Overview

overview

7

Static

static

7

droidkit-en-setup.exe

windows11-21h2-x64

4

$PLUGINSDI...er.dll

windows11-21h2-x64

3

$PLUGINSDI...Vs.dll

windows11-21h2-x64

3

$PLUGINSDI...ib.dll

windows11-21h2-x64

3

$PLUGINSDIR/Help.ico

windows11-21h2-x64

3

$PLUGINSDIR/Setup.ico

windows11-21h2-x64

3

$PLUGINSDI...em.dll

windows11-21h2-x64

3

$PLUGINSDI...up.exe

windows11-21h2-x64

7

$PLUGINSDI...ll.ico

windows11-21h2-x64

3

$PLUGINSDI...00.dll

windows11-21h2-x64

1

$PLUGINSDI...00.dll

windows11-21h2-x64

1

$PLUGINSDIR/nsDui.dll

windows11-21h2-x64

3

$PLUGINSDI...ec.dll

windows11-21h2-x64

3

$PLUGINSDI...ss.dll

windows11-21h2-x64

3

$PLUGINSDI...7z.dll

windows11-21h2-x64

3

$PLUGINSDI...ry.dll

windows11-21h2-x64

3

$PLUGINSDI...om.txt

windows11-21h2-x64

3

$PLUGINSDI...ll.exe

windows11-21h2-x64

4

$PLUGINSDI...ll.bmp

windows11-21h2-x64

3

$PLUGINSDI...x1.bmp

windows11-21h2-x64

3

$PLUGINSDI...x2.bmp

windows11-21h2-x64

3

$PLUGINSDI..._1.dll

windows11-21h2-x64

3

$PLUGINSDI..._1.dll

windows11-21h2-x64

3

$PLUGINSDI...gs.dll

windows11-21h2-x64

3

$PLUGINSDI...ss.dll

windows11-21h2-x64

3

$PLUGINSDI...ry.dll

windows11-21h2-x64

3

$PLUGINSDI...bg.bmp

windows11-21h2-x64

3

$PLUGINSDIR/un.exe

windows11-21h2-x64

3

$PLUGINSDIR/unbg1.bmp

windows11-21h2-x64

3

$PLUGINSDIR/unbg2.bmp

windows11-21h2-x64

3

$PLUGINSDI...ll.ini

windows11-21h2-x64

3

$PLUGINSDI...ll.ini

windows11-21h2-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    droidkit-en-setup.exe

  • Size

    19.5MB

  • Sample

    240821-l4emmswdjn

  • MD5

    10b9713adf037d033d31f84d89d32c3d

  • SHA1

    1396c8735135bfd8e96738fa48a3f88e8c45d3c7

  • SHA256

    ae2001d5b60a2f0bd8e72c0106363950cd9f68e9ce42b9a40b0af26814908809

  • SHA512

    9e7fbd6bbc2439b2eda5c5b5ccef8d639f9e9a772e34c05e0f949c28a4cf54eed98aa2fa6d4828fb250a8edd72fbc3ddf4a8f44b2119aa607983d91a1b26e178

  • SSDEEP

    393216:YqrsNeQztKB1QH9MCPIpB6LhMtGiUIsBws6XYbTkrXDTNiDRUGJwPAEWXD:YUibzQoH9MSIMgDYUX3NiDRUGJ2YT

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      droidkit-en-setup.exe

    • Size

      19.5MB

    • MD5

      10b9713adf037d033d31f84d89d32c3d

    • SHA1

      1396c8735135bfd8e96738fa48a3f88e8c45d3c7

    • SHA256

      ae2001d5b60a2f0bd8e72c0106363950cd9f68e9ce42b9a40b0af26814908809

    • SHA512

      9e7fbd6bbc2439b2eda5c5b5ccef8d639f9e9a772e34c05e0f949c28a4cf54eed98aa2fa6d4828fb250a8edd72fbc3ddf4a8f44b2119aa607983d91a1b26e178

