Malware sandboxing report by Hatching Triage

Sharing

Copy URL

Twitter E-mail

General

Target

FrostyModManager.zip
Size

76MB
Sample

230115-3svm6aea33
MD5

a36305d746daab20c3608cebd0565d79
SHA1

fea45fa7c2ab6787e2fbf0228a94fe69e12bac63
SHA256

967085c6e5df28bb3d9a1a6e2680423d38b8940b00a65b5407859f5d6aacfc7f
SHA512

de498aa29408f49f10f5b98e2ab8b7e41c46835c2d971be14eac30b1d8e86188f8196206ff64abc1644c10c8ad3a5324d6b079ee34cc4873f310e97c36dae896
SSDEEP

1572864:3JKlPN+TmZpG0ftxn8EKR74cChlKkGb7vipRyjj8nKzwPoJV2:3axW0L8jR74Bh4b7vuYEKzwCY

Score

10^/10

coreentity discovery

Malware Config

Targets

- Target
  
  FrostyControls.dll
- Size
  
  93KB
- MD5
  
  fbec245b3805be2acde0bd19eaa2de86
- SHA1
  
  50556648687b560d175b0e55711db9ec983865f5
- SHA256
  
  ca226f9d15d6667175d0ff8a96d04043098dcfaadec72b55288bfe0d84d6271f
- SHA512
  
  8bd49f74c5b17460183ca8d8a94d9c4c7cbb598fb2e7422a35d90ce739a6306ebad7448dfb7a5a459ef93a2b5e8f4ddb798fdae6537e25d75412ac112025c20a
- SSDEEP
  
  1536:9oNHmpEhOu2AnR1JhBAw58dqoMUoMIxA6pcyW:9Oo0foWh6M+
Score

1^/10
behavioral1
- Target
  
  FrostyCore.dll
- Size
  
  5MB
- MD5
  
  c1388cb1c85760756c474a89b7a95770
- SHA1
  
  73bec0ff632b54a7137ab568f5089675ed084649
- SHA256
  
  6f42940c684b810b0e818f3e03a750446be163c7fa8a6e4f02462555420eb4d1
- SHA512
  
  a213329485017fbf70a602acfe7a10fe64af19280e63c1b81a70d6b3d9b8a564c600930aa7c89a5d1ceb7a4bb1060dae7cff2c142e5efe3ee9513313469baca7
- SSDEEP
  
  49152:S2k8DL77N4j6rQ5Tw5IFSH3Yd5Tso2VBZzbrDHg4D9hkV/7NQzBbaQ3Jd5QqXF:SH8
Score

1^/10
behavioral2
- Target
  
  FrostyHash.dll
- Size
  
  112KB
- MD5
  
  40cbe0c1dd81f6d6b4353623d4eb0200
- SHA1
  
  21c4f7af6a0b7f8dffbaca79ceb015e6113a08df
- SHA256
  
  8a2f9074bdf2e97cc4934c92c995a1adc431332a86d820251c8c2a9190aed7ea
- SHA512
  
  351266b00856bf504b5b5c3bd9c80b9eec69f1c060e61f99af9b15e8d8b6970f911d94f559e170260922592ae27d7fda4f6e06cd25cd6a3f4e7b4fce21a0d5be
- SSDEEP
  
  1536:B0snDClNp4ESiqZH6FFin0ndx9DDadTl:BOnlJqJwndx9D0Tl
Score

3^/10
behavioral3
- Target
  
  FrostyModManager.exe
- Size
  
  506KB
- MD5
  
  ce2e89ab7ba7e003af3feb74ec0d1a20
- SHA1
  
  6861071664db9fd994d6c4bbddb5e2be192a9e98
- SHA256
  
  8fcdb7659bc77b23f374e6eb89427c8dda7727a25c8a8bca3bdf494fd1c801db
- SHA512
  
  9044e40e37c37d1ffac9890d7bf1a7093c8043231fd49945d38beee849b26cdccd2c20e3d7af6d2bd096e125776b1b8a28dad385eb468bf49d0edb6d7c74710c
- SSDEEP
  
