5ae96d3166dd9fe638f68529a457edecd2729c7619c2955ee9c6eaad90b9d579 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

qucs-0.0.19-win32-mingw482-asco-freehdl-adms.zip
Size

45.9MB
Sample

240901-lesszaxdrb
MD5

3960ec6501d8b2a88e4cc40516ef98be
SHA1

e9a900bf4d8bab6734cc248123dc2143d5d025c6
SHA256

5ae96d3166dd9fe638f68529a457edecd2729c7619c2955ee9c6eaad90b9d579
SHA512

5e446dde80310a0c1cacb2d0e7c0f7fbe26282e90e62135b8cf0e243fd6f6db61cd7c87035e2432d81a7743bb0299220f70d3a38de9fe6f8077d9cbf5b4d86ba
SSDEEP

786432:Tqns7NyR9zd4aDOoRDNnxTa5qLIct13TFlY6dpttYn3jDRPVKIFCcthivTmY4p2Z:TqnsJybaszxmuh35lrtg3XlVKIFCUivx

Score

3^/10

discovery linux

Malware Config

Targets

- Target
  
  qucs-0.0.19-win32-mingw482-asco-freehdl-adms/bin/Qt3Support4.dll
- Size
  
  2.5MB
- MD5
  
  6ea48e31433dde8b2556a2673b4221dc
- SHA1
  
  9040d271fda03ec248bf68b9e3f866c0929bf43a
- SHA256
  
  812668d4b5db3919765d2ce0c4c5d8e11561ea6ea13e19dd6a9a66dd6080968e
- SHA512
  
  4e1760a182007340176140dc5a0ec14e70e2904ff73eeb262f6944f3021ec6ce2e66b75f65c9f684ec13d4b699786033ba76dcfca223d4deb3cd85217d15a50c
- SSDEEP
  
  49152:2vXSt63XCKPoefkLV4+bL6ydUA2Z+cXBcoHs8Rb38bWZJDyvp0:2vXj3yK/MB4+bL/UARcRcoHVb38ba40
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  qucs-0.0.19-win32-mingw482-asco-freehdl-adms/bin/QtCore4.dll
- Size
  
  2.8MB
- MD5
  
  84fc1ee13ddb566861ea9e2ff4d32654
- SHA1
  
  ddb0107b6dc67bc04a777c382b6e551b29dcd55d
- SHA256
  
  49c90b5d1b4b38a30f976660ca5e837cc3012ea38b10e16dadebb40c3e390fd1
- SHA512
  
  e247e40eaddb70dc1b1b26cb2aa289e10296f65c7e6e8f74023b0a3fc5c9981309a9907b39bdc95d6616e08747afa1119145b2064dd7f50152fc259f2a43e906
- SSDEEP
  
  49152:zij8g3BeH8PrM2MfB5MRSqE3KGe9oPqL4krlX3NOZ7D4+36or87lYYkNrXbhuxPn:zij8g3BW8rMff7MRdExfGlM36or87lYy
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  qucs-0.0.19-win32-mingw482-asco-freehdl-adms/bin/QtGui4.dll
- Size
  
  9.6MB
- MD5
  
  57173bba3af445a91d98120506376b1a
- SHA1
  
  261547e0e253b04d10a667bc6eef9cce74fe7338
- SHA256
  
  45734285b5ee3cdd13118322534af87db8b73dba656aace1171420284db4eb77
- SHA512
  
  a973aec1ac040afe266459da0edb6e31c9c1feeeeef91dd5009b3211e261f5d9a03758ee0d9477cbf55bcca3d183f4321e9c047607ca490bc700637578e89a65
- SSDEEP
  
  196608:N5UocvkucpKqUda7rd+5W+VLTJHVNchTgD0bYktMs6tuxxfqDqRpqkNt4hMgOE4P:8vSDUdKEUygEktUixfqD/u
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  qucs-0.0.19-win32-mingw482-asco-freehdl-adms/bin/QtNetwork4.dll
- Size
  
  1.3MB
- MD5
  
  954fadd0b2b4dd130b1e9930e4af6be8
- SHA1
  
  c57620d2b2022fada0c0ac712ecefd13c7cdac25
- SHA256
  
  fc4f4b42fd7ea0e7e1af80e11847a6b412030217caaa7e7c7313535635ef5bff
- SHA512
  
  18f12b9028e6f71109eeda472fa240cb18b7663e656a81ca419824e4a084beb601b2f9b322f3246e62cdf2c6c76933d598b6bd08e5f9938d7eef16ee2e373e5e
- SSDEEP
  
  24576:LCS/2soymVdHTyqRq4U9ToJqC5/WOseEWBzWJBuvSURl1X8xARJKhNvufX+wbTrS:ETyqRDJqC5/EeEWBUBuPZYARJKhNvuf1
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  qucs-0.0.19-win32-mingw482-asco-freehdl-adms/bin/QtScript4.dll
- Size
  