    • SSDEEP

      393216:YqrsNeQztKB1QH9MCPIpB6LhMtGiUIsBws6XYbTkrXDTNiDRUGJwPAEWXD:YUibzQoH9MSIMgDYUX3NiDRUGJ2YT

    Score
    4/10
    discovery
    behavioral1

    • Target

      $PLUGINSDIR/BgWorker.dll

    • Size

      2KB

    • MD5

      33ec04738007e665059cf40bc0f0c22b

    • SHA1

      4196759a922e333d9b17bda5369f14c33cd5e3bc

    • SHA256

      50f735ab8f3473423e6873d628150bbc0777be7b4f6405247cddf22bb00fb6be

    • SHA512

      2318b01f0c2f2f021a618ca3e6e5c24a94df5d00154766b77160203b8b0a177c8581c7b688ffe69be93a69bc7fd06b8a589844d42447f5060fb4bcf94d8a9aef

    Score
    3/10
    discovery
    behavioral2

    • Target

      $PLUGINSDIR/CheckProVs.dll

    • Size

      7KB

    • MD5

      62e85098ce43cb3d5c422e49390b7071

    • SHA1

      df6722f155ce2a1379eff53a9ad1611ddecbb3bf

    • SHA256

      ee7e26894cbf89c93ae4df15bdb12cd9a21f5deacedfa99a01eefe8fa52daec2

    • SHA512

      dfe7438c2b46f822e2a810bc355e5226043547608d19d1c70314e4325c06ad9ad63a797905e30d19f5d9a86ee1a6d9c28f525a298731e79dbf6f3d6441179a8e

    • SSDEEP

      96:iqCVh8iNqVgRudZczLiJp2tvgaJOnT/323x3XQUPVAm6yBBECtu7ZyvN:9IhJqUudZkLi+bOni3x3X3PVR6yBBfj

    Score
    3/10
    discovery
    behavioral3

    • Target

      $PLUGINSDIR/GoogleTracingLib.dll

    • Size

      36KB

    • MD5

      d8fca35ff95fe00a7174177181f8bd13

    • SHA1

      fbafea4d2790dd2c0d022dfb08ded91de7f5265e

    • SHA256

      ad873f1e51e6d033e5507235ec735957256ebeeb0d3f22aa0b57bb4bd0846e4c

    • SHA512

      eb530b10f137cb0cdfdcd2c11fd9f50f774e0ce44e9d2da3e755f6a6df24fe6e7525c27b109e3e68e9d3e49a889937a22f4d9d78703b1055a83b8a58808a58ba

    • SSDEEP

      768:IWXV2fVEC5h9KclMCumc6plPHY4jq7rOZkdhKZV:8Smh9/BumTlg4kOZ+Kz

    Score
    3/10
    discovery
    behavioral4

    • Target

      $PLUGINSDIR/Help.ico

    • Size

      187KB

    • MD5

      9ca6d8dcdc3a93521270fcb52c33e491

    • SHA1

      42da181d0f73676197f50f3a2203708dd2543c0c

    • SHA256

      7056eda1128f8a3a0c7217885972359cee99b6a62a62d4bd7bad79b04d7db227

    • SHA512

      d28bce4de41036f25493ea28c64e840f8b62325eee6dbad03a4bb32439396aef16cf73eaaa95e975b82786c2aeac4eba86c13a6d703e616ef3ec82f41e463e28

    • SSDEEP

      3072:tqh+r3XuywOLAr/wC1K07seG4ohh3eZryX20A90dc66ElkOwkC0yW0sS20XW607p:TLuywOuwz07seG1hdwryX20O0dc66Eln

