General

  • Target

    Downloads.zip

  • Size

    2.9MB

  • Sample

    241109-zsnyts1nct

  • MD5

    da90f083c3a19995aaf408c0c798ff73

  • SHA1

    ba2511103c692e495901c9946d4a399dc8a0efae

  • SHA256

    c851a578e4b58ae64442943885d08d7acbf33191ccdcff3666855eae33f28a9e

  • SHA512

    47b64fbc6d0f849cd52051873b0767d343a9fdd7ac393e16eda64b8628568dd94a0cfe1b646dd19434263c37e71e60f837000d691dfefd481a7eeabecf1ddecf

  • SSDEEP

    49152:HX0duufTVdS/xgEqk95ENeUK6W4CEConBeeyPd95ZR6WR8pJKnNlh4iLhHO:30duiS/eEn9h6dCdonBeeyPv5ZR66/lI

Score
8/10

Malware Config

Targets

    • Target

      Activator.exe

    • Size

      602KB

    • MD5

      c5690e5045f49afda18ff9a0a1a8b42b

    • SHA1

      3ef87607cece6132fb8ef100271880d176bb62aa

    • SHA256

      ee6e3fc9bbba21693e29f5bdcf361fcd3ac540b126c3584f640e50f876d4e6b3

    • SHA512

      276abdd89926d19c4398d08d4a29a1f4d4d9fce734376a73fe20d2c5583408b7605a347f9fe4c0699ae4c09fbd5f730dfdc67bb14d623b12693a54883c7fd08b

    • SSDEEP

      12288:Di8kg48vcivO9h2farcamOCLSkghGkEct90JNBxWRoSes2:DiTVh2VyxPy1

    Score
    8/10
    • Drops file in Drivers directory

    • Target

      processlassosetup64.exe

    • Size

      2.5MB

    • MD5

      d8e60a71d476929bd1b154aa9b40357b

    • SHA1

      98d372828b8e5e8aca6bf4f144322f5579fc240e

    • SHA256

      6731380673d0113f0d32ca85bc805f925782a8a9035ec93593c633974f95843b

    • SHA512

      fbbdced95a7340db38ff93245f284c27f65e8b96318bb181a7c76d4a24bc1779ffa35a4a435132b72e33ed4d119297e582074615160b87f14ff4c2a9862b4737

    • SSDEEP

      49152:o67zedcWNDTRo/tCmkwj5ENeSKSGKqGCanjweyPR9yYjbRfkJ8NJKQmk:oeedcCK/omDjnStq7anjweyPDyibRfO8

    Score
    4/10
    • Target

      $PLUGINSDIR/INetC.dll

    • Size

      24KB

    • MD5

      640bff73a5f8e37b202d911e4749b2e9

    • SHA1

      9588dd7561ab7de3bca392b084bec91f3521c879

    • SHA256

      c1e568e25ec111184deb1b87cfda4bfec529b1abeab39b66539d998012f33502

    • SHA512

      39c6c358e2b480c8cbebcc1da683924c8092fb2947f2da4a8df1b0dc1fdda61003d91d12232a436ec88ff4e0995b7f6ee8c6efbdca935eaa984001f7a72fea0a

    • SSDEEP

      384:wv1j9e9dEs+rN+qFLAjNXT37vYnOrvFhSL+ZwcSyekzANZBJ:w1AvEs3HBLzYn29vYh

    Score
    3/10
    • Target

      $PLUGINSDIR/LangDLL.dll

    • Size

      5KB

    • MD5

      68b287f4067ba013e34a1339afdb1ea8

    • SHA1

      45ad585b3cc8e5a6af7b68f5d8269c97992130b3

    • SHA256

      18e8b40ba22c7a1687bd16e8d585380bc2773fff5002d7d67e9485fcc0c51026

    • SHA512

      06c38bbb07fb55256f3cdc24e77b3c8f3214f25bfd140b521a39d167113bf307a7e8d24e445d510bc5e4e41d33c9173bb14e3f2a38bc29a0e3d08c1f0dca4bdb

