- SHA256
  
  6dda16414ec5a7f6908f6088ea5edb7c67b024c3f695fbf7048ab823bcfee728
- SHA512
  
  ad6bc65c950a94383f3f1d987508d22167343db632412b74d4734482916a7c18981dc8d84c57109f0882f6c5c6f280db876bafd24837f06996614d1bb9ce6ee2
- SSDEEP
  
  192:HLFjO9B8eBfDX/Ek8IFyMlgy/RVr1YGrtsk2whjPYwWkpeFWlMddhTdLVxFl/:HLFjO9B8eBfDXoIFyLw1YGZsk2whjPYL
Score

1^/10
behavioral7 behavioral8
- Target
  
  ExternalMenu24/About/opengl32sw.dll
- Size
  
  14.5MB
- MD5
  
  3bd5aea364326cdfa667651a93e7a4c9
- SHA1
  
  f33b4a83e038363c1a4df919e6f6e0e41dba9334
- SHA256
  
  23f04ba936568e9a7c9dce7a6beb52c9be7eb13b734cd390c99e7546cbe1973d
- SHA512
  
  7bd4e742b4d683b79de54eaf7d8b215252212921b8a53d1fbfc8e51ce43505c003da62fd126663bc04bbc65b8f77b85232c78ea6ecba8a4e425c28c0e9c80dc3
- SSDEEP
  
  393216:00Rly5ZnSHLe1tvwDTtwJuefdrX780dNYbg4A358TjGNrS1aKbBICZBSJLGWIGC2:NRlyP71tvwDTtwJuefdrX780dNYbg4Az
Score

1^/10
behavioral10 behavioral9
- Target
  
  ExternalMenu24/Data/eventlog_provider.dll
- Size
  
  15KB
- MD5
  
  e33bbf6dc63bcfea39476b3694175ec4
- SHA1
  
  5765654bbb42daefdc277b30af930042f9234d8b
- SHA256
  
  68b68fd320f077b28a17f6393d8be7cab0728b964779176fbb06af1c5c0489e2
- SHA512
  
  c3a2071760eec67ad674c8862a93489e3df6db51d3dcb27bd36974f5a44c477a7678b28ed13b5318d78e6a2b8cc7d314f4678199345aaf0f018541b788b4829b
- SSDEEP
  
  192:bgeA2MsFIYiYF8m/Ex72f63mQWJfsHR9y2sE9jBFLpyXhze:btMcIYi6y3mQ4i/8E9VFLa6
Score

1^/10
behavioral11 behavioral12
- Target
  
  ExternalMenu24/Data/imageformats/audio/qtaudio_windows.dll
- Size
  
  65KB
- MD5
  
  9d2487f2acc6430df6883852c4f354d3
- SHA1
  
  e1d3e627aa2f9c8a1507eef362501bf56d18b083
- SHA256
  
  308020869ffee74c78144a5955cfbc82474d57d607272154651039b132bbd3f1
- SHA512
  
  1bee0249bf66d05a69a4403942b83a9f53078bbf5a9919ca7c2c68293529f7216c0b431bb61a4be73e67a29f0709cbf2df84c9e41d332c10540ed3e7d0fdbb7b
- SSDEEP
  
  1536:cnucPWaz0QdOsEzJ91uBnNdryfJeoO6jN:cBWaoQdODJ9sBnNdjL6N
Score

1^/10
behavioral13 behavioral14
- Target
  
  ExternalMenu24/Data/imageformats/eventlog_provider.dll
- Size
  
  15KB
- MD5
  
  e33bbf6dc63bcfea39476b3694175ec4
- SHA1
  
  5765654bbb42daefdc277b30af930042f9234d8b
- SHA256
  
  68b68fd320f077b28a17f6393d8be7cab0728b964779176fbb06af1c5c0489e2
- SHA512
  
  c3a2071760eec67ad674c8862a93489e3df6db51d3dcb27bd36974f5a44c477a7678b28ed13b5318d78e6a2b8cc7d314f4678199345aaf0f018541b788b4829b
- SSDEEP
  
  192:bgeA2MsFIYiYF8m/Ex72f63mQWJfsHR9y2sE9jBFLpyXhze:btMcIYi6y3mQ4i/8E9VFLa6
Score

1^/10
behavioral15 behavioral16
- Target
  
  ExternalMenu24/Data/imageformats/imageformats/qjpeg.dll
- Size
  
  413KB
- MD5
  
  864770c7eef65ec41abc0ae18bfb795b
- SHA1
  
  7c9ef94edfe2a7daa6227d42705069e4ed124f72
- SHA256
  
  899de9f62a71c1e837271c89747d3628436dc94e6af6ae528751e4096f8894ac
- SHA512
  
  c26c66d4b0d1729202493dc4fc90ecfe1dc80c8024e18aab46682ed8e358ab1f89a0f0a43ecc1db00e79e21a8392bd4e6ee970228b97ee1adb096adf79a0b2c4
- SSDEEP
  
  6144:1Ysd+BpE2uIW+33Eh67p/pQQwNIoH1xdPT/xlbJJMxMQ0+xuUk:1YU2uOTfxodz44
Score

1^/10
behavioral17 behavioral18
- Target
  
  ExternalMenu24/Data/imageformats/imageformats/qsvg.dll
- Size
  
  34KB
- MD5
  
  08ff22a811e0cf82b67fcad89494a8e8
- SHA1
  
  d1b22b0b90b72acceaa4d2f92bedba9ef875f6c8
- SHA256
  
  94d098083ef80abaa696be0470021148fbf57ec81491df20f7004ac27b924e62
- SHA512
  
  a5684c38eb8973c06348d18f24e5b8e0228bae62a18d0ab23ca24bda46a6d0d9157e10ba80bcda4e6b1858bff4bcf3cf3230d46c28c4d918798a1632457bcec5
- SSDEEP
  