  3072:8+Uv+M/88jAku6tIUpoHopGg1DSnACXdS2YUFsviH8zQq/fgSR0pm/fOiC5c2r:VUvpBOE1OnHXYUsaH8zf/ISR0pm/Gy2
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral4
- Target
  
  FrostyModSupport.dll
- Size
  
  106KB
- MD5
  
  6ff3d7de02271f78155e7dc71be0cccf
- SHA1
  
  864b3e6794adaaf723472d52bfcbfdaf267730a5
- SHA256
  
  07dfcf0c55fcab14d4bb80324ab9af65f67e1049d444af75ac1781e1b6885606
- SHA512
  
  9d8352be50ba972cce4b49159e7c053071e9b3e87bdd4e97c4f7d5d99b8e3cf38b6b85c0df7c7373f4d282411cbc4481d97063af2df59b49fed568bcfbc8de5f
- SSDEEP
  
  1536:z4Qb1Sko0K1UuezBVEdYhs/0btkW2VZQ5yqfvG7c97b37vo4CWLSF25s:z4QbXQd10bt53ro4C3Fos
Score

1^/10
behavioral5
- Target
  
  FrostySdk.dll
- Size
  
  2MB
- MD5
  
  052cd5f758f85e11bae5c3a25dfed411
- SHA1
  
  3560189c62627150436e0c5c21fc05f4bae98802
- SHA256
  
  57ec3d4ce33bf7b98e7d30df2a431221fa61b3ab4d6456dfd7a0129c30b7cb6e
- SHA512
  
  464fe31e70b39e6b5832b39295fa231e5964f59c625fd8dcaa7cf0ca4c24d81b4dd9d7dbfdbf41f0e68e8d7a73572a188ef61ea11a8417bb5cf1aeb5c680011c
- SSDEEP
  
  49152:A3og1smwkxQ1fqDs/n31tP1Ah4jw8fOAXUR0EoEB8/mZKlyscUiKbOoBZyXmv:A6ZJ1fqDmXoV4IeEBCtlykpbhZP
Score

1^/10
behavioral6
- Target
  
  Plugins/FsLocalizationPlugin.dll
- Size
  
  35KB
- MD5
  
  2969abacbd070a74b9ec4c4ed3463014
- SHA1
  
  a61b32108cfd73a985ac303f0dd09c83c8b1b619
- SHA256
  
  bf06a24ffb2daa643d43d272e3c922345a49afa0dfc6c7cdd6effb6d8faa083c
- SHA512
  
  42f1fab1e20c4666695bde39e81b555033e070a80bfe28285c322d7b7db33f50353170d58d74e38e84f29c9a17a8030ec76bca20ac427016ccccc31cbd5c9a03
- SSDEEP
  
  768:iVROUsQZb8lA1XKg6p/yzS70qnQ3cz1lrcWMm+:i3zwuKY3ivS
Score

1^/10
behavioral7
- Target
  
  Plugins/LaunchPlatformPlugin.dll
- Size
  
  13KB
- MD5
  
  f9cb0e33a42f0cca043550ff7975b9e2
- SHA1
  
  ce158ddd9419cbfa6482dbf97bc35d0fd20c956e
- SHA256
  
  c62474a2b722a7b31b9a62743db33d3aed9746e8dce30dc9e3aa83fcad44c9a4
- SHA512
  
  99e7820a7bc5c0c3697cf7401461bfe107f65335da0d7e1f32ed7cf1debabf9f79632d7067e2ff275f1a4f7b6b4e1fa7c18948fab77482b67644cad2e7c6f2a1
- SSDEEP
  
  192:KyBVhQFFYM/arAHIB16Cr9VyBXpCSeYE75jJMN+4Kf6IHggU:KeVrSCr94BleYIc8xf6IHg/
Score

1^/10
behavioral8
- Target
  
  Plugins/MeshSetPlugin.dll
- Size
  
  247KB
- MD5
  
  5c98b5ac654ad9c01619864b5ac61568
- SHA1
  
  054ef8e97b2505f5d2fe0c44f6fb94babf49db06
- SHA256
  
  fd58e29faba8c9d0c61f874973a17ba24c3e6a68dbe40cd324e04af9a7f2b95a
- SHA512
  
  bd3329f0a0ff1a1b83009b143645593b7623020a7e27bc99ae9a78662223aef28d951f8f27a737edba1368dd33ed30b02f42774eb87140050fa0975ffdb01f92
- SSDEEP
  