    • SSDEEP

      48:S46+/nTKYKxbWsptIpBtWZ0iV8jAWiAJCvxft2O2B8mFofjLl:zFuPbOBtWZBV8jAWiAJCdv2Cm0L

    Score
    3/10
    • Target

      $PLUGINSDIR/System.dll

    • Size

      12KB

    • MD5

      cff85c549d536f651d4fb8387f1976f2

    • SHA1

      d41ce3a5ff609df9cf5c7e207d3b59bf8a48530e

    • SHA256

      8dc562cda7217a3a52db898243de3e2ed68b80e62ddcb8619545ed0b4e7f65a8

    • SHA512

      531d6328daf3b86d85556016d299798fa06fefc81604185108a342d000e203094c8c12226a12bd6e1f89b0db501fb66f827b610d460b933bd4ab936ac2fd8a88

    • SSDEEP

      192:Zjvco0qWTlt70m5Aj/lQ0sEWD/wtYbBHFNaDybC7y+XBz0QPi:FHQlt70mij/lQRv/9VMjzr

    Score
    3/10
    • Target

      CPUEater.exe

    • Size

      494KB

    • MD5

      039af17d7ef022d60330959aa707527f

    • SHA1

      bcf56f553c0f261f269c03d9d573c69f911988e7

    • SHA256

      55640ad3e7be1fd2f44cc4af40406415b9812e96244c857a580b19fc2ba44721

    • SHA512

      048ad66663e40d27f66482ea59d07ff6713169a4d48cba3465d5d15f6e9e5ccea13451e875e1b006907732fad46ca3a98d266ac4344af1ff6d564ea1e2d3456e

    • SSDEEP

      6144:pwVTL97LVPL5gGJdw6klZSDLobAJi4H8mqGZbfcPoVRe0Qh7Uo:eFBFnwDlZSfobAgmqGZwcU4o

    Score
    1/10
    • Target

      Insights.exe

    • Size

      757KB

    • MD5

      244c3438e2ff55b3878dd92303804aac

    • SHA1

      679f3d0ca54169d4d723ca3d489a83353ebf008c

    • SHA256

      f02d95e9aea59f068141ff107cf9216fae0c40e0121b0a858ce292fc09320987

    • SHA512

      ad2f59ae5b34547e2ad24ad33a3c4d9bd1b50dba4feb68e11757fd5662f5d4b6b1d84a52b7f71e7c5babfd5ea1cc2ad561572e3d76fd4df68ef765a5e7c9d111

    • SSDEEP

      6144:lxt/lVSnF5eGaEFOpCacyAi0N0Pl1lQZywqZSwlTe1SbXm9Z67WG2P:rXVSnF5pZOpLcyAi7lfQZYBeSKG2P

    Score
    1/10
    • Target

      InstallHelper.exe

    • Size

      771KB

    • MD5

      d1612455959cc18a461fafccb2040d93

    • SHA1

      90261bfffc18621b593641f9a0e3e75e3c64f1b0

    • SHA256

      4a2a5dd1ec1500775917b4ee4d976e01f3319be11c44fffbdc1a2985c9fdf564

    • SHA512

      564f10d2bd63d2733d5d7cbf3ae26a09d6cd38b3020427123dbec198775a6c6168763de875ae1fdb86023553a0f65c36e0cbc2b3a7b2cbd599dcf3967820c963

    • SSDEEP

      12288:8D3MzEemaDIxP72HcdJUZL76hik3ajkNnqpUKGtce:S3Mz/RDIxP7CcdJUZLwp4Sqotj

    Score
    1/10
    • Target

      LogViewer.exe

    • Size

      857KB

    • MD5

      5447e44d6addde3d922e0f55c2de95ef

    • SHA1

      792ade4687e01825416687cd9e771d66008f4824

    • SHA256

      1113cd6a95440176a1115120f19c443eff33a6621c575bb192766d5bf9f06d36

    • SHA512

      071932a33c1c049a52228e6e7bc3c26d9cdb0cbea7d8cd2c1d026e1432bc895d821731eff0b9a4e980cc3cbcf0c725171601e0ec2f8b3466d9c91664af0f9946

