702c362c9a02c3a79d018a4d68428dc80fad311adad506cc47b69927e47dbf89

Resubmissions

19/09/2024, 19:07

240919-xsx6dswblq 7

19/09/2024, 19:04

240919-xrd15awanj 7

Sharing

Copy URL Twitter E-mail

General

Target

SpeedCrunch-0.12-win32.exe
Size

9.0MB
Sample

240919-xrd15awanj
MD5

4f6bc12265ee0aec7a9f230f4502a859
SHA1

0f912e3916f129892b735e6bd0c3e4624b78094b
SHA256

702c362c9a02c3a79d018a4d68428dc80fad311adad506cc47b69927e47dbf89
SHA512

6076e839833c099ce56d8317177c3698cda14d05ed7749e900978cd2c8c4fe98b6d0b361c67ce416c37aa87c3971fb5f7504042ce8f73b13d81ff2bb2a3edcfa
SSDEEP

196608:5RE4lq1Bo/rnooXLgMiwbV9+F4SrdggJ8FVhLPnysxHdSEqIJch:5Jqmn9keJQiojEnyLICh

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  SpeedCrunch-0.12-win32.exe
- Size
  
  9.0MB
- MD5
  
  4f6bc12265ee0aec7a9f230f4502a859
- SHA1
  
  0f912e3916f129892b735e6bd0c3e4624b78094b
- SHA256
  
  702c362c9a02c3a79d018a4d68428dc80fad311adad506cc47b69927e47dbf89
- SHA512
  
  6076e839833c099ce56d8317177c3698cda14d05ed7749e900978cd2c8c4fe98b6d0b361c67ce416c37aa87c3971fb5f7504042ce8f73b13d81ff2bb2a3edcfa
- SSDEEP
  
  196608:5RE4lq1Bo/rnooXLgMiwbV9+F4SrdggJ8FVhLPnysxHdSEqIJch:5Jqmn9keJQiojEnyLICh
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  046074d285897c008499f7f3ad5be114
- SHA1
  
  159040d616a056ee3498ec86debab58ef5036a55
- SHA256
  
  254c5ccbce59ad882f7f51d0bf760cabde8c88c5af84e13cc8ad77ba0361055c
- SHA512
  
  ab7436fda44e340dd5909ddec809c6b569a90d888529ef9320375e1aae7af85afcab8c1c1618551d3fe8d6ae727f7dca97aa8781b5555da759d501d2ccd749e1
- SSDEEP
  
  192:+Gs+dH4+oQOTgDbzuNfrigyULWsXXZF/01JJijqK72dwF7dBEnbok:+GvdH4qMebzPY2Vijq+BEnbo
Score

3^/10

discovery
behavioral2
- Target
  
  $PLUGINSDIR/StartMenu.dll
- Size
  
  7KB
- MD5
  
  b12f44536b78280aae0e3f33dba7f396
- SHA1
  
  e57944b2b096f1a1c1c1d31527e48685b7c64ba1
- SHA256
  
  fdfe3db5438b914ed0114ec323d9ea79280fba76cf82174b22632a013c3a3790
- SHA512
  
  2cc1e0bdf37822f5a701cdcce14f1f79e3ca5e8012e8837822301d686af750ee0dc8b4e0825dbbfc151fde35da185dca60b9273a0b3a5750e73fd54fe67f9a5d
- SSDEEP
  
  96:qiqPXbjaKyFU40KhveE+6nrh9MXEiGDdoDxUxOLqtJ1tNRhElfRx2:qiqPXaKy1k4h9kvDxUxj/tjgfRx2
Score

3^/10

discovery
behavioral3
- Target
  
  $PLUGINSDIR/UserInfo.dll
- Size
  
  4KB
- MD5
  
  333fb7dcbcc715bc085b9e93db42035a
- SHA1
  
  36366db5ddee12c5aeb8fb93235d8d3e233ab50f
- SHA256
  
  4ad013f0d6e3807c786cb25ce2ce602f02e5ec8a1d8d3fba730829fab0798c97
- SHA512
  
  8bbf67c64c4ef6b65cbac2563d2979d1dd5e892e7d960c91fe34ff0694500ebd2200f746ad6e541df0438958535ca0f6cc7655ff950fd0290fa45420bdbd2e96
Score