  6144:qk+v9QxZ0aEAI1pG6MRfpsbvgP7OrxqPQw:IVmpcMrsbvgPNPQ
Score

1^/10
behavioral9
- Target
  
  Plugins/Swbf2MergerPlugin.dll
- Size
  
  82KB
- MD5
  
  0a21868b1f61d4832f007b1a7cfbc20e
- SHA1
  
  7ad569aaee11b6aa1d06cfa83c753204967d050b
- SHA256
  
  a935dc3b99576c0a70c69eefd8888065440982513dd09e439ca53fc14bd0b078
- SHA512
  
  bcc7d11ed9f4d704f08574eff797722b2a76846db7c643a65131975c845ae0292e4c1d6ee8ac271ecbd43ead0d25294d57d4effae1a0cc012f97340dd22a9d7a
- SSDEEP
  
  1536:64sqPeIV4fIdjMUDQJ/JMimXPYycfUo1sr/KRcf:64sqm7fIdjMRrDf71sw8
Score

1^/10
behavioral10
- Target
  
  Profiles/AnthemSDK.dll
- Size
  
  11MB
- MD5
  
  9c009ff799df68e027ad91e02ed0b3da
- SHA1
  
  c6e1ba7f1c60b5e79671245b50275d941179f21f
- SHA256
  
  69655c34d8112b6e5951bf7f108a42b84ec4dd39d3889435fe3ade7a38ebdf9c
- SHA512
  
  4be1af14d9e24b5c086662a0a85813020e607f5ea476aec6572dbc4df6277d438e2f3bd73123cc2c2f88896b355972586b9420b31ef878293ce6350a6d7e3047
- SSDEEP
  
  98304:MW6Awh/bYCKxVKC/NBcw0rSC/Ns2B7PxQpAbtBcrlC:K+KC/NBcw0/s48rl
Score

1^/10
behavioral11
- Target
  
  Profiles/BF1SDK.dll
- Size
  
  4MB
- MD5
  
  865199fd0f2341285d23e09d8add5c8d
- SHA1
  
  538328ab90487922d06be80ae12aa8f9844207b0
- SHA256
  
  e14254dd1a8e39aba9c4ae1022fd5a5ec817370daf57249daac5bb818f025f1a
- SHA512
  
  5bf67c34e7ef9d4930a65c68835d39ea4713be78a4fe7315069adc1cd9e13fd7fa08269314e2e43535099ec653d2a92d0acbbbe180b2cf6e30fcaac5f2d22273
- SSDEEP
  
  49152:dGk/IOeK5gBr5evQ8hbVJSr4SQzKlfFTB+Im0SLAYrTf1Bzail6kA5Pjh:QcPRvThbVJS0SQzE9TB+a
Score

1^/10
behavioral12
- Target
  
  Profiles/BF4SDK.dll
- Size
  
  3MB
- MD5
  
  250fa39af332975d5059fdcc84bce13e
- SHA1
  
  fbc42e8845130a3d7dd4fd93d27cf99a9158fe91
- SHA256
  
  14614487e8724c3d6cfc1aa97fc904a374eb23c5a8d282b532d1da0ad6916341
- SHA512
  
  b720d4561b7cc091312230b115395fe8ab0487fce1d8b70d443ef1d1116ba2bd593299c941306a9ec863855a83edd7c354a51e566e09f90f5a0d0c7cf4a9aa5e
- SSDEEP
  
  49152:Y6fkXBAWtNdTOX7wuoCvoplGHxsArlj+2RRv1An4CaW+j:8tKpv
Score

1^/10
behavioral13
- Target
  
  Profiles/BFHSDK.dll
- Size
  
  3MB
- MD5
  
  747eb202095add461db669b0784513c6
- SHA1
  
  5d6ab589b07f24a72701e92b4e93ad87dc6d36a9
- SHA256
  
  14257f381f2d1be23c1eca27746ecef380d23ac8ec200bcd727d1a4d8b518177
- SHA512
  
  84967b087fc9ce89f2ca480b870332a22b0f40e3bfcd72b9f3526bf1e7198bc45c09dd56947e92379025c9a97f9977a6a010de68926137d2a269241221f5f347
- SSDEEP
  
