6cbbfe0860d7c601d7c179840ebbf2c65009382419d539ab2d11db91c6ea1dd7

Resubmissions

05-09-2024 01:43

240905-b5l31a1arj 7

05-09-2024 01:41

240905-b38h8a1amk 7

Sharing

Copy URL

Twitter E-mail

General

Target

PrismLauncher-Windows-MSVC-Setup-8.4.exe
Size

18.1MB
Sample

240905-b38h8a1amk
MD5

69bc5aec4f40f1cd760f0fa8a1b650f0
SHA1

d8156098ebe7c38b6e3d2aa6b408d89bc75dffb8
SHA256

6cbbfe0860d7c601d7c179840ebbf2c65009382419d539ab2d11db91c6ea1dd7
SHA512

ce5b0f27b99e838af2a2cdb5cc569ca72e5d83c2f81d10a69a60389367d234455119dc395667c1530d12314eb998006d47e7f1cbfe336d1e249f04ac5e88b44c
SSDEEP

393216:t0eFxWTics3YkZls45LKn/ZwtI4Np+uH5Xw7nxQPY1DrnQDtZqw2MQXgXwC:tHxWTiTYko+LIxb4v+uZjqPQDtZ3yXgR

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  PrismLauncher-Windows-MSVC-Setup-8.4.exe
- Size
  
  18.1MB
- MD5
  
  69bc5aec4f40f1cd760f0fa8a1b650f0
- SHA1
  
  d8156098ebe7c38b6e3d2aa6b408d89bc75dffb8
- SHA256
  
  6cbbfe0860d7c601d7c179840ebbf2c65009382419d539ab2d11db91c6ea1dd7
- SHA512
  
  ce5b0f27b99e838af2a2cdb5cc569ca72e5d83c2f81d10a69a60389367d234455119dc395667c1530d12314eb998006d47e7f1cbfe336d1e249f04ac5e88b44c
- SSDEEP
  
  393216:t0eFxWTics3YkZls45LKn/ZwtI4Np+uH5Xw7nxQPY1DrnQDtZqw2MQXgXwC:tHxWTiTYko+LIxb4v+uZjqPQDtZ3yXgR
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  12KB
- MD5
  
  192639861e3dc2dc5c08bb8f8c7260d5
- SHA1
  
  58d30e460609e22fa0098bc27d928b689ef9af78
- SHA256
  
  23d618a0293c78ce00f7c6e6dd8b8923621da7dd1f63a070163ef4c0ec3033d6
- SHA512
  
  6e573d8b2ef6ed719e271fd0b2fd9cd451f61fc9a9459330108d6d7a65a0f64016303318cad787aa1d5334ba670d8f1c7c13074e1be550b4a316963ecc465cdc
- SSDEEP
  
  192:ljHcQ0qWTlt7wi5Aj/lM0sEWD/wtYbBjpNQybC7y+XZqE0QPi:R/Qlt7wiij/lMRv/9V4bfr
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/modern-wizard.bmp
- Size
  
  25KB
- MD5
  
  cbe40fd2b1ec96daedc65da172d90022
- SHA1
  
  366c216220aa4329dff6c485fd0e9b0f4f0a7944
- SHA256
  
  3ad2dc318056d0a2024af1804ea741146cfc18cc404649a44610cbf8b2056cf2
- SHA512
  
  62990cb16e37b6b4eff6ab03571c3a82dcaa21a1d393c3cb01d81f62287777fb0b4b27f8852b5fa71bc975feab5baa486d33f2c58660210e115de7e2bd34ea63
- SSDEEP
  
  24:Qwika6aSaaDaVYoG6abuJsnZs5GhI11BayNXPcDrSsUWcSphsWwlEWqCl6aHAX2x:Qoi47a5G8SddzKFIcsOz3Xz
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  b7d61f3f56abf7b7ff0d4e7da3ad783d
- SHA1
  
  15ab5219c0e77fd9652bc62ff390b8e6846c8e3e
- SHA256
  
  89a82c4849c21dfe765052681e1fad02d2d7b13c8b5075880c52423dca72a912
- SHA512
  
  6467c0de680fadb8078bdaa0d560d2b228f5a22d4d8358a1c7d564c6ebceface5d377b870eaf8985fbee727001da569867554154d568e3b37f674096bbafafb8
- SSDEEP
  
  96:ooEv02zUu56FcS817eTaXx85qHFcUcxSgB5PKtAtoniJninnt3DVEB3YMNqkzfFc:ooEvCu5e81785qHFcU0PuAw0uyyIFc
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/nsExec.dll
- Size
  
  7KB
- MD5
  
  11092c1d3fbb449a60695c44f9f3d183
- SHA1
  
  b89d614755f2e943df4d510d87a7fc1a3bcf5a33
- SHA256
  
  2cd3a2d4053954db1196e2526545c36dfc138c6de9b81f6264632f3132843c77
- SHA512
  
  c182e0a1f0044b67b4b9fb66cef9c4955629f6811d98bbffa99225b03c43c33b1e85cacabb39f2c45ead81cd85e98b201d5f9da4ee0038423b1ad947270c134a
- SSDEEP
  
