Overview
overview
8Static
static
3winamp_lat...ll.exe
windows10-2004-x64
8$PLUGINSDI...er.dll
windows10-2004-x64
3$PLUGINSDI...LL.dll
windows10-2004-x64
3$PLUGINSDI...LL.dll
windows10-2004-x64
3$PLUGINSDI...ch.dll
windows10-2004-x64
3$PLUGINSDI...em.dll
windows10-2004-x64
3$PLUGINSDI...os.dll
windows10-2004-x64
3$PLUGINSDI...ip.dll
windows10-2004-x64
3$PLUGINSDI...gs.dll
windows10-2004-x64
3$PLUGINSDI...ec.dll
windows10-2004-x64
3$PLUGINSDI...mp.dll
windows10-2004-x64
3$PLUGINSDI...dl.dll
windows10-2004-x64
3Components/ssdp.dll
windows10-2004-x64
3Elevator.exe
windows10-2004-x64
3Microsoft....40.dll
windows10-2004-x64
3Microsoft....40.dll
windows10-2004-x64
3Microsoft...._1.dll
windows10-2004-x64
3Microsoft...._2.dll
windows10-2004-x64
3Microsoft....it.dll
windows10-2004-x64
3Microsoft....ds.dll
windows10-2004-x64
3Microsoft....40.dll
windows10-2004-x64
3Microsoft....40.dll
windows10-2004-x64
3Microsoft....90.dll
windows10-2004-x64
3Microsoft....90.dll
windows10-2004-x64
3Plugins/AV...er.dll
windows10-2004-x64
3Plugins/AV...ap.dll
windows10-2004-x64
3Plugins/AVS/texer.dll
windows10-2004-x64
3Plugins/AV...r2.dll
windows10-2004-x64
3Plugins/Fr...pe.dll
windows10-2004-x64
3Plugins/Mi...op.dll
windows10-2004-x64
3Plugins/Mi...p.html
windows10-2004-x64
3Plugins/Mi...g.html
windows10-2004-x64
3General
-
Target
winamp_latest_full.exe
-
Size
12.4MB
-
Sample
240919-jsn1tsyakh
-
MD5
39b72e2cbf2fb8da961538de3e892eba
-
SHA1
237ce8611cb8e2ede8a5d6b982597f7e93b2cd81
-
SHA256
fa09d24d7481dbdfc1cff6aaa92d2aec908e037a22a02346f6feeee5d6ba688e
-
SHA512
36e8b9d759d960390e8f1b4ac420d591204cb95a776be668db365c453cb702cadee9b34c03779044fdc04c2d2929ac542e01bba50094f8352e2724a082611b59
-
SSDEEP
393216:udNH1gz1+ZUUG9NWpHYV6ohIBfqHts7UU2wP3:udZk1vUG964V6ysUs7U/u3
Static task
static1
Behavioral task
behavioral1
Sample
winamp_latest_full.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral2
Sample
$PLUGINSDIR/Dialer.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral3
Sample
$PLUGINSDIR/KillProcDLL.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral4
Sample
$PLUGINSDIR/LangDLL.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral5
Sample
$PLUGINSDIR/ShellDispatch.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral6
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral7
Sample
$PLUGINSDIR/execDos.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral8
Sample
$PLUGINSDIR/extstrip.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral9
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral10
Sample
$PLUGINSDIR/nsExec.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral11
Sample
$PLUGINSDIR/nsis_winamp.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral12
Sample