  49152:XXBCVvQUEr406O3R4MQIT8BRvCAk4+ax+j:EEr406O36MQ88fv
Score

1^/10
behavioral14
- Target
  
  Profiles/BFVSDK.dll
- Size
  
  8MB
- MD5
  
  aea55f85a8241c48463ad09ed7fc8a1f
- SHA1
  
  a3d3f66cdf556975700dc2ed8d8ebdecc62d01a8
- SHA256
  
  6d1057cd4e2f103a16b10a428a65b1810ccce052467c3d2c639675e31a1ac5ac
- SHA512
  
  13c2066a7bf1d6f848f85498329e4cacd6b614929b09b6c9c7ca0a337f7f16d52a0e6290bd340179189c9f2dd7cc488bdde00ed7768dee10588f002c95656a02
- SSDEEP
  
  49152:0GwbjrzLxFcvvBxmn7iRWiJSMC/HF6bEkPZV97Hz3codDJHrRGWoe3IvRqGK9oke:b8DLxuBwn7IGUEkPZrfcRqGl/ocQ
Score

1^/10
behavioral15
- Target
  
  Profiles/DragonAgeSDK.dll
- Size
  
  4MB
- MD5
  
  0acb8b951a64afc0036ed1c169cf5350
- SHA1
  
  1bda1900bff412e4e35b2688aca24ec0c27fe3d0
- SHA256
  
  43f91bbafc590526ad038ebf155a449a25b3c8aa99027dc2cbf0d40be944d270
- SHA512
  
  880f3b390c006fb515854e053ddaaa780bdae30dbc59c0e5f8e70e2bace1e60ed628b0ac42d2eeb0caba6f1515afa7315e539512a54f4bb05def94789883e239
- SSDEEP
  
  49152:jnDblkMmkYhIu3z/BgVewAAwzCfrKVsXa4MFddbjF:jvm+ujpw
Score

1^/10
behavioral16
- Target
  
  Profiles/FIFA19SDK.dll
- Size
  
  5MB
- MD5
  
  af34a22e3c14b5b48fa300e28098c918
- SHA1
  
  41a8f3a4f51c9b3cd3ca42ce25662b25d3e2301a
- SHA256
  
  65c6587e843267cc05a0112ba43410975113ba93487e7d4c32b55b4c4454d2c4
- SHA512
  
  695a52bcc516d71b70640a53fd1023884193313ce466e38f2238b1bea502262f8a686bfdfe3d5d1c9522d785a9dba831abe876192a91324e26b8dec72315df54
- SSDEEP
  
  49152:ze1X8Nr5QY8h6sN65wjHFQJn34LXCHlJWiHqeqCAYK3zorafZdX01SCvLR4WbSAB:zeXI5wh7MlW
Score

1^/10
behavioral17
- Target
  
  Profiles/FIFA20SDK.dll
- Size
  
  8MB
- MD5
  
  13e774730c8daf5c111bfeb2c8ce5a6e
- SHA1
  
  36795c33dda4db3117f6070e58fb4232bd8952fd
- SHA256
  
  71727a67e1ccb4fbcf5ca69e3d319b286212d8dc4965a3730f52192be0ca7923
- SHA512
  
  95860f1110e0c562bc2ec0814b060b66758a270626d10f470c97db2fe1028a5624796a442d43696ba2ef1cf3be60de452344575650d1aec9edb88a71329b8dd5
- SSDEEP
  
  49152:Hqfm1TlRZxcBLaQpBnsOf04ib97dw586P0gTrdhsqLvmPJKaZ7WAieBHrhg8gedY:K6UBLXBnsE04ib9s7BMgebW90JI
Score

