Overview

overview

10

Static

static

10

MIXED CRAC...OT.exe

windows10-ltsc 2021-x64

3

MIXED CRAC...ws.dll

windows10-ltsc 2021-x64

3

MIXED CRAC...sd.dll

windows10-ltsc 2021-x64

3

MIXED CRAC....0.exe

windows10-ltsc 2021-x64

7

MIXED CRAC...on.dll

windows10-ltsc 2021-x64

1

MIXED CRAC...on.dll

windows10-ltsc 2021-x64

1

MIXED CRAC...or.exe

windows10-ltsc 2021-x64

7

MIXED CRAC...st.exe

windows10-ltsc 2021-x64

1

MIXED CRAC...ol.exe

windows10-ltsc 2021-x64

3

MIXED CRAC...32.dll

windows10-ltsc 2021-x64

3

MIXED CRAC...32.dll

windows10-ltsc 2021-x64

3

MIXED CRAC...on.exe

windows10-ltsc 2021-x64

7

MIXED CRAC...gn.dll

windows10-ltsc 2021-x64

1

MIXED CRAC...ts.dll

windows10-ltsc 2021-x64

1

MIXED CRAC...rk.dll

windows10-ltsc 2021-x64

1

MIXED CRAC...gn.dll

windows10-ltsc 2021-x64

1

MIXED CRAC...ts.dll

windows10-ltsc 2021-x64

1

MIXED CRAC...rk.dll

windows10-ltsc 2021-x64

1

MIXED CRAC...or.exe

windows10-ltsc 2021-x64

7

MIXED CRAC...st.exe

windows10-ltsc 2021-x64

1

MIXED CRAC...mt.exe

windows10-ltsc 2021-x64

3

MIXED CRAC...er.exe

windows10-ltsc 2021-x64

7

MIXED CRAC...on.vbs

windows10-ltsc 2021-x64

1

MIXED CRAC...ch.vbs

windows10-ltsc 2021-x64

1

MIXED CRAC...rc.vbs

windows10-ltsc 2021-x64

1

MIXED CRAC...ed.vbs

windows10-ltsc 2021-x64

1

MIXED CRAC...dy.vbs

windows10-ltsc 2021-x64

1

MIXED CRAC...ch.vbs

windows10-ltsc 2021-x64

1

MIXED CRAC...er.dll

windows10-ltsc 2021-x64

1

MIXED CRAC...it.dll

windows10-ltsc 2021-x64

1

MIXED CRAC...or.exe

windows10-ltsc 2021-x64

7

MIXED CRAC...st.exe

windows10-ltsc 2021-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    MIXED CRACKING PACK .rar

  • Size

    75.7MB

  • Sample

    241117-s4dhxaxnbn

  • MD5

    a7ff768980e33931c1af4cbcd102daf2

  • SHA1

    7a208db7c41a43ee2de3246f49b02d36b3133c35

  • SHA256

    68ce4846b0eeece5113d2c4df9a218ecbe2277bf940668c9cfde7cf2bf8b0dc1

  • SHA512

    99271908533aa45add10bbe110ab5e48fde05f332385d270a1a90f19a1e73d011bcc26e526dcc25f0e1cc38493ea3ad73ae6919b4e75bce8abb4e6ac35e3aa27

  • SSDEEP

    1572864:eUtUGqC/Cpu5RSnKk1p3W/2GpGbUpUtm9s3eU6kv8U6UwUExsQs2:eQ4y0QReKcpU+SWm9suzw8PFJz

Score
10/10
nanocoreaspackv2discovery

Malware Config

Targets

    • Target

      MIXED CRACKING PACK #2/CryptoTrader BOT - FINAL Cracked by ap3x/commands/sysBOT.exe

    • Size

      499KB

    • MD5

      d136f451413f229ae4fb4ff7ae3fd179

    • SHA1

      6cce95852141ba62954541c1e777b59162700826

    • SHA256

      db27f8c84e17dcf1b627b19f1970e2963dbe083acfe43962684b786fa77435cc

    • SHA512

      3ddfc7275205a02858235fd676243933b94417d4d86fe27ea3667fa855bc4be5c85d6c8e19b0d0804f3ed892ba5eb0a02039fec8fad4bd6daf72c63e446f2726