$PLUGINSDIR/nsisdl.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral13
Sample
Components/ssdp.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral14
Sample
Elevator.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral15
Sample
Microsoft.VC142.CRT/concrt140.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral16
Sample
Microsoft.VC142.CRT/msvcp140.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral17
Sample
Microsoft.VC142.CRT/msvcp140_1.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral18
Sample
Microsoft.VC142.CRT/msvcp140_2.dll
Resource
win10v2004-20240910-en
Behavioral task
behavioral19
Sample
Microsoft.VC142.CRT/msvcp140_atomic_wait.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral20
Sample
Microsoft.VC142.CRT/msvcp140_codecvt_ids.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral21
Sample
Microsoft.VC142.CRT/vccorlib140.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral22
Sample
Microsoft.VC142.CRT/vcruntime140.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral23
Sample
Microsoft.VC90.CRT/msvcp90.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral24
Sample
Microsoft.VC90.CRT/msvcr90.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral25
Sample
Plugins/AVS/AddBorder.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral26
Sample
Plugins/AVS/colormap.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral27
Sample
Plugins/AVS/texer.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral28
Sample
Plugins/AVS/texer2.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral29
Sample
Plugins/Freeform/wacs/freetype/freetype.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral30
Sample
Plugins/Milkdrop2/data/vms_desktop.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral31
Sample
Plugins/Milkdrop2/docs/milkdrop.html
Resource
win10v2004-20240802-en
Behavioral task
behavioral32
Sample
Plugins/Milkdrop2/docs/milkdrop_preset_authoring.html
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
winamp_latest_full.exe
-
Size
12.4MB
-
MD5
39b72e2cbf2fb8da961538de3e892eba
-
SHA1
237ce8611cb8e2ede8a5d6b982597f7e93b2cd81
-
SHA256
fa09d24d7481dbdfc1cff6aaa92d2aec908e037a22a02346f6feeee5d6ba688e
-
SHA512
36e8b9d759d960390e8f1b4ac420d591204cb95a776be668db365c453cb702cadee9b34c03779044fdc04c2d2929ac542e01bba50094f8352e2724a082611b59
-
SSDEEP
393216:udNH1gz1+ZUUG9NWpHYV6ohIBfqHts7UU2wP3:udZk1vUG964V6ysUs7U/u3
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
-
-
Target
$PLUGINSDIR/Dialer.dll
-
Size
3KB
-
MD5
adea8024c99d7802fa3c9e5d34877aad
-
SHA1
4e015a5be3e668aa3e9758370413f2bb8ec5ad1a
-
SHA256
242b6aeb759e31b64e014e3df6b5c478fb309d56b4df8cdb59b2cd03bfa77db2
-
SHA512