1^/10
behavioral18
- Target
  
  Profiles/Fifa17SDK.dll
- Size
  
  3MB
- MD5
  
  2d8707166750cc086c639d42d94e4381
- SHA1
  
  242ca8a2ccb65db59bb17be90f39ab61142dcff8
- SHA256
  
  c6a8e064507e9675bd8b1a0e30de4c99cf0da4e5beb4d9b8a7e9646bcd29db2f
- SHA512
  
  ce31a48e10214b637ad8fa5a8e0cc03c0f8750d1940dac7d7be8f2905b242b29da355c358bdf40cd6f3a28d9847ed285a613cf8fe9080a41389934bcf1ab11fa
- SSDEEP
  
  49152:cxmg8koT8od9uXt5qhHHAlK3zXrmflds9NkCvLJbeAB1NapLCnlVkeYPjg:cObdMXHO
Score

1^/10
behavioral19
- Target
  
  Profiles/Fifa18SDK.dll
- Size
  
  5MB
- MD5
  
  3154b8ee32260ff40e65a4edd546d52e
- SHA1
  
  dcba05f5ef4d36eb24ad466bc1931f9dba94c964
- SHA256
  
  a89d49749d5fe265caa949cf0d460a1471c16be99a015d1574812e1521a6ca17
- SHA512
  
  2aa2257bf1b052f9a907eccf40260ce12d5249a4e5df3370cf75f3ea47ee8f25b650c7118465e5cbb114916cb77d76ed71a7a03fd3d3b01f9d726da89be4d43b
- SSDEEP
  
  49152:HaipNuozymcywAqXVJb/F1us7H/CAgK3zprXf+dFO+RCvLloIbDAB1xaxZCflMke:HxcNP1u
Score

1^/10
behavioral20
- Target
  
  Profiles/MADDEN19SDK.dll
- Size
  
  5MB
- MD5
  
  f23e6494294dcfa953b71bf081a935e5
- SHA1
  
  ba0f83137630ae7cd78887f3802dd2960c50e511
- SHA256
  
  a6d66c3df023b6ae98eafdb2a4c7eb066e0b580692e988e25ee3d9de9872dc0b
- SHA512
  
  6dd14690c3eead245f253f81a15f1fff25d6ed86c1f4003bbb6a2eb5ca544d60e65bfcd189bf14be44913026e06eb95fc62e407c47e51da9ee6fe99874cd0c13
- SSDEEP
  
  49152:9z5wRWhwgpH+XYdipVzBy/nT2pARaOSWGg54HAAOu/E4bCAMJrtfzM/cUXivx7q7:EMhw6H+XYdipVzBy/nT2GRgo4+lG
Score

1^/10
behavioral21
- Target
  
  Profiles/MADDEN20SDK.dll
- Size
  
  7MB
- MD5
  
  2f374fccfa4a9798c2bd3e0b3f258698
- SHA1
  
  3ee43bf831966b38105f72dea1d33b9a780a5d00
- SHA256
  
  6e0078882864615fcbc0d5cd5389c52448ba0c7e74cf1aae08f8f25f0451420f
- SHA512
  
  6ee028a11d7f5cf3b1c09de4e098154152fc82a3fba068c7cd48cf8060fe31009c9d35f66434a02182ca79376dda9f0cfc7ece5a46ef41b337b387ba2a03ed10
- SSDEEP
  
  49152:4fMM6xvO7oeglh8lnhsf5pj08sVn8nFzzdBU9rhtIUagDMyzNoMW5q8G/KZlbaIV:4fMWIxRFFGKnHuK4+
Score

1^/10
behavioral22
- Target
  
  Profiles/MassEffectSDK.dll
- Size
  
  6MB
- MD5
  
  c085c43b9f814b0eba2be987e22cd2c8
- SHA1
  
  c9a5f39a668c339592dec0f796a83f55fd8823ed
- SHA256
  
  ddd671f7a41328b98778a48edba816726cc69d3c9f6a79ec95f252bb64c7994c
- SHA512
  
  5058c3daa0e7c6c9a80e663eaa61d19dfa6db7609228582568722791cca719c6556ba54a96612683995c94f2196ba6496a5ed29a4dff748cc63ee54301bae193
- SSDEEP
  
  49152:adWPjud5/JCXBqD4ZyoWbjLb+iraMUEgLS02SPa+pBnYrh6uaS0P07Oydjr251RI:adsjAB6JSaEgoE1M
Score