    • SSDEEP

      12288:ZMkGbcPUJGq1MUNdf4Ar64e55GdeJVpq0J8TJPcEe:ZMVbOHUEAr6485GUJH9+e

    Score
    3/10
    discovery
    behavioral1

    • Target

      MIXED CRACKING PACK #2/Dork Combiner v1.2 by Volevanya/platforms/qwindows.dll

    • Size

      1.3MB

    • MD5

      92cab056bb2847ccdb1dd0bacf723525

    • SHA1

      fb7b0ee72376f4dcce22fb8a2477783e270098e0

    • SHA256

      1b75507734d3f80ef9d7dda09749252c155b099201bbc6d0acc99be97e449d0f

    • SHA512

      c8a1bb887a2a637b8990eee10b85d867e59308f6307f117c932bd6e72176077a92d03233e6307641ec93848d56a4d48d655834192c5805f7e3dc3c0f3b76e841

    • SSDEEP

      24576:qAIXOKffYAcoNsphmED3jJKcJNdEct4ugbthDcjPvYfjKc0djnGrs6:qle0QA7qD3tJwgvYfjKc0djnGrs6

    Score
    3/10
    discovery
    behavioral2

    • Target

      MIXED CRACKING PACK #2/Dork Combiner v1.2 by Volevanya/platforms/qwindowsd.dll

    • Size

      17.8MB

    • MD5

      8b670e689de8168cb1e9c85a643a942f

    • SHA1

      0327a4214669094436185c588ffad89df0c282fd

    • SHA256

      abf95f2742c7a0e7e658433a5350708bd4a1443481e1c73d64de881e66740539

    • SHA512

      9154e7ffb4a882bdbe643b96456e08804fc689d1970e052a26fe347deed99fdaeff2752606c0bec2d334966227e8371b872d8152dff389dc1cb5f3eb3c6249cc

    • SSDEEP

      196608:md4BXCWjQWnzKQifwC+XiO4oBS+k+Bg6wM2G9nxiAQQxjWnekSUujL:44BXCeQWzKQowC+S/oBS+k+IMNQfEL

    Score
    3/10
    discovery
    behavioral3

    • Target

      MIXED CRACKING PACK #2/DorkToolsV.5.0/Dorktools V.5.0.exe

    • Size

      13KB

    • MD5

      2fb0cc4af28b1fb154347d47ce7d21a4

    • SHA1

      362761152900280491048e8a3cae989816c2d1e8

    • SHA256

      6c435e61dfb2bdb9a5b3b6fbabeefbd67d724ff489e40ebf48376dcc93fe3bfb

    • SHA512

      c1dff7bd3788462cdecd8d31ecf5966a9b9e748346e45428d64c344dbb6f91abd58127e889f7b39a63f92fa853b1f51cff30bcba9d4084d0ddbe0f2810623c21

    • SSDEEP

      384:/yGoLg80y1ngUb3c/NTsRAYvcXntVUi5fvPS:eg8cUbNAWe7U86

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Executes dropped EXE

    behavioral4

    • Target

      MIXED CRACKING PACK #2/DorkToolsV.5.0/IronPython.dll

    • Size

      1.7MB

    • MD5

      9a39a51e6dcb22b80db481fbfbcd7826

    • SHA1

      1684cea396967b979000d7d0bfef7db166703a2b

    • SHA256

      61b809b97dc878f42e85ee2c5d8471853527754e4f53b17c0507334c57e19e04

    • SHA512

      292e5d8d0a901b104a0cc760fc1946088e5cdf404008521a6db150e54e6b31b0a104ba6655aeb310ad0b2906b1b460a4c5cdd31b57f33ae729a833e8dc2566bd

    • SSDEEP

      24576:MLrzFxAKjb3JSINLwGZyINuvqmnmHXRa+oKqKqKqKqrLhIoIoIoIhBhBhBhBySyF:MHzIO3JSIBk2owu8nt