    Score
    3/10
    behavioral5

    • Target

      $PLUGINSDIR/Setup.ico

    • Size

      187KB

    • MD5

      9ca6d8dcdc3a93521270fcb52c33e491

    • SHA1

      42da181d0f73676197f50f3a2203708dd2543c0c

    • SHA256

      7056eda1128f8a3a0c7217885972359cee99b6a62a62d4bd7bad79b04d7db227

    • SHA512

      d28bce4de41036f25493ea28c64e840f8b62325eee6dbad03a4bb32439396aef16cf73eaaa95e975b82786c2aeac4eba86c13a6d703e616ef3ec82f41e463e28

    • SSDEEP

      3072:tqh+r3XuywOLAr/wC1K07seG4ohh3eZryX20A90dc66ElkOwkC0yW0sS20XW607p:TLuywOuwz07seG1hdwryX20O0dc66Eln

    Score
    3/10
    behavioral6

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      ca332bb753b0775d5e806e236ddcec55

    • SHA1

      f35ef76592f20850baef2ebbd3c9a2cfb5ad8d8f

    • SHA256

      df5ae79fa558dc7af244ec6e53939563b966e7dbd8867e114e928678dbd56e5d

    • SHA512

      2de0956a1ad58ad7086e427e89b819089f2a7f1e4133ed2a0a736adc0614e8588ebe2d97f1b59ab8886d662aeb40e0b4838c6a65fbfc652253e3a45664a03a00

    • SSDEEP

      192:eo24sihno00Wfl97nH6T2enXwWobpWBTU4VtHT7dmN35Ol6Sl:k8QIl975eXqlWBrz7YLOl6

    Score
    3/10
    discovery
    behavioral7

    • Target

      $PLUGINSDIR/dotNetFx45_Full_setup.exe

    • Size

      982KB

    • MD5

      9e8253f0a993e53b4809dbd74b335227

    • SHA1

      f6ba6f03c65c3996a258f58324a917463b2d6ff4

    • SHA256

      e434828818f81e6e1f5955e84caec08662bd154a80b24a71a2eda530d8b2f66a

    • SHA512

      404d67d59fcd767e65d86395b38d1a531465cee5bb3c5cf3d1205975ff76d27d477fe8cc3842b8134f17b61292d8e2ffba71134fe50a36afd60b189b027f5af0

    • SSDEEP

      24576:3idS2cRQNb9dUcyezFSja7zEwA2BH6SEUVGDKX68zuQm6wwr5mAPepC:SQ2cRQh9GexmCxBxVV56CmWQax

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral8

    • Target

      $PLUGINSDIR/modern-install.ico

    • Size

      210KB

    • MD5

      9f49cd02b213aec852ace2f045cfab18

    • SHA1

      2624aaa927e45440656d9744f0c13ae53a94becb

    • SHA256

      ced6bd38e3b6731ddf63ed4e5e41d11d9935e220addd0a2d798ce2b7ada8d394

    • SHA512

      185b0066a3de7fc1b2b42670c2d42df3449cf16326629b9925f88181d7c590d73fb5bd94eeeaf8962a3406a65059de8c4edab01503d373986b719bed4f371476

    • SSDEEP

      3072:wD2vb3PtA9/hdTqQfn+oyCRpT6iaA7MZL4JWzFsU5UXV+b5hIS4S9EHf:UM7FO/Tl+oyCRdrbMpaWzF5UXV+bluHf

    Score
    3/10
    behavioral9

    • Target

      $PLUGINSDIR/msvcp100.dll

    • Size

      593KB

    • MD5

      d029339c0f59cf662094eddf8c42b2b5

    • SHA1

      a0b6de44255ce7bfade9a5b559dd04f2972bfdc8

    • SHA256

      934d882efd3c0f3f1efbc238ef87708f3879f5bb456d30af62f3368d58b6aa4c

    • SHA512

      021d9af52e68cb7a3b0042d9ed6c9418552ee16df966f9ccedd458567c47d70471cb8851a69d3982d64571369664faeeae3be90e2e88a909005b9cdb73679c82