  768:h/LELobDKRlTuLi/wIKYGtTbfJkbow37N266Q:dgGulTuL8wIKYGtTbfJeoY6Q
Score

1^/10
behavioral19 behavioral20
- Target
  
  ExternalMenu24/Data/imageformats/qjpeg.dll
- Size
  
  413KB
- MD5
  
  864770c7eef65ec41abc0ae18bfb795b
- SHA1
  
  7c9ef94edfe2a7daa6227d42705069e4ed124f72
- SHA256
  
  899de9f62a71c1e837271c89747d3628436dc94e6af6ae528751e4096f8894ac
- SHA512
  
  c26c66d4b0d1729202493dc4fc90ecfe1dc80c8024e18aab46682ed8e358ab1f89a0f0a43ecc1db00e79e21a8392bd4e6ee970228b97ee1adb096adf79a0b2c4
- SSDEEP
  
  6144:1Ysd+BpE2uIW+33Eh67p/pQQwNIoH1xdPT/xlbJJMxMQ0+xuUk:1YU2uOTfxodz44
Score

1^/10
behavioral21 behavioral22
- Target
  
  ExternalMenu24/Data/imageformats/qsvg.dll
- Size
  
  34KB
- MD5
  
  08ff22a811e0cf82b67fcad89494a8e8
- SHA1
  
  d1b22b0b90b72acceaa4d2f92bedba9ef875f6c8
- SHA256
  
  94d098083ef80abaa696be0470021148fbf57ec81491df20f7004ac27b924e62
- SHA512
  
  a5684c38eb8973c06348d18f24e5b8e0228bae62a18d0ab23ca24bda46a6d0d9157e10ba80bcda4e6b1858bff4bcf3cf3230d46c28c4d918798a1632457bcec5
- SSDEEP
  
  768:h/LELobDKRlTuLi/wIKYGtTbfJkbow37N266Q:dgGulTuL8wIKYGtTbfJeoY6Q
Score

1^/10
behavioral23 behavioral24
- Target
  
  ExternalMenu24/Debug/Cracker.dll
- Size
  
  56KB
- MD5
  
  404aacc737a9d30147d30cee6be0abba
- SHA1
  
  5f49b9197d73b53eb3473c80a6f25dc068421baf
- SHA256
  
  3eec59d6aa2a45e368b99d09bcedf228290656a88de8a09ccc91867ab71f228c
- SHA512
  
  eb3716304571727d3134da4da46c5c91276afa20f5da26f2b89cc0cdc19f98592322b5e85fdc6a36e51636298ffac456a9057ed7d10c17e4955c4307cb933f20
- SSDEEP
  
  384:poaSsZTSyPG0TLMU9mCzkcu/b49Pji7iJI5TZCP56vS1a+dYUFv8WTa:W1yR8U9mCzkcu/8V2iP56v/+G0a
Score

1^/10
behavioral25 behavioral26
- Target
  
  ExternalMenu24/Debug/Helper.dll
- Size
  
  189B
- MD5
  
  9bb9aba5dd893bbccfa45e2d75d55d26
- SHA1
  
  5714796513341ac3159a6a3c23d4769209063d35
- SHA256
  
  6b325cadd8992d998c4fbc8ed56079c2850b68ea2d38432d51c26ce82b0a5419
- SHA512
  
  f57df9a4a02bd17772acb3ac1a0d961c53f6940600b58834ae38c198a98ae651a21b382450b267aeffbca4ab262668ae471a78ed99bf9dfa414c1316056a289b
Score

1^/10
behavioral27 behavioral28
- Target
  
  ExternalMenu24/Debug/Resource.dll
- Size
  
  10.7MB
- MD5
  
  641dadbb3f03938da99bf7c6c4cc482f
- SHA1
  
  b21bdb69a17642ade8e62fcbd779ff1bc89ea809
- SHA256
  
  883aefb081a1f9ef974ceb16e12c215e92fee13531c052279404bd11b2f8e479
- SHA512
  
  7aea5f0db9b261a17801124d6eef0df2d3ada4a6f624c8f4f2ee519a61171a3f06de9032493e3309a1a982fd1218613dde73a942942df2a8ec367e7f66a531f5
- SSDEEP
  
  196608:8B4DNtjVoWhIdAXplnpnh4uIKZ2K245peMKU3lRM9RVIO+QvSNG2uM+XGE4:04vWGIun1GKZ/2aZKU3lRvO+QvQgGP
Score

1^/10
behavioral29 behavioral30
- Target
  
  ExternalMenu24/Packaged/Resource.dll
- Size
  
  189B
- MD5
  
  4427aeee68321d0f4d7befa74e669f83
- SHA1
  
  4670003762a1c217c9e8ea48fcc53f2871a7c341
- SHA256
  
  a9661f89b8d957f4e71cbe1ba0342a39e5b50a1d80d974e2e1b349a273967f1b
- SHA512
  
  9d9156aa8fdebf19363fed2edb82235642c8c20549369470e44fdc0db41324e2160968fd7dd43eecce1ce3da9c03dd05cdefc8d903a9d0394f5ca9a73f5c5fa3
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32