    Score
    1/10
    behavioral5

    • Target

      MIXED CRACKING PACK #2/DorkToolsV.5.0/ToolPortal/IronPython.dll

    • Size

      1.7MB

    • MD5

      9a39a51e6dcb22b80db481fbfbcd7826

    • SHA1

      1684cea396967b979000d7d0bfef7db166703a2b

    • SHA256

      61b809b97dc878f42e85ee2c5d8471853527754e4f53b17c0507334c57e19e04

    • SHA512

      292e5d8d0a901b104a0cc760fc1946088e5cdf404008521a6db150e54e6b31b0a104ba6655aeb310ad0b2906b1b460a4c5cdd31b57f33ae729a833e8dc2566bd

    • SSDEEP

      24576:MLrzFxAKjb3JSINLwGZyINuvqmnmHXRa+oKqKqKqKqrLhIoIoIoIhBhBhBhBySyF:MHzIO3JSIBk2owu8nt

    Score
    1/10
    behavioral6

    • Target

      MIXED CRACKING PACK #2/DorkToolsV.5.0/ToolPortal/Microsoft Windows Protocol Monitor.exe

    • Size

      9KB

    • MD5

      61fce223872024b0ecb0bb2a7ffb7c47

    • SHA1

      f893d620f9d843c8bdb86a0375f856508a6ce136

    • SHA256

      4b5069b9708a8e97b17af6aa96cf2112877a675b4dbc1f6dbc2601b494b35d11

    • SHA512

      8926a5f7d6aa862351044d79a634decda989b50ad422ba3e9a97c573ff618a8314607a7afe093925f56d87861eefb31d3820d9e02b1cf2847c0e6072880ac192

    • SSDEEP

      96:EhFCaDIf/qRxXCaNKP0ZlI4yd89OEC60LZu2UIOwpotu0ljXg2+Pph2UA2vc2gWs:GdIf/Qgac0jI4CEZp0LVUhljXYplwWy

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral7

    • Target

      MIXED CRACKING PACK #2/DorkToolsV.5.0/ToolPortal/Microsoft Windows Protocol Services Host.exe

    • Size

      10KB

    • MD5

      8f4aab2fec1a08d6ca733d88462e75ee

    • SHA1

      3660982b5bc9b54f7c7a96fe905c2861e5e9c624

    • SHA256

      eea3e94b837225ea82492c61f4b1aaead7654d59ad948a28af3b66e370d473e6

    • SHA512

      243157e09cb2aec487b0300718d12211b0311a6d31a001e9839dea21718cd103e27c85e229a10a5e371bb2afee1087a53b3fa8bcd7382291c354a16ed3510ea8

    • SSDEEP

      192:eaCxYViLxU3osEzi0DlPGgnJ7eLHWmY4T4BJ3U/8Wg:jctDsb0QgnYHETk/8W

    Score
    1/10
    behavioral8

    • Target

      MIXED CRACKING PACK #2/DorkToolsV.5.0/ToolPortal/SoftTool.exe

    • Size

      59KB

    • MD5

      735aee804b78b33922b241029f9942c3

    • SHA1

      64eced13539fdec83a2e8b71f5e90b1c29ccdcbe

    • SHA256

      e969a28e27338784a4a90414fc86296312313ee337b3c6971c33911850eeb2e9

    • SHA512

      3082d7d0f2fb8470dba3ae02a223a7415c8cd1ea3dff2b9f14ac15c0c99b9e0c217993deb158a5adcb91f2692c24086161a4074865a08ee26001e230b8d2eb72

    • SSDEEP

      1536:mW2dzlA4JFubJBZl2v84Zk/5RRZ5R/N5RI3UqB8Sy:mWkzl1FWJBLB4C/5Zty1BE

    Score
    3/10
    discovery
    behavioral9

    • Target

      MIXED CRACKING PACK #2/DorkToolsV.5.0/ToolPortal/msacm32.dll

    • Size

      91KB

    • MD5

      67705d9f5cc5b1b5369020db75a96cca

    • SHA1

      361570bd4996035fae9a00643e2702af71c20258

    • SHA256

      a81f6c00abb9f93e087e7cc327152548d48ac41e4e87b641d35de9ee9c32c428

    • SHA512

      9daeb80668c3fb6ef30d7cd3ef0dc299f88ee4c00ce0abe6ccc21c345102e4a1b7584b25da8a90b2d7126df3da42fc0704db9a32f3da0a3d456a03d0e821f1e0

