bb92cf6bd0383060584880240a19b35e9ff46ece644f401fc3260595ccbfce46

Sharing

Copy URL

Twitter E-mail

General

Target

UnityHubSetup.exe
Size

191.8MB
Sample

241009-ynyf2asfnm
MD5

60e40cbc509b7adab505f0d3ae5aa9d7
SHA1

6891900a0a8af72cc0d19953190ce7f57670629b
SHA256

bb92cf6bd0383060584880240a19b35e9ff46ece644f401fc3260595ccbfce46
SHA512

97c0f2b33b944f491527c309fb89e19b13a4fea0468906531fb1caccf093955464eb9457ba3c1fd8c0790677e83315a7cfc0249955b34a4a120b750f12e3a11c
SSDEEP

3145728:0v3p4xz3/FwBI5ptNvS7cCW4IkiD7zGdSs4gzubbcpfaCp/+S3Gh2MXU0WaN00lS:aZ4xZwBsLGfiDPAJ4oyQE4/j2h2MXUCA

Score

8^/10

Malware Config

Targets

- Target
  
  UnityHubSetup.exe
- Size
  
  191.8MB
- MD5
  
  60e40cbc509b7adab505f0d3ae5aa9d7
- SHA1
  
  6891900a0a8af72cc0d19953190ce7f57670629b
- SHA256
  
  bb92cf6bd0383060584880240a19b35e9ff46ece644f401fc3260595ccbfce46
- SHA512
  
  97c0f2b33b944f491527c309fb89e19b13a4fea0468906531fb1caccf093955464eb9457ba3c1fd8c0790677e83315a7cfc0249955b34a4a120b750f12e3a11c
- SSDEEP
  
  3145728:0v3p4xz3/FwBI5ptNvS7cCW4IkiD7zGdSs4gzubbcpfaCp/+S3Gh2MXU0WaN00lS:aZ4xZwBsLGfiDPAJ4oyQE4/j2h2MXUCA
Score

8^/10

discovery evasion persistence privilege_escalation
- Modifies Windows Firewall
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/EmbedHTML.dll
- Size
  
  99KB
- MD5
  
  c08431578109da597240a3cbaf65fd63
- SHA1
  
  687ef12f3db594332a3c9e679b8822eb9bed89e1
- SHA256
  
  ee95b019b9c8681be56038bf4a4455f74c4f83c287fbaded6b5aa7b5dcf4a38e
- SHA512
  
  8c8814a4c11ebe48be075e228477f394077efac04f2b7ffbc39339270d9a0b699f8398a17aa4cd4a0570c8f8c9e7de757facd30c326f1dde480a799542b07e8f
- SSDEEP
  
  1536:nbrMlUndmhyVFzIgJYGjUJjwWcgBAJs8jcdc6I++aSEgKP6Zn3WD:nbrMlUndHuJ3Dc6I++aSEgKP6Zm
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/StdUtils.dll
- Size
  
  100KB
- MD5
  
  c6a6e03f77c313b267498515488c5740
- SHA1
  
  3d49fc2784b9450962ed6b82b46e9c3c957d7c15
- SHA256
  
  b72e9013a6204e9f01076dc38dabbf30870d44dfc66962adbf73619d4331601e
- SHA512
  
  9870c5879f7b72836805088079ad5bbafcb59fc3d9127f2160d4ec3d6e88d3cc8ebe5a9f5d20a4720fe6407c1336ef10f33b2b9621bc587e930d4cbacf337803
- SSDEEP
  
  3072:WNuZmJ9TDP3ahD2TF7Rq9cJNPhF9vyHf:WNuZ81zaAFHhF9v
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  12KB
- MD5
  
  0d7ad4f45dc6f5aa87f606d0331c6901
- SHA1
  
  48df0911f0484cbe2a8cdd5362140b63c41ee457
- SHA256
  
  3eb38ae99653a7dbc724132ee240f6e5c4af4bfe7c01d31d23faf373f9f2eaca
- SHA512
  
  c07de7308cb54205e8bd703001a7fe4fd7796c9ac1b4bb330c77c872bf712b093645f40b80ce7127531fe6746a5b66e18ea073ab6a644934abed9bb64126fea9
- SSDEEP
  
  192:1enY0LWelt70elWjvfstJcVtwtYbjnIOg5AaDnbC7ypXhtIj:18PJlt70esj0Mt9vn6ay6
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/UAC.dll
- Size
  
  14KB
- MD5
  
  adb29e6b186daa765dc750128649b63d
- SHA1
  
  160cbdc4cb0ac2c142d361df138c537aa7e708c9
- SHA256
  
  2f7f8fc05dc4fd0d5cda501b47e4433357e887bbfed7292c028d99c73b52dc08
- SHA512
  
  b28adcccf0c33660fecd6f95f28f11f793dc9988582187617b4c113fb4e6fdad4cf7694cd8c0300a477e63536456894d119741a940dda09b7df3ff0087a7eada
- SSDEEP
  
