a3b612d69c2103a44592b183228c50f9239048bf410f422a76a011cf9e05c43a

Resubmissions

19/11/2024, 19:00

241119-xn2m1szfpa 4

19/11/2024, 18:48

241119-xfzhpa1bnp 4

Sharing

Copy URL

Twitter E-mail

General

Target

ausetup.exe
Size

8.3MB
Sample

241119-xfzhpa1bnp
MD5

3fc2ce884f6f0aacdc94e6718d3df80d
SHA1

a0b49b73f64dd33ee351e47f35b922d7dade7246
SHA256

a3b612d69c2103a44592b183228c50f9239048bf410f422a76a011cf9e05c43a
SHA512

317e25bd54ff25fab99e82b242fcd7f9e08dac20239ac1619717411c3415ff1c5f2a033839317e8244d272cfa77ea2b08edfd03d9c99012427bbdedb6865e99a
SSDEEP

196608:6W+5c3swnDtZHmNP9NX4Ev3wADK8M4aErtVc0FGj:G5c3PDTGdnJg6K/cm

Score

4^/10

Malware Config

Targets

- Target
  
  ausetup.exe
- Size
  
  8.3MB
- MD5
  
  3fc2ce884f6f0aacdc94e6718d3df80d
- SHA1
  
  a0b49b73f64dd33ee351e47f35b922d7dade7246
- SHA256
  
  a3b612d69c2103a44592b183228c50f9239048bf410f422a76a011cf9e05c43a
- SHA512
  
  317e25bd54ff25fab99e82b242fcd7f9e08dac20239ac1619717411c3415ff1c5f2a033839317e8244d272cfa77ea2b08edfd03d9c99012427bbdedb6865e99a
- SSDEEP
  
  196608:6W+5c3swnDtZHmNP9NX4Ev3wADK8M4aErtVc0FGj:G5c3PDTGdnJg6K/cm
Score

4^/10

discovery spyware stealer
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  5f35212d7e90ee622b10be39b09bd270
- SHA1
  
  c4bc9593902adf6daaef37e456dc6100d50d0925
- SHA256
  
  31944b93e44301974d9c6f810d2da792e34a53dcacd619a08cb0385ac59e513d
- SHA512
  
  7514810367f56d994c6d5703b56ac16124fab5dfdcfbe337d4413274c1ff9037a2ee623e49ab2fb6227412ab29fcc49a3ada1391910d44c2b5de0adeb3e7c2f0
- SSDEEP
  
  192:E4n3T5aK+dHCMR1aQR9RuZl3WWmU7WYZsw1JpVGnrjaK72dwF7dBOne:tn3T5KdHCMRD/R1cOnrja+BO
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/KillProcDLL.dll
- Size
  
  14KB
- MD5
  
  2f8a43c3581af1f31ce8d9da0c03465b
- SHA1
  
  3cce52e1dd53191127a98b324644c5cc581295ca
- SHA256
  
  97b5b3985736cc0f49ceb2da68b01ce51fa821b6da3cec69cfeebfba8d626845
- SHA512
  
  fd4ffab70048664c2f9aab375bb4c5cd89b3ff525335633dfd895dddf2be0791c56f585a9675f0a91be0d20882260709c847e0c8757e0fb49f80a932b187eab2
- SSDEEP
  
  384:9WzZ97P5I3SlAS/5191BUrR17ziXPgKrdqr:97s6lz
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/MachineCode.dll
- Size
  
  346KB
- MD5
  
  fa6cb8106df9eb8f21d68e459bc97754
- SHA1
  
  85b9c4f75f9a31d3d78f610c8e427729bdc37ffe
- SHA256
  
  db99dbc5f4d23d6ce8fc298c14247d437584709316370cb0a02d45699a6e018a
- SHA512
  
  aef8589e0b1c7e96b8c107193cdf27cb1cb522f22a155e63d56c9311196d26eb065b541045ede6df1ce27a0d4b2f815782a4e9a10819db017d718152c4f2a3de
- SSDEEP
  
  6144:M48L4/dXZ6yHiwCgKjaH0/LAo3jslcVx6cvY0obyDUrreN90UZbr8zUqz:M4Z/dcyHi8tH0jd4K6SYA/8zUqz
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  fccff8cb7a1067e23fd2e2b63971a8e1
- SHA1
  
  30e2a9e137c1223a78a0f7b0bf96a1c361976d91
- SHA256
  
  6fcea34c8666b06368379c6c402b5321202c11b00889401c743fb96c516c679e
- SHA512
  
  f4335e84e6f8d70e462a22f1c93d2998673a7616c868177cac3e8784a3be1d7d0bb96f2583fa0ed82f4f2b6b8f5d9b33521c279a42e055d80a94b4f3f1791e0c
- SSDEEP
  