    • SSDEEP

      12288:koBFUsQ1H5FH3YUTd/df0RA7XkNvEKZm+aWodEEiblHN/:dFUsQ1H5FHdGKkNvEKZm+aWodEEcHN/

    Score
    1/10
    behavioral10

    • Target

      $PLUGINSDIR/msvcr100.dll

    • Size

      809KB

    • MD5

      366fd6f3a451351b5df2d7c4ecf4c73a

    • SHA1

      50db750522b9630757f91b53df377fd4ed4e2d66

    • SHA256

      ae3cb6c6afba9a4aa5c85f66023c35338ca579b30326dd02918f9d55259503d5

    • SHA512

      2de764772b68a85204b7435c87e9409d753c2196cf5b2f46e7796c99a33943e167f62a92e8753eaa184cd81fb14361e83228eb1b474e0c3349ed387ec93e6130

    • SSDEEP

      12288:QgzGPEett9Mw9HfBCddjMb2NQVmTW75JfmyyKWeHQGoko+1:HzJetPMw9HfBCrMb2Kc6dmyyKWewGzB1

    Score
    1/10
    behavioral11

    • Target

      $PLUGINSDIR/nsDui.dll

    • Size

      10.0MB

    • MD5

      368841af8b0074e348418f106716e603

    • SHA1

      75469510665b651b38e3b4fb7c4240722c756126

    • SHA256

      3be54dea5aedc0d8d16d6c4bd4e046e2d93bfc550a1a035a94768c2d5901e327

    • SHA512

      3804afa3930a90f258a2b4e7106e1d0211e5d4ca6a7f5ba23da11e3908b4e202295ddbcb1ecf1e15215bc9a0aece1a46efad07ad94feddd4f316b0de674c50d5

    • SSDEEP

      196608:H1YWSpeHkab9WLMhJuH9E7QfqV9BgtBx2Tr+Z/iYyEuOyWoqeob8VvW:eWBfbQcJudLqV9ByBxP/1o0b

    Score
    3/10
    discovery
    behavioral12

    • Target

      $PLUGINSDIR/nsExec.dll

    • Size

      6KB

    • MD5

      ec62e1a8d16d8f1b0eb792aa26e5de5c

    • SHA1

      faa219618aec99cffb81c312728dc56c1fdc5798

    • SHA256

      193d396fc7be5fed9d585de3c43e23d640c1dce725499f0274b3898c248545aa

    • SHA512

      cb3f3458cf734ab7b964ed25cac87ff2938292eed9caae1305b2e5975bde885f4d8b06d05d4099ef614982cd55d97e9ddc0f13bbe2cdd9fb642d008788ed3017

    • SSDEEP

      96:O7fhZwXd8KgEbAa9PweF1WxD8ZLMJGgmkNp38:/N8KgWAuLWxD8ZAGgmkN

    Score
    3/10
    discovery
    behavioral13

    • Target

      $PLUGINSDIR/nsProcess.dll

    • Size

      4KB

    • MD5

      f0438a894f3a7e01a4aae8d1b5dd0289

    • SHA1

      b058e3fcfb7b550041da16bf10d8837024c38bf6

    • SHA256

      30c6c3dd3cc7fcea6e6081ce821adc7b2888542dae30bf00e881c0a105eb4d11

    • SHA512

      f91fcea19cbddf8086affcb63fe599dc2b36351fc81ac144f58a80a524043ddeaa3943f36c86ebae45dd82e8faf622ea7b7c9b776e74c54b93df2963cfe66cc7

    • SSDEEP

      48:Sz4joMeH+Iwdf8Rom/L+rOnnk5/OCnXeAdbdOAa4GPI+CJ87eILzlq7gthwIsEQW:64c/eFdfS/SSnkxNa4G+ueqPuCtGsj