    • SSDEEP

      6144:NR4phMh8MTnPG5foxnGg6ve/2NhGRxvf2e0ezAihDdrIEsDpENNsVOOFdhJoQPFg:Nu9Omf7vnGRxvf/AOBrADFOOFnJo3Go

    Score
    1/10
    • Target

      ProcessGovernor.exe

    • Size

      1.2MB

    • MD5

      4f196c4b7cd92cf02c851e26e342e90e

    • SHA1

      ff113e78761fe530e62e19ffbd46276f8d8ca7fd

    • SHA256

      db9ff1e50c812ac94f18f4b2467ee5b5b6f31790c4ba352ed761c30c926b490a

    • SHA512

      86deb988179ab2954710cf546e9ed6ed781ad2a2603bf3fad87ca4d0301044e438a20d85683790d27c4f51188157976a1a01ec923f76ffbf9bf040d3978e3f32

    • SSDEEP

      24576:0k8zYQhSEhOH+ONtiYQ5YhYGLNvt3O1eRSRuax:z6Lhm4AYeNvtSYO

    Score
    1/10
    • Target

      ProcessLasso.exe

    • Size

      1.8MB

    • MD5

      0af73302f3ae5cda4138a76ac1c6d442

    • SHA1

      e2449b175af737a562a3d909d385740005bb1ea8

    • SHA256

      554c4c0215bd5bee164384205960b1a40c9068661755cc11b9f16b99d1ed43f1

    • SHA512

      2a1b8eb4f34f38f687d584b7508203009e86b0558768ae9aa5ecd19ba669004b12c8b1708c64e68417c651e2d3ecef963d463680d644de7d4ae99e6e61ea6fde

    • SSDEEP

      24576:0ZE2iZ2nn9DIgDIkce6TRWacpjOH+i9smBxi6asVgr2tJvrO1URGKZsN9RNDm5JQ:DUn9Dv6NWacotmC623O0rpud

    Score
    1/10
    • Target

      ProcessLassoLauncher.exe

    • Size

      397KB

    • MD5

      5c92cc78d8ff27e9e8ebb8648cb5387d

    • SHA1

      b00d6ac2eda834bc35961faebadc7a77c67a10ae

    • SHA256

      e55da05f4ba12ba1208083aa437e4f12075a489befe367be901db41c47b3182f

    • SHA512

      2768d1b83e13c248402bf0afe0caf782dee4fc8cfd7876fba4595e23df626220a00bea161c409dcf66e36d2f459688693014fa762713b9472871d04d25f71b5b

    • SSDEEP

      3072:CtaJfs8AceCnQYaTz2BMYEY/Clo4Ilnkyk7HoZ7WK7TlbsM:2ai8AXCn4TCB7tky7WGdB

    Score
    5/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Target

      QuickUpgrade.exe

    • Size

      470KB

    • MD5

      2ccc30cfe82c71cf8bcec9f7b43339ce

    • SHA1

      7fa47ee47a9ce5af14c682adb80f558b6961491e

    • SHA256

      e43483a32b32d675b18bb0d43d327c1153878123c849f6a115558fd1188bef3d

    • SHA512

      d0046db2e2956ddfb5f87cf76d599b90b218f6ffe1267fdd54fe9937f9a370b6525792cd629c4cff54db077a797d5b6ce72f2c9f2f916824e966e50afcfa0248

    • SSDEEP

      3072:XEu9j2GiLS/k+oY5e6vs4Y/ZZkpPqmAoTL0JJMJz9huUsJD5Vk7HoZ7WK7Txqp+a:XEu9jZW+f5e1xwpyVdfHV7WG4Ea