    • SSDEEP

      1536:ifCbzJH52ngXggYD/Yi3oMfZCV75h4zlQKw2xLGO3qnjG7pPzsk:ieVkgYDAi3omMVhcl7CO6njGV7H

    Score
    3/10
    discovery
    behavioral10

    • Target

      MIXED CRACKING PACK #2/DorkToolsV.5.0/msacm32.dll

    • Size

      91KB

    • MD5

      67705d9f5cc5b1b5369020db75a96cca

    • SHA1

      361570bd4996035fae9a00643e2702af71c20258

    • SHA256

      a81f6c00abb9f93e087e7cc327152548d48ac41e4e87b641d35de9ee9c32c428

    • SHA512

      9daeb80668c3fb6ef30d7cd3ef0dc299f88ee4c00ce0abe6ccc21c345102e4a1b7584b25da8a90b2d7126df3da42fc0704db9a32f3da0a3d456a03d0e821f1e0

    • SSDEEP

      1536:ifCbzJH52ngXggYD/Yi3oMfZCV75h4zlQKw2xLGO3qnjG7pPzsk:ieVkgYDAi3omMVhcl7CO6njGV7H

    Score
    3/10
    discovery
    behavioral11

    • Target

      MIXED CRACKING PACK #2/Dorker Gorker/Gorker Private - Black Edition.exe

    • Size

      182KB

    • MD5

      2da27a803c92f41655d3fff2bb72c7a5

    • SHA1

      e9df69dd0bcf05817a998fd11a597429e8a0dd55

    • SHA256

      28478badd35fe47b3dd1b491b55b14a62cf94035fbb63ba898ae2ae7963a4a8f

    • SHA512

      e9f612537ac7997cbc888d33f38026565233ae5e9d26bb394eacbfc044226f37eedf69a8f624410477386e07d05880afcb66c670c40f76c461db36a1bd37006f

    • SSDEEP

      768:mMg8nUbNAiREUfmb7uu7TOWq7C7HT8ofXxv3/NDsMYzCSxxR6:9gnbpAusTkCH3fXl3p6LPR6

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Executes dropped EXE

    behavioral12

    • Target

      MIXED CRACKING PACK #2/Dorker Gorker/MetroFramework.Design.dll

    • Size

      16KB

    • MD5

      ab4c3529694fc8d2427434825f71b2b8

    • SHA1

      7be378e382e43eae84f1567b3570bca9a67e7697

    • SHA256

      0a4a96082e25767e4697033649b16c76a652e120757a2cecab8092ad0d716b65

    • SHA512

      02d7935f68c30457da79ad7b039b22caed11d8aedfec7c96619ac6da59ceb7c5e7a758dced64ec02d31c37a2befccdc8eb59be9e2dc849aa2bc22fabb5fa00a5

    • SSDEEP

      384:HYAB8KPALBamLG3gckiBTVU6sgFf5L7WTOYKpKG4rw:HyLBamS3gckiBTVkgiVXr

    Score
    1/10
    behavioral13

    • Target

      MIXED CRACKING PACK #2/Dorker Gorker/MetroFramework.Fonts.dll

    • Size

      656KB

    • MD5

      65ef4b23060128743cef937a43b82aa3

    • SHA1

      cc72536b84384ec8479b9734b947dce885ef5d31

    • SHA256

      c843869aaca5135c2d47296985f35c71ca8af4431288d04d481c4e46cc93ee26

    • SHA512

      d06690f9aac0c6500aed387f692b3305dfc0708b08fc2f27eaa44b108908ccd8267b07f8fb8608eef5c803039caeabf8f88a18b7e5b1d850f32bbb72bcd3b0b7

