199879ac19872d6b0ff820d8f502062f0efea37867b937dc04580cf170b8228d

Sharing

Copy URL

Twitter E-mail

General

Target

JIGUtility_V2.0.8.0_20230112.zip
Size

14.1MB
Sample

240716-hpc9gszcmq
MD5

344fc525af58c82474e3a4d1072193ed
SHA1

dee86e6992f9b585ab734e8620ababcfcc5060d4
SHA256

199879ac19872d6b0ff820d8f502062f0efea37867b937dc04580cf170b8228d
SHA512

129577965e6d09ab08a6ced4e9febae119ea8d40ab9fbdfb19a044bb5dda830f67a5ac2507cfcf9625dc296521e5b0c445f62738180d9425c6d2359f8d5b6d90
SSDEEP

393216:GxJ8RDWlcoiAF7l8W6Y6UfcHEWyvMcyoW3BmSt2Gh6kh:AJuDTns8WCqPzULouTtXkkh

Score

7^/10

Malware Config

Targets

- Target
  
  JIGUtility_V2.0.8.0_20230112/ASUS JIG Board User Manual V6.2.pdf
- Size
  
  2.4MB
- MD5
  
  a4278b0352edf24391004437f114fdae
- SHA1
  
  e98051d0392197b52c94b3243895ba581593d540
- SHA256
  
  6ef9cdc5f549a98b903da8aa5c17394786bfd204fe1bdb81451ade09dee76ebe
- SHA512
  
  89e79e2b8d29365b2b4edb39a429aed1cec64c03b73ef57e8fbde5acd98f24b5d62e8e653d6df0ea7a5f184af7e1207eb13ab0b9bdaa549f84877503933efea4
- SSDEEP
  
  49152:OkZkiENNxJzO02Kvlp3mMRz44wfSRBUwJoG5X5izctpXTL2BJuyk:Yzddlp3lRz44wGzJ/izcbyuyk
Score

1^/10
behavioral1
- Target
  
  JIGUtility_V2.0.8.0_20230112/ASUS JIG Board User Manual V6.2_ODM_CSC.pdf
- Size
  
  2.9MB
- MD5
  
  b10a655028416492436bc765b05e8cf7
- SHA1
  
  019d8ca45b759386832fc02aa4915a5efdec3d47
- SHA256
  
  5b43197ae223fd04eeb35d8d1d482ddcb905ddf439294b26646828ac60931bdd
- SHA512
  
  63745c01eebddf2edaabaa6c4f5230bf0b7a72490689dcd92eb35e28809d65363c3073a69852aebf798103ba0da4cec3db415a6a51837c4443e7cb893c9a9a18
- SSDEEP
  
  49152:vZkiyNyDDoOD2KHlX3mfWtsiRz+Ck/0sbU2wbVbqUJjIGYfabOaBBJ+4:VouJlX3iWtsiRz+tssbH6/JjIGYfaKax
Score

1^/10
behavioral2
- Target
  
  JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/ASUSEPS.cmd
- Size
  
  1KB
- MD5
  
  6ea3a1d6aca8845842e63c3c3aac62a1
- SHA1
  
  b46fa37068e3b1352f7559f9a5e5679d8115416e
- SHA256
  
  2b3a65d439fd1e341d797ed1934165e9fd019aac4b2c827f2118d621662633b9
- SHA512
  
  522103c03c61d77666d3c43397f5520b3255ebc0c7fd80d5a411e56dfa81f174279f574d54a3b65a156069b8ab5fb7bbe91f6e7e2d23725190fbe2afca49713d
Score

1^/10
behavioral3
- Target
  
  JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/ASUSFLS.cmd
- Size
  
  567B
- MD5
  
  490c7401bc7a4acdbc9bf3cf524a1ba0
- SHA1
  
  3606d3d7864223e7a8a1db2b7e192594f59353b2
- SHA256
  
  51d734361b2474d9077bcf863415b9d44365f18b6ad27c5f219ea12e99c197ce
- SHA512
  
  c6ded98733b9f6a04de1cd800b9ec478aa8da24d856b90217bc7aefcea12dfa541e41aac7d2dac018ebc8a618c3e2f35fa94b862686f93d3b8cee5d14c328989
Score

1^/10
behavioral4
- Target
  
  JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/ASUSR_ParsingRecord.exe
- Size
  
  164KB
- MD5
  
  741e6d5f8e726ed5367b2dd5ea1b67b2
- SHA1
  
  841d1a55bb427069dc7fe17d72c453d514edf311
- SHA256
  
  5b01d4a4de6a2382898f166650816464074aaf6b0e91388677fab2fbca396aa3
- SHA512
  
  d5f2f5b155f0d1892d694752a83512cbec3aac70eef6b69802f10f733af7088b2d22f9d5e3065a063ca52bfc008ba5af6f9844cd2ea2b4f94256e0323cd3e5c3
- SSDEEP
  