    Score
    6/10
    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Target

      ThreadRacer.exe

    • Size

      536KB

    • MD5

      5252c1f9123c435971c25eae6aff0ca9

    • SHA1

      8732a7c6d099dc5e458f43dc3ff25425a337a0a0

    • SHA256

      2917b4208bd7cf4e058aa6b6fa9c7ebbc32243d83d03000f79cb24bebd31b71c

    • SHA512

      bcfd58679bcd6d12710a444c0d00f6be978c7222e59e8f64cd6290455e43303a32a0ac15be56346fd7239ee0aa3f3d9cd3c6d8d9e5355dcea40a908529b99115

    • SSDEEP

      6144:pdvCmIvb3j1xsuCVkxTUMy5dtOYoclf0ah25i2LWl57WGml:emoJxsPVkfktOrhajKGml

    Score
    1/10
    • Target

      TweakScheduler.exe

    • Size

      619KB

    • MD5

      561129369a331f1f2e6633e3d801f912

    • SHA1

      4d244022f4e2741c3f7945148d4e850d7a44f3d2

    • SHA256

      9f9d493489c6e12c3332a50d3f20124e00ac14425a835c6876f285f83165bd48

    • SHA512

      741b373c5bf2292e3b29572d06cf0e1aff78009b4dfe98597a633228dfb31939fb9814f3a0e22282575d0158c1d99fe49d3ad1f605b8d7c34175d7204687d623

    • SSDEEP

      6144:POfuWgX90Ch8mqQK5MLrHNrxBdDZMwtFHnIJCnbvDwrZMwnfMR/BNVJ:B90iHOUHRdtMwtFHIWj8r+w0tBNVJ

    Score
    1/10
    • Target

      bitsumsessionagent.exe

    • Size

      177KB

    • MD5

      ef9cca06b3d1fe3368daa0fb234562df

    • SHA1

      aba7caae3686b7b54eee007bc9edcd5a4e954442

    • SHA256

      07ffcd6068d460a8e2c8b1dcb1190951714f3c37d60937531e8a4fd7997af382

    • SHA512

      17cb9e3935fee73dd96667f588c4727e35c0850b1fb7b31e878a4a0b96c83b3c15e732c69690cc375f0ea8f7ec1d2d57d1665fdd50ba67e9576bc23128e44df4

    • SSDEEP

      3072:+YHCWTn02jGqxokmkEYuhjj9GuUoSQzcGdEsji4f:biWT02jKrYM9JBvFv

    Score
    1/10
    • Target

      pl-update.cmd

    • Size

      40B

    • MD5

      cd60ccd708d428df44ca1d454ad0d68e

    • SHA1

      83e3fb9ef19c7d3faabc0b391f96803652fda425

    • SHA256

      ab965ed0402b4c474fe6c988afee9957c5494c687745114fc80d1fb70fb071bb

    • SHA512

      b400530473683de0f7cba3f206b38ba1a0a4d3156a06168c3db0391eb33be1cb6fa65e736c746067aac394d538fc35de8764c30978734bcf4e84392b3294c10c

    Score
    1/10
    • Target

      pl.cmd

    • Size

      77B

    • MD5

      aa54d58336d2565c369498d035737f8a

    • SHA1

      c6a8791264081a6f854b30ac11477bdd83a8cbee

    • SHA256

      9af8add66b2bb4a0252b65e0f13238055b601d689e8d29455d5b2c87f901fd7b

    • SHA512

      82d9eeab7cb95f012b55d531ba7af84546be650702f40ca294c74858eca5eadc0ed7a87bc65122df4093e483dffe1e04e306845871955b2dc4f5113f1cf34838

    Score
    7/10
    • Executes dropped EXE

    • Target

      plActivate.exe

    • Size

      213KB

    • MD5

      a3230cd9cfdb156e7309ad2522fc933d

    • SHA1

      c9192bc71cfc04eed8e8afb164bdad9784855ebb

    • SHA256

      9086c9b2c770c4a9edc34323a1aab888b1d6cd9fdb1dcad90d66bd1cd65a3740

    • SHA512

      3c4fe6ec01cff42decd36fafbb668a5d1fbbf9c4687ada0efdd16f91602c6a8d2466f8d401a66abb3295ccc59e2d4a2d4164443201862cea30689b2f9d9b47f9

