Overview

overview

3

Static

static

3

f7088a79df...5f.exe

windows7-x64

3

f7088a79df...5f.exe

windows10-2004-x64

3

$PLUGINSDI...RL.dll

windows7-x64

3

$PLUGINSDI...RL.dll

windows10-2004-x64

3

$PLUGINSDI...er.dll

windows7-x64

3

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...ad.dll

windows7-x64

3

$PLUGINSDI...ad.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...dl.dll

windows7-x64

3

$PLUGINSDI...dl.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDI...ML.dll

windows7-x64

3

$PLUGINSDI...ML.dll

windows10-2004-x64

3

7za.exe

windows7-x64

3

7za.exe

windows10-2004-x64

3

AdbDev.dll

windows7-x64

3

AdbDev.dll

windows10-2004-x64

3

AdbDrv.dll

windows7-x64

3

AdbDrv.dll

windows10-2004-x64

3

AdbWinApi.dll

windows7-x64

3

AdbWinApi.dll

windows10-2004-x64

3

AdbWinUsbApi.dll

windows7-x64

3

AdbWinUsbApi.dll

windows10-2004-x64

3

AqWebBrowser.dll

windows7-x64

3

AqWebBrowser.dll

windows10-2004-x64

3

CR173Soft.exe

windows7-x64

3

CR173Soft.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f7088a79dfd4cfc8fcc4cdf76628686b42b219e58d64583280a600af0282c15f

  • Size

    3.9MB

  • Sample

    240816-hdjbcsvbqn

  • MD5

    0426a9487d4cc763630509c2853846fe

  • SHA1

    71bdbc70ded01d0459dbbede91a07b6c7e01fe3a

  • SHA256

    f7088a79dfd4cfc8fcc4cdf76628686b42b219e58d64583280a600af0282c15f

  • SHA512

    4c831596358822123f2c359c028e3ec5ded7d80f9c2c6fda9319e60030700851418874d331fd8fcd8ec38646471d32819d94f1308fd1d4854ccfe42f9ee71e6a

  • SSDEEP

    98304:axLjlnlZWq7jaaP9PF/HiozOkyoLjGSoir:axL0W9PF/Co7RuNir

Score
3/10
discovery

Malware Config

Targets

    • Target

      f7088a79dfd4cfc8fcc4cdf76628686b42b219e58d64583280a600af0282c15f

    • Size

      3.9MB

    • MD5

      0426a9487d4cc763630509c2853846fe

    • SHA1

      71bdbc70ded01d0459dbbede91a07b6c7e01fe3a

    • SHA256

      f7088a79dfd4cfc8fcc4cdf76628686b42b219e58d64583280a600af0282c15f

    • SHA512

      4c831596358822123f2c359c028e3ec5ded7d80f9c2c6fda9319e60030700851418874d331fd8fcd8ec38646471d32819d94f1308fd1d4854ccfe42f9ee71e6a

    • SSDEEP

      98304:axLjlnlZWq7jaaP9PF/HiozOkyoLjGSoir:axL0W9PF/Co7RuNir

    Score
    3/10
    discovery
    behavioral1behavioral2

    • Target

      $PLUGINSDIR/BrandingURL.dll

    • Size

      4KB

    • MD5

      71c46b663baa92ad941388d082af97e7

    • SHA1

      5a9fcce065366a526d75cc5ded9aade7cadd6421

    • SHA256

      bb2b9c272b8b66bc1b414675c2acba7afad03fff66a63babee3ee57ed163d19e

    • SHA512

      5965bd3f5369b9a1ed641c479f7b8a14af27700d0c27d482aa8eb62acc42f7b702b5947d82f9791b29bcba4d46e1409244f0a8ddce4ec75022b5e27f6d671bce

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/ButtonLinker.dll

    • Size

      7KB

    • MD5

      dd85ac7d85c92dd0e3cc17dfd4890f54

    • SHA1

      a128fb7a05965c1a9913c6f5e419e6c4c0a7d2fa

    • SHA256

      27abd2a4fb1bf66add60221b52d061bbe24d2d21e13600725ff7a5c6c777b504

    • SHA512

      e4ff8216c65110a9d156f37c2062acb53a72daa8af12dfc24278920d9e1a4083a81b1446759df75405b2da34c7bfb1afc33184feedd0aee4ed73f79fcbb1a8a1