  2.2MB
- MD5
  
  ee63e32624ec0c00cc1d0a220a7822f8
- SHA1
  
  6e1785057285cf1569298ae8ea23623efca627ce
- SHA256
  
  ef375951166e4f007cd12bda3b50a9f16837511a5d8239c7152857dec7c9d915
- SHA512
  
  9116605b6ca506696a709a42e435df9c694b183d6f14936bed254226181c98fc7a73a0dd23c5258795e6453d259c5d3bbcf507422be48ea3e3bd38030520ea14
- SSDEEP
  
  49152:Km53wy3Vwz8xth8K1RhToTH5YckuP7HBbxOchX0E8eq8e5/WC:BWyGz8nh8K1RhToTH5YcbP7HhxOcH8eC
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  qucs-0.0.19-win32-mingw482-asco-freehdl-adms/bin/QtSql4.dll
- Size
  
  231KB
- MD5
  
  a62a7309e67337c14021aef91b150371
- SHA1
  
  11eac8d49ed75bb8e4e20abbdf08c1ecac00ec7c
- SHA256
  
  d4c14c495d59a42f7edc07eb83610d9bb17691f712f8e0be1eab970ae1bee85f
- SHA512
  
  81bf84a3bb6e1585a92ad9139eae8b58102304d9bd4fd6a97b20001d936f5a82b19813ff10382e6353727dce0ae7871b9de7d0691d0f97f885feece2fe915a8d
- SSDEEP
  
  6144:YV0FKcLXvQj70egcxFWRvvcFxpKTEVuMFwd/PEt3+kqCN:YV0FKckjgegcnsvcFxpKTEVu0
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  qucs-0.0.19-win32-mingw482-asco-freehdl-adms/bin/QtSvg4.dll
- Size
  
  312KB
- MD5
  
  955227d1e4876fa8da2857687ffb5782
- SHA1
  
  7b06a3ab633519e96b8f0a52383f8f8f7cf2bb0a
- SHA256
  
  553a6ffa62a96a1a7545494f69edc27d4cdf0f19a494ba04dc82d0f005a75c1e
- SHA512
  
  0fcff0688ce9dc2c3db79491171ae48e26e07b15d18c25809a2f75f7a5c0740ec7d0bf8c9a15b8b72ad76d86939d39421949bb8377826414abe8e81c0be64bd5
- SSDEEP
  
  6144:SdH2Pk4rFc1XPRzKCh0Yv4H09xa0SMy6lVbyJudrEEH6Xthj7Os+28tDqCuTIwn:SdHyxc1XPRzKu0Yv4Uja0SMy6Pysd9Sl
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  qucs-0.0.19-win32-mingw482-asco-freehdl-adms/bin/QtXml4.dll
- Size
  
  352KB
- MD5
  
  218c23d13aaecd9636066cabfe9f134c
- SHA1
  
  3a1071789ba9248bb7892b433feecfb59be05155
- SHA256
  
  fbeb8b8d1b4a76a65fb9fc01961d0f18e7c3f8ad3f9e56566f65a8827e262eb1
- SHA512
  
  cd6aa6015658eb385047db1c6e560e0cc2d2784afd7bb2d47beea635fae94c045304ddb3dcb4a3696808cb2566b7020f00aa6b4c5defb58cada7b8cd979ccc11
- SSDEEP
  
  6144:OmhQzGlOgh2yIQ1UjLGSPnNjzcQR/IsjIF6EQ+UqC2B:5GhghDIOUX1PNsOc
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  qucs-0.0.19-win32-mingw482-asco-freehdl-adms/bin/admsCheck.exe
- Size
  
  600KB
- MD5
  
  103332f72dfd7db46f6a7a17b705ec81
- SHA1
  
  3486870a2390d37bc92d55005aaf0e0a91327a77
- SHA256
  
  ec1df428c832ef882506ae8fa07ff1263fa754bdd6d7e0259651350f0975d779
- SHA512
  
  0b86cd4780b6b513914e55dd3580d865e85cd24dfbf7565cea7b53ccaa621486396e1728a5a5228623e8c97aeeede8184bb4f196c2e05267e6025fe8035a12d1
- SSDEEP
  
  6144:uAeY/vUXfTpsvqfavKpK7iAkWRLHGFPK+SYWKYowkKY26hYxSSGnyTh4PHADIDHj:Remv0DA8yYWTowkKY26WCyt4fREmbV
Score

1^/10
behavioral17 behavioral18
- Target
  
  qucs-0.0.19-win32-mingw482-asco-freehdl-adms/bin/admsXml.exe
- Size
  
  1.6MB
- MD5
  
  3de51da98c88ae380878a413f6ab8eff
- SHA1
  
  f0e59f6e10c6316eb373b6f40838f8084513e1fb
- SHA256
  
  7432478fe2dd5c4037b8bfab33f4dbaf07318378945c03c5296dae3b47a1ff6a
- SHA512
  
  ae986350ba7cf608a259d2d99f033a29eceeaf460ae619247f57b8aa6eb4c1f782d303d73c67796b61a3ffde2859e923de65f6ffc11ae4b0d4b45cb541192f72
- SSDEEP
  
