b843dfbd30313cb1e86953faf55eb88f1024e5118b3bb133060e1c8910acb331

Sharing

Copy URL Twitter E-mail

General

Target

pd2premium.zip
Size

1.2MB
Sample

220921-mcdfyabfdk
MD5

e3a94dc331ba6f59228675470409bc0b
SHA1

f39c392402c4371a07276747692fd9ed875d7568
SHA256

b843dfbd30313cb1e86953faf55eb88f1024e5118b3bb133060e1c8910acb331
SHA512

d793da5e4695d2157b2625dd97a09f75eb07913939e07b52aa1d1d3e4cfd1b046fa11e17fd940dd0cb0c98bd09b868abc8b299c8d3305567b0456dd94f847b00
SSDEEP

24576:bwDJwhzp2w8d6fPee+hSw9myy4ywnWWV3jkj+6+nZl94+m2p:beAQdd6fme+h/TywFNQj2Zl6+Np

Score

3^/10

Malware Config

Targets

- Target
  
  WSOCK32.dll
- Size
  
  1.3MB
- MD5
  
  8b780f075d5c9d5a56ab722e6b1cbfc3
- SHA1
  
  74feeaca7e72a5ea028790efaf4bb5b208638e60
- SHA256
  
  5ef0e6cfa540b7fa7a5c3eee17ad5788c931a6546b0ffebd7eda136bc5d985e2
- SHA512
  
  a18ad328a3304617e47b1401c6498ad9bf1448951c22a0039043e80a158542807dfeaf0dc9830f90e5cdc3ebd91dc26e003301ec78d50ce2e79e5608b5120b96
- SSDEEP
  
  24576:o7xngIBr+ok/cLNvC+J8We/TzpuBuArYq3b:8xLsKvb8We/TUBuAb
Score

3^/10
behavioral1 behavioral2
- Target
  
  mods/Crashlog.lnk
- Size
  
  1KB
- MD5
  
  9c2304567334120ad7be366298befb3a
- SHA1
  
  d3b1673001fa1afce35495b42234191bc4d2721a
- SHA256
  
  df8e05ae8c1c9c6c96308352ddd4e947e8e43302671dc04e50e197c4c2bcc8ce
- SHA512
  
  b018953b7b108603169184d57625b4f0acb0cc0c93d8e453b7e200813ae4f7c0b30a63d01ab982ab893943fa38bc798512bab6f3a901c955ce1a526813a85429
Score

3^/10
behavioral3 behavioral4
- Target
  
  mods/base/base.lua
- Size
  
  5KB
- MD5
  
  533af460fe05ab26cb8201846d1eb5ca
- SHA1
  
  028441f32a751fbf3a2aa7c819b9b491bd9db43c
- SHA256
  
  4187c28fe987e0928ccbf2948fb12f3dac3b776e428413ed964f42f15f6b18f0
- SHA512
  
  d9c9ff1b3474f589f526e54c2c6a76a5a3d64e7a2bbf07eb8f370c4549d9a0c68951ac409adeecefb5236cc7f641bda2f0d4da24794d7290b520357f0879ffd5
- SSDEEP
  
  96:+CsSarhg9S0WOptnvthRGTUF2wCxGtpl2Vhhj86gIS1XvamSZYSxls26RU1:PsSsi9FpNtKTUF2wsMplCjjgQYSls26S
Score

1^/10
behavioral5 behavioral6
- Target
  
  mods/base/req/BLTDownloadManager.lua
- Size
  
  8KB
- MD5
  
  b877c235ad02209fbecd6f915e2c1b7f
- SHA1
  
  1f2856386003eed11e3a2e39c65d322cd219a751
- SHA256
  
  de51639c64c0d8cb29bb1017cb6c0be00186de1d019fd9914a5a6ee967c3d7a9
- SHA512
  
  c99d8bf86e501f1e821bb2cf259a93dd92bb21c47c623a4339a8f976794d19ee5c2b2da8529da939204e0855f5192de0ee0acd5923a993a72a32936b9fa9f2cd
- SSDEEP
  
  192:0Uwp88Up1yuUpDDeumQp8Rutb1RvZScV9oHjIyF3mhwUuoIMFQSuAFqmPx:0UX8Fuwqum34tb1RRS49o47A8
Score

1^/10
behavioral7 behavioral8
- Target
  
  mods/base/req/BLTLocalization.lua
- Size
  
  4KB
- MD5
  
  bc9878bc9b0e12fabf75afc24834e38f
- SHA1
  
  57ab9cf87ee889f05f8ec97c8e27897fbbf01377
- SHA256
  
  d97ae9f4a1f7683a561f4e63de6b1329622f8c0dc296223586a24c14f4fdd0fb
- SHA512
  
  d00dbd2962e0e57efe4730747c436bd7b614636eee35d9d287aafe40a8a397503e080d6d8afda7755e36421eb66d4c7ae5db6dce1639f2d5798e65a3d248886c
- SSDEEP
  