    • SSDEEP

      96:q0GBDU3ADeEZlBLx6sWHCKGKVR3YXqNNtFa4PaaU4x:X53jEd2n3Y6NNtFBaa

    Score
    3/10
    discovery
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/InetLoad.dll

    • Size

      18KB

    • MD5

      994669c5737b25c26642c94180e92fa2

    • SHA1

      d8a1836914a446b0e06881ce1be8631554adafde

    • SHA256

      bf01a1f272e0daf82df3407690b646e0ff6b2c562e36e47cf177eda71ccb6f6c

    • SHA512

      d0ab7ca7f890ef9e59015c33e6b400a0a4d1ce0d24599537e09e845f4b953e3ecd44bf3e3cbe584f57c2948743e689ed67d2d40e6caf923bd630886e89c38563

    • SSDEEP

      384:nUOPTbiJmdztwwKq8W1cyMjPzV0Ac9k+LMkIX1+Gn+XHdjf:nTikliwKq8W1rMjPzz+f

    Score
    3/10
    discovery
    behavioral7behavioral8

    • Target

      $PLUGINSDIR/KillProcDLL.dll

    • Size

      4KB

    • MD5

      99f345cf51b6c3c317d20a81acb11012

    • SHA1

      b3d0355f527c536ea14a8ff51741c8739d66f727

    • SHA256

      c2689ba1f66066afce85ca6457ecd36370be0fe351c58422e45efd0948655c93

    • SHA512

      937aa75be84a74f2be3b54dc80fac02c17dad1915d924ef82ab354d2a49bc773ee6d801203c52686113783a7c7ea0e8ed8e673ba696d6d3212f7006e291ed2ef

    Score
    3/10
    discovery
    behavioral10behavioral9

    • Target

      $PLUGINSDIR/NSISdl.dll

    • Size

      14KB

    • MD5

      254f13dfd61c5b7d2119eb2550491e1d

    • SHA1

      5083f6804ee3475f3698ab9e68611b0128e22fd6

    • SHA256

      fd0e8be2135f3d326b65520383a3468c3983fa32c9c93594d986b16709d80f28

    • SHA512

      fcef8ac5bd0ee6e316dbbc128a223ba18c8bf85a8d253e0c0877af6a4f686a20b08d34e5a426e2be5045962b391b8073769253a4d9b18616febc8133ccf654f7

    • SSDEEP

      192:t5ZTobBDJ68r67wmsvJI5ad9cXzFOVu+mZ/P3p+57CvpVqDxVp01Dwn2GRYgsfA:fBo/680dCI5adOjFOg9//p27uNw2bo

    Score
    3/10
    discovery
    behavioral11behavioral12

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      00a0194c20ee912257df53bfe258ee4a

    • SHA1

      d7b4e319bc5119024690dc8230b9cc919b1b86b2

    • SHA256

      dc4da2ccadb11099076926b02764b2b44ad8f97cd32337421a4cc21a3f5448f3

    • SHA512

      3b38a2c17996c3b77ebf7b858a6c37415615e756792132878d8eddbd13cb06710b7da0e8b58104768f8e475fc93e8b44b3b1ab6f70ddf52edee111aaf5ef5667

    • SSDEEP

      192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw

    Score
    3/10
    discovery
    behavioral13behavioral14

    • Target

      $PLUGINSDIR/nsDialogs.dll

    • Size

      9KB

    • MD5

      ab73c0c2a23f913eabdc4cb24b75cbad

    • SHA1

      6569d2863d54c88dcf57c843fc310f6d9571a41e

    • SHA256

      3d0060c5c9400a487dbefe4ac132dd96b07d3a4ba3badab46a7410a667c93457

    • SHA512

      99d287b5152944f64edc7ce8f3ebcd294699e54a5b42ac7a88e27dff8a68278a5429f4d299802ee7ddbe290f1e3b6a372a5f3bb4ecb1a3c32e384bca3ccdb2b8

