64690e666518ea5fa250cb3f58b626537af21b4ccc4d58a1eebdf0bf11f10077

Sharing

Copy URL

Twitter E-mail

General

Target

sidify-music-converter-free.exe
Size

165.7MB
Sample

240715-q1n45atbml
MD5

afad444bb905e28e4c077cbf4be114bf
SHA1

e6d7cac504a389c3cd443f51353b2fff5218923e
SHA256

64690e666518ea5fa250cb3f58b626537af21b4ccc4d58a1eebdf0bf11f10077
SHA512

63eb9209a4683109c528456a95d8aba088767b7ed2e83666f5ab7703bce5f72879a411582f873bf567d5a6ad4ff8d3ead31f90bcd72ceb72a1093b87ed6c229c
SSDEEP

3145728:gadvRU1GIiRKYDXHh1g9vYtvDhQjNf066pO3FB9viXBs1p6xFFZLr01gAgF5Wci:gadvRIFubLHng54Lh2B0G7vyB6GF2uAv

Score

5^/10

Malware Config

Targets

- Target
  
  sidify-music-converter-free.exe
- Size
  
  165.7MB
- MD5
  
  afad444bb905e28e4c077cbf4be114bf
- SHA1
  
  e6d7cac504a389c3cd443f51353b2fff5218923e
- SHA256
  
  64690e666518ea5fa250cb3f58b626537af21b4ccc4d58a1eebdf0bf11f10077
- SHA512
  
  63eb9209a4683109c528456a95d8aba088767b7ed2e83666f5ab7703bce5f72879a411582f873bf567d5a6ad4ff8d3ead31f90bcd72ceb72a1093b87ed6c229c
- SSDEEP
  
  3145728:gadvRU1GIiRKYDXHh1g9vYtvDhQjNf066pO3FB9viXBs1p6xFFZLr01gAgF5Wci:gadvRIFubLHng54Lh2B0G7vyB6GF2uAv
Score

5^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2
- Target
  
  api-ms-win-crt-multibyte-l1-1-0.dll
- Size
  
  25KB
- MD5
  
  eff67e06581c9940ddf3faeb5fe1ecfd
- SHA1
  
  8311b7ae80f4d58ab8c4105969668f0e7baf57d6
- SHA256
  
  06d11b7feb86be22862570751a003a36ca29b8e9586d877e37d757af7b2ec9c5
- SHA512
  
  3cc0ac65258e9ca53ba535ca0084dcfe48fac1d15cf20c4d5d4cd96327ceae2418c3dea7cf53b82387fbb1e78a90098350a45f18de587bab17b3f252d752a2ea
- SSDEEP
  
  384:Oy+Kr6aLPmIHJI6/CpG3t2G3t4odXLNW1hWq4YYHNfPfLeEdtpBjdY1JK2Mf3bIK:OZKrZPmIHJI6aKYYBbeElrY1RMMrm
Score

1^/10
behavioral3
- Target
  
  api-ms-win-crt-private-l1-1-0.dll
- Size
  
  71KB
- MD5
  
  11829527713fa070ed81f9a4c4a4c03c
- SHA1
  
  40a8f3c3d1770730ba26a44d21323e7bccd82ec1
- SHA256
  
  f794208a1b2e7ef1055d68dc8f6d4a960c7a95dc98685f886f03af7d0b57cec2
- SHA512
  
  e0b622f6da8551a22d80250cdf880452288f7757e6dfd4a281cf1f09b6199b7cb47018cb847be0a3843074c35915c8f9db4fd356317e84b2dbd3088c60dc4aaf
- SSDEEP
  
  1536:W0DjXDe5c4bFE2Jy2cvxXWpD9d3334BkZnVPLGBbeE2CDp:5jDe5c4bFE2Jy2cvxXWpD9d3334BkZnC
Score