3^/10

discovery
behavioral4
- Target
  
  COPYING.rtf
- Size
  
  19KB
- MD5
  
  d578384572a1748f66a552ee7b2a5277
- SHA1
  
  de53bd40758ebed48cf122c0eb5b30c38cdf268c
- SHA256
  
  ecd637d56048edde0da3d881b7582f62c22f44136d247f1cec3f1293cb06ec9d
- SHA512
  
  b7e0f574940ee514a4d0c4524c822c25e13e2a77e4570b889e83fc8427c5d431690519039a0423c21728d3cf57fe49119a3aa41d0a4cd30a52670e2b57322a5d
- SSDEEP
  
  384:ehBQkM9RDsb368TQWq0fWTP7BSkpQM6RBhjkiIJ2:OalIAbHZ2pBhjkiII
Score

1^/10
behavioral5
- Target
  
  Qt5CLucene.dll
- Size
  
  874KB
- MD5
  
  84eda7f3564073398fda1a4bbcd80701
- SHA1
  
  2311c3d4132d48a8dfda6a80f13f5c66b0fc02a0
- SHA256
  
  5297c1e1865b23885aca6667ee8bd1d2d050ba4a6da7a7bbbf44fb62b84610c0
- SHA512
  
  b8f6ba74bb524f1d8093e562465b82adc950e26e8048595b744831a6bb44bc2f2bd0c593f8a88e453a13a41d10b25884f88c21f46495a3ba7634d063ff8798c8
- SSDEEP
  
  24576:3J4/eZNQuXLnmQh/vmtBpNmF82lJt+j+Gn+HJAfd8OYmHeEyY4U:54/e3QuXLnlFsb2lJt+j+G+CBYm+84
Score

3^/10

discovery
behavioral6
- Target
  
  Qt5Core.dll
- Size
  
  5.1MB
- MD5
  
  87f731e7d9d239372991da4d6a23d2f6
- SHA1
  
  c0c3db5ad8c0e6a7fc97c15d4dc0d175f1d5eb48
- SHA256
  
  fb22791c2f43d1fd0fcaf2a8fa6624c6f4ea1a73ddc0f6ead5839d7e32502644
- SHA512
  
  aae9a469e4274e2e0bfad1b317f48badb4afe80736640c4f9ac64b4ffe3f028b2af51e1ed56f89cbb5d296e2352ac9f3cc5d46e7ae0cec249fec29d26bbc30c6
- SSDEEP
  
  98304:0qbnGBMiKSuvgSbS5NgAQLUrg4NwbRt56kFVmEXAYJsv6tWKFdu9CzlH1:znohOLdLUViv6kFjXRJsv6tWKFdu9CzF
Score

3^/10

discovery
behavioral7
- Target
  
  Qt5Gui.dll
- Size
  
  5.4MB
- MD5
  
  437c27832100148d9592bcd13f529605
- SHA1
  
  a2627c2e7d3a6737035d58388c9c13db99432f6d
- SHA256
  
  4d3a11cc30e7c7f6543a4464fe6b76faa4748665eb765e937f35960c879aa2b6
- SHA512
  
  fba77a94c9bf7bf771e63cb630e079f11010c3a37e71697e054793ec013224ebb38c34660191fd8c2042000ce2a29221edad4e09e1cc688e77fa20289090ba01
- SSDEEP
  
  98304:g/SW818XvfQINMc944os2FAlE8kVR8gEDWoInS4i7IyydFebTq:gnYI/26W3MfhbT
Score

3^/10

discovery
behavioral8
- Target
  
  Qt5Help.dll
- Size
  
  550KB
- MD5
  
  f2a1dd1d5049c8733416347c57a7d09b
- SHA1
  
  f25035ea6c7415abeb2b6f490b238a44369ce758
- SHA256
  
  b0a5e39b306372fb0fb51fe3f831347b32c3e4a5b4169af9d018034031a28b17
- SHA512
  
  e3a4f9d83536288b7a4562fee62e03070ecce3b3d99ede3f105289b6c55d31bbd7a9deae59a8dbe7631ca3babf57993ea7e2b19284b88bdfb91d917481e1165d
- SSDEEP
  
  12288:p00lIk0j5lRfDr5ivotIfe3/WNCAEpvVfo9VHXXgcbzPbWVgA5bHOlA0+ebGg4cX:sFx5iwP5XS9SOlA0+eccqwDxBH7q
Score

3^/10

discovery
behavioral9
- Target
  
  Qt5Network.dll
- Size
  
  1.5MB
- MD5
  
  9c16deab7af0c4485b4c1ee58d25f3b1
- SHA1
  
  4b9c01b86da425d53ca4a069d6ce0782f571a5f4
- SHA256
  
  270c714f33e6e39eeb8f43183378efbaef57ace02b7ad203d165dc1697c15084
- SHA512
  
  57cf813ca8b466d1cd63082514970bd91afef3395cba746c2cc3ccfab954e54a405d4d9dffc4b5c6a634d473bde5386b32abbbcf5edbcd8737beaae440cb9505
- SSDEEP
  