  192:xPtkiQJr7V9r3HcU17S8g1w5xzWxy6j2V7i77blbTc4v:g7VpNo8gmOyRsVc4
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  1c8b2b40c642e8b5a5b3ff102796fb37
- SHA1
  
  3245f55afac50f775eb53fd6d14abb7fe523393d
- SHA256
  
  8780095aa2f49725388cddf00d79a74e85c9c4863b366f55c39c606a5fb8440c
- SHA512
  
  4ff2dc83f640933162ec8818bb1bf3b3be1183264750946a3d949d2e7068ee606277b6c840193ef2b4663952387f07f6ab12c84c4a11cae9a8de7bd4e7971c57
- SSDEEP
  
  96:o2DlD3cd51V1zL7xqEscxM2DjDf3GEst+Nt+jvcx4T8qndYv0PLE:o2p34z/x3sREskpx4dO0PLE
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/nsExec.dll
- Size
  
  6KB
- MD5
  
  09c2e27c626d6f33018b8a34d3d98cb6
- SHA1
  
  8d6bf50218c8f201f06ecf98ca73b74752a2e453
- SHA256
  
  114c6941a8b489416c84563e94fd266ea5cad2b518db45cd977f1f9761e00cb1
- SHA512
  
  883454bef7b6de86d53af790755ae624f756b48b23970f865558ba03a5aecfa8d15f14700e92b3c51546e738c93e53dc50b8a45f79ef3f00aa84382853440954
- SSDEEP
  
  96:pBNUBGfVwhcAlhPRJAixx+3eDEsgcBbcB/NFyVOHd0+uisX4:qBGfV5AlJJfFgcBbcB/N8Ved0P
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/stalonestatisticsinfo.exe
- Size
  
  147KB
- MD5
  
  e12af5f48ed0148bc433254d8fa1c3e8
- SHA1
  
  c8fa416ecafeb55120319f5b09911adfa99d9f8f
- SHA256
  
  972e470c794953f009249136b11294948f1cc74ab9900de940cc3ee14f9419e8
- SHA512
  
  caf6955ae508e60f95c28298b9d8a61d0f6721b91d67cd5a398e9f69ef28f6e44e973ab80a508859e8096f64a8d44d60b7f3f97a0c7a1f844fa6a31db998a552
- SSDEEP
  
  3072:cf1BDZ0kVB67Duw9AMcdpo1iyWI2UDT9PefR5GDr2bLqC/qslNOtWEhJGFfxj1LH:c9X0GvtyZXZsR8uHqCOtWgzu
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  AppMetrics.dll
- Size
  
  110KB
- MD5
  
  4e9c1c1ec00992301ec734b1a6648c20
- SHA1
  
  e78cae9b9c3b6f71dfdad509a7fe86026e91f2ee
- SHA256
  
  5329e21a06d44d6108f575d81690533d317b8777b5e94ec29873fad4b98159d5
- SHA512
  
  daf8d4ed2f99912971b1305d34a616eae9f6e4fcb7a59d0cb1c3cce420a41f6b0c1a5a8d045e53c9cf7294609696e2241c79bdecb3ef767f909963341b526db4
- SSDEEP
  
  3072:5NNHf3/BnZSQLY7zJAW3mOKWa84x6BMyPlsld3:JffMdTmOK8S6BMyNMZ
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  CheckUpdate.dll
- Size
  
  1.1MB
- MD5
  
  519d10cf74f2284f1181773afb06fd7a
- SHA1
  
  d8cd44f8ba8daf5ad3be1da3f1fc9381cf920578
- SHA256
  
  d27531ffca6cf945b8f4471c4f86e6513511b22c559867fff1f8444c42ca8dd4
- SHA512
  
  6f60387c0ba4d7561e328d98631afd005ea07a3c81a6bf917154e93825b0b9331793dbd04ec056ef462f007af3cf2877ffc0509a5cb8129c094f56a1ae616e8d
- SSDEEP
  
  12288:5aCd374kDO8FXwOnYOoHw0Q2DLcM3Z/1dDmF2aJUBq9R5olf:5ak374kDO8FAfOopD53ZneVJUq7olf
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  Config.dll
- Size
  
  41KB
- MD5
  
  f3f0f28f60ebf275616e82e9ced0a7df
- SHA1
  
  11cb0aa9132e92cacc53407fe36b90e01fafe150
- SHA256
  
  d1e1afaf844f53761df8c07297f2157ade92fe6ffcd91f42ef19767609a8041c
- SHA512
  
  57509eccb0b1c79b28adefd24a5ab14a4719c170297da02f0394b6b63d6f187c83ab3445a798ff4726cac806861c820d80c282041751dd5ac3b0cc7aa6bc78f9
- SSDEEP
  