1^/10
behavioral23
- Target
  
  Profiles/MirrorsEdgeSDK.dll
- Size
  
  3MB
- MD5
  
  b8e2c55b919b5436626a55cd742387f7
- SHA1
  
  f68d4ea62845388f033909ff39bc5ce529577a7a
- SHA256
  
  66a4e652119ecb078d4f333e8fa61a2997f1763248317efd369110325220994c
- SHA512
  
  85132162fbb28bf6fb17ae0da7586a868ca2d28cb7c82deff260dce3410c032bb4dbf71236491a8945eeb2ecff0e235c3caf5f19532af8c480269173b335654e
- SSDEEP
  
  49152:in9XBVzfa0OUgD5bLiRAhTPaAZrMfV/7aKlbkzaPjO:SxzimU5ZhTP
Score

1^/10
behavioral24
- Target
  
  Profiles/NFS14SDK.dll
- Size
  
  2MB
- MD5
  
  786f81a60f75fee394e1270285d8d00f
- SHA1
  
  d010234a18edf9caac2d22f3e602a58328de86d5
- SHA256
  
  e9a2d2b1c4c503f5aedaa2d54da4a5c91d0f8c9b976a9ef67cddac489658fd64
- SHA512
  
  42336d865022ed5332fa29b7dd6f632c98a4dc8d3cc0f949fe573e2a67a24496be67958b120d914ac121ab00224845ac9b6905bb3d3c8efbe982a6e0079873be
- SSDEEP
  
  24576:aUxZIY9vuKkO8OUSnSOYGnpPHsTlv38m2l0Mft8usdYD+m91usdzP4UMqApYBBb:NZJ7khPzuLDB9BFPtMqApYBBbMaLhjR
Score

1^/10
behavioral25
- Target
  
  Profiles/NFS16SDK.dll
- Size
  
  3MB
- MD5
  
  66d60c50d2083ff1c680787176516eba
- SHA1
  
  ab954e9c26100208afbe495778ebf0bcf2a95c34
- SHA256
  
  fe4a373635478049a368ff97d9fe9c4c5151275df57d350574243dac7a8a4b5d
- SHA512
  
  82d9eb4ce473bda24970852636d6ea4f332390ca33af614da324f9f39d293fa12e466f111d5a40f1a62d10a869d3465efb249b8b4fa051030ab309669a5c7665
- SSDEEP
  
  49152:yxdERHn8sEWF64gUcDDus1TqJFqA3Oak4ldB8TVrLfl2z8INhYIaHlmk8ijS:yxytEWF69Df1GF
Score

1^/10
behavioral26
- Target
  
  Profiles/NFS17SDK.dll
- Size
  
  6MB
- MD5
  
  586ec05996bc3fddbc6852401c8af8e5
- SHA1
  
  9beccc492576cc976c76ac78fb84b70fcd203964
- SHA256
  
  ac4e94c0079f6dfc104128dddaa9784d609908306ff69183f36b93fd87dd3f60
- SHA512
  
  26ab42f4e895aa0e0b3dee21452ac9b416c683f98b84f3327e1c1d324f72f8c98e7ea37e292d5437cf184f66e066313e932aacb14382477a6d05b183a1771ddc
- SSDEEP
  
  49152:RcU9SxsTnFKSuGFrwkl7zwmf2U8hMrvRG0XMEvXpBYDBhnNto4rhzj4i49wBTRAi:RN1wGF8klYmf2U8hMDRG0XMOjWKjOgu
Score

1^/10
behavioral27
- Target
  
  Profiles/NFSEDGESDK.dll
- Size
  
  3MB
- MD5
  
  91df533fb423b01799d444e511591f17
- SHA1
  
  0bac83e79a39c33de1ac58acb57c82c3a5008e98
- SHA256
  
  d4df0f2fc8d54943531e0982a15abc6f01211a24ef116907e6026af890baa0b7
- SHA512
  
  911d4b90452d591088822c77baa236420f31e15940661a66eecfc7dc64c14d2f9efa5406f0576306496fbeeb32a2b52cf24dd00d819d1c3cc624e04ce39106bc
- SSDEEP
  