    • SSDEEP

      96:EBABCcnl5TKhkfLxSslykcxM2DjDf3GE+Xv8Xav+Yx4MndY7ndS27gA:E6n+0SAfRE+/8ZYxldqn420

    Score
    3/10
    discovery
    behavioral15behavioral16

    • Target

      $PLUGINSDIR/nsisXML.dll

    • Size

      11KB

    • MD5

      13deb9a0f4e4286df01abc85e1895e09

    • SHA1

      3174853b32407fd85220de844b390a18a8a76c97

    • SHA256

      c40ef0b41c035b6d29656616ddc113a717bfd1bb78c9fcac75d7b6eefdc7bf83

    • SHA512

      604aa82a9c4818d2f63fb11bbde561afc137a77e9f3108dfd7f4596524e46ce71b6dc31606bce534b600b250c3b4092a311fd1eced83da01156d5bcfaad7aade

    • SSDEEP

      192:GRTSl/ex70OJp3U5WtRqRLnOyhb6hz801Sux3ulXhDQR:GRTSl/kfzWIRqRLnOy3mxaX1E

    Score
    3/10
    discovery
    behavioral17behavioral18

    • Target

      7za.exe

    • Size

      574KB

    • MD5

      42badc1d2f03a8b1e4875740d3d49336

    • SHA1

      cee178da1fb05f99af7a3547093122893bd1eb46

    • SHA256

      c136b1467d669a725478a6110ebaaab3cb88a3d389dfa688e06173c066b76fcf

    • SHA512

      6bc519a7368ee6bd8c8f69f2d634dd18799b4ca31fbc284d2580ba625f3a88b6a52d2bc17bea0e75e63ca11c10356c47ee00c2c500294abcb5141424fc5dc71c

    • SSDEEP

      12288:myyKdVnyNhXCV4EkP7AIfzNXZ0b5NrnkcAqIV0A1caRI:mKvyNhXCV4E8BXAfrnkcAqU0A

    Score
    3/10
    discovery
    behavioral19behavioral20

    • Target

      AdbDev.dll

    • Size

      68KB

    • MD5

      ec14cd52ba8afa7c4fce6214a8a51dbf

    • SHA1

      e65692b205abb9e49a6aeae7a2873c975858b74a

    • SHA256

      b4f75a4d9b9f027bc85ce559cb685ca9f3195a0e17ae8be33ac14f4cd6d1fde4

    • SHA512

      94da4459d2024cf9b80cd19922e93a3c099198ed9d42b1a4fea14e760378013de1a67a82c521d99bd505986caf038d0fd7b841c9bab3924b1801248b2f2d25ce

    • SSDEEP

      1536:pi8bGYVHgMnYbjJU13mSSDFYRjDwqBunak2tYe4JV:pi8ioAMn8JjDFkorcqe4J

    Score
    3/10
    discovery
    behavioral21behavioral22

    • Target

      AdbDrv.dll

    • Size

      96KB

    • MD5

      d132f6772bbba8de4d2a653030432158

    • SHA1

      f7bd61d0de239eb95a1e6a1cf9fa0b4128095160

    • SHA256

      da29737f6f054c3a6b96324e6bd37ea74256e795e9d2bc846a51941b073e815c

    • SHA512

      c36565e5e83af91bc57f216b73e03e894c72c774cec799aa75cc3454fc63df76d769b18d61e655a328424f068681f73d858a4089b0c21ec1bd954de391b3e45f

    • SSDEEP

      1536:LRpEk1VUozSqCwR4CdsmRIacc0cZ3pnsWjcd+qM9S6fF:31VU7VwR4zaWctGa9S6f

    Score
    3/10
    discovery
    behavioral23behavioral24

    • Target

      AdbWinApi.dll

    • Size

      94KB

    • MD5

      47a6ee3f186b2c2f5057028906bac0c6

    • SHA1

      fde9c22a2cfcd5e566cec2e987d942b78a4eeae8

    • SHA256

      14a51482aa003db79a400f4b15c158397fe6d57ee6606b3d633fa431a7bfdf4b

    • SHA512

      6a2675de0c445c75f7d5664ebe8f0e2f69c3312c50156161e483927e40235140d5e28e340112ac552d6462366143890a8ce32dbf65bd37e27cb1ea290fe14584