  24576:AH6smVe7RqKPfTKE2HYJgnStK0gOtIN0FWk6l59t26X:AHUe8KPL8YJUSUtR
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  qucs-0.0.19-win32-mingw482-asco-freehdl-adms/bin/alter.exe
- Size
  
  27KB
- MD5
  
  411f0629c94a1b96e403865e5a263cbf
- SHA1
  
  38462121d867af5d83c3fca20428787d67746d3b
- SHA256
  
  000910d5373dc8bb1cbf0c7ac60333104c27f31d5800f674da99c9ac66f7ef7a
- SHA512
  
  271daa9106ae73b418ed69552cc2077ceccf94e8ea33c68af77b298df5fb830b7e8cae43f2723d8baf6dc3538835a344b0e39864c1685016711cf91ef3769bf2
- SSDEEP
  
  768:J7YkXguOTkkr5NDiAC+pS10WVnzmm8tm:vgfdNmA0F
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  qucs-0.0.19-win32-mingw482-asco-freehdl-adms/bin/asco-test.exe
- Size
  
  108KB
- MD5
  
  2d1f3a8d7c8bdd3fb857834a98d8ac3e
- SHA1
  
  9f9307ac061c5f177818e224bbc1120b53afd658
- SHA256
  
  ccd6277bc899af52de205a6db5a0f9434a3a407340a9faa2e306cfb69e81672f
- SHA512
  
  50c70799e04a4f80256d48676083b5297b71825c448734db083bc1345181ea55d192d985356e20cd76730c876f44b2896e365d7dbeb49342dc05bda134250c12
- SSDEEP
  
  1536:0o+oqL5l9ovt23b+47AyZhBuZwU+pp9R7R7LkOPF2WaDv6:mHLb9v3bsyZhcZwUe51LkIZaD
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  qucs-0.0.19-win32-mingw482-asco-freehdl-adms/bin/asco.exe
- Size
  
  122KB
- MD5
  
  f84869bedfe85e155fd4e904f14a91a2
- SHA1
  
  7b101002470c4b126313ffae3ed12e620aa4fdb1
- SHA256
  
  fe9295021c7bfac71f7f42a12a2fb51ff5d5d4770c43e644dd4190c35b168d8e
- SHA512
  
  0070c84ecd6021b4fb70ca935f4e90135346b499aefd6d2596bc20c333c9e24b8c44e73507c0f3879087ae07a4ab3f85d65a921b2274e5b9fa567e7bb29f798e
- SSDEEP
  
  1536:R5Xs1I0qv9n+7c0KeEzUOZ4COeNrYcFuSxQ7tS19XqHkqkOPF2WaDv6:/s1Pqv90KLzUOgynJ19abkIZaD
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  qucs-0.0.19-win32-mingw482-asco-freehdl-adms/bin/freehdl-v2cc.exe
- Size
  
  4.1MB
- MD5
  
  e020b631e01b39952953fb7f2d53ce3b
- SHA1
  
  7d6d6d02e1ee9e9f930fdc0f90f41dd1ec320fff
- SHA256
  
  3169b59a065cfbaff527ee686d19713eb99ced5194ec8f19d4304bfeeecb7948
- SHA512
  
  ffb38da1d15e65d49f92c135cd15343cb4fa3fd289124a1a89d894115d127df5e4a3b5d84d1c005c2df0103580dd51bfdfb7c42687d88d90b98a345552dac31a
- SSDEEP
  
  49152:j4MgnFF9lgoUyeTgg+MrxybZfP3bi+mm87JH8Do1qf077wnoxedL:1gFFEyeTggnrOfP3bi+mm8lHDEdL
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  qucs-0.0.19-win32-mingw482-asco-freehdl-adms/bin/gvhdl
- Size
  
  9KB
- MD5
  
  d3ade5956f82fafaec069af875d2ac36
- SHA1
  
  c4b06419a69d11786cdf5c7d3ed038ac0e1528cf
- SHA256
  
  c92c91664d15274dc255bdbdc236098195d2eccc4ba3b6c125f84ad394e1b265
- SHA512
  
  97deb03ecc9da54336e8ffb3eca0f0e37e63b258fc48f3128092d6427f8ad9605bcc830de71ee75a5fdc77be504f864825156fb502489e7086aeb166f5d1248a
- SSDEEP
  
  192:EbQw1bwsZgd07KERDYwk46LyDLKlwxwrNuM86uMSbElyKM51DUQB/Z+t:EbQoTYwk46LyDLUwGNz8KzyD514y8t
Score

1^/10
behavioral29 behavioral30 behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32