  96:JgzdzBzMDhOZZDbXf5GsWvSv1ckne94SDbYkvML1HT1fUNQaSGYuHIDQ:JDQHDb2vSuOc41ZfUNQZGdHA
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  Qt6Core.dll
- Size
  
  6.0MB
- MD5
  
  46a0dbd38cb28d8e79c80c9a033f6ae9
- SHA1
  
  1be5f3e78485f9b08e32346f13155a94001de50e
- SHA256
  
  225bd38093416c825f2e3220213f64e1079e9ab20f4738decc0fc6eb992e8a9e
- SHA512
  
  3fb62bce7b1d5129237914269aa3dd9a24f9e797927f2f4f937a0a291d357a40ec51b9c829094dc0bae1edcd6c580f1c9a03ca2c84d5526599c3608246f00bd0
- SSDEEP
  
  49152:u2CQUPAGYdJn+5Im58kP6zNqVJLACl5D4CmV684bbTx5Hdr6Ek11RzVSGlgO2v8C:JJGA1rStYqo49KFdu9CwJsv6tjf/33VX
Score

1^/10
behavioral11 behavioral12
- Target
  
  Qt6Core5Compat.dll
- Size
  
  851KB
- MD5
  
  e50b9b3fa16362c86a40e6255c6b45e7
- SHA1
  
  fa8ce8fd6d4415abdb67597735575dc83a8fc634
- SHA256
  
  c95ab3df8dc0bfd92925b7b8b51bce859ae09008691874a5c6f5630969557564
- SHA512
  
  03a8ac0ae14e8420dd9fd91bc1619d072882d152127b3f2f1c6f7e670b7c54c524490e7c84a7cd0b76e2db413439a1ca55c4e03416fd6beb47b1067c3e960cba
- SSDEEP
  
  12288:xbqiBp2WMX7t4i8ZOOSD5RC940wGsPGE/4717VKIyBDPzHkSDGGJf6bfOGQyMjDu:JeWe7t43veC9UG8G7VeDPTMTfnMXh4
Score

1^/10
behavioral13 behavioral14
- Target
  
  Qt6Gui.dll
- Size
  
  8.5MB
- MD5
  
  7875aad0d0d426e9d1b132a35266de32
- SHA1
  
  8b7656e3412ae546153d2d3df91a6ff506d64749
- SHA256
  
  fc2464f62d7915ddeaebb5490bee6d60e7b42ad5a223d5812f0993c27c35be19
- SHA512
  
  9fa16c5c628f2e9b242323aed4c1aa70f093cee9f341ac61640287ff9be8663658f502769e037a8409943d3c9ab826bb1c6f88532f0fbacdaea28b2353cdfba9
- SSDEEP
  
  98304:xNydcIXNBZBRhOWJDzxMv6n/aSu0shezBE4:xRIhBRxJDzY6n/nu0WeB
Score

1^/10
behavioral15 behavioral16
- Target
  
  Qt6Network.dll
- Size
  
  1.4MB
- MD5
  
  960f50470059381c65833145036fef29
- SHA1
  
  270e230bfc9248e5ecff9ea8dfbc5f1066df02ee
- SHA256
  
  1071f4f88c65317401bf93a2ffb55e661adcbb84f05911879ab21a6656521a68
- SHA512
  
  cb0a0d63aaae1b9646dad722759b1c53b36ed13a4231a30b054f6124bcc69e7285c5777ab6bbbb8296756d6c31fc94e735db42c5155db35274e0ec25c1406582
- SSDEEP
  
  12288:DVf2kuxdwo86ZrLlGZHLcCzIOLDjl4LgtMEmASO3xMBgt2qAa:DRDuxdwUZnlGOCzQkMp/Bgt27a
Score

1^/10
behavioral17 behavioral18
- Target
  
  Qt6Svg.dll
- Size
  
  377KB
- MD5
  
  67a888c61e6f1dceefbde7287e80e59d
- SHA1
  
  4cbd1ea71ca25a6b87c64c163d1fb3e61cdacc2f
- SHA256
  
  22c48c35d9915bc89b13d2dca91c74b8531989a887faf642c795bf593e00306a
- SHA512
  
  aab6f980e0b397fd7e8823370ac398d108f20a2f5c3ca052391a7c753ef77c82d94e0a37d64bc708aeb5c95d31e534faa1a6a7582d80fc285325acaec226f1e9
- SSDEEP
  
  6144:NrCsrknzH2m/rXsu5ea8r/c55qah10+9F+Yw5UibIyj:Nr7r+TTD8r/oqaJoIy
Score

1^/10
behavioral19 behavioral20
- Target
  
  Qt6Widgets.dll
- Size
  
  6.2MB
- MD5
  
  34abb42b63e71b09b72b48cf5b1dba53
- SHA1
  
  9f3111aab57a5f28a4ce9bf82ea208fa3eadb9a6
- SHA256
  
  c71e65b882a84f47114590784a256f14ba19202ec30b218ce4841b2c7256060b
- SHA512
  
  06acab5a04a5d3e6834ddc95229758d4adc7a7f0ef003c80e8d59a8241e295b196aceacce20c88879e1676405a2538d032ec6ac543258538e686878fb29f77f1
- SSDEEP
  