1^/10
behavioral4
- Target
  
  api-ms-win-crt-process-l1-1-0.dll
- Size
  
  18KB
- MD5
  
  fc29239610c95c2e37b2b73d080a2936
- SHA1
  
  f00d92dd1c9f2ce05fb10b81c0d41fa2cd269170
- SHA256
  
  f6a7bb53d6fd9886098a237e1985a5b314693fef57e8580dfb22d33de1dfaff9
- SHA512
  
  b79b259a37f80936bccce6d9c7b809e1ccee117d4f327347a735d9cf4eb5ff22a1d4a824c5ba2a36474db4e6cd239e14cf98d2181b635a655c38ac0d7cf08785
- SSDEEP
  
  384:wKwW1hWh8nw0YHNfPfLeEdtpBjdY/f3/8pUcl3CR:RtbYBbeElrY/H8pUd
Score

1^/10
behavioral5
- Target
  
  api-ms-win-crt-runtime-l1-1-0.dll
- Size
  
  22KB
- MD5
  
  fe1e9c1f7975dd6751f7d66305ce995e
- SHA1
  
  0a7150943eb973278b97db0210eea2cdbc474318
- SHA256
  
  66e4de483adf7af252d67e0c988a163cfa76436485dce3badfd6740766b39432
- SHA512
  
  06c034f8d7e2ba029a06fabfb98e742cfe7bbaeb9da56b5bf4030185597ee4a1439b1c6081b0e1c5814a0b2be464750b76f4e7e4cdfec36ae746bbc11a3967e8
- SSDEEP
  
  384:ub7hrKkW1hW2gYHNfPfLeEdtpBjxYpMf3Nzol9PXx:ubNrKnqYBbeElPYpMy
Score

1^/10
behavioral6
- Target
  
  api-ms-win-crt-stdio-l1-1-0.dll
- Size
  
  23KB
- MD5
  
  b460c0a6b145fb30002fc6e1f70a4f7c
- SHA1
  
  8ace170b9709e2d7854e4a5385bf05886b16ee26
- SHA256
  
  cae1208c3bded797336dba2fca5dad3923b99d026e850c802327ce5555e35775
- SHA512
  
  7419bf32dcc66b44671d024f226d92d2e3f7b53829ce9fe25c6a3b9fda35831557650d0e87385b54c84f6fe762f142518984050b9377110bd59a2aaafa3e5f97
- SSDEEP
  
  384:NZpFVhHW1hWGq8nw0YHNfPfLeEdtpBjdYNi6Cf3Kd8pUcl3CbFe:lo5bYBbeElrYs6Co8pUfFe
Score

1^/10
behavioral7
- Target
  
  api-ms-win-crt-string-l1-1-0.dll
- Size
  
  23KB
- MD5
  
  b144912affaf4df8ae8a84f5ae2bd722
- SHA1
  
  23c5a832433da19dff2c3eb4e5ac03f3492a289a
- SHA256
  
  8462cac692d42111aafb52b6eb6740987490e941407ea3921edc3c7306720b12
- SHA512
  
  96199647d27ca4b165ded0edfed8feede79e63a01bc0a51140a4b67918ef1c2322321a92afdcad3ed39b634d2f16c04f41a894cfced92c069b0662feb619c0cf
- SSDEEP
  
  384:ciFMx0C5yguNvZ5VQgx3SbwA7yMVIkFGlbW1hWw5qYHNfPfLeEdtpBjdYvopf3b5:c6S5yguNvZ5VQgx3SbwA71IkFhLUYBbh
Score

1^/10
behavioral8
- Target
  
  api-ms-win-crt-time-l1-1-0.dll
- Size
  
  20KB
- MD5
  
  2b701510ec3d720b8ecfbdcb4ae24de7
- SHA1
  
  3c896b75e291931664c5adc16e5d5a4e04e82680
- SHA256
  
  5c63c98c800d77c09598878313971f6a03c1ce09b6f89e0387d790f0c150bcb9
- SHA512
  
  127a56c324207fb4c7623fa43c8c68a4fd8eae3eb8b3938735e017a9375ca66bd4a9c4e5d42ce400275da856a2177e8e4e600767777fcbceaec8586507aa6f7d
- SSDEEP
  