    • SSDEEP

      3072:xpqaIrKY/6RJcZNqQSkQ1P+VCx0qR4Epu1N+D7T+x0:xpO/6YZEQSzP+I0Y7T

    Score
    1/10
    • Target

      pl_rsrc_bulgarian.dll

    • Size

      1.9MB

    • MD5

      1fde6ae26bcec373ee5637e062d5903a

    • SHA1

      66ed58b177b50a5eedec8012cc2f78ac83b79291

    • SHA256

      df630798c593b4edd438e1269ff0e36139ec924f43e2c8b51369438361ef8b46

    • SHA512

      135258cc1ba023f60e83dc542548153b3dbd52d967d3cb8e1be270aa59f3e19e19d7297b200727dfe8bcf86998a4e2fb1918836ef35aa30eb0d64a883bc80d00

    • SSDEEP

      6144:EfFa9MmhuV2FFdq7qFrwnim0gsZEeV3dy1djFC8fB4adLxp7WGCNE/Jt1icNE/J9:EfcHo1pFzLXKGh4ZJe6cwTqREewn

    Score
    1/10
    • Target

      pl_rsrc_chinese.dll

    • Size

      1.8MB

    • MD5

      4302a87debbaa465a5028d6ae41f75f7

    • SHA1

      08c4bc37faeb545035c087c195edf465380364a9

    • SHA256

      b1915dbeb88cb197710d2712fb0e3179f7412c2fb5af739b74fbdcb9f1abbf53

    • SHA512

      87c9b0839fadb2e36ef2fdea8ea39c18fa2e7d4561442ed4581a2eb82a7111f2c871d30f61be9819ba382d2cee7bdb8ebaf6255d74e4b93bf322ab49b5205c8f

    • SSDEEP

      12288:TfcHoX0FzLXKGh4ZJe6cwTqREewg02kw5D:TfcHoihUHTh1ED

    Score
    1/10
    • Target

      pl_rsrc_chinese_traditional.dll

    • Size

      1.8MB

    • MD5

      e75dcbb2cbf06f081f6294ec001eff58

    • SHA1

      941d84ea4a394a6bf797d4c9bfbbcdd632f3b792

    • SHA256

      a60627421a39545ee541be866bcfe95ae6d240aaba78b4c8c0ecf0d7874aa2df

    • SHA512

      07a94a65c4414efa1a8976a68b9a2d954da89fe80bc41479bb9ce8a19925c49a535a005b06069ac5c42aff4cb6804ad13b95c67de7fac23cc4e2ef5efd9062f8

    • SSDEEP

      12288:BRfcHoUHRhFzLXKGh4ZJe6cwTqREewOlqCT:LfcHo4BhUHTh1sH

    Score
    1/10
    • Target

      pl_rsrc_english.dll

    • Size

      1.9MB

    • MD5

      7dff142d1a4be1800a4abc2508a9e0f9

    • SHA1

      43e8163610a6318d45ca4395fad89bb190b0934e

    • SHA256

      91838b48c104c71538bc2fd7b3e4174ac660713bade0a1e8cdeda8feb5e71466

    • SHA512

      0384420a62bb2118e4e96f030c1922d10001cc71d9d51837d75964c023f067192a90696b07d1db70f8332d044f60ba1cf5ff05eb5a4b86bf76782054aaa58b17

    • SSDEEP

      6144:KkfFa9MmhuV2FFdq7qFrwnim0gsZEeV3dyNN75jFC8fB4adLxp7WGCNE/Jt1icNe:BfcHordFzLXKGh4ZJe6cwTqREewxeG