  3072:9XmxdlJaNIj87XCHFkzWAvvB6tPagw8ByysYP3OSr:9XcG7z5565hsYtr
Score

1^/10
behavioral5
- Target
  
  JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/ASUSR_ParsingRecord_Test_SOP.pdf
- Size
  
  849KB
- MD5
  
  e11315ef7b9e8cc4c3f987f2075957ef
- SHA1
  
  321e162ab6d68dd72efc1825029f5062b4e5f9ad
- SHA256
  
  5ff37152719b6cba3b4e5ecdc9c4493cad192ee6cff8dc0a7108d8e206263b0e
- SHA512
  
  33920c2b8353d523396460196e8fc2931ee8e4e87c9556189d7450217ba17f52287b5715d1810ba0cb0a81d6b588c22f3d0bb3bce095ea862e8a8d3f401e753e
- SSDEEP
  
  24576:03tn1wTs1Ifi9cf+e6UbyY5r73z9icQo0QURueI24UqS:y8xjfbyI73z91B01uJ2T
Score

1^/10
behavioral6
- Target
  
  JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/ASUS_WNECT.exe
- Size
  
  1.9MB
- MD5
  
  734f0a41fb6d587208e2dec212018e5d
- SHA1
  
  471b0414bd57fe8edb747ffcad268afca23dfcd1
- SHA256
  
  af7d057f97b74122cca7ceec26b73c27519f58b91ceeeac2553bb26e502b61fc
- SHA512
  
  9faeede6a01c49447880f5aa138a42fe1b6d8adfd026a418be26d28e66877ce5593d8eefc42b588ebfb4fd0d8d9ceccaf67ac2b6bfc40c66a32ea7803c6a00f0
- SSDEEP
  
  49152:kwg2PATUr4jr4bvnKRUxzLMrdgvy3f+OjPWYPIU6iIzlV:fPATUr1ca+4
Score

1^/10
behavioral7
- Target
  
  JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/ATSZIO64.sys
- Size
  
  33KB
- MD5
  
  dbf11f3fad1db3eb08e2ee24b5ebfb95
- SHA1
  
  cea540a2864ece0a868d841ab27680ff841fcbe6
- SHA256
  
  e32ab30d01dcff6418544d93f99ae812d2ce6396e809686620547bea05074f6f
- SHA512
  
  d34d21cfd2b5635933392a193615f02520465a746e1c9621d0e0c4f6fef4c4b1c1b4830c280a8204753d8a20953327eee5e32576a3e34f1ab9332a6cee87da7b
- SSDEEP
  
  384:K3pYCwVahI4Ioww1y8603WhZh0/ZsHLc54i/8E9VFIJy/k6h3IVksRmuTcR9zusG:K5sxlo3G5KeEbb365RmuU9zud
Score

1^/10
behavioral8
- Target
  
  JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/Qt5Core.dll
- Size
  
  4.9MB
- MD5
  
  1849ef00f2b0d4bb8c475df4d714b8ff
- SHA1
  
  10bd730411fe8c6c3fa75994763c542591fbdd72
- SHA256
  
  fa6c28d6fc6e319f9c6348541cf8803ee5d32e6afccb666b3c67a54c50c81ba3
- SHA512
  
  c41794646549b5d7c22ee0cbdcff78450476f965bbf6cb83d07d97a2e23c5c2085366deaad62e37e0cc3dc072ac9e15bf40b39cf20e22a0980dfcae318f35136
- SSDEEP
  
  98304:D/cPFLQEJuMEaJsv6tWKFdu9C9Ed74Gx80MEcUsk80MEcUsk80ycUsk80M6Ou:DsFJsv6tWKFdu9C9y7g
Score

3^/10
behavioral9
- Target
  
  JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/QtCore4.dll
- Size
  
  2.5MB
- MD5
  
  8bb8ab53f24b3f37ffc8d9818a96b711
- SHA1
  
  5fadc82e34210c23095b1a96f6b5c88ac109d391
- SHA256
  
  df2f1fef45edcc147c89a71898e1ae4be0274adee81a8c9d8848b5e8be6cbbab
- SHA512
  
  766a92861d234a7a186cf8cf2fbce9fa5678425e6953b9c9c49dad5bfea6ae81101dcebcabee9afa55fd2c8a7cbd369db750c966310c4486cf4ab706e9a87cd9
- SSDEEP
  
  49152:vNt3iB8mwK6LX/DE4G3Jsv6tWKFdu9CAT/LyvL/6mShMZtmjNUVrciV5P+7QVg0M:vn3iaw3Jsv6tWKFdu9CQ
Score

