Overview

overview

7

Static

static

7

ZenStudio_...76.exe

macos-10.15-amd64

1

$PLUGINSDI...er.dll

macos-10.15-amd64

1

$PLUGINSDI...ns.dll

macos-10.15-amd64

1

$PLUGINSDI...el.dll

macos-10.15-amd64

1

out.dll

macos-10.15-amd64

4

$PLUGINSDI...nu.dll

macos-10.15-amd64

1

$PLUGINSDI...em.dll

macos-10.15-amd64

1

$PLUGINSDI...al.ini

macos-10.15-amd64

1

$PLUGINSDI...rd.bmp

macos-10.15-amd64

1

$PLUGINSDI...dl.dll

macos-10.15-amd64

1

ZenStudio.exe

macos-10.15-amd64

1

uninst.exe.nsis

macos-10.15-amd64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ZenStudio_Setup_v1.5.0_Build_76.exe

  • Size

    17.2MB

  • Sample

    240806-1pzrlavgrd

  • MD5

    2b8322f747ed7623d698c524ccf2ea16

  • SHA1

    fae3a00cd6334cee7e793aa6bb56bffc45c0bca0

  • SHA256

    1f1ad9c1f639326946f39129cb9ff5015669a0a3dd9e21db07163fb48cb6b709

  • SHA512

    e1a3070b760cd7999339a21e72618b7614c1b26bf5b2acbbdfd45c27eb115d0d566fa5d835cf505d274025366a2a474450bd49b3607340cf52731c7f26e784e4

  • SSDEEP

    393216:DaLCsFu4++WuIuffxPvMFQFgs20pHOMOv59/dWnnETyNS0yRMtEX:DaBIETfMMuMWHlo9vyrX

Score
7/10
evasionmacosupx

Malware Config

Targets

    • Target

      ZenStudio_Setup_v1.5.0_Build_76.exe

    • Size

      17.2MB

    • MD5

      2b8322f747ed7623d698c524ccf2ea16

    • SHA1

      fae3a00cd6334cee7e793aa6bb56bffc45c0bca0

    • SHA256

      1f1ad9c1f639326946f39129cb9ff5015669a0a3dd9e21db07163fb48cb6b709

    • SHA512

      e1a3070b760cd7999339a21e72618b7614c1b26bf5b2acbbdfd45c27eb115d0d566fa5d835cf505d274025366a2a474450bd49b3607340cf52731c7f26e784e4

    • SSDEEP

      393216:DaLCsFu4++WuIuffxPvMFQFgs20pHOMOv59/dWnnETyNS0yRMtEX:DaBIETfMMuMWHlo9vyrX

    Score
    1/10
    behavioral1

    • Target

      $PLUGINSDIR/DotNetChecker.dll

    • Size

      95KB

    • MD5

      90707abc35ad1a925b128527ac974989

    • SHA1

      47d0d433e513f0cceccb23b2522c7bc82d634691

    • SHA256

      8c1879e3e0855e6c22134b8cbb0986b97eb270fdddf8536be2afa18aa9344a4d

    • SHA512

      7cb2cce6c63210fe9abb2ba5d4e0e2a130f2c3c69ab02502d68e427a3d02b8822dbfbdc132899806f31740f44023922d3815629ab051aa01b5d829a419dd7f31

    • SSDEEP

      1536:ak08SEy8YXsNZHPj08Ohealn/NJy1Y7WhdHNwbsW/Bcdhuh4P6a8QJ:vSEy8tj08OhB/NcHyRwhi4P67QJ

    Score
    1/10
    behavioral2

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      15KB

    • MD5

      d095b082b7c5ba4665d40d9c5042af6d

    • SHA1

      2220277304af105ca6c56219f56f04e894b28d27

    • SHA256

      b2091205e225fc07daf1101218c64ce62a4690cacac9c3d0644d12e93e4c213c

    • SHA512

      61fb5cf84028437d8a63d0fda53d9fe0f521d8fe04e96853a5b7a22050c4c4fb5528ff0cdbb3ae6bc74a5033563fc417fc7537e4778227c9fd6633ae844c47d9

    • SSDEEP

      192:EyGQtZkTktEQUrJaZfuyCnSmUsv3sY7L7cW8Y6Q86QvoTr11929WtshLAzgSrX8:EyNt+4t7uJalUnGesY7Lt8nCr/Yosa

    Score
    1/10
    behavioral3

    • Target

      $PLUGINSDIR/SelfDel.dll

    • Size

      5KB

    • MD5

      e5786e8703d651bc8bd4bfecf46d3844

    • SHA1

      fee5aa4b325deecbf69ccb6eadd89bd5ae59723f

    • SHA256

      d115bce0a787b4f895e700efe943695c8f1087782807d91d831f6015b0f98774

    • SHA512

      d14ad43a01db19428cd8ccd2fe101750860933409b5be2eb85a3e400efcd37b1b6425ce84e87a7fe46ecabc7b91c4b450259e624c178b86e194ba7da97957ba3

    • SSDEEP

      96:NdekHUj5z13cPopei+Ml9PNDFbS7xg+TScrQ5:NdeuU9xcPopr+M9FbSS+TSE

    Score
    1/10
    behavioral4

    • Target

      out.upx

    • Size

      5KB

    • MD5

      517aee7f68b46b0f550dde61c5dcb66d

    • SHA1

      20981977561bf589d7f5539776eaf9fd8a87542e

    • SHA256

      91eadf9505a1212432547314f75e4d01be393f1392ae03f11e9534804213ae4f

    • SHA512

      96b5aaf5ece2e66d5726c1f33be31297f0754f771a202dfb2edd0f118e60dd6238c482f4ac36697bb3d14c106356be1178adab4ed71c213a322129d2a4e68433