    Score
    1/10
    • Target

      pl_rsrc_finnish.dll

    • Size

      1.9MB

    • MD5

      9abd6e1115edee8f350abb897f108abc

    • SHA1

      16bdf35aceb886bea94c9a6f25e53b6ff1ebf475

    • SHA256

      9feee61211d23dbfcec472ab99da8e384e57c8214b19fb62233a02fd7d70e2cc

    • SHA512

      64e0be9194a489d33d6119d4a0599d08f14fb5cec1034af01a5b9c5eb6b238771a247773e063103552e9cbad3c877d61d6d477d0da09a7b68bc71d3b578e013d

    • SSDEEP

      6144:xfFa9MmhuV2FFdq7qFrwnim0gsZEeV3dyGmjFC8fB4adLxp7WGCNE/Jt1icNE/JO:xfcHoG0FzLXKGh4ZJe6cwTqREewRq

    Score
    1/10
    • Target

      pl_rsrc_french.dll

    • Size

      2.0MB

    • MD5

      9cb0767d8f9b9e1b3f43251c9f20a156

    • SHA1

      bf2caeca17923684a7693cb99a5c6cb15147335a

    • SHA256

      50855cca4a4c3ed1106214a192fe8aa04fe757beb356f8add898d09bbdf6a4ff

    • SHA512

      8753148711ce88e44e8f1be0542c63377b2ce2fa3affe8c922a089d2005a4e2184310d065a287a796510367d39b56b430d1ea9daa2349e0f7a21dea8bf3f2a2a

    • SSDEEP

      6144:xfFa9MmhuV2FFdq7qFrwnim0gsZEeV3dyvejFC8fB4adLxp7WGCNE/Jt1icNE/JY:xfcHovsFzLXKGh4ZJe6cwTqREewc84

    Score
    1/10
    • Target

      pl_rsrc_german.dll

    • Size

      2.0MB

    • MD5

      d261bb34a6d641baf000f0679756b464

    • SHA1

      c67b08f03d793e16a8322abde2bbc664be2477d8

    • SHA256

      462ef064524144f2f2a96728911ac70c594c4a91e58a43d474728cb93274e0be

    • SHA512

      3ff868916464eae335b7ebd3c9bd1f780616ca1b0bbb880861d4bcc53dfc03c3d2e32df1bbf883ab3ab0680ef7cafb1702da76da02d9c3decdd1453d5d08d5a7

    • SSDEEP

      12288:RfcHoK5FzLXKGh4ZJe6cwTqREewzvdirS:RfcHo2hUHTh1gm

    Score
    1/10
    • Target

      pl_rsrc_italian.dll

    • Size

      1.9MB

    • MD5

      5fe22cc18d4f280bd6d9e93094679089

    • SHA1

      44380c6ba4af9c14d185e8a82eeec9685fbea8e7

    • SHA256

      0f0d63a30dd820f0526c558c10dea88c05fb3e471c2fe23929b7cb3730a3e644

    • SHA512

      e8fa09aa1cc8113e89c726d45175dc3532d22dc687f88201aa4e066c3fb5c62eafaa5a6b9fecde15a0d7948f0b4099a5af5fedef5a27f93a6f908aade2564468

    • SSDEEP

      6144:CfFa9MmhuV2FFdq7qFrwnim0gsZEeV3dyZ5PpjFC8fB4adLxp7WGCNE/Jt1icNEo:CfcHoZDFzLXKGh4ZJe6cwTqREewEx

    Score
    1/10
    • Target

      pl_rsrc_japanese.dll

    • Size

      1.8MB

    • MD5

      13d68151555144bb85a607284c7e5ef8

    • SHA1

      2bf059d968ef2ddc528470d888983b33758a3fc3

    • SHA256

      aa429e3e17cf43f2e5bc039685d7fad4de4dae4c13d99041754296005410dcac

    • SHA512

      ab77e0efc397cfce95c299751cc34535a73f94d7e5cd52409db819bcf1e092cdebf79e9830be8a18c572606e5dc0449201f4d0d28606f6b2e3be436904d353d8