    Score
    3/10
    discovery
    behavioral14

    • Target

      $PLUGINSDIR/nsis7z.dll

    • Size

      313KB

    • MD5

      06a47571ac922f82c098622b2f5f6f63

    • SHA1

      8a581c33b7f2029c41edaad55d024fc0d2d7c427

    • SHA256

      e4ab3064f2e094910ae80104ef9d371ccb74ebbeeed592582cf099acd83f5fe9

    • SHA512

      04b3d18042f1faa536e1393179f412a5644d2cf691fbc14970f79df5c0594eeedb0826b495807a3243f27aaa0380423c1f975fe857f32e057309bb3f2a529a83

    • SSDEEP

      6144:rA9ssOlBrbYr5UP4m3mC/FvBbhQ1JzI+yQKiJGxdNtsm0:r2S165UP4mL/FvBtC8zQdSDmm0

    Score
    3/10
    discovery
    behavioral15

    • Target

      $PLUGINSDIR/registry.dll

    • Size

      24KB

    • MD5

      2b7007ed0262ca02ef69d8990815cbeb

    • SHA1

      2eabe4f755213666dbbbde024a5235ddde02b47f

    • SHA256

      0b25b20f26de5d5bd795f934c70447112b4981343fcb2dfab3374a4018d28c2d

    • SHA512

      aa75ee59ca0b8530eb7298b74e5f334ae9d14129f603b285a3170b82103cfdcc175af8185317e6207142517769e69a24b34fcdf0f58ed50a4960cbe8c22a0aca

    • SSDEEP

      384:W2mvyNjH3rPnAZ4wu2QbnC7qB7PnrvScaeYA4CIDEge/QqL2AQ:/75w/OfrzB4CUxuQfA

    Score
    3/10
    discovery
    behavioral16

    • Target

      $PLUGINSDIR/track_Official-com.txt

    • Size

      33B

    • MD5

      fa52ec95f4829013cdfd7ec9b8b1e533

    • SHA1

      c3c3fec43c808c02d5a8177da0ff751b974ac40f

    • SHA256

      8bdd7a58efb7679d680d94e1a5067699d4b06161700335e05fc20268e53c75b2

    • SHA512

      b79ecf85a580fbfd00a298e76cc0381863f19cd2ff281894b05772f4d0104960ec96f78cfa86427994029d580973227214c4ffbcc444f82e65e00a5916c1068d

    Score
    3/10
    behavioral17

    • Target

      $PLUGINSDIR/uninstall.exe

    • Size

      8.1MB

    • MD5

      b73940b9b108c8196600617a7f734d64

    • SHA1

      f70aee50bcd93db0180ac0969126562882934bd4

    • SHA256

      5bd33a6ba5e012c3e6f8ccc5ab322728d5df31e9e7b74daaf327aa54fc95028f

    • SHA512

      ebd98143c766b12e12198ce8b310423cd6e4e638fca809afb006ff5953f65ee820b7140264bc93cbfe2f6015d4e00f26b696e7773ee55ad6da67baf5d973cc02

    • SSDEEP

      196608:+l18/QDobE0TSkJzTtpQF6ZBPTS8y5BFwGIR6ip2eyWzi+8LX+1ZxWj:+H8/1EglTvS+S897pgGiNLeZxG

    Score
    4/10
    discovery
    behavioral18

    • Target

      $PLUGINSDIR/btn_uninstall.bmp

    • Size

      135KB

    • MD5

      253cfff83f3616e04d3e2ea905350993

    • SHA1

      238123a66343bf0c6d20c4712e413ca3b7417b62

    • SHA256

      7fcad973ea684d14afbe7119eeb64f3ca463a539f8a204ed19232cdba2f86925

    • SHA512

      7e61fe9d8b0a440bac972638466aecf85840410ac478c1c5a7de39d4c4e2fe40a53ba9c04f92377939145e3d92245bd6e97ca82da38ba87564a9f2274b6273cc