  96:LJGFwPOGhij0iJ8YnUpr9NdjcVTVCK/rw2/j4rGjxSVLit/iNplpJlGM3260Erbc:L2yOBLJdnUhHNcVTVCKz3/8rGjUVLiRp
Score

1^/10
behavioral9 behavioral10
- Target
  
  mods/base/req/BLTMod.lua
- Size
  
  11KB
- MD5
  
  49a82888fa9e9f17e120090e40ecce27
- SHA1
  
  e30c9dfb39424bb1f2b5626b9fa011249ca84395
- SHA256
  
  4d1f3ad8e36051b08ddf454fef72c28e20bce5e8e255c1102cde45aefaa110ee
- SHA512
  
  40d63a99c15fa12f80afa2980d4c3038d4d667fdad4ebebfb743e587492af07f47de0909d654622ccd82ebfd81cdcb95c89dee6169398ec1f03593de76ea1ba4
- SSDEEP
  
  192:rmSLdDux4XRtq4mL/5TJCTezIXrBnvnLqF8owyZ263eD2SG48m4JC25MTR1Rk7PQ:iuIxB4o5UKzIXrlvLqF8byZ263eD2SGo
Score

1^/10
behavioral11 behavioral12
- Target
  
  mods/base/req/core/Hooks.lua
- Size
  
  7KB
- MD5
  
  07628885a0e5aff04aa36c84ce3ab208
- SHA1
  
  84fdf73c7d5a8ff940e2957c153175e09611decc
- SHA256
  
  a46f9cdfaf18ed8ef9849daa4f615bd0c8aa55c7c1ea622f9990e9009278ba63
- SHA512
  
  0cebffb112072d41c5a6a37d790a3b91c5eefbbbc830dc3d9fe5aa37c6274da4fbd211bfacfd266c5394696cd89149ad89c32ae2df4900552d2648d7a5602d84
- SSDEEP
  
  192:VlPyygOMY/40hs74UJ4Xg3hora+/4egH/40A/+/45/U4HrShszT+weZvNwIkWUe7:VJVgWQkJXgSUeFftuyT+hvkr/Amvwx17
Score

1^/10
behavioral13 behavioral14
- Target
  
  mods/base/req/core/MenuHelper.lua
- Size
  
  17KB
- MD5
  
  0acab9db9aa4a669f6438fbbf0874dc3
- SHA1
  
  e447c693ee79f652ccf4b367e3e4a7c78c41d85f
- SHA256
  
  ca8f4c73f2b1953f27126b519bd373dfb759a85bbc4138aed0a55c79d78eb3e7
- SHA512
  
  ec4d91ccc0382ddac53499302cac9da1bf2cd80b70cd01888a8c2ae1ec406e314bc7889ab6e0637e871df7dc32b19b20c03a5eb11e7f3a2f378c59a60b75290d
- SSDEEP
  
  192:R3ACjbGjaSreLtMYw7ULh8pnqR6vsHzBNomK/HpKzgQPXtBLcx9/qCmUI2KuJ202:RZG+SreLulM8pn9CNoJCxWC7lIMZy6
Score

1^/10
behavioral15 behavioral16
- Target
  
  mods/base/req/supermod/BLTSuperMod.lua
- Size
  
  4KB
- MD5
  
  8e09b2aab26f6c583741cebc438fc9d3
- SHA1
  
  a4785097011a5b079db10a640d9d00bfea9ce6b8
- SHA256
  
  dc80ed058a0fe45bfe3aecbfbfa8f47582896165b62dc7c403527eb9e27e2995
- SHA512
  
  694982d8c55ce1b10d546eade37dfaaf9675677b2f91942d26e7317fbaf08488ba1891a7efd6ef6fe19819b51ae606c4915770e8c4633a605cac725077bb98d9
- SSDEEP
  
  96:IH3zw+PvC8DYdevCRsXON5sP1rBryMvNVAMhXmpo/lUj5Zpvhj6v34s:IH3s+XC8U/RsXEo9LvNRmm/Awos
Score

1^/10
behavioral17 behavioral18
- Target
  
  mods/base/req/supermod/SuperModAssetLoader.lua
- Size
  
  6KB
- MD5
  
  7b160347e442661ea28ecd917c5ebd74
- SHA1
  
  7d0479ca062c4225d72d639e15cd75e2c3445d3e
- SHA256
  
  9e42592a3cea297fc5f93f9c32934c26fdfb72cf0b9ad6f789b2a7ae7f4d692c
- SHA512
  
  a06ca4dca9b753c360e924eb5a0d0794f548381a60f09ab1841a321dc555530eb670748aef2ff583464384a9aef0892bae0f7f1f3fe5b0d759704968805eddb6
- SSDEEP
  
  96:cmvRzxGnBrwLL+/iROGjuQK7+8zl1x1nYFVH/6khFMXkahkil/T:inJwuY2iAl1x1n4VHSz1hlh
Score