    • SSDEEP

      12288:ifcHoXMLFzLXKGh4ZJe6cwTqREew57nteu6JF:ifcHoQhUHTh1q7f

    Score
    1/10
    • Target

      pl_rsrc_korean.dll

    • Size

      1.8MB

    • MD5

      a9a5bc29b9332a3665153e39d9a6f5f2

    • SHA1

      4543bd7894edabba2609631e20db364482e3c867

    • SHA256

      08cfe83c462e85b07514087d3861267385b8ffe3b70c241acf76a154f9550777

    • SHA512

      baceb904b1017e4f67f121b3ed01cc1af819b78b633db9f94a6290bd32e933d613b307f5f0b2f507610a73a194368c30841259d06ea165dd974e1545d6afb325

    • SSDEEP

      12288:2PfcHoLwf6ZFzLXKGh4ZJe6cwTqREewTFvG9F+tgG:+fcHocf65hUHTh1TFe9gtgG

    Score
    1/10
    • Target

      pl_rsrc_polish.dll

    • Size

      1.9MB

    • MD5

      5bf568e8336805cbaba41304bdbed80a

    • SHA1

      9d40341bfda74aa4181c71e4f465b00a7949e379

    • SHA256

      7c2c4d158e0440a2feb56050b539171283a5c7abddeb37d1b4ceb96ba4431003

    • SHA512

      48479f2df97fdbd7a58fa1d5b4fc55849f2b6a0f701f571ce673eb4fea98b7597b2cc0485b18f3fe1122e28670c4b339e656c2ebc9350ecdd94b82a9b3b1373c

    • SSDEEP

      6144:3fFa9MmhuV2FFdq7qFrwnim0gsZEeV3dy/EjFC8fB4adLxp7WGCNE/Jt1icNE/JF:3fcHo/SFzLXKGh4ZJe6cwTqREewn

    Score
    1/10
    • Target

      pl_rsrc_ptbr.dll

    • Size

      2.0MB

    • MD5

      1b9d4fe78e393f2c4503e3cd3c25e5df

    • SHA1

      32738e4e3dfc334d7df0b07ce94806477c80adb9

    • SHA256

      14b6ef231ba0cb09e73b866e17cb719c325b958da8eff89b69139a9d96ca36dd

    • SHA512

      06626df28c5d49a8921c1476177c46e9ffd610799ac05d928036b1164af0df1cc5be105a90c942b8d866a2fca38ed001a85768260028b0b39fcba63a94af1d9c

    • SSDEEP

      6144:NfFa9MmhuV2FFdq7qFrwnim0gsZEeV3dyzojFC8fB4adLxp7WGCNE/Jt1icNE/Js:NfcHoz+FzLXKGh4ZJe6cwTqREewZs

    Score
    1/10
    • Target

      pl_rsrc_russian.dll

    • Size

      1.9MB

    • MD5

      61cb29cc44631af1eebd5c14c0365419

    • SHA1

      ca625a182c078586994bdf79e4ddc64ab30efc0d

    • SHA256

      57bcddd4b91f07570127fb076eae05cc476c7ee1fb4f0d8f0678abd10e570d2d

    • SHA512

      e7e1d8da2a2232e0f65c61543f06cafeb78ec02b988d082824a6e558788d7339ecfded8923422f2343e0852482b82a5a84cb5ed14ead8bc7e0863ed4ad7943e7

    • SSDEEP

      6144:ffFa9MmhuV2FFdq7qFrwnim0gsZEeV3dy2ajFC8fB4adLxp7WGCNE/Jt1icNE/J+:ffcHo2gFzLXKGh4ZJe6cwTqREewXc

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks

static1

Score
3/10

behavioral1

discovery
Score
8/10

behavioral2

discovery
Score
4/10

behavioral3

discovery
Score
3/10

behavioral4

discovery
Score
3/10

behavioral5

discovery
Score
3/10

behavioral6

Score
1/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

Score
5/10

behavioral13

discovery
Score
6/10

behavioral14

Score
1/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

Score
1/10

behavioral18

Score
7/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10