  49152:tAeJdO1XzCZ9Tg4hlt23xqD2yoTq4iKLBjgM:6eXO1XzCDTgelt23xq
Score

3^/10

discovery
behavioral10
- Target
  
  Qt5Sql.dll
- Size
  
  270KB
- MD5
  
  0bc9ec26441633dde079e1606116786c
- SHA1
  
  ed2025571fe2f48aa33d72eed19ff1caf291e096
- SHA256
  
  80cd4ab53ef871838d00d29c8c8650622a87247c66686ccf374da6a023525da8
- SHA512
  
  4d7694f26f8a1d9e398683d57c9bb29ffa1ac9ff771453fe2015d42ebeebdf635ff35e5c950430db0940d8224d9198e0bb85024f2e4fdcf7a947d5fd090bb75e
- SSDEEP
  
  6144:CqBajtEFnjXs4LdEn9OoiTPZsBaOmsEugGOH6DZ4Liw0oYylYmEjXfW:CIUtEFjXs4LdEn9OoiTPZsBa8EugGOHq
Score

3^/10

discovery
behavioral11
- Target
  
  Qt5Widgets.dll
- Size
  
  6.2MB
- MD5
  
  ab3596983afa13bd0ea3824de5dbf238
- SHA1
  
  b36915f877804701ca67b37daefbfd6cf34ff2c6
- SHA256
  
  f5cf40b07b99646818e24bcf8c3e1a1bb50b386778ae5eca774452e04614cd14
- SHA512
  
  f0a46415626856978dabd2d8cc874d059037b83d8282a2587748dedf11d6d73247580616cc797f9ce057dbdcfde2b5699214c9b1d911c91ab2cfc4bc215a0487
- SSDEEP
  
  98304:v8QEKfa+VhcRGBjO/0EwIa0JrPif9aEe9oqwRggvonliGheqQSFAhGyBCaaVuP+S:j7csBA07jhJTVyEi0n01NpSaMTZW
Score

3^/10

discovery
behavioral12
- Target
  
  Uninstall.exe
- Size
  
  443KB
- MD5
  
  4332f7e88ab6617ff3dc9afad58a90f1
- SHA1
  
  c0f1a85901bffb108999a598de48fc3c86172fac
- SHA256
  
  50a6afca04065ceacd86c78eb8f371482655cd67d961cb529cc7372cdc3d1ad0
- SHA512
  
  d7b078031494fecdbc4bb1639e15f7e6bcc249a8edcefbee818cab23e741d135c7f8858cae6a2f5cfc37487653bf517b1e05c92c20525a27e88a3bab72a1ab5d
- SSDEEP
  
  6144:mweE2tat3QoWrKUIgeg+EcwH6IsnKYfh8If5b:Htghr4HY3H6xn1fh8If5b
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral13
- Target
  
  $PLUGINSDIR/UserInfo.dll
- Size
  
  4KB
- MD5
  
  333fb7dcbcc715bc085b9e93db42035a
- SHA1
  
  36366db5ddee12c5aeb8fb93235d8d3e233ab50f
- SHA256
  
  4ad013f0d6e3807c786cb25ce2ce602f02e5ec8a1d8d3fba730829fab0798c97
- SHA512
  
  8bbf67c64c4ef6b65cbac2563d2979d1dd5e892e7d960c91fe34ff0694500ebd2200f746ad6e541df0438958535ca0f6cc7655ff950fd0290fa45420bdbd2e96
Score

3^/10

discovery
behavioral14
- Target
  
  libgcc_s_dw2-1.dll
- Size
  
  117KB
- MD5
  
  fadde43c97607e4445a6f924d851f04e
- SHA1
  
  36c1aa0e1b6d4a322c350f5e502c10c64c203041
- SHA256
  
  f0614835136413217ed3baec9ba22aaac4c37956afcb0209f1f89b7676ae86bc
- SHA512
  
  66f5637419f88070838ed522defad9aa1b46dd4fd8cb045e0292742831520740d152795b6e99770f34061db596019ef3a342a956b541180e78d1c48b2703f42c
- SSDEEP
  
  1536:CxINSJvU82V9dUT4PsXQ+2Q4p2VtjByBzEj6zu3PEhOKeLTxaek:CzmpUkPsXQ+2zsBy9IPEh6Zaek
Score