  768:qxwORwVnjaz9P4nge57FOt3Q+Vm+yYiBkk2EuYiBku2E:qxwHnOz92ge57FOtfVm+y7BkkM7Bku
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  CrashReport.dll
- Size
  
  300KB
- MD5
  
  d04683f3d763158d455e813dad39bc55
- SHA1
  
  768830f212fea0edc35601c4aea4468c9bc04291
- SHA256
  
  7e05c28163cd8b47d4297209cce9eb3b773004beffa466fc35de1a1c716b7618
- SHA512
  
  64ee4b96432605bf4d19cdbb5be5c918eff2cf3c6e19e432de52dd46243fd1e0b608beb52fb611a47af2d0e2699b6853aa09522e30e7c17eececcb0e8e407020
- SSDEEP
  
  6144:sJ3KbqxdjkUe+wQ+Rm60lb/vtNJYb+QMd6wb2sj6pCQx:shT1Bb/vtNJYb+QMd6wbBsTx
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  CrashReport.exe
- Size
  
  304KB
- MD5
  
  6e1a1271e362b01ee79d5aab914179d7
- SHA1
  
  d459b43a5d7b2eec5cd6c178bed844ca304a544f
- SHA256
  
  458996d3badb0ad5cc60ac3728281ee9449875ab2e4dfa2fbe67203d3bcce3db
- SHA512
  
  46acffedd519ac8fa5f0e854731677b7030e5f36885e61116aec7e1972f8d2958db3bda20259bf300edf85922966324b7f545e10ee1f1fb55f65e3d895b3b297
- SSDEEP
  
  6144:cNxON/WbtOV9jkIF24p9sEHqEL1W5RB7cnLm:cnkWU9PLm
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  GUWndManager.dll
- Size
  
  111KB
- MD5
  
  f13281be8e95bc04a5fcfef523da3a2b
- SHA1
  
  3a32e3c957665f27c6eaa9ff79d3a0451ba32dc4
- SHA256
  
  94b6a701cee4bcda52d0ccea1c1b3c9c361ea49a519f1fe82e0002e5ffa37b5c
- SHA512
  
  3ac6ea81c2824d73c3e57548bb7dc7b0fcc9c1b2435e63a42ae6311886fb261b95507e557f805176849385f131af0c3757fe65fc097b92e04526160464eeacd8
- SSDEEP
  
  3072:L1Ztgs9yrqjFf4EvXbH3Rpi5bsImhnOtoMXPl8l:L1zgGyrq1dpi5bs1nOtokNc
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  LockDll.dll
- Size
  
  575KB
- MD5
  
  21304fa37cfa53de92db454dd0fe89ee
- SHA1
  
  f5d3cc894c11e34a8a49b423b2afedacafcc497c
- SHA256
  
  d3e360287b785622110f23565b49cf39b56ced27a32972b74a27cd4be09b101c
- SHA512
  
  dcf53c9c2c26006b5a757928d88e284771ce01393607b63bb11ba8a7ec40c3cf91d42364af096e69eab31e343809078313b7e7199cbb15facfb01f1ea28f39f0
- SSDEEP
  
  3072:Xv6tlNyxXrt2f7QviJfevurfS9xhLV98QUofaLOK3ln/WVDLlgl4:XklNZFevuT6oQMOK3ln/mo4
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  MachineCode.dll
- Size
  
  346KB
- MD5
  
  fa6cb8106df9eb8f21d68e459bc97754
- SHA1
  
  85b9c4f75f9a31d3d78f610c8e427729bdc37ffe
- SHA256
  
  db99dbc5f4d23d6ce8fc298c14247d437584709316370cb0a02d45699a6e018a
- SHA512
  
  aef8589e0b1c7e96b8c107193cdf27cb1cb522f22a155e63d56c9311196d26eb065b541045ede6df1ce27a0d4b2f815782a4e9a10819db017d718152c4f2a3de
- SSDEEP
  
  6144:M48L4/dXZ6yHiwCgKjaH0/LAo3jslcVx6cvY0obyDUrreN90UZbr8zUqz:M4Z/dcyHi8tH0jd4K6SYA/8zUqz
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Credentials from Password Stores

T1555

Credentials from Web Browsers

T1555.003

Unsecured Credentials

T1552

Credentials In Files

T1552.001

Discovery

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Data from Local System

T1005

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32