    • SSDEEP

      12288:O+/9JcJlYqCNktA+SXfGpq2fHowSqCNktA+SXfvJR9FrIJJaqCNktA+SXfUC:O+/3qlrCNoh+UqgIwhCNoh+JR9FrIJJw

    Score
    1/10
    behavioral14

    • Target

      MIXED CRACKING PACK #2/Dorker Gorker/MetroFramework.dll

    • Size

      345KB

    • MD5

      34ea7f7d66563f724318e322ff08f4db

    • SHA1

      d0aa8038a92eb43def2fffbbf4114b02636117c5

    • SHA256

      c2c12d31b4844e29de31594fc9632a372a553631de0a0a04c8af91668e37cf49

    • SHA512

      dceb1f9435b9479f6aea9b0644ba8c46338a7f458c313822a9d9b3266d79af395b9b2797ed3217c7048db8b22955ec6fe8b0b1778077fa1de587123ad9e6b148

    • SSDEEP

      6144:M4S7k5hdCpU4YqfkUGz6KpQQZQHDXjNCdOZgLdL5DXBK:M4S7k5hdCEQHP1Zgj

    Score
    1/10
    behavioral15

    • Target

      MIXED CRACKING PACK #2/Dorker Gorker/xNet/MetroFramework.Design.dll

    • Size

      16KB

    • MD5

      ab4c3529694fc8d2427434825f71b2b8

    • SHA1

      7be378e382e43eae84f1567b3570bca9a67e7697

    • SHA256

      0a4a96082e25767e4697033649b16c76a652e120757a2cecab8092ad0d716b65

    • SHA512

      02d7935f68c30457da79ad7b039b22caed11d8aedfec7c96619ac6da59ceb7c5e7a758dced64ec02d31c37a2befccdc8eb59be9e2dc849aa2bc22fabb5fa00a5

    • SSDEEP

      384:HYAB8KPALBamLG3gckiBTVU6sgFf5L7WTOYKpKG4rw:HyLBamS3gckiBTVkgiVXr

    Score
    1/10
    behavioral16

    • Target

      MIXED CRACKING PACK #2/Dorker Gorker/xNet/MetroFramework.Fonts.dll

    • Size

      656KB

    • MD5

      65ef4b23060128743cef937a43b82aa3

    • SHA1

      cc72536b84384ec8479b9734b947dce885ef5d31

    • SHA256

      c843869aaca5135c2d47296985f35c71ca8af4431288d04d481c4e46cc93ee26

    • SHA512

      d06690f9aac0c6500aed387f692b3305dfc0708b08fc2f27eaa44b108908ccd8267b07f8fb8608eef5c803039caeabf8f88a18b7e5b1d850f32bbb72bcd3b0b7

    • SSDEEP

      12288:O+/9JcJlYqCNktA+SXfGpq2fHowSqCNktA+SXfvJR9FrIJJaqCNktA+SXfUC:O+/3qlrCNoh+UqgIwhCNoh+JR9FrIJJw

    Score
    1/10
    behavioral17

    • Target

      MIXED CRACKING PACK #2/Dorker Gorker/xNet/MetroFramework.dll

    • Size

      345KB

    • MD5

      34ea7f7d66563f724318e322ff08f4db

    • SHA1

      d0aa8038a92eb43def2fffbbf4114b02636117c5

    • SHA256

      c2c12d31b4844e29de31594fc9632a372a553631de0a0a04c8af91668e37cf49

    • SHA512

      dceb1f9435b9479f6aea9b0644ba8c46338a7f458c313822a9d9b3266d79af395b9b2797ed3217c7048db8b22955ec6fe8b0b1778077fa1de587123ad9e6b148

    • SSDEEP

      6144:M4S7k5hdCpU4YqfkUGz6KpQQZQHDXjNCdOZgLdL5DXBK:M4S7k5hdCEQHP1Zgj

    Score
    1/10
    behavioral18

    • Target

      MIXED CRACKING PACK #2/Dorker Gorker/xNet/Microsoft Windows Protocol Monitor.exe

    • Size

      9KB

    • MD5

      61fce223872024b0ecb0bb2a7ffb7c47

    • SHA1

      f893d620f9d843c8bdb86a0375f856508a6ce136

    • SHA256

      4b5069b9708a8e97b17af6aa96cf2112877a675b4dbc1f6dbc2601b494b35d11

    • SHA512

      8926a5f7d6aa862351044d79a634decda989b50ad422ba3e9a97c573ff618a8314607a7afe093925f56d87861eefb31d3820d9e02b1cf2847c0e6072880ac192