717a9f08842e96e9395fe8fff19138d7e599e3dd4f44b7b55d9be86211f20cd89a1d315df1f241afc52456da738623401ee721b17e9fd5949fe1decfc1b2819d
Score3/10 -
-
-
Target
$PLUGINSDIR/KillProcDLL.dll
-
Size
4KB
-
MD5
1be3fc5971da6f9b86843d0763912fb6
-
SHA1
e921bfa5b330102630420007a63fde0c439f0cdc
-
SHA256
89ed50600e7046184f80b2a20b5299f35a0439fab1ad1f9f5fc55606955b6186
-
SHA512
99e5a4e888c6cbd2b67464162516aec5a564447fec389012acd8873aa6312020bfe5f0d68e83f54a7320355c5f828f7769f666d5cfd12f2ceed02a6d5b66dc4d
Score3/10 -
-
-
Target
$PLUGINSDIR/LangDLL.dll
-
Size
5KB
-
MD5
68b287f4067ba013e34a1339afdb1ea8
-
SHA1
45ad585b3cc8e5a6af7b68f5d8269c97992130b3
-
SHA256
18e8b40ba22c7a1687bd16e8d585380bc2773fff5002d7d67e9485fcc0c51026
-
SHA512
06c38bbb07fb55256f3cdc24e77b3c8f3214f25bfd140b521a39d167113bf307a7e8d24e445d510bc5e4e41d33c9173bb14e3f2a38bc29a0e3d08c1f0dca4bdb
-
SSDEEP
48:S46+/nTKYKxbWsptIpBtWZ0iV8jAWiAJCvxft2O2B8mFofjLl:zFuPbOBtWZBV8jAWiAJCdv2Cm0L
Score3/10 -
-
-
Target
$PLUGINSDIR/ShellDispatch.dll
-
Size
4KB
-
MD5
9c266c2dc7eca5bcab2d8df4990e0c1f
-
SHA1
662da3d9ca18aacdbaef884065fbfffdfacfabfa
-
SHA256
ea7800b89e49e7d7214c1405b4906f366096dfadff28d0732acb90ab2e9a99bd
-
SHA512
e9318db79b02df6b3b72ed16c5d70e4b46bab71f31544ce0323cd6dae739be1948a9d3a468977d703576d7f33580e3be5d1d1ace1fb29cee9dfe325c6e828139
-
SSDEEP
48:SEhtu3nH1xOKMd3afu3fnkXfaq7qFBtHugUhA:fu3VxOhham3Afx7qFDHAA
Score3/10 -
-
-
Target
$PLUGINSDIR/System.dll
-
Size
12KB
-
MD5
cff85c549d536f651d4fb8387f1976f2
-
SHA1
d41ce3a5ff609df9cf5c7e207d3b59bf8a48530e
-
SHA256
8dc562cda7217a3a52db898243de3e2ed68b80e62ddcb8619545ed0b4e7f65a8
-
SHA512
531d6328daf3b86d85556016d299798fa06fefc81604185108a342d000e203094c8c12226a12bd6e1f89b0db501fb66f827b610d460b933bd4ab936ac2fd8a88
-
SSDEEP
192:Zjvco0qWTlt70m5Aj/lQ0sEWD/wtYbBHFNaDybC7y+XBz0QPi:FHQlt70mij/lQRv/9VMjzr
Score3/10 -
-
-
Target
$PLUGINSDIR/execDos.dll
-
Size
5KB
-
MD5
0deb397ca1e716bb7b15e1754e52b2ac
-
SHA1
fbb9bcf872c5dbb4ca4c80fb21d41519bc273ef5
-
SHA256
720be35cd1b4a333264713dc146b4ad024f3a7ad0644c2d8c6fcedd3c30e8a1f
-
SHA512
507db0bee0897660750007e7ce674406acf9e8bf942cf26ded5654c07682757b07c9eb767bead0966478abc554dc9a6461c4288dc35d12cacfadad4c128f1bb7
-
SSDEEP
96:J++xDiP4p7t7dNOt3stxtRFFXxGD6qxlnKE6ttdH3r3:Rx9pJ7jQs5toD6Cln/6tt1
Score3/10 -
-
-
Target
$PLUGINSDIR/extstrip.dll
-
Size
2KB
-
MD5
720cc2e5a1f83a7db72e009353f21ac0
-
SHA1
4b6ec18d4971738cbd9ba42211f51d5295f86002
-
SHA256
89e8931f2adba8aa67ce199a510965fd51ce430acf067478910c5b622827e08d
-
SHA512
a17fec91066e1ef7f1ef39b61cf077481dda12204690f5006010c9bfb1899721d10c22c3a95a7f6276d2689380eea93e32a45b24dd153ee9006c79ddb70ced80
Score3/10 -
-
-
Target
$PLUGINSDIR/nsDialogs.dll
-
Size
9KB
-
MD5
6c3f8c94d0727894d706940a8a980543
-
SHA1
0d1bcad901be377f38d579aafc0c41c0ef8dcefd
-
SHA256