  49152:MgtXdVLybOGfh6clZmAZUmuUF1TqkFqA3Oak4ldB8TVrLfm2z8INhYqaclmk8ijE:Mg8a5UtF1fF
Score

1^/10
behavioral28
- Target
  
  Profiles/NFSHEATSDK.dll
- Size
  
  7MB
- MD5
  
  8571ca6a1a751acb428cc8abcb1d941d
- SHA1
  
  4e6d5ebe980e93a62c91c1559dcf4b589ae14202
- SHA256
  
  c0168aa2969a6540cf0461cd9a7596acb29d53761a0b61ee6a0440bfa5bb14c2
- SHA512
  
  8ddb17e19557d6e8b0a0d734baedcddc641e4a7152672b9252eb3ced426c2ea8dde88b7463a189a533afb9e2cba86b9f499976a508b4059580458d69bef567cf
- SSDEEP
  
  49152:IQRNqx380a/sqsUnRk+ZeA4Zy0LX83kdYmjc7AKFqhhzC54ga3rhRLfazb7BTzGC:G3e0HUHrrUD0AhDNq
Score

1^/10
behavioral29
- Target
  
  Profiles/PVZ1SDK.dll
- Size
  
  3MB
- MD5
  
  57753e4e87e86094072f47de64300353
- SHA1
  
  b49c615d2cdfa22ab8b7fd7aa799ec1f657954eb
- SHA256
  
  97f57de44a6bbfa5ef1d97ddb7d7e7ec3fb59f79aa5d8e5077773253b023f3e5
- SHA512
  
  7ea1f3f98b6646f5fba02296f10f475a6e2ced3910b35f97144027cba02293dc209dc39fb347c8d19b53389e8a588de80d6d0dd3345b50d70e23c6903a0a0563
- SSDEEP
  
  49152:O2i8KXIXTDwtjAIxEj57ux8fZFkqfANeaa2Dj:e8JstnVOfZFt
Score

1^/10
behavioral30
- Target
  
  Profiles/PVZ2SDK.dll
- Size
  
  3MB
- MD5
  
  6191251bf1c2124c337172973143aa39
- SHA1
  
  2db4436ee58c6879f49592009d6cf972d532aabe
- SHA256
  
  77ddcd00d621524740eb7bb799c166d142f76478ba12ede671fb4394b6a6ab98
- SHA512
  
  ec95b4d37aef78732444f396f7b24c931cdf5797b8f3cb0a32631c8b19c7b0ba7e0135e8f7d9e6c38690295fd9c856f2107f4df694f8e2c0410c2def2e0079e6
- SSDEEP
  
  49152:jDQWyRVLDYMAOuZbPjAsP7SB/T/+7eIQAqrVf8ilSaolmkgIjm:HQWSLDYMAOuZbPjAsPGB/QeIH
Score

1^/10
behavioral31
- Target
  
  Profiles/PVZ3SDK.dll
- Size
  
  11MB
- MD5
  
  f6494991325bf0bb2c36f4555339bba5
- SHA1
  
  f3d31fefec47119a2b80c3ceb385690ad7ab50d0
- SHA256
  
  bee3dad275a077a5a6ff8c084582423a812097586bef06f61acc0cd6a8eeaf2b
- SHA512
  
  a53434015414c105affcd622055a8e2ff24627eb05758fff24a35269add2311e1743193ffb6a903dafcc0b54d3264c02b98bd994a172d085804f62da3147a41b
- SSDEEP
  
  49152:f16oXNbeAj8bUibqul3xijcq5u8ycsNfoRVK0RzJje4CwOkIR6f/rCUg96iFalNT:ANUiDEuJE1OXR6f/X3M4q/Pk
Score

1^/10
behavioral32

MITRE ATT&CK Matrix

Collection

Command and Control

Credential Access

Defense Evasion

Discovery

Query Registry

T1012

System Information Discovery

T1082

Execution

Exfiltration

Impact

Initial Access

Lateral Movement

Persistence

Privilege Escalation

Tasks

Sharing

General

Malware Config

Targets

Checks installed software on the system

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32