    • SSDEEP

      384:hklllllllllllllllllllllllllllllllllllllllllllllg:T

    Score
    3/10
    behavioral19

    • Target

      $PLUGINSDIR/checkbox1.bmp

    • Size

      3KB

    • MD5

      8074bd2f9303acd6246accd22edbeb6d

    • SHA1

      d3b5944483ca0df272784f8a63eae2aef3e1fbac

    • SHA256

      a3bb6b9f7df4a1ee3ddfac7ff2e9f4e5a1438d31a6be081381aab7f581355535

    • SHA512

      d5b076bb6af7c1edf4667c3d0ba659a13098a48249353e6c80f28e0795c63750ab65337742cec435389faba17fbd06ec2df080c67edb9240a4f7bc8745bb6921

    Score
    3/10
    behavioral20

    • Target

      $PLUGINSDIR/checkbox2.bmp

    • Size

      3KB

    • MD5

      c3a861c2ca84479ffce89199f538a6c4

    • SHA1

      d9f19470c6b57e7918e28e829fc8fc7ffa55696f

    • SHA256

      49377d94160767d57613390568787dac0993c475fd8d628dc12b77a22158507a

    • SHA512

      e86c7e2af8ffe1beb068316d5c00e78806eaefa603cf68c6dd72b7b8585f0e4426830d7a165c23f4f1d1a692ea8b9fda46b61f774f9c32438a678ea5000d3cb6

    Score
    3/10
    behavioral21

    • Target

      $PLUGINSDIR/libcrypto-1_1.dll

    • Size

      2.1MB

    • MD5

      f2897d414a50674f58a0d1aa19614a20

    • SHA1

      adced986562ed4a4e07fc92aff3d30797e2f83df

    • SHA256

      c4372100431007321e8fb3b41eef740dfe6e1c8a694bea251f9637209d76f207

    • SHA512

      a2760bcbb049e9f336802b9302115659bcae39c376ea05485fa3aa0da9bc695fc910f4c93348d4435d07b8448b6db2492dc3564ee94378be7e3b29dca5577396

    • SSDEEP

      49152:qNQtYgGEnfJG+wVv5kOZK1CPwDv3uF0j6BvFB:6QtVGQwbkqK1CPwDv3uF0j

    Score
    3/10
    discovery
    behavioral22

    • Target

      $PLUGINSDIR/libssl-1_1.dll

    • Size

      389KB

    • MD5

      7b155439f2fe287dca54370ace90d7ea

    • SHA1

      c747c32daf2a7fd35e934a51c4b19a292ae2ca63

    • SHA256

      08d6a4106d5a49658d776b50c5f99dcc244bebd8577eee6f445df0b70f4d758e

    • SHA512

      a8f3b074d3e298f2783ea5aa3535d3ac452ac8c8c85fbd9c9b800294f91d3fc1315766cd8cd5a788b96753bc4177cf724c9c5b51067d71aef8f567d5da244d0b

    • SSDEEP

      12288:N0TAOGU1UNckb9nBSataDZwg/ifWtHORNBHO0nQUDo5gXUwRfFDO2BrqW4e:N0Hcc7gXfRfFDO2BrqW4e

    Score
    3/10
    discovery
    behavioral23

    • Target

      $PLUGINSDIR/nsDialogs.dll

    • Size

      9KB

    • MD5

      904d8313031ac05e2bac3dd329828833

    • SHA1

      6c8322f76e5c38bc24b0bcc057a510c92ec40b43

    • SHA256

      a7c5516478ab02b5d6c1684b3c2b31ee03331712bcd9f9a8ef8309d2b72c8ec4

    • SHA512

      9d524ebc965f224e1a16f537f71df0963c586fd548cb9a901f8afb1951416dd656d5493cc5e304157dfa6d70d69bcd4c5a5b140fceb3736548e71fe7086b6de8