56b96add1978b1abba286f7f8982b0efbe007d4a48b3ded6a4d408e01d753fe2
-
SHA512
2094f0e4bb7c806a5ff27f83a1d572a5512d979eefda3345baff27d2c89e828f68466d08c3ca250da11b01fc0407a21743037c25e94fbe688566dd7deaebd355
-
SSDEEP
96:o0svUu3Uy+sytcS8176b+XR8pCHFcMcxSgB5PKtAtgt+Nt+rnt3DVEB3YcNqkzfS:o0svWyNO81b8pCHFcM0PuAgkOyuIFc
Score3/10 -
-
-
Target
$PLUGINSDIR/nsExec.dll
-
Size
7KB
-
MD5
675c4948e1efc929edcabfe67148eddd
-
SHA1
f5bdd2c4329ed2732ecfe3423c3cc482606eb28e
-
SHA256
1076ca39c449ed1a968021b76ef31f22a5692dfafeea29460e8d970a63c59906
-
SHA512
61737021f86f54279d0a4e35db0d0808e9a55d89784a31d597f2e4b65b7bbeec99aa6c79d65258259130eeda2e5b2820f4f1247777a3010f2dc53e30c612a683
-
SSDEEP
96:J9zdzBzMDByZtr/HDQIUIq9m6v6vBckzu9wSBpLEgvElHlernNQaSGYuH2DQ:JykDr/HA5v6G2IElFernNQZGdHW
Score3/10 -
-
-
Target
$PLUGINSDIR/nsis_winamp.dll
-
Size
4KB
-
MD5
1e1ded1cf1c69852f2074693459fb3b5
-
SHA1
81b165cae4d38a98760131989fdd8aed2c918679
-
SHA256
5946278545abbd0b0f5188752fe095e200c85abe0783632a00726d090c0753ec
-
SHA512
a6f9a43d4432658c3504629e9209ad350af69eff542d139e0ccfe0dbf8662f15034edd3cf8b56d606a740b66c8221cafad999088a4e64a4c9c9fb47793a19f96
-
SSDEEP
48:SEdAWvTa5HlE1m198EqtjbglT68HY06mzWB+wUKCmMpzm7n4/ZS9:LA2a5Fcm198EqtjMlv47mzWBVgaj4/w
Score3/10 -
-
-
Target
$PLUGINSDIR/nsisdl.dll
-
Size
15KB
-
MD5
ee68463fed225c5c98d800bdbd205598
-
SHA1
306364af624de3028e2078c4d8c234fa497bd723
-
SHA256
419485a096bc7d95f872ed1b9b7b5c537231183d710363beee4d235bb79dbe04
-
SHA512
b14fb74cb76b8f4e80fdd75b44adac3605883e2dcdb06b870811759d82fa2ec732cd63301f20a2168d7ad74510f62572818f90038f5116fe19c899eba68a5107
-
SSDEEP
384:7py18oahashajPmIYInUJggBOZgAHhUKijb:7py18oafmeggBOCAHpij
Score3/10 -
-
-
Target
Components/ssdp.w6c
-
Size
31KB
-
MD5
80e53207d1f5f684b098bf70b66c34b1
-
SHA1
848367ff79a68319c9211abfae289a3802a809f6
-
SHA256
dd55372e906699c3e35f02313736f74a13d1e526d0b9620cadb70d57e530af63
-
SHA512
cd7e0b59a2eb0ccf164e958e758d53646dd6a229a67cb37e2d524fb36d19116117b7390a368bc47043faf407d788e839aee20f501b7c90d367515acdf65690ac
-
SSDEEP
768:mZsCH6rVPhn8cIdHbiGFCglWMEpYiTPx3//:mZRUVPh8cINbiGFCgq7TPxv/
Score3/10 -
-
-
Target
Elevator.exe
-
Size
97KB
-
MD5
59803a5bb88b88a6d83342eeb3816ad9
-
SHA1
cafa43cacd584deb0d54ac31ae9030f90455c6b7
-
SHA256
a8e9655510906994fdef3993bebabf0a5e0b6604f02c0ccc28fd31be3aa684bf
-
SHA512
85038570bb2fb39e7ee8994ccb3f8f9203c0d8360fea889d238c13b3b49a7ab85488edd01d3ec7e37288ffbd0db7e84cfe0353e199289a854311d27990cb9eea
-
SSDEEP
1536:S8RRcfSJKxaWWWxVz7MW/UXFue/mu67TPxvn:S8ZJKxaWWy57eVue/mu6fx/
Score3/10 -
-
-
Target
Microsoft.VC142.CRT/concrt140.dll
-
Size
237KB
-
MD5
9ad549c121108b3b1408a30bee325d08
-
SHA1
898ffc728087861e619dababd8e65cc902276d06
-
SHA256
263975e4f5afc90e91f9f601080b92c9fbc5e471132f63ad01c6c4f99b33b83a
-
SHA512
