1bfb622b855669c21ed5681d4a6ebc2d0f64df35bc4f209946c134f9958d129a | Triage

Resubmissions

19/07/2024, 23:55

240719-3ynf2azglf 7

19/07/2024, 23:51

240719-3wbdpawgjn 7

Sharing

Copy URL Twitter E-mail

General

Target

Ample_Sound_Keygen.exe
Size

359KB
Sample

240719-3wbdpawgjn
MD5

ef98498a4bdf1efa59a036a05ac8fc40
SHA1

2889387d408009b9f23343938f927f3a0522ee7a
SHA256

1bfb622b855669c21ed5681d4a6ebc2d0f64df35bc4f209946c134f9958d129a
SHA512

037cf77c129cd0f371d20989e0791e8696dc4d4b22c7a9214b21394139f90bba4b7dd59502797349eb6398332b65464b82b14faa44b5a5d9c63d87e628082b56
SSDEEP

6144:8hjmq2nA8P9tlASRzKW3ZJMgv/RVwst3UJwpYwC/hEu+WIb3GBRSK1og1:Uc9t2SllJl/RtkyYwCpAfLGB4RS

Score

7^/10

upx

Malware Config

Targets

- Target
  
  Ample_Sound_Keygen.exe
- Size
  
  359KB
- MD5
  
  ef98498a4bdf1efa59a036a05ac8fc40
- SHA1
  
  2889387d408009b9f23343938f927f3a0522ee7a
- SHA256
  
  1bfb622b855669c21ed5681d4a6ebc2d0f64df35bc4f209946c134f9958d129a
- SHA512
  
  037cf77c129cd0f371d20989e0791e8696dc4d4b22c7a9214b21394139f90bba4b7dd59502797349eb6398332b65464b82b14faa44b5a5d9c63d87e628082b56
- SSDEEP
  
  6144:8hjmq2nA8P9tlASRzKW3ZJMgv/RVwst3UJwpYwC/hEu+WIb3GBRSK1og1:Uc9t2SllJl/RtkyYwCpAfLGB4RS
Score

7^/10

upx
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2
- Target
  
  $TEMP/BASSMOD.dll
- Size
  
  33KB
- MD5
  
  e4ec57e8508c5c4040383ebe6d367928
- SHA1
  
  b22bcce36d9fdeae8ab7a7ecc0b01c8176648d06
- SHA256
  
  8ad9e47693e292f381da42ddc13724a3063040e51c26f4ca8e1f8e2f1ddd547f
- SHA512
  
  77d5cf66caf06e192e668fae2b2594e60a498e8e0ccef5b09b9710721a4cdb0c852d00c446fd32c5b5c85e739de2e73cb1f1f6044879fe7d237341bbb6f27822
- SSDEEP
  
  768:qQmS5iUgi5czW+DlrQOS1DeDdjgNtbX4O6DHix84H0:qQz5Tgof+DdpS1+djctLSHiZ0
Score

1^/10
behavioral3 behavioral4
- Target
  
  $TEMP/bgm.xm
- Size
  
  71KB
- MD5
  
  7452ea873a8d0efad3ad3a4f5b136022
- SHA1
  
  a560a26b94e2ebc8f7b37f33eb90d405f1b8e154
- SHA256
  
  c81d473e894238b63fbb8a4ff266286d2dab805d61f0184928055127006aad43
- SHA512
  
  4261a97f7fc94296a73f2a68ed55d86cec6f1dd99e0683f47665147bc92db24cb599cd73d19de1679fdb289f2f37c78b783410e375b9c041dc0103712f2c486b
- SSDEEP
  
  768:ZwFdxOf3bYdB5K94iQ2bzfz/CB77DgN0dT5UPJVzkdfr:VihDgNKuJqD
Score

1^/10
behavioral5 behavioral6
- Target
  
  $TEMP/keygen.exe
- Size
  
  381KB
- MD5
  
  db2e56a4dd188f2d7521ce11481432c0
- SHA1
  
  822d5251d42dc56674a59f1e20103990cd8aef8c
- SHA256
  
  2f5e714271e5206dafb32d77a69859243e44b85321cc39b985e44303f200a185
- SHA512
  
  49762ae5f9dfb95eec33eec6c59ce8e433ed45ee4b4f44b59f22f108b4e29eb9d6e1e641f0569898a651f6ad36d64287ecf87c40aee780c90ae72b714ca10ab8
- SSDEEP
  
  6144:Syztgw3QmFzwDK14dHTDtes6MRjLhzjPrzwuyXfTfo:hzh3NeWSzBe3MjLhzjSo
Score

7^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral7 behavioral8
- Target
  
  out.upx
- Size
  
  220KB
- MD5
  
  a80904f8dda592b680bb213b1d653a9b
- SHA1
  
  ecbcba54f03ddbe9c1b77071ce238b09900f1625
- SHA256
  
  d47ade96562ceeca667930af6e89b7319bd6b2db206ccd65dbedb08dfde7451f
- SHA512
  
  c5740298ccb7bac469d81e7e9792346263f8100254365315eb69c348bfb9b1bf64f10934a10a4f0e3feb11533313409d9a3a55c7deb1ba213b87a7cd60ec48a8
- SSDEEP
  
  3072:IqAOuG2thmqRp25BzhGOc3GuDtYPiaKlBonRRKNzWgNL055mRLk+29iAg0FuanE0:IqWm47txlBonRRSz/SHm6AAO2
Score

1^/10
behavioral10 behavioral9

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10