Overview

overview

6

Static

static

4

MetaWorld/...ta.exe

windows7-x64

6

MetaWorld/...ta.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    MetaWorld.zip

  • Size

    78.7MB

  • Sample

    221024-kqrvdafef6

  • MD5

    7c205400b9bdad6f4cd9d011284faed4

  • SHA1

    f340c9eada13e71bfaed59d45f485f48e81cb954

  • SHA256

    323634d8c61be01b65f77418210092192e5685336d255b9052965060c64a598e

  • SHA512

    94e4515da4ef5f76688a03eecf52fa5df6d1ecbc08289398c17762b038d53a4dee580f680f582f1c9c03a464841578fe8cfa61a2cbe2074875ff3e85368cfb0c

  • SSDEEP

    1572864:D+szCOA+sL6HiXbRgFy4QMqG9vJSu3SXxvF0Y8sOjaI3FKxN:D+szCOAkCXbmFSMqGk2SXVwjaIVAN

Score
6/10
linkpdfpersistencespyware

Malware Config

Targets

    • Target

      MetaWorld/Meta World Launcher beta.exe

    • Size

      714.9MB

    • MD5

      96d65eabe7288c7590f44795a9822823

    • SHA1

      080df69b94e4e7afcafd935c71098ba62aafad4d

    • SHA256

      6cddbdcb02b77f840aa179df779d702c805fe48cf5b6425d062ade87450e705e

    • SHA512

      b3b84c329a85f1ac9c70927bab5df924c1306ee6907ae483396c85705bf86211941b8d7423acc15a4f90cfeee69d5ae7a04504d4391e0225ba70f44318e84a40

    • SSDEEP

      98304:MJmvB+wUnhopFNE8yCE+8t7PxBTylOqtKQCHb/i+E:gYin6pU8yCE+8FxBTH9QC7d

    Score
    6/10
    spywarepersistence

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Credentials in Files

1
T1081

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Tasks