9a9005acf2af86d6a0a95773e968d98e90b7e71e8e71d58949ff51aad49050dca57d94a19671b1b5026bd74e7b627f31d0c8a50bb66ab740d629022c3a95d579
-
SSDEEP
6144:aLy1UNAZHA2nSG5LbEcutDsSaqiOHYb836TLLOeHFQyS9uLms12z/NpJ9yne:2hkH0Yb83KLxmuLmdzoe
Score3/10 -
-
-
Target
Microsoft.VC142.CRT/msvcp140.dll
-
Size
426KB
-
MD5
8ff1898897f3f4391803c7253366a87b
-
SHA1
9bdbeed8f75a892b6b630ef9e634667f4c620fa0
-
SHA256
51398691feef7ae0a876b523aec47c4a06d9a1ee62f1a0aee27de6d6191c68ad
-
SHA512
cb071ad55beaa541b5baf1f7d5e145f2c26fbee53e535e8c31b8f2b8df4bf7723f7bef214b670b2c3de57a4a75711dd204a940a2158939ad72f551e32da7ab03
-
SSDEEP
12288:/gO0BGzePo6+J+4P0xYv7IQgnhUgiW6QR7t5s03Ooc8dHkC2esKcWKe0:701Po6+J+dxYv7IQgk03Ooc8dHkC2ezc
Score3/10 -
-
-
Target
Microsoft.VC142.CRT/msvcp140_1.dll
-
Size
20KB
-
MD5
c946a9e4170f6b16d25c822da616dc6a
-
SHA1
f602d23db756f9c3a058d3b7186d24480e05790f
-
SHA256
65bdadb5562b9473471740b1dcd8b064459a40d71a1a11fc5aedaa855fe7635a
-
SHA512
916cad8b1e38b2b15ab836844c5cc9d36b212831b2f553198054fe9cb5cd77aecd544cac8040000337cefda9b15bf95e8903f36a9c1beb7d579cfff670445617
-
SSDEEP
384:Y32E5mpdhYQjHy3d5Wcs5gWI3KLHRN7QiUJ/AlGstm4s:YmxQSyUyAQX/xEv
Score3/10 -
-
-
Target
Microsoft.VC142.CRT/msvcp140_2.dll
-
Size
162KB
-
MD5
06deea1786c951d3cc7e24a3e714ff03
-
SHA1
9906803cedb8600c5e201ae080155beebd2902b2
-
SHA256
eac4c95cd7b013e110f2cf28c08342126fe1658ef16010541f05b234d23272dd
-
SHA512
28caa59deec92e417468bb0244da2e60faf6482ef608258e99fa47f59d3cd0edee69155e913034ac7b5e1afc88dbf8f6f97058b75f0cbc6e4c045e1ee6eaada0
-
SSDEEP
3072:UZqJu0h1iCPZYtIzss2wizpHB7RoSxvQ02bnt56CY2G1zVSdqXCvjC:UZqU0hStIzrQqht567ZSY+jC
Score3/10 -
-
-
Target
Microsoft.VC142.CRT/msvcp140_atomic_wait.dll
-
Size
50KB
-
MD5
ffb8c73e6e3769d5d8715e694707c792
-
SHA1
f7d63fa41c34d7b75cd70d72e317db148f3d50ca
-
SHA256
1dd7d3417fffc321a67aae2ca7e89a7d75203f8a3586cd829c56766f313f7931
-
SHA512
61e83f71a388fd1176665225cc84c32fac40663376629adbe9b47cd9e69ddadc43fec021b07062585af80811e8f3e0479314b2277e6cb8617645fd304fae88ab
-
SSDEEP
384:ZWlTFwTSloNYcSNXR5cHDIABta/FWFvug0yiT3UN9imfI/NVW0jdT40Fzenw3GDx:GVT9kNWNLTXwwWDpQJs10cM8dAgT7
Score3/10 -
-
-
Target
Microsoft.VC142.CRT/msvcp140_codecvt_ids.dll
-
Size
18KB
-
MD5
ef6c5eeb8b36d941e6991e6981cdb88a
-
SHA1
e21989951b745b290f143dd63f94bd4399a74284
-
SHA256
3859b4a5a5c0a30cee15c188f678e09d040541c221999d926955b49e8779e675
-
SHA512
12cb0c4e4de73600e262b6b6d0448fb050bd4b673d86265b4033b253ea3864dda4f004f6344aae5bed7a15d5717531f7b18374e47ff4258e027ee7b896f6f406
-
SSDEEP
384:5DSdV3lIjIjP2dhWiOEWs/KLHRN7kxjlGsgl/Z:5c32jmdmAT7/Z
Score3/10 -
-
-
Target
Microsoft.VC142.CRT/vccorlib140.dll
-
Size
261KB
-
MD5
2fb4c4168e379f13b15d4e299ecf3429
-
SHA1
4c6702254054f288beb49adcdd6317575e83374d
-
SHA256