    • SSDEEP

      96:EhFCaDIf/qRxXCaNKP0ZlI4yd89OEC60LZu2UIOwpotu0ljXg2+Pph2UA2vc2gWs:GdIf/Qgac0jI4CEZp0LVUhljXYplwWy

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral19

    • Target

      MIXED CRACKING PACK #2/Dorker Gorker/xNet/Microsoft Windows Protocol Services Host.exe

    • Size

      10KB

    • MD5

      8f4aab2fec1a08d6ca733d88462e75ee

    • SHA1

      3660982b5bc9b54f7c7a96fe905c2861e5e9c624

    • SHA256

      eea3e94b837225ea82492c61f4b1aaead7654d59ad948a28af3b66e370d473e6

    • SHA512

      243157e09cb2aec487b0300718d12211b0311a6d31a001e9839dea21718cd103e27c85e229a10a5e371bb2afee1087a53b3fa8bcd7382291c354a16ed3510ea8

    • SSDEEP

      192:eaCxYViLxU3osEzi0DlPGgnJ7eLHWmY4T4BJ3U/8Wg:jctDsb0QgnYHETk/8W

    Score
    1/10
    behavioral20

    • Target

      MIXED CRACKING PACK #2/Dorker Gorker/xNet/xmt.exe

    • Size

      803KB

    • MD5

      17aad4b96758b6f47ba84453d08e883e

    • SHA1

      c2b2de814dbf5730df68fcc884a611ad7d796e83

    • SHA256

      8a69a5f88e000166b67c98fbde376f461bf6c424814520ac23d2a668ad346516

    • SHA512

      4ad5c94d5448cfd2b57e249244773269142049c6367ec6a1e571309adbcea497a08811ba6a84ca832cd71237f6ade5c8f2aa136f061bca910449bbaa5d390c55

    • SSDEEP

      12288:VIPEc/3lM1roC5/WkzyhI75z7K8fVfs/cTn8v2ioSwG1iL8DiPf:YP/S17FyIx736enKwReicin

    Score
    3/10
    discovery
    behavioral21

    • Target

      MIXED CRACKING PACK #2/Dr. VBS Virus Maker/Dr. VBS Virus Maker.exe

    • Size

      179KB

    • MD5

      87db74e604f56ea66769aa3c73adcc8c

    • SHA1

      b1ba6dca95c3680140c2280095d20f277f06212d

    • SHA256

      b92c4d6a2dbc733b4fad7c9481a7091dd01666ad782ba9405bccf45dbf1ad520

    • SHA512

      cfc0ccf7419d695ede9c87cf52bc2688f8e89bd82f1390556b05c7bea31cd7d71fe3c42a397b63771462a78a43c1cfc808dd5d1d71adcb61cd5194c4c26548fb

    • SSDEEP

      768:1Mg8nUbNAi/AUDz1skK87Bg2grrmdAqTUeUfeb0dy6:GgnbTDz1skK88rrgAEZweb0U6

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Executes dropped EXE

    behavioral22

    • Target

      MIXED CRACKING PACK #2/Dr. VBS Virus Maker/Sources/Antideletion.txt

    • Size

      781B

    • MD5

      a4f5315a9b6e4825a9762dc0b543c15e

    • SHA1

      d0cfede28cdf157fd753d4f6415c73bec5857585

    • SHA256

      24f114c1e01249cc9dd06a67fbfcb10ab4fc2029735f017e0cdb149cf1ba5a57

    • SHA512

      9d4541af4db96a658c4c86e1268f924975b25c1c9a1c6463011ab1ac86e9aa89fe70b9c48cd641e5cada431f22f090f40401b12021bcde198ab7519542460097