    • SSDEEP

      192:oR8cxzvTyl4tgi8pPjQM0PuAg0YNyAUIFtSP:IBxzm+t18pZ0WAg0RzIFg

    Score
    3/10
    discovery
    behavioral24

    • Target

      $PLUGINSDIR/nsProcess.dll

    • Size

      4KB

    • MD5

      f0438a894f3a7e01a4aae8d1b5dd0289

    • SHA1

      b058e3fcfb7b550041da16bf10d8837024c38bf6

    • SHA256

      30c6c3dd3cc7fcea6e6081ce821adc7b2888542dae30bf00e881c0a105eb4d11

    • SHA512

      f91fcea19cbddf8086affcb63fe599dc2b36351fc81ac144f58a80a524043ddeaa3943f36c86ebae45dd82e8faf622ea7b7c9b776e74c54b93df2963cfe66cc7

    • SSDEEP

      48:Sz4joMeH+Iwdf8Rom/L+rOnnk5/OCnXeAdbdOAa4GPI+CJ87eILzlq7gthwIsEQW:64c/eFdfS/SSnkxNa4G+ueqPuCtGsj

    Score
    3/10
    discovery
    behavioral25

    • Target

      $PLUGINSDIR/registry.dll

    • Size

      24KB

    • MD5

      2b7007ed0262ca02ef69d8990815cbeb

    • SHA1

      2eabe4f755213666dbbbde024a5235ddde02b47f

    • SHA256

      0b25b20f26de5d5bd795f934c70447112b4981343fcb2dfab3374a4018d28c2d

    • SHA512

      aa75ee59ca0b8530eb7298b74e5f334ae9d14129f603b285a3170b82103cfdcc175af8185317e6207142517769e69a24b34fcdf0f58ed50a4960cbe8c22a0aca

    • SSDEEP

      384:W2mvyNjH3rPnAZ4wu2QbnC7qB7PnrvScaeYA4CIDEge/QqL2AQ:/75w/OfrzB4CUxuQfA

    Score
    3/10
    discovery
    behavioral26

    • Target

      $PLUGINSDIR/select_bg.bmp

    • Size

      59KB

    • MD5

      ff051f124f5d85f23efd007c9ae2e465

    • SHA1

      c6f0adbf30888e8ba5a6ade5dfb3d43e773f9a75

    • SHA256

      4b1f2c35e4f53778cee78a84c64d0a44e3bf5c1a751ff8a66d16c47bb7e082eb

    • SHA512

      523c864ec9eb6a289c65e5160b6eae3437500b950865398e841c05378a2497c5c7db31187e01b7295b12a49c47c18809908d5ceb55f5ba3043d81577c3b358f8

    • SSDEEP

      6:5A/6BTZaRah8km8WpS4zo3BaRaaRaaRaaRaaRaaRaaRaaRaaRaaRaaRaaRaaRaa4:5Ai3y8Wg4zoX4zoC8WMa0d

    Score
    3/10
    behavioral27

    • Target

      $PLUGINSDIR/un.exe

    • Size

      7.4MB

    • MD5

      839640ba4c87b4a0fbd4d81fc54f8f51

    • SHA1

      0fdf3cf3685de715f8206400a232bf389ce319d6

    • SHA256

      58b8642b2665efde3974c18c2613b6e27dcf31fbb4b048339f93b2019c26d6df

    • SHA512

      14b97fd80c8b58422949b9d8db2660e93c6ee7c41873e8388cc9b62396e791f346346465527088a50a58d6d9a358e21a8652a0934149dd6ed3947841a7e59354

    • SSDEEP

      196608:SypQHMyhZz21iDr7Q8WjqvQ80j1FA9Epvk5MABT/4l8mBx88w:SypH+gADr70Wv6DA9G85nrc5lw

    Score
    3/10
    discovery
    behavioral28

    • Target

      $PLUGINSDIR/unbg1.bmp

    • Size

      1.0MB

    • MD5

      6a92ee641a2f66046fe0211d58e97f03

    • SHA1

      9353394b7225c6fb478990d9d0a8c0eb21ae53d4

    • SHA256

      1ef3eeb3e0de1e77169d0188320e7c85904716f519f87ff07502b7e115b1e8dc

    • SHA512

      7f0a6c96b9fad05de27dbc07427825686b78596a06003def679f6c81dd40641ffbdd5474228bf519b1eb9c90e052ff02f27f1ebaa340516b9adff4c1f7098be3