  384:UUW1hWmgYHNfPfLeEdtpBjdYGaf3uUp1x09lY5A:4+YBbeElrYhZpk
Score

1^/10
behavioral9
- Target
  
  api-ms-win-crt-utility-l1-1-0.dll
- Size
  
  18KB
- MD5
  
  e6fca8ae3857c28204e707307e1f3075
- SHA1
  
  0ea224a34c59a459ad3737953e03e4e129f6b44d
- SHA256
  
  379bc10b9c36971478a697477289f70ac92c04fea76a46da028cda51f780750b
- SHA512
  
  824e7af9f1d87eb9e0b5c105d4209ee7dd2e42a7d399b3e8297ef77a6d28584603c418565d208873a6ebb56a5f469a2d8c946c2a2f51be24d28c4012ec7edba4
- SSDEEP
  
  384:lfVW1hWTgYHNfPfLeEdtpBjdYcdf3Bp1x09lYK:lfs5YBbeElrYcdZpI
Score

1^/10
behavioral10
- Target
  
  d3dcompiler_47.dll
- Size
  
  3.9MB
- MD5
  
  5e717c95808bcb5f654bb312d289b837
- SHA1
  
  c69448eafa40e35424744c28e68cf69ce11a3d97
- SHA256
  
  e745872db4dd114a65ee1504f401ea26d879edb6614e369a07a80ce7ad1950ca
- SHA512
  
  dc5e6ee0c8fe22897009060821b18bf2f7d0317d30682f7fa84a4c1889358c152d84d22ebe57d0ec8ccc1be8714bce6b1257d30671b8d0fea88309bbd137b8f0
- SSDEEP
  
  98304:q4czLWVMYHItqGZ5CNjEhrZ0T2S1kHn8:qMpGZ5CFEh10TD1kHn8
Score

3^/10
behavioral11
- Target
  
  ffmpeg.dll
- Size
  
  2.5MB
- MD5
  
  cbad26df4ae9dd9e05577edc9c4fa391
- SHA1
  
  d070dd217ad0c1486ed0ebddb07cfe3b337f5a79
- SHA256
  
  25628eebfb11819ed9e11cad7e91e8daf14fa482aacb6e0468a093824d0fcdfd
- SHA512
  
  714cd167b29e1310e425db2c9ecdc61c57d5ea3eb41e21b099c7a6de4865fabffd096dd01cb91036a1749dadb718f9f9c55b567a592cf10e91276a92ba940ee9
- SSDEEP
  
  49152:RLODafMIUtBm7EuhoUNCCxi4pmJDXhKWXt5dBbj:RRfOtBQEqNCCxi4kJDRKmd9
Score

1^/10
behavioral12 behavioral13
- Target
  
  libEGL.dll
- Size
  
  363KB
- MD5
  
  1726f017bf0e6ac9c14b03ec299af599
- SHA1
  
  eb337c0dd7dc6af4d9228cf6e27b3360d99c9c7d
- SHA256
  
  378b3f426aa48b87f6aec35f4bc2146d76fd387b844d06ed372b36c9a5dbb2dd
- SHA512
  
  5fb2b8cf05de0b7b2f8755a5a24a3f86a59b1f05fbfa57145bc635fb519517ee5b0685cef3b581b430c084348a3e3e811c6fd9ffe48709cf52c27805a72989a3
- SSDEEP
  
  6144:DeMkkXdg0nrIEmx/MdkppZ8E0UPAcYH3hssbgKhxAnM:DHXdDIEmO+B8E0UoNOcfA
Score

1^/10
behavioral14 behavioral15
- Target
  
  libGLESv2.dll
- Size
  
  6.2MB
- MD5
  
  382cf99531c3f0dda67bccfc5c9fdb14
- SHA1
  
  69b19cfcf78a017d76c47b766d1aabdda76a8d23
- SHA256
  
  1eb087b382479284356f3366399c6f3a101f81068cc4c1e7259582669d58574f
- SHA512
  
  6120d8d47c86957c690188a531fbd470be668d4f854a8fd1b00baf43b91ca2e59a43fe49eb0aca01bdab7cc05f587a50a8777e179797d61e15b5d90fef1c15bf
- SSDEEP
  