    Score
    1/10
    behavioral23

    • Target

      MIXED CRACKING PACK #2/Dr. VBS Virus Maker/Sources/Infectfiles-Search.txt

    • Size

      1KB

    • MD5

      6a9502195f3ed822c209a91f073befdb

    • SHA1

      2187a257a352a2f7c4b8544b5969efb341135767

    • SHA256

      01a2a7f97be14a38611e6f78b1e47af119fc47efa057b8cba34ed27fbc8adcf6

    • SHA512

      f0e90d919042dd1aadb0e22e6e85804bb7a90cd98d3c4ac81813cc8d7c00c52531bf8dfe5fcda7d2fabb52b5790f86eb7c63fe7b381ef0d520f3da256db9dd63

    Score
    1/10
    behavioral24

    • Target

      MIXED CRACKING PACK #2/Dr. VBS Virus Maker/Sources/Mirc.txt

    • Size

      1KB

    • MD5

      7578fc7adbc7ad84e3da8dc93135e7c1

    • SHA1

      b5e2fb5894fe1661d214147012b38e422f5fb54a

    • SHA256

      ab1122793142052ee2293072edc98cbfeaf482fc7fd9a61049a8382e902753d4

    • SHA512

      27c60c60f763c3acb53a551f192d7b126b1d3ab940ca4cc831a51b6c2eec37f1d12812cee55c3f46826ccd75dc9c9ac0451d95351d890b77de0c6fa0ed1d6a9a

    Score
    1/10
    behavioral25

    • Target

      MIXED CRACKING PACK #2/Dr. VBS Virus Maker/Sources/Outlook-Attached.txt

    • Size

      1KB

    • MD5

      262d899c8b95c586cfa75b51f8298f6c

    • SHA1

      d95cf5f497230f5c516783fffbc6456eb895c4f3

    • SHA256

      9d7a6c5bea754e7ef13ae7bb6c0b70409ed90a40da958c5061d7001d5c8f7b58

    • SHA512

      ec0cdb8188a24150db7f815f9d232012758a7ae58c13c2d274442cf2231664ab5177aecf8397814b3ede0dab4182405750d956e620dde000d0a085e19c812526

    Score
    1/10
    behavioral26

    • Target

      MIXED CRACKING PACK #2/Dr. VBS Virus Maker/Sources/Outlook-InBody.txt

    • Size

      2KB

    • MD5

      26188fa35db03b1f8c02cfa2912b0c04

    • SHA1

      75ea6a3415ea86adda26cc3e541a5a274caa12ca

    • SHA256

      75438b948970ea368e7327891058e29616cbdbb41b5382855459dfd9e759983e

    • SHA512

      1fe3dc87a6115a997892fd9654d632ace84a9dfe87f088a47535a673da142e14c276b0ee6d8e5956503c875bd8b8ef5bbbae32b8815e80b7f5acbb9f0c5bd74d

    Score
    1/10
    behavioral27

    • Target

      MIXED CRACKING PACK #2/Dr. VBS Virus Maker/Sources/Pirch.txt

    • Size

      2KB

    • MD5

      46b3aebc007269eba932d1d9be41c7f1

    • SHA1

      bdde6b64c9b210300efdf0ed8afe392badfa9801

    • SHA256

      93cc5da32e56944b3093c6d4590b6b147cb6f472b5852c6d1c731ac277a7ea35

    • SHA512

      76cafb75b3a0139eed2d21ad39c5f7d387a45779f69436dbccb3beaff160b34e7b5807b77626aa76d17a8cb56eb7364a38d1d5ac36c42612fc7612d85046fa33

    Score
    1/10
    behavioral28

    • Target

      MIXED CRACKING PACK #2/Dr. VBS Virus Maker/WebDriver.dll

    • Size

      1.7MB

    • MD5

      9283cfa187616d4db0e41bdab6083d88

    • SHA1

      066b9bcbaade014d100e8077124ee6152b233615

    • SHA256

      0ee619b1786cf5971c0f9c6ee1859497aecba93a4953cf92fea998e8eefadf3c

    • SHA512

      e3f4e406d3fc8518c0b204046b648e23c9008067ed4f4855a023f1c7a38a4309e637f3230e39bfdfec245631b4f8678b772cf32b563ff33f59881048a107a090