3^/10
behavioral10
- Target
  
  JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/encryptlog.dll
- Size
  
  8KB
- MD5
  
  247428532adad99033a09269e22ae413
- SHA1
  
  260bbc18ed9eb0c3d3cb8fd0b6a04f4e020de55e
- SHA256
  
  02fc1b602e832f2448c061a8d2496180ff7dc63979c111056155a2b75d3e4122
- SHA512
  
  5bb9380b22c050c7591bc9dc578fb2c6ea72bf601022c7ccb55dda9a55f3899a7370c2c67f66092851c711ad1346976c36ab7d54bd484b54fda0d7d01cc6fef8
- SSDEEP
  
  192:jWJLsEbrSYSWDXOXGKiMQ03X73s4Fm74:GLsEbnxXO0Mdr3HT
Score

1^/10
behavioral11
- Target
  
  JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/msvcp100.dll
- Size
  
  411KB
- MD5
  
  03e9314004f504a14a61c3d364b62f66
- SHA1
  
  0aa3caac24fdf9d9d4c618e2bbf0a063036cd55d
- SHA256
  
  a3ba6421991241bea9c8334b62c3088f8f131ab906c3cc52113945d05016a35f
- SHA512
  
  2fcff4439d2759d93c57d49b24f28ae89b7698e284e76ac65fe2b50bdefc23a8cc3c83891d671de4e4c0f036cef810856de79ac2b028aa89a895bf35abff8c8d
- SSDEEP
  
  12288:iHEqYsrMWIqz473PTiPoH/aGhUgiW6QR7t5qv3Ooc8UHkC2eKq87:iH9YsIWIW4rPTiPofaDv3Ooc8UHkC2e8
Score

3^/10
behavioral12
- Target
  
  JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/msvcr100.dll
- Size
  
  752KB
- MD5
  
  67ec459e42d3081dd8fd34356f7cafc1
- SHA1
  
  1738050616169d5b17b5adac3ff0370b8c642734
- SHA256
  
  1221a09484964a6f38af5e34ee292b9afefccb3dc6e55435fd3aaf7c235d9067
- SHA512
  
  9ed1c106df217e0b4e4fbd1f4275486ceba1d8a225d6c7e47b854b0b5e6158135b81be926f51db0ad5c624f9bd1d09282332cf064680dc9f7d287073b9686d33
- SSDEEP
  
  12288:fQmCy3NeRjkpQmj3oaMtQqjoygfXq3kon9IlbgaOxQdVJJ6j5EBKX8hR5:ImCy3VQs9MtLjTgfa3kon9FaOdEz5
Score

3^/10
behavioral13
- Target
  
  JIGUtility_V2.0.8.0_20230112/ASUSR_ParsingRecord/ASUSR_ParsingRecord/run.bat
- Size
  
  445B
- MD5
  
  e9b66659059fb09bd910851557f01a4b
- SHA1
  
  91799b761661882dccf6e10bfb1b15078cd41467
- SHA256
  
  71d3617055ea34bfda2c87dfb2d0bb5f916597fbe7b2a5d6c39a2cddbf64a891
- SHA512
  
  f96393b70cc3987dcad41640cceabc4cac6f23b89d25f98cfa95dfdba427e1a5b5a3120fa3bc56c5c23a2a2ea88c338e8e581216bd839e8c3180818246bff66e
Score

1^/10
behavioral14
- Target
  
  JIGUtility_V2.0.8.0_20230112/JIGUtility_V2.0.8.0.exe
- Size
  
  9.4MB
- MD5
  
  3c41b25f4048eb64bc885cc08aaee53f
- SHA1
  
  a57295bb0e78ae6a3ddddd6efb30e82cc8c14df4
- SHA256
  
  1288b83462626e8f2ec920ca3ad059defdccd449e59003642b227efb632a40f7
- SHA512
  
  3532848d0e4a731bd9cc37579a66fcd5d408e4867ebc2ac12caa68a8774fdacba62f2c218729b5ce7af7c76089056bdd5c2a9d858b0738a957684e447b095274
- SSDEEP
  
  196608:4jLXJELbAynJwbXvGFLOyomFHKnPkuSE+ok0:4HJ2wbXeFPED
Score

7^/10
- Loads dropped DLL
behavioral15
- Target
  
  JIGUtility_V2.0.8.0_20230112/Save&FlashGPNV.pdf
- Size
  
  602KB
- MD5
  
  3c2d373b51b8d7b7646de96803d26847
- SHA1
  
  f11591d0a8a456639b2452c2260c162b5fef81ef
- SHA256
  
  25364e19ffe9939af85d53be86d7e016d129be9e8c6e225d5757a149865b3585
- SHA512
  
  677b2004dc0980d52bd6c56c8ff057f343bab02548193406ec9398b162024dd5378b7ed323ede22a8d1d0d1c12e5a387e69cd75ab3f404e01ac2acbb6a932d49
- SSDEEP
  
  12288:6qtP7haSKVnj/IYo4oZkLhTd3HZObAXuBxsGN85HsuwjrCKNmvi9Y:6qtP7ZKmYUsJ/ObAGxsGluwjrbaiy
Score

1^/10
behavioral16

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16