  98304:RCOQZE8fxqbA2SwuevAGcYYaCsGf1e5A64N9m3JL:RCOQa8fxqsKuevAGcXacIW4
Score

1^/10
behavioral21 behavioral22
- Target
  
  Qt6Xml.dll
- Size
  
  151KB
- MD5
  
  7fcfa82dd4a01915622c14931cc585dd
- SHA1
  
  079736f39ed5791df528fed5a12456285bfa1f18
- SHA256
  
  8b772f5f227b266c47655d02843bf51be6c50729acc28db7dced488d62f7ed4f
- SHA512
  
  caf98eecb1c57789b91dbef88c3f908f0652d29d93ae335526987a47f791d565e67e25ee4643abd006a39b2d9533449672c2c21df23cc61d77032c3cd01d6f39
- SSDEEP
  
  1536:mwnpe/AQ7BlrQR2d4KQfKlxQYCfmh2DGFd7ZsSCLVFEIK0qwxDqyDzbYTOj9AIKG:xIAQ9YQ47KsYAJGFNHCTRqipzvyP7Kvt
Score

1^/10
behavioral23 behavioral24
- Target
  
  iconengines/qsvgicon.dll
- Size
  
  69KB
- MD5
  
  b57d0218475b81560454e6c0a1a6d9c8
- SHA1
  
  21206763e7121d4792bbf24075c6f6e27c2c11db
- SHA256
  
  8ab3b526b35a0dec08b4042da70f942b3b5f4d413ad4035c691f972b2008778e
- SHA512
  
  83464c21073edddcd77dc0978257bf13554ef01825672b60081d9d4ee5caefffe9ed6fbefda0bc7bdc413925b9265981a994195700190cd81cf6b1c93810e891
- SSDEEP
  
  1536:UzibTbDQn6wcma+mHKT6IQubV5awlhBlfbnCMmbizDRT9WcwgKxngep6v:UObTzq6IQubV5awlhBlfbnCMLzDRHZKe
Score

1^/10
behavioral25 behavioral26
- Target
  
  imageformats/qgif.dll
- Size
  
  47KB
- MD5
  
  000b3771b3dcf0d7eb72750edd80a192
- SHA1
  
  35506ee878b8ad21dbd35876baaf586c30152b71
- SHA256
  
  6ff0b57822dae5132e1640afe4f8fd6b75e21cf3f1eae53d70373c25a5506581
- SHA512
  
  4472089f5524172fcfd8d2f8acbf67a3f22b08f788b52d8f42d2736d050cecb87215a9b8d706baca12d5916d3ff79bf57420766746c2484981d679239b3f2924
- SSDEEP
  
  768:/ONXrIbWKNNy/Qq0rvEx2eVG5bvUbBy+oBS/oxgKxnVbGYJlWLNBf:WJrIb9KQOVG5eBy+oBSQxgKxngekf
Score

1^/10
behavioral27 behavioral28
- Target
  
  imageformats/qicns.dll
- Size
  
  55KB
- MD5
  
  b8466ebadaac59acc5fffb674fcc81c0
- SHA1
  
  d40349f19c85405fac6d027008a47a51de9e82f2
- SHA256
  
  79b31f4de8f3d4ae02d1115e4ec384aad568b4fba8631b5a01a578c42748df19
- SHA512
  
  ddecf05443bc19b95bbb654b7ea9417a26f37b9c8a293d16fcd6e817eb984baf0497e183acfe91096e3b1f6367e827fa3833b0a90fb964671af014c78e9c16d4
- SSDEEP
  
  1536:YjQEXCukdHgnHhuS+JJXGAjTaO5HjzbgKxngec9r:YsEqgP+JraO5Hjz0KI1
Score

1^/10
behavioral29 behavioral30
- Target
  
  imageformats/qico.dll
- Size
  
  46KB
- MD5
  
  c64789dba4e2aa3bddf17bfa89e7ab59
- SHA1
  
  d5914f9eede38dda3e16c4299fce8016799b28d3
- SHA256
  
  bceee911a3ffc1ed7b09a9d79374053fa813a04a22c40b0a4984b845582e3e8f
- SHA512
  
  31e5a009284867a591ac9dbce92bddbd8b914133bb03b327984edfc4c3f4329a08238b1a239e7408d8efc715ff23acfa91723720879ab8fd4a2619e948ab5683
- SSDEEP
  
  768:f0hZMxD05ahDHpeNoU3LPepnzGn+J7wnZ2gKxnVbGYJloNb:cU052peN57PeRzGn+J7wZ2gKxngey
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Query Registry

T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Loads dropped DLL

Checks computer location settings

MITRE ATT&CK Matrix ATT&CK v13

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32