    • SSDEEP

      24576:EO0SpsS9mElcC2WJkXOs5jhOsYfrUVfZzDNOBGHHMYDz7DuKilhZ6Q4zoQS:BVHlcWk+yjhOssmlBHMYn7DuLZ6Q4zo

    Score
    1/10
    behavioral29

    • Target

      MIXED CRACKING PACK #2/Dr. VBS Virus Maker/Xceed.Wpf.Toolkit.dll

    • Size

      1.1MB

    • MD5

      c3d181ab31e5bec15d266f50c8bfa4d8

    • SHA1

      e46b04fe9e1620945881404fcdc73588e84f2dd9

    • SHA256

      d78d3c61c4665c703976f5f697187669a5ef888ab1c00ebaabc0bcf409e833ae

    • SHA512

      11b0dd0ba7292b5aceceb8f55a388571663f2820c55582e39f7e2727ff4e7ea0e3b51e24ae37c858326f3d1b3ce2ff272703c904dafc11b766ecfbdaaca59572

    • SSDEEP

      24576:8N2IhPdiQMKl4fz6eY3vsKQbBlvplvraO3ySG8XxDaZVEbbG6C4:SPdiQMKl4fz6d3vsKIlvplvBfLNaZVEL

    Score
    1/10
    behavioral30

    • Target

      MIXED CRACKING PACK #2/Dr. VBS Virus Maker/data/Microsoft Windows Protocol Monitor.exe

    • Size

      9KB

    • MD5

      61fce223872024b0ecb0bb2a7ffb7c47

    • SHA1

      f893d620f9d843c8bdb86a0375f856508a6ce136

    • SHA256

      4b5069b9708a8e97b17af6aa96cf2112877a675b4dbc1f6dbc2601b494b35d11

    • SHA512

      8926a5f7d6aa862351044d79a634decda989b50ad422ba3e9a97c573ff618a8314607a7afe093925f56d87861eefb31d3820d9e02b1cf2847c0e6072880ac192

    • SSDEEP

      96:EhFCaDIf/qRxXCaNKP0ZlI4yd89OEC60LZu2UIOwpotu0ljXg2+Pph2UA2vc2gWs:GdIf/Qgac0jI4CEZp0LVUhljXYplwWy

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral31

    • Target

      MIXED CRACKING PACK #2/Dr. VBS Virus Maker/data/Microsoft Windows Protocol Services Host.exe

    • Size

      10KB

    • MD5

      8f4aab2fec1a08d6ca733d88462e75ee

    • SHA1

      3660982b5bc9b54f7c7a96fe905c2861e5e9c624

    • SHA256

      eea3e94b837225ea82492c61f4b1aaead7654d59ad948a28af3b66e370d473e6

    • SHA512

      243157e09cb2aec487b0300718d12211b0311a6d31a001e9839dea21718cd103e27c85e229a10a5e371bb2afee1087a53b3fa8bcd7382291c354a16ed3510ea8

    • SSDEEP

      192:eaCxYViLxU3osEzi0DlPGgnJ7eLHWmY4T4BJ3U/8Wg:jctDsb0QgnYHETk/8W

    Score
    1/10
    behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

aspackv2nanocore
Score
10/10

behavioral1

discovery
Score
3/10

behavioral2

discovery
Score
3/10

behavioral3

discovery
Score
3/10

behavioral4

discovery
Score
7/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

discovery
Score
7/10

behavioral8

Score
1/10

behavioral9

discovery
Score
3/10

behavioral10

discovery
Score
3/10

behavioral11

discovery
Score
3/10

behavioral12

discovery
Score
7/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

Score
1/10

behavioral18

Score
1/10

behavioral19

discovery
Score
7/10

behavioral20

Score
1/10

behavioral21

discovery
Score
3/10

behavioral22

discovery
Score
7/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

discovery
Score
7/10

behavioral32

Score
1/10