04ca521a73fa0bd24657d2fc21903fcb688aedbe5f15ad6dd5c0181c811e253f

Resubmissions

14/09/2024, 15:44

240914-s6g9wascjf 7

14/09/2024, 15:40

240914-s4f9sssbld 7

Sharing

Copy URL Twitter E-mail

General

Target

YuukiPS.zip
Size

63.7MB
Sample

240914-s4f9sssbld
MD5

3088ca289ed1ca2723bea8b731a6e196
SHA1

f9a8863774381b95c6f3a959e94ab5a7a03d7361
SHA256

04ca521a73fa0bd24657d2fc21903fcb688aedbe5f15ad6dd5c0181c811e253f
SHA512

fde649a6bbadbb3e9a572fb54e565fb74c4767346f4f0b1d157c555bc15ea980f69168ba669a3ac73d3e30dbc5dd1f8267c1c98791e51c1ec20a6f76b42cd449
SSDEEP

786432:oHS7opSiP+kOAihfQus6+10GdqXEFl2d10EKHxUinxuK5c7Rs+iH/iunfB1F5hx5:cFkQNPZsVd1BoxNxGuTT5hOBTUuj0

Score

7^/10

Malware Config

Targets

- Target
  
  D3DCompiler_47_cor3.dll
- Size
  
  4.7MB
- MD5
  
  a7349236212b0e5cec2978f2cfa49a1a
- SHA1
  
  5abb08949162fd1985b89ffad40aaf5fc769017e
- SHA256
  
  a05d04a270f68c8c6d6ea2d23bebf8cd1d5453b26b5442fa54965f90f1c62082
- SHA512
  
  c7ff4f9146fefedc199360aa04236294349c881b3865ebc58c5646ad6b3f83fca309de1173f5ebf823a14ba65e5ada77b46f20286d1ea62c37e17adbc9a82d02
- SSDEEP
  
  49152:FCZnRO4XyM53Rkq4ypQqdoRpmruVNYvkaRwvpiD0N+YEzI4og/RfzHLeHTRhFRNS:EG2QCwmHXnog/pzHAo/A2L
Score

1^/10
behavioral1
- Target
  
  PenImc_cor3.dll
- Size
  
  154KB
- MD5
  
  387ee0eed91752ba689d7d55d7193cba
- SHA1
  
  908ef7acdd685918941a9378e1c8225c9b66ec5c
- SHA256
  
  10d2a711939ae082fd5d5525e2398234c574b5cda6e70b23e756f62f4438031a
- SHA512
  
  2186489b06f737fd740bdf59db310d1c84bf6ebbe8974c27db91caee5884307ba6a172ee421a43ad15711d84e2cee1abe207c569ad311e579d8df022e1f57c51
- SSDEEP
  
  3072:JCrdsza/NXpFSGeVdEgUxnI3iJ05uE2plATZ+k/OyY4V72n:JEsza13Sxy5SiJUuE2UXN0
Score

1^/10
behavioral2 behavioral3
- Target
  
  PresentationNative_cor3.dll
- Size
  
  1.2MB
- MD5
  
  e67dff697095b778ab6b76229c005811
- SHA1
  
  88a54a3e3ff2bf83a76bbf5df8a0e50bdb36bcdc
- SHA256
  
  e92b997f6f3a10b43d3fdc7743307228aa3b0a43430af60ccb06efa154d37e6a
- SHA512
  
  6f2a2bbbfa0464537fccb53d40239a294dca8fd477e79d70cd9f74079da48525a300675d3b0daae292432adbb9dd099fd4dc95b6fe2794f4c5f3a7e56e15ef51
- SSDEEP
  
  24576:7SsBi4K1Xm/qOYBAwcZG8f+kLB1Tije/46WnwjdQKVS6fdZFUBelxUTd9WurKH9:bRK1XnOYBAwcZP1TiO46WwjdQKVg9Wr9
Score

1^/10
behavioral4 behavioral5
- Target
  
  YuukiPS.exe
- Size
  
  151.4MB
- MD5
  
  64a91cca0ee3a81133c42b53f420d5d9
- SHA1
  
  bfc969e62589799c3e6b0875eb6c65a450121d23
- SHA256
  
  9d1d080359f3ebed7cb0a253b28f1478069996a6b0eb2b1b1fe18a829e45a808
- SHA512
  
  f00e23433e12eb42996176029a3278199f7bb1dd46539f0fe93b1dc96352ea621a34d52757dd969b0ee9ae3ef51facd3638a22b81e2f0f33852683413defe586
- SSDEEP
  
  786432:Qt2nSCkMhfqpHCOdRIeoxOTx9ylnEk2Fd7gLie63pk3lLfrk7:QtbCkMMi5w9qEn7Q6S3RW
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral6 behavioral7
- Target
  
  vcruntime140_cor3.dll
- Size
  
  116KB
- MD5
  
  d6ac34c46569efe379b58f9b7bbcb6fc
- SHA1
  
  f9f67352566bb5f98a7336248d8543d9ab4da041
- SHA256
  
  cff0ced8b2193adff2c06119f70a037b6b79b6fc6c4a19664d4e42bc1c06a9f6
- SHA512
  
  09a0e43293d39bd465e87e481bf98b1f696eb633d4f49038553e77a9ecd654318db114ee3f0ed85d05b09d1712835b18aa968fd5b304142c3979e1433b770513
- SSDEEP
  
  1536:YI2v39UXigCBs29DdxfggO6vMMKZsY2kfISoecbdhm7izbApDzD:YiwskD8B6vMMEs5kGecbdc2Sv
Score

1^/10
behavioral8 behavioral9
- Target
  
  wpfgfx_cor3.dll
- Size
  
  1.9MB
- MD5
  
  24ea1814e6701927b9c714e0a4c3c185
- SHA1
  
  95c27a6b1f5927e3021cb6f9d5ef5998b2c4560a
- SHA256
  
  d2ebedc0004d5e336c6092e417c11c051767c7dcbcb80303f3484fd805e084ae
- SHA512
  
  d6c2f32818970d989c834babeac1ce845e832b853ce1c0b3f7ecbfd41331b7d519461bcc0ef07fd35382f263b9e26ac47bb22f0370071913900fc40e3e2656f2
- SSDEEP
  
  24576:ao5UYhQIQBJyJHjRg3hdlowoTsIDEzoM/P6g7HUymN7dE2AKaiajzpyIm+9sB:TtQIA2jRg7ypDfuPFUy65DAzvILr
Score

1^/10
behavioral10 behavioral11

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Checks computer location settings

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11