3^/10

discovery
behavioral15
- Target
  
  libstdc++-6.dll
- Size
  
  1002KB
- MD5
  
  c283d446b34e75019b81d0981cb11f0d
- SHA1
  
  a6e146975dfc55b0659d09e25b9a69f7cff993dc
- SHA256
  
  f6530962659d0641236a42517a30dc55c4fcb7d30e942c3e820af343798a770d
- SHA512
  
  eb51969a79ee4501c955a81cec9f07e9a39007c1ea69c5021e03ebf3b640d949e19f6e0cd7af969e80ec60ea6b8477804fb76deec2704db503e72906103fea63
- SSDEEP
  
  24576:KSNHTild8LMw2g8XiGkMAZ0dP5Bd+1DT50v4H:7dLM8GkMAQBdih
Score

3^/10

discovery
behavioral16
- Target
  
  libwinpthread-1.dll
- Size
  
  48KB
- MD5
  
  d128ae39a79e5d196fc001907b5ec3d1
- SHA1
  
  71de74d0aa93903e0a169c88fd21e0c617f0660a
- SHA256
  
  4195ac1e3a4a8056de42c31d511e0e595772439adba96180b8953ef5f135f7a5
- SHA512
  
  5b32eb7e2f01fb17ed0c4434a525ae3056acddde75c32c5036c18b6f2ffa4cf80cfee9bab4c824ca313e6e33114ea0e761dc8f75db3bbbbe4319c079848a3c06
- SSDEEP
  
  768:NdOT5wjxqOfH36THnf/GcTuI4bOBxZXmVwDI7dTBhkSoFrg22222222222A26wiB:rE5wtqOfX6T/uDIm4xZ2WI7jhkSoFHij
Score

3^/10

discovery
behavioral17
- Target
  
  platforms/qwindows.dll
- Size
  
  1.4MB
- MD5
  
  fb30de85157917b0c29e03262049dc73
- SHA1
  
  7d2d784745922a6f93f4c72c2caacf851176e7ba
- SHA256
  
  41cb06812bf320584b6a8dd1add7b7a60c8c871147c229483df76de384e4a0d7
- SHA512
  
  052a1b8ace7b60753323052e4081ba52ec65270bdf32a5579adcbf00c9c0efccc87dbf73a48730118563b1c3bd266718acbac0ae3101098d1bbb603283de2a81
- SSDEEP
  
  24576:N5OovBn1n7LHvyUkpnUXsJES1O3utyZALXOuaQGZRTNasmyS8f4oP:bzcw3utyFTNasmyS8woP
Score

3^/10

discovery
behavioral18
- Target
  
  speedcrunch.exe
- Size
  
  3.3MB
- MD5
  
  1cc3736991c1d3535efa2f5418a02d33
- SHA1
  
  0b32e50e926c976d83698e0de2419b554923ab51
- SHA256
  
  da69df37412c3d7bb67addd6984147060acff1cb15db4f16d44f251ab936f5af
- SHA512
  
  499bd88b62a1b397fa9bcd57101e23b7a23219c06582c6ad17ebafe434dcc4d7be88094b61cbc2895137f9efc1af9201495c923c716b1b1a93869437b89f5b95
- SSDEEP
  
  24576:b+2RDXPWatHsygqcGgA/uNONBFTBtOexuWUmrp8ZHY+NBtnCyhwQRKpiU3TSiFGR:b+MBkfRCL3BDjcQuPkErqnXY3HxXTvT
Score

3^/10

discovery
behavioral19
- Target
  
  sqldrivers/qsqlite.dll
- Size
  
  784KB
- MD5
  
  f0a91392969c06f31d3cf6329d959b01
- SHA1
  
  48b7bace1d2ec7ce331b3b2c1415fec23b7f9c89
- SHA256
  
  4df2e81b97a7f00e0616280226c11ce3392e223064ac3ddaf9f6e8042f59797f
- SHA512
  
  9e504c46895c7874cea424d54703ef5fc638a5b9a5cc37d2d999c380b2615433a89f18d284d6e08479414c9229e3781b5d3b9b8d5ae8ad3eb4fe8d13df039877
- SSDEEP
  
  12288:tDAYO/NL/xVO3gOOZlYYS+NtnHobbrrLN+20PfFU2J52SdTRWQFREfNKcN5:tROtJVO3gbZlYLqnA+J4MoQFKfv
Score

3^/10

discovery
behavioral20

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Checks computer location settings

Executes dropped EXE

Loads dropped DLL

Checks installed software on the system

Executes dropped EXE

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20