    • SSDEEP

      96:SHT97mC9avbWxOcAwdr28H2gFiFS7xg+TSc:SHTRmC9avyhA78WgiSS+TS

    Score
    4/10
    evasion
    behavioral5

    • Target

      $PLUGINSDIR/StartMenu.dll

    • Size

      7KB

    • MD5

      a8c86996c4230c2209f5927f21321377

    • SHA1

      45ce0ab93cb6a3a594e54878cce05df724024393

    • SHA256

      110545415a59402635e1c9439acba15b44bab268ed02ad2a262ce12604a47855

    • SHA512

      69ee73496b916777936b0dddd2cc4a4f916e393f7d0b167cba77a4a239ee1e3f645d9b90dee1627c42a23eb6c3403e4d086546b9f78b3a2e4999c8f92f6a3bc3

    • SSDEEP

      96:mIt3J2Gl0eVe0+Cfo0UkXt6+o69UiGdPh5/utta/23lkCTcaqHCI:bhE+A0+sF6piUFkAylncviI

    Score
    1/10
    behavioral6

    • Target

      $PLUGINSDIR/System.dll

    • Size

      12KB

    • MD5

      4add245d4ba34b04f213409bfe504c07

    • SHA1

      ef756d6581d70e87d58cc4982e3f4d18e0ea5b09

    • SHA256

      9111099efe9d5c9b391dc132b2faf0a3851a760d4106d5368e30ac744eb42706

    • SHA512

      1bd260cabe5ea3cefbbc675162f30092ab157893510f45a1b571489e03ebb2903c55f64f89812754d3fe03c8f10012b8078d1261a7e73ac1f87c82f714bce03d

    • SSDEEP

      192:VjHcQ0qWTlt7wi5Aj/lM0sEWD/wtYbBjpNQybC7y+XZv0QPi:B/Qlt7wiij/lMRv/9V4bvr

    Score
    1/10
    behavioral7

    • Target

      $PLUGINSDIR/ioSpecial.ini

    • Size

      211B

    • MD5

      e2d5070bc28db1ac745613689ff86067

    • SHA1

      282e080b4cf847174c5c11e4f9157b8c338ecb19

    • SHA256

      d95aed234f932a1c48a2b1b0d98c60ca31f962310c03158e2884ab4ddd3ea1e0

    • SHA512

      a50ca2014869629135b54e848f03cb4983ad8029cd811300d02b0fc54de0436185f418fea4d3db888eb0f3170e33a59d486aa885f024ab29e630e9bc0ae1a2de

    Score
    1/10
    behavioral8

    • Target

      $PLUGINSDIR/modern-wizard.bmp

    • Size

      25KB

    • MD5

      cbe40fd2b1ec96daedc65da172d90022

    • SHA1

      366c216220aa4329dff6c485fd0e9b0f4f0a7944

    • SHA256

      3ad2dc318056d0a2024af1804ea741146cfc18cc404649a44610cbf8b2056cf2

    • SHA512

      62990cb16e37b6b4eff6ab03571c3a82dcaa21a1d393c3cb01d81f62287777fb0b4b27f8852b5fa71bc975feab5baa486d33f2c58660210e115de7e2bd34ea63

    • SSDEEP

      24:Qwika6aSaaDaVYoG6abuJsnZs5GhI11BayNXPcDrSsUWcSphsWwlEWqCl6aHAX2x:Qoi47a5G8SddzKFIcsOz3Xz

    Score
    1/10
    behavioral9

    • Target

      $PLUGINSDIR/nsisdl.dll

    • Size

      15KB

    • MD5

      05f72d6a944e701217ef2eb2cc13e0ee

    • SHA1

      fac99c39150ae484e4b3e0af2f4be86bb1835dde

    • SHA256

      aab28914794a1cdda4561e9f2af3e006dbed220d9d6bfe049b56d0cb9b783648

    • SHA512

      c87e783fc169ef01ac0d3ce29fbfbf349a2e22329df9203a1443cc2caebbe7f8282c0754740289ecca534951cb7e574bafef9ccbaa0da7c287109920ec9573eb

    • SSDEEP

      384:hRy180+1ygVaLfKgcIno1gEBWZwCUKihb:hRy180+HSegEBWyQih

    Score
    1/10
    behavioral10

    • Target

      ZenStudio.exe

    • Size

      19.6MB

    • MD5

      1fae469528fcc28ec48eb939b39f8a69

    • SHA1

      21f3642dbc8a5b7bd60cd285490f119aacdaa1a8

    • SHA256

      49e2e48406ae2b43df1e04c20c2fd13b9b25d7d16eb07bfe268f471ee755208c

    • SHA512

      16eb03db6c71770be6b142949f1eaee6ffd5839543d781b8870455cde089db643538c3ed12c2e03da43ec1e4a71ed0454343e23915a2ead9dcb0ff09432f17c1

    • SSDEEP

      393216:vM13RE6vuMqY6WIm9FzFfKTIX8g2JnniEMbvJBvoFzENUZM2Ez05Ts:vM13BmS7FYniEGRliNFE8s

    Score
    1/10
    behavioral11

    • Target

      uninst.exe.nsis

    • Size

      1KB

    • MD5

      f4322f8c23e20b1f24728b48e541a374

    • SHA1

      8e97fe9c225e5a48a75454f6bdf8e4f43c28ae74

    • SHA256

      e1aa5dba18262b8bdc9496edede8d59eaab30a2c746b81045172bfe222baa392

    • SHA512

      8d70c4bc0eab5495e159a767f356d5e179a993060bad490334a979b75999ca7afda703049d2292e067df3f8522de079b70272a186203fd8dff541537697e88cd

    Score
    1/10
    behavioral12

MITRE ATT&CK Enterprise v15

Tasks