  196608:HzUu47V8XyryGWXB3DmGOf6Na5L2SdOB:Hzv47BryGWXB3ad
Score

3^/10
behavioral16 behavioral17
- Target
  
  msvcp100.dll
- Size
  
  411KB
- MD5
  
  03e9314004f504a14a61c3d364b62f66
- SHA1
  
  0aa3caac24fdf9d9d4c618e2bbf0a063036cd55d
- SHA256
  
  a3ba6421991241bea9c8334b62c3088f8f131ab906c3cc52113945d05016a35f
- SHA512
  
  2fcff4439d2759d93c57d49b24f28ae89b7698e284e76ac65fe2b50bdefc23a8cc3c83891d671de4e4c0f036cef810856de79ac2b028aa89a895bf35abff8c8d
- SSDEEP
  
  12288:iHEqYsrMWIqz473PTiPoH/aGhUgiW6QR7t5qv3Ooc8UHkC2eKq87:iH9YsIWIW4rPTiPofaDv3Ooc8UHkC2e8
Score

3^/10
behavioral18 behavioral19
- Target
  
  msvcp140.dll
- Size
  
  438KB
- MD5
  
  0e7ee09885e643f8b2871d5ce0ccfd25
- SHA1
  
  a7d14206f2f5b96eac1f88e2f4c89a79247fd1d8
- SHA256
  
  a3e0b72081f932ade69b4004035e399dd6e7445ba3b646db2ab750a4c4e4241e
- SHA512
  
  f61d0dac40bbe4a54a3f4d21349d3677f69b9e0bd383b89d1cb32a74d785c5ed62fa73c4203833d2b809b55183e65d632d0791e92b1dc01631f5fd7649705bc4
- SSDEEP
  
  12288:vEPa9C9VbL+3Omy5CvyOvzeOKaqhUgiW6QR7t5s03Ooc8dHkC2esGgWS:vEPa90Vbky5CvyUeOKg03Ooc8dHkC2eM
Score

3^/10
behavioral20 behavioral21
- Target
  
  msvcr100.dll
- Size
  
  752KB
- MD5
  
  67ec459e42d3081dd8fd34356f7cafc1
- SHA1
  
  1738050616169d5b17b5adac3ff0370b8c642734
- SHA256
  
  1221a09484964a6f38af5e34ee292b9afefccb3dc6e55435fd3aaf7c235d9067
- SHA512
  
  9ed1c106df217e0b4e4fbd1f4275486ceba1d8a225d6c7e47b854b0b5e6158135b81be926f51db0ad5c624f9bd1d09282332cf064680dc9f7d287073b9686d33
- SSDEEP
  
  12288:fQmCy3NeRjkpQmj3oaMtQqjoygfXq3kon9IlbgaOxQdVJJ6j5EBKX8hR5:ImCy3VQs9MtLjTgfa3kon9FaOdEz5
Score

3^/10
behavioral22 behavioral23
- Target
  
  resources/app/7za.exe
- Size
  
  743KB
- MD5
  
  c3868313eaad1954e79c2a19e5844bb8
- SHA1
  
  6f06c72371d7636fc5d1ce5b38fec58337ab1f08
- SHA256
  
  abf3e74152315306e656851169ca7edb46df19fce0225c652ab87321c33ceb1a
- SHA512
  
  c6d0970978cad7ef3eb0dd2968ddf056666f4186e48088c1944b662559b6cd485d8c0a9b79ffbbf8b8a54bb2b0bce3646f4762fd231f12fb32754a51131e4c84
- SSDEEP
  