    • SSDEEP

      768:O/cz5KAvw44diZJanhwLSPNQKPo6vdpUM:O0zUAvw44oZJqiSP6KP/Vr

    Score
    3/10
    behavioral29

    • Target

      $PLUGINSDIR/unbg2.bmp

    • Size

      795KB

    • MD5

      4ef6d4e856585424a1171863e2cc82aa

    • SHA1

      b7eb317692dca25ac5daa269799bcbdc858961fc

    • SHA256

      b1c537a3972728a962ab01e321961c8f124dfa1e6a351d9d7ac69a262429d13b

    • SHA512

      568f2ef7d6903a2d314827de373ea5694d546077566c709d5af63b89936b5ee61b62b1766f8f5708366e784bdb5dea471f1741eddff80c078b60cea9c7b93b30

    • SSDEEP

      24:JU99999999999999999999999999999999999999999999999999999999999996:V

    Score
    3/10
    behavioral30

    • Target

      $PLUGINSDIR/uninstall.ini

    • Size

      52B

    • MD5

      e978a46d7e23c139e4df7b526f86745f

    • SHA1

      f280d921ff3bbf5e171b0f6aa9e48e9914e32dd6

    • SHA256

      435288e587018aa375e8a4bf3f35cd8dfffd559053f5ca6a0e487a61ff23e5db

    • SHA512

      7b7150f3b2385d7a7264839d626e9b7c7026868d57f9f5df7d42ddb01688a7bf3008937ef2aa06c3f49089cb4cfbbfb8b6d9661fbc6a4f8e555305552759a75f

    Score
    3/10
    behavioral31

    • Target

      $PLUGINSDIR/uninstall.ini

    • Size

      52B

    • MD5

      e978a46d7e23c139e4df7b526f86745f

    • SHA1

      f280d921ff3bbf5e171b0f6aa9e48e9914e32dd6

    • SHA256

      435288e587018aa375e8a4bf3f35cd8dfffd559053f5ca6a0e487a61ff23e5db

    • SHA512

      7b7150f3b2385d7a7264839d626e9b7c7026868d57f9f5df7d42ddb01688a7bf3008937ef2aa06c3f49089cb4cfbbfb8b6d9661fbc6a4f8e555305552759a75f

    Score
    3/10
    behavioral32

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

4
T1012

Browser Information Discovery

1
T1217

System Information Discovery

17
T1082

System Location Discovery

18
T1614

System Language Discovery

18
T1614.001

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

upx
Score
7/10

behavioral1

discovery
Score
4/10

behavioral2

discovery
Score
3/10

behavioral3

discovery
Score
3/10

behavioral4

discovery
Score
3/10

behavioral5

Score
3/10

behavioral6

Score
3/10

behavioral7

discovery
Score
3/10

behavioral8

discovery
Score
7/10

behavioral9

Score
3/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

discovery
Score
3/10

behavioral13

discovery
Score
3/10

behavioral14

discovery
Score
3/10

behavioral15

discovery
Score
3/10

behavioral16

discovery
Score
3/10

behavioral17

Score
3/10

behavioral18

discovery
Score
4/10

behavioral19

Score
3/10

behavioral20

Score
3/10

behavioral21

Score
3/10

behavioral22

discovery
Score
3/10

behavioral23

discovery
Score
3/10

behavioral24

discovery
Score
3/10

behavioral25

discovery
Score
3/10

behavioral26

discovery
Score
3/10

behavioral27

Score
3/10

behavioral28

discovery
Score
3/10

behavioral29

Score
3/10

behavioral30

Score
3/10

behavioral31

Score
3/10

behavioral32

Score
3/10