  192:DiF6v2imI36Op/tGZGfWxdyWHD0I53vLl7WVl8e04IpDlPjs:DGVY6ClGoWxXH75T1WVl83lLs
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/WinShell.dll
- Size
  
  3KB
- MD5
  
  1cc7c37b7e0c8cd8bf04b6cc283e1e56
- SHA1
  
  0b9519763be6625bd5abce175dcc59c96d100d4c
- SHA256
  
  9be85b986ea66a6997dde658abe82b3147ed2a1a3dcb784bb5176f41d22815a6
- SHA512
  
  7acf7f8e68aa6066b59ca9f2ae2e67997e6b347bc08eb788d2a119b3295c844b5b9606757168e8d2fbd61c2cda367bf80e9e48c9a52c28d5a7a00464bfd2048f
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  UnityLicensingClient_V1/Unity.Licensing.EntitlementContext.dll
- Size
  
  236KB
- MD5
  
  93c8c09186423417218131cb86ed290b
- SHA1
  
  4c5231e9f875ccd62f18a1ea0b954af991d09545
- SHA256
  
  249d18cad4a4bfc6978996cc4a18460fd4725f11ca2f269147a56f22087906f0
- SHA512
  
  fbc6e71079022e4f06b5beb45e4ebab59befd050c59fea9205e5bf5a6f34f34a1e88455e224ee7c12b2130474b8fa975a72f243a61dfa5111691dbf758f5a05a
- SSDEEP
  
  3072:iiASD5+r/s4aNd72idUyvN8KUXXWPh0qb:iiAC+R6ii3vAXubb
Score

1^/10
behavioral13 behavioral14
- Target
  
  UnityLicensingClient_V1/Unity.Licensing.EntitlementResolver.dll
- Size
  
  492KB
- MD5
  
  256d12cb0e464b3926c7dcf969b17e34
- SHA1
  
  1ba4ecc75880e825fbed7b7faefcdf4f4703d518
- SHA256
  
  d4bfeb9f4922dda018f83f99d8f0f98b6404248626935a14bc3a43f2057f6a46
- SHA512
  
  26c56ed1895873af345af851ab81e325efc133dea4f6e85a291eefcc8085bdbbb8e1a0cbaf437ed47212722cd42159c8f1243b7b8d806b6a0efc2532246cdf12
- SSDEEP
  
  6144:jiAC+R6ii80hiToZEqnczKFH8RGjYcYoOKT+mn8wph+j3lkc:J9gDRVHMc3v+mxqj3lkc
Score

1^/10
behavioral15 behavioral16
- Target
  
  UnityLicensingClient_V1/Unity.Licensing.Genesis.dll
- Size
  
  120KB
- MD5
  
  75649597b72af80dac4e337847a2028d
- SHA1
  
  4fb52f82aa1175755f7c1ad621e987088a8fabe4
- SHA256
  
  91a56d41b80f5c5d17d28d6d2a4aa3552fb981ba5d2b58bbf6a197e31a3d04b9
- SHA512
  
  ceec22b453d6971b00ae475d72c59391225981a6127341c76cbf0408e5d4030d31a287ac03b3c83142dbfc8eb3cf03f973cfa3dcb9ca1a18531354fa99a5cb44
- SSDEEP
  
  1536:b1phwezMDML/z1peDsLKdIWGbUVoQOg8fTiijWoYipFRGnxo1Iil/u8tKx1:b1PvztWsLEvoQ781Wgjonxo1Iil/3t+
Score

1^/10
behavioral17 behavioral18
- Target
  
  UnityLicensingClient_V1/Unity.Licensing.Infrastructure.dll
- Size
  
  228KB
- MD5
  
  5ccec0dfefa52e99c2be2f76220a9bc7
- SHA1
  
  642bd44114db9ea4e0b3c01b5c93a77516303e98
- SHA256
  
  e5d2107376bd47bfc8b7b707153f59171e2ee585788f28d8cbbc5091c579b203
- SHA512
  
  7304452fd6e9f6b87d1f466e2e3a23a7a75714bf1fa12be02d94eea9cbec1e8555df0e0da88ca1b5b82b6c89ecd0e170fe02e81b711e92206650f2d25950e87a
- SSDEEP
  
  3072:biASD5+r/s4aNd72iu0p5ltIiHoxK9DectO9Jca:biAC+R6iilp5lIJca
Score

1^/10
behavioral19 behavioral20
- Target
  
  UnityLicensingClient_V1/Unity.Licensing.Ipc.dll
- Size
  
  268KB
- MD5
  
  7adae97fa723d37a8a530a2680e84d9f
- SHA1
  
  41bb035d9504e6f2dc5b2f9a3be90b37b9b60b06
- SHA256
  
  7f6a8226f925c8ee7baba6930f891d78bb732e3f61565eb5d0813fb8b01abf8a
- SHA512
  
  6568b9b4dc25c5aa73d0003edca53dffaacce2163ffad1cdba845dfc12c5b9264c918efa722ebaf30e8a267229b8153e812d80f136cd0d6c1dc43cf27589aa96
- SSDEEP
  