8cd7be490ad502c9980cb47c9a7162afccc088d9a2159d3bbbced23a9bcbda7f
-
SHA512
8bc80a720cdc38d58ab742d19317fbe7c36cfb0261bb9b3d5f3b366459b2801b95f8e71fb24d85b79f2c2bc43e7eb135dab0b81953c7007a5c01494c9f584208
-
SSDEEP
3072:+9WZ4GcvxHdmJOHpxyBIBaQ0I/Quljl1mn48MHnlwgSmiSb:+VFTmJO/BH0IYuljK48ZgS0
Score3/10 -
-
-
Target
Microsoft.VC142.CRT/vcruntime140.dll
-
Size
74KB
-
MD5
1a84957b6e681fca057160cd04e26b27
-
SHA1
8d7e4c98d1ec858db26a3540baaaa9bbf96b5bfe
-
SHA256
9faeaa45e8cc986af56f28350b38238b03c01c355e9564b849604b8d690919c5
-
SHA512
5f54c9e87f2510c56f3cf2ceeb5b5ad7711abd9f85a1ff84e74dd82d15181505e7e5428eae6ff823f1190964eb0a82a569273a4562ec4131cecfa00a9d0d02aa
-
SSDEEP
1536:zHHuqvERNjBwySXtVaSvrgOFw9RxKMn5ecbCKnIY7:zHHZMRNjKySdLcOiH5ecbCKnN
Score3/10 -
-
-
Target
Microsoft.VC90.CRT/msvcp90.dll
-
Size
555KB
-
MD5
6de5c66e434a9c1729575763d891c6c2
-
SHA1
a230e64e0a5830544a25890f70ce9c9296245945
-
SHA256
4f7ed27b532888ce72b96e52952073eab2354160d1156924489054b7fa9b0b1a
-
SHA512
27ec83ee49b752a31a9469e17104ed039d74919a103b625a9250ac2d4d8b8601034d8b3e2fa87aadbafbdb89b01c1152943e8f9a470293cc7d62c2eefa389d2c
-
SSDEEP
12288:iUmYoJC//83zMHZg7/yToyvYXO84hUgiW6QR7t5C3Ooc8SHkC2eRZRzS:iUmYoO83W0y8yeO8L3Ooc8SHkC2e8
Score3/10 -
-
-
Target
Microsoft.VC90.CRT/msvcr90.dll
-
Size
637KB
-
MD5
cdbe9690cf2b8409facad94fac9479c9
-
SHA1
4bcdfe2c1b354645314a4ce26b55b2b1a0212db9
-
SHA256
8e7fe1a1f3550c479ffd86a77bc9d10686d47f8727025bb891d8f4f0259354c8
-
SHA512
9c84ed9a66ce20a22e14fa00c1a0db716133f7b2450a3c0d20b1dcf74e030337c4c6a4953e40e10fc94706dc607236e773ba8999b21bd6e072ab24a487e8f942
-
SSDEEP
12288:phr4UC+Yu/A0BI4yWkoGKJwZ9axKmhYTMAO7wFVjCUmRyybD:tYfyZFGKJjxKmhSMABnCUmRyybD
Score3/10 -
-
-
Target
Plugins/AVS/AddBorder.ape
-
Size
24KB
-
MD5
1dba69483f822c0b68971bd392ca0660
-
SHA1
1c27b97ae7ccad4fba8da41210b7480d04ae2768
-
SHA256
db427053589f1e51a9b95a1cd7325da259c6e5dd57fc11570c969f68fbfa723e
-
SHA512
d2de9daec2cc6685d2c6215ad63934615dfb079620402807dd450ae6e9321d33e0e5c709ac8732e9f99c04bef540e58292368c40650f57258d91de91f21d845b
-
SSDEEP
96:HRVRhwDAeR+dHkgdmz22g/nat7G8ZKACtPTHXxclBtkKPNLBE:HrRhNeRckgdR2g/aIlDdrXxclBHZ
Score3/10 -
-
-
Target
Plugins/AVS/colormap.ape
-
Size
40KB
-
MD5
d69345e88c9e9532cd987e63e563fcb4
-
SHA1
5259aa1225849e9b47694c55016367d0a03ffda2
-
SHA256
f0103830b9daa1a5bcb549e059c5920554154ece92d2e3c4454523fa59994a48
-
SHA512
332fd579055774dc815e7c4246e9dbb8cae76303123be67dda9c03acc0f0dbcdf18c057f134527d838d34f114c0758e5e74b96285b1381912e46f7455f5fcff0
-
SSDEEP
768:EbPtgk3bXk3HwPpE3VJbzk36Bk3ukk3efk3ENk38xk3mX2JZ3VA4TpCMtRviLJ5V:E5NAP1XsfBrvc4MbJ
Score3/10 -
-
-
Target
Plugins/AVS/texer.ape
-
Size
28KB
-
MD5
3067b042aa4d4a259fcbc311b8a202d2
-
SHA1
40204e38ad9182ec0b3c16ac7f8b19abcc9aa18c
-
SHA256