1^/10
behavioral19 behavioral20
- Target
  
  mods/base/req/ui/BLTModsGui.lua
- Size
  
  12KB
- MD5
  
  5507909e2e99cb827cdce68eafa975a0
- SHA1
  
  b4f2e1ad5527191de3de60a7b3aa69ad8ccd07b5
- SHA256
  
  a1b64c42fcbb0b5004a601151f42d28f3937137001fe6890360a4315da957974
- SHA512
  
  36ffc146abc5f2db92e08f24ab3ab3516b188b66ecc3c9479f1458661f5f65f0c3fce01825a12557024830da7b03cac85f9467d9b5ec523b0901b073abcaf831
- SSDEEP
  
  192:n6SqUb5guZFWReTaPQ4dm0EeK4cXL6dbhlYCKYIPf65eOzgB6k7+NITAl:n6SqUbKKMIXQBoXedrYCKAEsuSITAl
Score

1^/10
behavioral21 behavioral22
- Target
  
  mods/base/req/ui/BLTNotificationsGui.lua
- Size
  
  13KB
- MD5
  
  46f9ab3953193ece05d37e81130018d2
- SHA1
  
  da610f05d176b24477352486df38433becd1bf09
- SHA256
  
  fa05f48e0cfd81b1a4cceb2f0055579fbb096b75e4382ea9bd0166b8284ce948
- SHA512
  
  58c84eb1d1ce5493486d4a22ce08c215fbd0241139e9ec74bec2e0310c9dd3cab6401108dada6a9895466b192e7179d7c62e043ef4b1216eeec1884c4f408ca6
- SSDEEP
  
  384:AshoJdTi8+vvFPil591uPt0duAqPhVaWO+pC:AshoJdTi8+vvFKl591uPt0duAqPhVaWs
Score

1^/10
behavioral23 behavioral24
- Target
  
  mods/base/req/utils/UtilsCore.lua
- Size
  
  10KB
- MD5
  
  2f75e7616d26fa89413cd70635ec5b9e
- SHA1
  
  28f95b9e9900f7c4fd9d7342ec1b1b43859c62ec
- SHA256
  
  0cea955b9ec2b85595a54e04dcef283dfd416c68fae4e2f40dfebcd174a05e63
- SHA512
  
  dcbdafd38537403a1825b57e1106974471bd7659119890db0abbb500e7f5bbc5e57fa5e084a919487b30622c01153fa070bcbcd48234869f13fc12b0a304dced
- SSDEEP
  
  192:3As6gkyiRUuTrwhmGTQ7XZl8UtiewM3qQBuYX0b5B0ApAjAh3LCadmW:Qs4ygtnwtwLtiewM3DuLb5B0ApAch3LL
Score

1^/10
behavioral25 behavioral26
- Target
  
  mods/base/req/utils/UtilsIO.lua
- Size
  
  2KB
- MD5
  
  087640d27d498d17662de55d76212c5a
- SHA1
  
  b102d985ee9db716d7c19575faf4fe333c5e13e6
- SHA256
  
  9da3fd97c94a8e2b2627043686363e334c2189152d18b2f48266f470f5bdad51
- SHA512
  
  cf8c801c52b3c3f24210217d23eebffd18908ef3d1189ad506bcb0a7c794306e4ff6eeb5ba07ab9114a56b14dfcbdea40b97750437b1aad1bf1cb6300a152d2a
Score

1^/10
behavioral27 behavioral28
- Target
  
  mods/base/req/utils/json-1.0.lua
- Size
  
  16KB
- MD5
  
  0a10521b08bc2e31df0665f39b97557b
- SHA1
  
  a9aafb502cf06e34633c6e2502ce294cae6638cf
- SHA256
  
  b43407eca42d39c700d05de828e2833914266a95cfc246d23f73a0c14f72d7be
- SHA512
  
  35ad981ac0baf30d922b7dbc3323903c70aecf556fee231eb99526dfc14597dc681c0ae55423e18f7b54a0cddfeb6d3717ebcf44ee480185c5bdbf5111c4099b
- SSDEEP
  
  384:lUZnycqbIOQX4ZnRkU4BzKJqOKEiFKRxwF5v/Kjr+B/iJcO99dtSAWTXDwFam2ew:lUjF+0C9wNTXDC2R
Score

1^/10
behavioral29 behavioral30
- Target
  
  mods/base/req/xaudio/XAudioSource.lua
- Size
  
  4KB
- MD5
  
  6f2ce0d3a33b4a10bfe79356dc0a1d31
- SHA1
  
  489cc631f236f42d26f01a416b6239681c784429
- SHA256
  
  100974b52efb36182c8e24b42562866d5b0b2f312ba0a9c62262763139e30b36
- SHA512
  
  041c0433501a11d9ddd20c03d9bd0ab29cc650b1391e2d321a4614deb2ad23cbb39512a2821ec73ce5f25775eb7501bec1d92bf04575566d8f93d5601c1198b0
- SSDEEP
  
  48:Uo1VUtgTWEGnJIFEgqX0xjKYLa03EK0DT+Nx5OjybXHgHUJEXoFUzR1h7z70HPd5:Uey8WEYcMEnBa+NxRkoGOVd2CwW446VG
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v6

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32