365a1cd13a619f486947b72d33b688621fab7db33d140faa023f27ff62fb31f9 | Triage

Sharing

General

Target

IK_Multimedia_Keygen.exe
Size

436KB
Sample

241121-qdzbkswrgq
MD5

d0d0f7dd1ac363d373f29ae17975806e
SHA1

dfd81e37e1cf6f637ea7610b21404f7b26807a3a
SHA256

365a1cd13a619f486947b72d33b688621fab7db33d140faa023f27ff62fb31f9
SHA512

617c8cd832355a00e02b730fb3146ed2dd8a8e07ace68758d460d3894f04e14346a78819dc1334d0a0036e61c714affd5b8d9c2893703692a46e4adf4a4f6031
SSDEEP

12288:XYkc9t2Sll/19HvwQlSL5qJF0V3KPJ2lUgZ:XYkcL51NvwkG5WWEo2gZ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  IK_Multimedia_Keygen.exe
- Size
  
  436KB
- MD5
  
  d0d0f7dd1ac363d373f29ae17975806e
- SHA1
  
  dfd81e37e1cf6f637ea7610b21404f7b26807a3a
- SHA256
  
  365a1cd13a619f486947b72d33b688621fab7db33d140faa023f27ff62fb31f9
- SHA512
  
  617c8cd832355a00e02b730fb3146ed2dd8a8e07ace68758d460d3894f04e14346a78819dc1334d0a0036e61c714affd5b8d9c2893703692a46e4adf4a4f6031
- SSDEEP
  
  12288:XYkc9t2Sll/19HvwQlSL5qJF0V3KPJ2lUgZ:XYkcL51NvwkG5WWEo2gZ
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral1
- Target
  
  $TEMP/BASSMOD.dll
- Size
  
  33KB
- MD5
  
  e4ec57e8508c5c4040383ebe6d367928
- SHA1
  
  b22bcce36d9fdeae8ab7a7ecc0b01c8176648d06
- SHA256
  
  8ad9e47693e292f381da42ddc13724a3063040e51c26f4ca8e1f8e2f1ddd547f
- SHA512
  
  77d5cf66caf06e192e668fae2b2594e60a498e8e0ccef5b09b9710721a4cdb0c852d00c446fd32c5b5c85e739de2e73cb1f1f6044879fe7d237341bbb6f27822
- SSDEEP
  
  768:qQmS5iUgi5czW+DlrQOS1DeDdjgNtbX4O6DHix84H0:qQz5Tgof+DdpS1+djctLSHiZ0
Score

3^/10

discovery
behavioral2
- Target
  
  $TEMP/R2RIKM2.dll
- Size
  
  6KB
- MD5
  
  d186f4a30faa060aa2c4e0ff630f78a2
- SHA1
  
  345f36820ecb5e4c8d05fc6e93acb36ba6b53dbc
- SHA256
  
  235d3850ee4764f6b52fc81645f5498cd8b8c6311358a71ac91739131c2e7d09
- SHA512
  
  6a1855b1a713a05feea8da2343837a48b3ccd94d8f22594c2da57644f69a239e450acecb801feb3edb7d0f1fec53595281d7fccea65336a9d1da7923eaceac74
- SSDEEP
  
  96:JshDnlUhwugewuJMlBIzcXnk9RzMBJnHI3CKhLvC65pMnqL2:KDA2kJSBbk9RzAHIvhLvDIQ
Score

3^/10

discovery
behavioral3
- Target
  
  $TEMP/keygen.exe
- Size
  
  610KB
- MD5
  
  b6d39c50d23cfba0d96feef649832d1e
- SHA1
  
  db7ff5bf4036e5e7a18f3d8108d13da72c4de4e8
- SHA256
  
  1b69523dda0415ebf332f86310f8e0eedc818354e332cc0dd844b02dc50fc486
- SHA512
  
  ab4b408f0c16de82d6088a9cb85f49a0fc27e7fe191ae70ca246b1a6443b3b16bdd736c41ff58b0ee0c0096eb2176781f5890a2ede21ece5ea5682a27e854399
- SSDEEP
  
  12288:pc/kEPDonR6Y436vR9i1eyf5Q+GItobsBTompzU233rvNzYK/Fe:oLonR6Y43i4Lg233rvNzYK/Fe
Score

3^/10

discovery
behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4