281f9317aabc46ceea886ed655bb93fefceead3170d4e15288428be4652a47fe
-
SHA512
34a1361def1cdb6481c12a66fb6001612485a16529c824fdb3fc3fc49c6b622b2c6029371acf5276316e85789f6044697b842079b94c587ceec87be1a9f8fd54
-
SSDEEP
96:X0pq12XxTFPSqtGwq7knP0hNS0qVxFJWvs/OtLAy/fizolOCmPx0VMfwecbEu:XiE+DPRtGwD7VxSxFTficlqQMIecbE
Score3/10 -
-
-
Target
Plugins/AVS/texer2.ape
-
Size
44KB
-
MD5
99232ebf3871fcd6c44af0b981b46918
-
SHA1
9fe15afe0248e92e9e1f2525ee7409963f0efe39
-
SHA256
6a6ab2e5dcc0ec9e74d93b79eafc88214672481fdf1ea4f23f66f399cf7b98d2
-
SHA512
87747d0f5c1c2a9ee2372a84e41b4acda0e42d8a5764962b55c1f13b9a94f39bf0ff1a76c7b51354b54717d38b91fc29d84840217bbbde6debd0ec0f41368679
-
SSDEEP
768:s03bc+661HSpSG2E28mdoB5r5txZxUm9vpaAGonrqCP:s03bc+RRWJT9pNGonrqCP
Score3/10 -
-
-
Target
Plugins/Freeform/wacs/freetype/freetype.wac
-
Size
836KB
-
MD5
9fe9e011bc12d947e94d2af771ba73fa
-
SHA1
6238fe33f93469eae1a765cfeb73390ac1ffcfb7
-
SHA256
48e134e525a3503e1f61e6893ccc9c092d5ba741bb2e24271a08cdecfaf4e891
-
SHA512
32f8cb072583556f9076f0ae5ef3db2a17a9b1bff6b702856250361c7db4d5a4625f72b6ec0936c597300454ca8d4fd1e87b493bf6d087c1cbcce6cb75dbdc00
-
SSDEEP
24576:bHhKq8nysh9XJc4oE/sgeL6AMN6ApXqbcZmHAQ:YqE5NsgM
Score3/10 -
-
-
Target
Plugins/Milkdrop2/data/vms_desktop.dll
-
Size
48KB
-
MD5
823fc8bc38ed2543e01bf2469b8ec875
-
SHA1
60254c01186068b75bb8f414c19ca5beabb2f42a
-
SHA256
3aef12f23135f3d041041d2307d45660cf42d2533897c8eb0137dc6ace18faa2
-
SHA512
d7bc0bb4c83c1079f3d80ef9bdf36782beb5136f5f5e50a45c801ba0aa128111737c80672fb448a65d72516f20c1394783c490ae62984555b5d202aaa9855845
-
SSDEEP
384:CI9ySyf2192T4mMHiOY100L6l0jIc96OfkcVo71ntrBhu++cAHlo5JzVAaidI:CI9Nh2T4mk66s9oooJtrBhIHlofWx
Score3/10 -
-
-
Target
Plugins/Milkdrop2/docs/milkdrop.html
-
Size
76KB
-
MD5
a7fded8f052ed6ffcc61702ec6a528d0
-
SHA1
5a3b0ff72e4f3ac91e04cce22669e1d3e8546984
-
SHA256
13f5186a57165cc65c046ebb1a36d64a6c722f595beb1fdd37df5642842467af
-
SHA512
05cd56e832d13da935f9e705490ae9195f54dfaa01f626d0e77533c20a83015279e7a079040e6515f99098175e908b9ab126443adc3d0e9ff10d0160fedea38c
-
SSDEEP
1536:2jg7YupSrU2ZXeI5qIEUPVdn1F6wmFwki:2jrupSrFuMquzn1FdOwV
Score3/10 -
-
-
Target
Plugins/Milkdrop2/docs/milkdrop_preset_authoring.html
-
Size
110KB
-
MD5
0118c32a94c9bf2f399a09984b1ea910
-
SHA1
e469102034bdbd3f48c3de00ba02ec2548dddacd
-
SHA256
c7fac4c6360f7018235ed404bb505fa97bcfa60e10ef61914f2b6184a34566c4
-
SHA512
463f7976eb783fdb23d4eba54cc74b0a0261e7fb779898710d5178a6474d7485fc3c8fb50a910091344290bf91a06916389ee44ef2bce66860fd139c581eedb8
-
SSDEEP
3072:uzltOWUTLjoj6qYefG5kqp+OqbXmRyVlvNk:gulP5qYetH/TlvG
Score3/10 -
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Defense Evasion
Impair Defenses
1Disable or Modify System Firewall
1Modify Registry
2Subvert Trust Controls
1Install Root Certificate
1