  3072:ciASD5+r/s4aNd72iWAfd0X2zKNK9dbaU/C/sX3wF1Y8hj4Qd4m4rz26:ciAC+R6iiVV3faU/rXAF1Y8hj4rmV6
Score

1^/10
behavioral21 behavioral22
- Target
  
  UnityLicensingClient_V1/Unity.Licensing.Logging.Log4Net.dll
- Size
  
  208KB
- MD5
  
  12256f10dd9f486052d324f6eb19a8a7
- SHA1
  
  c811cf7506690535e60f154e632de11292f887d2
- SHA256
  
  969b8f1f41a1f0351aa4f1699b7378bd7bfe922d282534af1c08b221b3386adf
- SHA512
  
  69d1307a5275675f4b929dc49f0fd63bcd41e27750d71e7b3fcdab3a9a811e3987d3798b8f8ba34e58e73aee6e8f5c48bf73f1831d5bce9ac1aa2972a9f10a1a
- SSDEEP
  
  1536:OihlnO8nOeskP8Y0SpUUulku2J2svTM6+pcG8OCL8xJuVuUdiNdJNweoZy2hLIS5:aiASD5+r/s4aNd72i1JDMYQe
Score

1^/10
behavioral23 behavioral24
- Target
  
  UnityLicensingClient_V1/Unity.Licensing.Platform.dll
- Size
  
  380KB
- MD5
  
  0d7948812f91adee46fb80867d8e5c7c
- SHA1
  
  b099122142e9832d0669ed42a36e6b079c01b251
- SHA256
  
  750687a762aaa5fcad51d80c115b4df21501116e27cef9937bbee7371012fc66
- SHA512
  
  d78b68dc79b09d4afcbdb802a49636a975f6f930242c1cab83e1c8008be4d170ad53c7f58b6a688985c5f89ad39c09ffa43b4bc3ccbf28030bd5fbf37a635605
- SSDEEP
  
  3072:7iASD5+r/s4aNd72iaTW0clwyII1ZA2b2Atk3j5bdDcae3P0kpr3I8J766+vjWQH:7iAC+R6iiD5ptk3Vb+aecC766+vf71d
Score

1^/10
behavioral25 behavioral26
- Target
  
  UnityLicensingClient_V1/Unity.Licensing.Server.Shared.dll
- Size
  
  208KB
- MD5
  
  674ba289a4d34d3c7e7450ae923c81bc
- SHA1
  
  1cc69eb7eb85ea7c8ce4445639ff6f5d3a6c56b0
- SHA256
  
  77528fc2de0853f394920439c8dacf6d13d45b612d9b940992ca04a76d47a4c0
- SHA512
  
  1fd7eb2e62d2694eb7ae2a760d3c9a5058f8832d495f1527af7b769b377456f35bd9d92a546fdd7e37a9d0d4ceeeb13260abd35c2489e80a77e372ebeb12fac6
- SSDEEP
  
  1536:dihlnO8nOeskP8Y0SpUUulku2J2svTM6+pcG8OCL8xJuVuUdiNdJNweoZy2hLISu:3iASD5+r/s4aNd72iNU0SDrBct8
Score

1^/10
behavioral27 behavioral28
- Target
  
  UnityLicensingClient_V1/Unity.ProxyHelper.dll
- Size
  
  32KB
- MD5
  
  a80ce82982bbf64acaca276ae8accfb8
- SHA1
  
  5a87e6ba652a53773daea17f9a0ed044337ed10c
- SHA256
  
  7ebf522fcfcaf117491c77a31622cb8d90e5fa0d225a67bba87af086221bfe72
- SHA512
  
  32d2407ac35e453f62668b932e83b73b4e99953e2cb0428046bddc417eab8c02bbe01de4f23abfbff6c03d63fa2d80f06d84c5b0a1fe49033040af0a8c71148d
- SSDEEP
  
  384:fbv47WQxUDiKxaKKhInAM+o/8E9VF0Ny6g:fbQ7XmmLnuAMxkE1
Score

1^/10
behavioral29 behavioral30
- Target
  
  UnityLicensingClient_V1/WindowsBase.dll
- Size
  
  15KB
- MD5
  
  94076c7f43fe9368519aeebd48c88870
- SHA1
  
  0300840438a3245d609ea70afba1fcf7a29192f2
- SHA256
  
  801d6d3913e2d71ee8360a823e38be93cf3e04f9fae21b1fd635d191acfd38fd
- SHA512
  
  baef450c01e672da495a98b7d00abf0c84ec909e8fc2b63632ec0b0756857bc4d1c33292780a9b535d66298d1042aec82f251e34f2b7a8fd915470aae8d2350f
- SSDEEP
  
  384:k1asoWQclANWVrcW5y46Y8AM+o/8E9VF0Nyj/i:rByfK5AMxkEFi
Score

1^/10
behavioral31 behavioral32