Overview

overview

7

Static

static

3

GWSetup.exe

windows7-x64

3

GWSetup.exe

windows10-2004-x64

4

gwupdate.exe

windows7-x64

1

gwupdate.exe

windows10-2004-x64

1

version.dll

windows7-x64

3

version.dll

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f1de2a045162dabb8825f3d4fccbdada9076155a4c806b820fa461fcae81ad93.zip

  • Size

    28.1MB

  • Sample

    240809-b5ry9ayaqg

  • MD5

    e263fbe66a5134600952115882501c8d

  • SHA1

    e69192618f770f4066fd32e25e991712881d8000

  • SHA256

    f1de2a045162dabb8825f3d4fccbdada9076155a4c806b820fa461fcae81ad93

  • SHA512

    de57ad464346189cb30c7acb81d802e3ce87016dc84174605e32ab244413d844b8403159e7cbcce5fe18cb9048c863731ede47936c619dd96b9b3a8aabc3db64

  • SSDEEP

    196608:HIVsmfAtyuilZE5CQOczWaxtP5NCcTVZ7fgpM:SvfQdiLE5C3czWar5NCcTT7

Score
7/10
discovery

Malware Config

Targets

    • Target

      GWSetup.exe

    • Size

      8.0MB

    • MD5

      d8e1def4d2b55210dcfae3ad784ca7b9

    • SHA1

      398902bc050ebaab539c37429c887714a60ae76f

    • SHA256

      eab58c18fa7a36d77cb0d62c73b0d5ad674f1a37a1073d5ba50d7e12ee7efcee

    • SHA512

      3a00a50ac13578dc6c5993abbdef8d908787659285a45441211d38ce3894ff13df7fd896bee06e5803306a4ff73d46bd24e0f1f17283167bef05f4e1b84c367d

    • SSDEEP

      196608:fIVsmfAtyuilZE5CQOczWaxtP5NCcTVZ7fgpe:qvfQdiLE5C3czWar5NCcTTX

    Score
    4/10
    discovery
    behavioral1behavioral2

    • Target

      gwupdate.exe

    • Size

      10.0MB

    • MD5

      f34e961b7aaa7136e1c9edc3f3cacc80

    • SHA1

      343942d7d547e7f926008f33c430e53a9b8b00f7

    • SHA256

      b029c5d82dcec74a9ca50d183ec2f22c84b16c3d6e26ad1658bf1c087ae50b55

    • SHA512

      63d6c24a209a853589a725b7fd9a5220f82f6f3edaa84b5439b3acac042cf8eb7e99f80993f20965896dce6f69e17c7c0e548509f577b16bcfa5b2cf21c47d76

    • SSDEEP

      1536:7Sx2+oQClDQPSIDP67L8lL9H2vMhVeUstkELK0pcv:7k2FQADuSIDjlFMMvs2Axp

    Score
    1/10
    behavioral3behavioral4

    • Target

      version.dll

    • Size

      10.1MB

    • MD5

      7cf7aae72d2c45a3d5cd5352fe8f1d73

    • SHA1

      47b9ff445406b74c441f20e226e6373c8ae971c2

    • SHA256

      72b8ecf5b236ac4b312dd9610e3fcd74151eaab1babff54bc2ba064e439fc054

    • SHA512

      cd968e5141a25b4979316131732462af2053e8ecf95c2196420217848da22f70eaa36c81336e93a691a158a148cdbcd56609a950630aec4848b2badf533690b7

    • SSDEEP

      3072:NxNSwOyT0E0HMMdUL3p0kX7ycS1fxQaTZckVPxIiTPVOfk2FQADuSIDjlFMMvs2n:N3Sw34E0H+3piEMmt6SIDh1D0yv

    Score
    7/10
    discovery

    • Executes dropped EXE

    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks