General
-
Target
68d3c5169e6a8fe944f001cf364448adf5f2465ba9751faa55214ba5c9f2de10
-
Size
12.6MB
-
Sample
240902-fh6akstana
-
MD5
1f51c99e2d133231a5e904f2af9638c4
-
SHA1
282316033f025c6503f75406029a50a0833471b1
-
SHA256
68d3c5169e6a8fe944f001cf364448adf5f2465ba9751faa55214ba5c9f2de10
-
SHA512
ebc3446d4ed3e1c97eaa76a821126562e17199a29515de52933ac153f1f2a49b2c3028c636fd1b193134f566b834f84b766dbad74f89b48c6759e73bcf74315e
-
SSDEEP
196608:sNGCq52PTgQySrjkuvMMV1oyC9CD2nE1mLxqd9Xk6s5UGJ/urURm:sNRlySrQGLOnBur
Malware Config
Targets
-
-
Target
68d3c5169e6a8fe944f001cf364448adf5f2465ba9751faa55214ba5c9f2de10
-
Size
12.6MB
-
MD5
1f51c99e2d133231a5e904f2af9638c4
-
SHA1
282316033f025c6503f75406029a50a0833471b1
-
SHA256
68d3c5169e6a8fe944f001cf364448adf5f2465ba9751faa55214ba5c9f2de10
-
SHA512
ebc3446d4ed3e1c97eaa76a821126562e17199a29515de52933ac153f1f2a49b2c3028c636fd1b193134f566b834f84b766dbad74f89b48c6759e73bcf74315e
-
SSDEEP
196608:sNGCq52PTgQySrjkuvMMV1oyC9CD2nE1mLxqd9Xk6s5UGJ/urURm:sNRlySrQGLOnBur
Score7/10-
Loads dropped DLL
-
-
-
Target
$PLUGINSDIR/FindProcDLL.dll
-
Size
3KB
-
MD5
8614c450637267afacad1645e23ba24a
-
SHA1
e7b7b09b5bbc13e910aa36316d9cc5fc5d4dcdc2
-
SHA256
0fa04f06a6de18d316832086891e9c23ae606d7784d5d5676385839b21ca2758
-
SHA512
af46cd679097584ff9a1d894a729b6397f4b3af17dff3e6f07bef257bc7e48ffa341d82daf298616cd5df1450fc5ab7435cacb70f27302b6db193f01a9f8391b
Score3/10 -
-
-
Target
$PLUGINSDIR/InstallOptions.dll
-
Size
15KB
-
MD5
d1eefb07abc2577dfb92eb2e95a975e4
-
SHA1
0584c2b1807bc3bd10d4b60d2d23eeb0e6832ca2
-
SHA256
89dd7d646278d8bfc41d5446bdc348b9a9afaa832abf02c1396272bb7ac7262a
-
SHA512
eaffd9940b1df59e95e2adb79b3b6415fff5bf196ebea5fe625a6c52e552a00b44d985a36a8dd9eb33eba2425ffea4244ed07a75d87284ff51ec9f9a5e1ac65e
-
SSDEEP
192:E6GQtZkTktEQUrJaZfuyCnSmUsv3sY7L7cW8Y6Q86QvoT311929WtshLAzgSrX8:E6Nt+4t7uJalUnGesY7Lt8nC3/Yosa
Score3/10 -
-
-
Target
$PLUGINSDIR/KillProcDLL.dll
-
Size
4KB
-
MD5
99f345cf51b6c3c317d20a81acb11012
-
SHA1
b3d0355f527c536ea14a8ff51741c8739d66f727
-
SHA256
c2689ba1f66066afce85ca6457ecd36370be0fe351c58422e45efd0948655c93
-
SHA512
937aa75be84a74f2be3b54dc80fac02c17dad1915d924ef82ab354d2a49bc773ee6d801203c52686113783a7c7ea0e8ed8e673ba696d6d3212f7006e291ed2ef
Score3/10 -
-
-
Target
$PLUGINSDIR/System.dll
-
Size
12KB
-
MD5
192639861e3dc2dc5c08bb8f8c7260d5
-
SHA1
58d30e460609e22fa0098bc27d928b689ef9af78
-
SHA256
23d618a0293c78ce00f7c6e6dd8b8923621da7dd1f63a070163ef4c0ec3033d6
-
SHA512
6e573d8b2ef6ed719e271fd0b2fd9cd451f61fc9a9459330108d6d7a65a0f64016303318cad787aa1d5334ba670d8f1c7c13074e1be550b4a316963ecc465cdc
-
SSDEEP
192:ljHcQ0qWTlt7wi5Aj/lM0sEWD/wtYbBjpNQybC7y+XZqE0QPi:R/Qlt7wiij/lMRv/9V4bfr
Score3/10 -
-
-
Target
PDF Converter Register/Auto_Update.exe
-
Size
2.5MB
-
MD5
b98b236f41d8a75d0dc1d829023e5368
-
SHA1
8f0fcb3db8b24460735f5fc5b7ec7b787f902576
-
SHA256
9601a1d2b071b7efb794aab0bbd27ba426fb39fbc8f8c0e76a3c5fb1aa490930
-
SHA512
b655683768d2efc42013a9ce6c4893fbf2b1bfc99f27847db73174ee95097e36f711b60ca1f1ec35d09aa13a2f23ee2e6d552a979aec63498aa822951045b0d3
-
SSDEEP
49152:ozSzxR9Q5uvWUEIjWL7XiDNqff47ilnwgKfnbqiLloPe+ZkHBKa1XfMR4fFq:ozSH9Gu+9u8GDNqff47ilnwgKfnbq0l2
Score3/10 -
-
-
Target
PDF Converter Register/CrashReporter.exe
-
Size
330KB
-
MD5
6700647d8264d12b3534f4264374fda8
-
SHA1
5acd318d5f1fea9ea4fb573fab6f7ad52bc2760a
-
SHA256
5e0630e327e30e47b32e5df9bb9d123b927aad5b1239468af4033081b162f04f
-
SHA512
b5127cdaf193d1dc1e5770d6331da04f05ae716ed0a5bdf96652a24df76469c6d093696d92057a8b8fa6c950e48b83703f0d289a0d7784b6b2bcc3169e647213
-
SSDEEP
6144:ZvV3n8P+E+wF3lM3lQlnd63K87gSLXIOvEWF491ZiL0:5S+wF3ZkamgSDIOMWWK0
Score3/10 -
-
-
Target
PDF Converter Register/FPPDFConverter.dll
-
Size
10.4MB
-
MD5
ee4d61573b85a689e83be1ad27bbdb0d
-
SHA1
30fa9a4967f7abf47694e8c0fd5e8d71a83f8e98
-
SHA256
16ca04041ad453afde44587e1d777e2794124a8f2bb85e5242d757a3ac11e3e3
-
SHA512
3c49032132eb3b1e33266da4c9254b7c176f51db884b012d0afeb792c6fad0fc7feb660b8b175fc96331e93fb332d9c7953fa978735b58b48c1865a3416f363c
-
SSDEEP
98304:4ocgjGeD1UfT8vkNYbTUl0vH9rLu5+x0VC8iiYdiowQV2nC2ym+Pf92rfnRVr7uQ:ENeD1UfT8vwV5bEHf5PFD/Z9lyr1lC
Score3/10 -
-
-
Target
PDF Converter Register/PDFConverterRegister.exe
-
Size
14.8MB
-
MD5
a10a58da37292ac02370d5a8288165cc
-
SHA1
80582c3d5f61d082229835befdf3bc8a66f05d16
-
SHA256
a916685e9788e012ac01ddda2483f0e54528566de3e9fa68b0eba43ebdfaa115
-
SHA512
4d5d9bc768dcd9c888b99fc19cbfa7dd0ff8fc62ada3013a07d7aa3d00335e91d8f2be4288a026812cac695d169defe3b37a0f7d4bef663a6c8e89436e74b44e
-
SSDEEP
393216:D2QJN7YhZEwqo58Q8yZYPNymIx7/Ppp2X7Ixh:pYgHyZYPNymIx7/Ppp2X7IH
Score3/10 -
-
-
Target
PDF Converter Register/Resources.bundle/Images/Operation manual/Manual.chm
-
Size
98KB
-
MD5
8cd08867bc95277b1439103a0152c5cf
-
SHA1
5b1e38b45d7bb611544e511aa4dbf518acb2433d
-
SHA256
f1ca8846c36655fed3554d90045c97947d24556c62f1a40a6841c8ddb1fc2fe8
-
SHA512
062adca3ff65822fdcd55f4e86071634975d736fd14a12b5ef44b6de243213f2d47bccac0810bdba3375d694488480e6966ecde801488fe935d44f126ab18703
-
SSDEEP
1536:xftFW8b2i9FcluNabvfmEfKv9loeFRazSNSB0RZ+uVGJiNfVOWN5aWjq6V:FtFWnsFc0GXmEyv9dRZ+uVGJij1q6V
Score1/10 -
-
-
Target
PDF Converter Register/Resources.bundle/Images/Status.lnk
-
Size
1KB
-
MD5
9a6d9f90e71b5b6a5d472983fa97e9f8
-
SHA1
295b443b1c849c50dae9bcfd5b0a5afcce1f35d6
-
SHA256
02edb9e24d818209a86fe5245d41fc3fc7d164c381c0486565bd47144b83ca67
-
SHA512
3dc167aa13b15eae2e4dbb3cb73cabefe1f3c260a353ac25bfb6208fc4f597276bec99d7375bed465a12ff7aee641755a2658d24b20d004e51779c6060792fa2
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
-
-
Target
PDF Converter Register/help.CHM
-
Size
98KB
-
MD5
8cd08867bc95277b1439103a0152c5cf
-
SHA1
5b1e38b45d7bb611544e511aa4dbf518acb2433d
-
SHA256
f1ca8846c36655fed3554d90045c97947d24556c62f1a40a6841c8ddb1fc2fe8
-
SHA512
062adca3ff65822fdcd55f4e86071634975d736fd14a12b5ef44b6de243213f2d47bccac0810bdba3375d694488480e6966ecde801488fe935d44f126ab18703
-
SSDEEP
1536:xftFW8b2i9FcluNabvfmEfKv9loeFRazSNSB0RZ+uVGJiNfVOWN5aWjq6V:FtFWnsFc0GXmEyv9dRZ+uVGJij1q6V
Score1/10 -