    • SSDEEP

      1536:npCxybY0FS6MqS6WvgD9xj03TabrFvY5J6sCGt:npo0k6ZWVTaif6sCG

    Score
    3/10
    discovery
    behavioral25behavioral26

    • Target

      AdbWinUsbApi.dll

    • Size

      59KB

    • MD5

      5f23f2f936bdfac90bb0a4970ad365cf

    • SHA1

      12e14244b1a5d04a261759547c3d930547f52fa3

    • SHA256

      041c6859bb4fc78d3a903dd901298cd1ecfb75b6be0646b74954cd722280a407

    • SHA512

      49a7769d5e6cb2fda9249039d90465f7a4e612805bba48b7036456a3bbd230e4d13da72e4ade5155ddc08fe460735ec8d6df3bb11b72ff28e1149221e2fc3048

    • SSDEEP

      768:HLNk0yiFYWkgALpW+QvSugX0wUepQNXTQXdF+Q+An70edrqqOkIW:+yY8wugEwOVEXdz70e4gI

    Score
    3/10
    discovery
    behavioral27behavioral28

    • Target

      AqWebBrowser.dll

    • Size

      77KB

    • MD5

      ac4842cbb5e0be5238143dd6f48a5f7a

    • SHA1

      6c6b81c8766c794665bb7f54fc654bc2c57c7317

    • SHA256

      584d98148fe25c5713909a5e70713166ad7078315da0836299571ca55e392395

    • SHA512

      0c45d3e3f5f22910e1ac5940f86f4bd9c5161cccf0ed12167f633fc786972998e176ad50566bf69fb3f1b17956139c00350da0b111ec373aed2d49359a6621a8

    • SSDEEP

      1536:abtnc2Cw7sUMii6QGe2cWnLbDjcdaxs8jcdMkzVuyRV:6Tr7sxiAScCU3MkzVpRV

    Score
    3/10
    discovery
    behavioral29behavioral30

    • Target

      CR173Soft.exe

    • Size

      3.4MB

    • MD5

      f05c8e8fb989dc29ae55fc060360ff95

    • SHA1

      23b1f2e7b1b849aeb622cc20a4a130b4c7ca6026

    • SHA256

      8c72c27ff51e6b33b0577780c998556698d8d5e62d9afb51eba6ee0770d53956

    • SHA512

      8ae6b9c8cdb467d767654aec68a608dfd81558058c48e581e86fd141012388103a4a9137e132b281fa7a97395b93b87cfd85dbfc1e50a366727475e71fe7f01e

    • SSDEEP

      49152:+KLSSqEhOotNOySH+BfRhM9vbW3H6y26DFT86yj19FUIyIxIQy:+nOtfpMlbW3h3+1LUIyIxIQy

    Score
    3/10
    discovery
    behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

Score
3/10

behavioral1

discovery
Score
3/10

behavioral2

discovery
Score
3/10

behavioral3

discovery
Score
3/10

behavioral4

discovery
Score
3/10

behavioral5

discovery
Score
3/10

behavioral6

discovery
Score
3/10

behavioral7

discovery
Score
3/10

behavioral8

discovery
Score
3/10

behavioral9

discovery
Score
3/10

behavioral10

discovery
Score
3/10

behavioral11

discovery
Score
3/10

behavioral12

discovery
Score
3/10

behavioral13

discovery
Score
3/10

behavioral14

discovery
Score
3/10

behavioral15

discovery
Score
3/10

behavioral16

discovery
Score
3/10

behavioral17

discovery
Score
3/10

behavioral18

discovery
Score
3/10

behavioral19

discovery
Score
3/10

behavioral20

discovery
Score
3/10

behavioral21

discovery
Score
3/10

behavioral22

discovery
Score
3/10

behavioral23

discovery
Score
3/10

behavioral24

discovery
Score
3/10

behavioral25

discovery
Score
3/10

behavioral26

discovery
Score
3/10

behavioral27

discovery
Score
3/10

behavioral28

discovery
Score
3/10

behavioral29

discovery
Score
3/10

behavioral30

discovery
Score
3/10

behavioral31

discovery
Score
3/10

behavioral32

discovery
Score
3/10