  12288:pwAxBpwU5gU+2/9dB5XlH1YAEa5OLW0TjLWG3rn0Yf5ogmn9X9Rf6TIALr22DIVb:phY2gUfVH5XlVYzagW4/3rn0Y5zmzRft
Score

1^/10
behavioral24 behavioral25
- Target
  
  resources/app/PKVSKeyChecker_protected.dll
- Size
  
  1.4MB
- MD5
  
  074a37cba804848e3414f47b4114ddbd
- SHA1
  
  045881e97692066350f355178662eab6d7b28ca8
- SHA256
  
  38653c0bee1ece5f849d8c9c0163861f02adfdf5c4684e1157a30d21405b9fbd
- SHA512
  
  076d7b0946d6936d1d4d860f519680784361242c0ac87de08e91e5c9e3af47acf6c9ddf5266017b35ebf2ad859988d2b834f433732d28ab85ed431640eabf83e
- SSDEEP
  
  24576:avN0vMvEQAqpB5c3eF0XFbATsbDNJ3TwzSWX6w9kYm4CyRsOe6CAOJaaV:i0vMvYN3edYrDwNAb6CJ
Score

1^/10
behavioral26 behavioral27
- Target
  
  resources/app/WidevineCdm/4.10.2710.0/_platform_specific/win_x86/widevinecdm.dll
- Size
  
  17.0MB
- MD5
  
  4bf760b972b1d1d70344bf489e5e75c5
- SHA1
  
  d73ea7becce3fc5a4237179a66c41a6514313926
- SHA256
  
  a8bf930f7e59088f13c2ae3a891ceb00fb52492323b10f4ad0ece73c476d39c2
- SHA512
  
  b7d3a6ee29f5c0aa28943f38148c65ac55c4d9b6ce6b5dcd52607ebad3cd2708a9cbf0e7aca2c9cd9f781fb01a712f6d2123ca2720561ce5cbdb82b16f075b9b
- SSDEEP
  
  393216:QTiIK/1X5loiNKy7AG7GmjGqapjhxBuxqd2D3CR8OeY8Fkcn:N1oy737tapj/BusN8nfDn
Score

1^/10
behavioral28 behavioral29
- Target
  
  resources/app/loader/loader.html
- Size
  
  7KB
- MD5
  
  3039ff913ffd41535ccb7ebd20642be5
- SHA1
  
  a87d4bcd5bf8386c5ae070f25eea0c1445978b7c
- SHA256
  
  ef07ee4014cb0878f258eb3a5ba2368503b3fd31fa32ead9ac5b4da5c6ad4991
- SHA512
  
  460b29778649ffa93c2f8cd8eb6f5a97db327241a6f07279f6999df8680d1b83f0e5ebeb231198fcce12606ecfc311ae1aab3a660ebba305e16b24dfe282b7a0
- SSDEEP
  
  96:COZrAu6sQfzNCn9jN67OPfY+GOJuKWAJsyJpqpHpJBJjD:Cu6sQfzONjvu/AJCL1jD
Score

1^/10
behavioral30 behavioral31
- Target
  
  resources/app/loader/localize.js
- Size
  
  24KB
- MD5
  
  b819f1db9a52ee01e7da2d13cc51c64d
- SHA1
  
  82bde2f0e256b27cbd3f2edaec70e8c9fb7eaec0
- SHA256
  
  f1c0c7873f3bcf377e375512d3599b4d95430b784a5a7d152ae6f3700cb332f2
- SHA512
  
  0678bbf0baaa46f951ce62e5c1b2c96a9269718f2a5cbf41dbe6873e74c52e0c9620d2edb6d1149d328b2f895e49a0751cfe0d5b7421d6b87b6ac412505fb664
- SSDEEP
  
  768:/TOH3xK3o5rwmQjOZ6oHx5wSpT52ET5NseCcnkqr:C3xqohwmQjOZlHtkqtCckqr
Score

3^/10

execution
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

Install Root Certificate

T1553.004

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks computer location settings

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32