Overview

overview

8

Static

static

1

Minecraft ...er.exe

windows7-x64

8

Minecraft ...er.exe

windows10-2004-x64

4

Resubmissions

04-02-2023 20:02

230204-yr9cpshg21 8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Minecraft Launcher.exe

  • Size

    4.4MB

  • Sample

    230204-yr9cpshg21

  • MD5

    be214f4374142dfa548ac39eca507e94

  • SHA1

    3e2279a0eb74ae3dcf2d60cd6ed33a3fd45fa304

  • SHA256

    ea04fa0a4191001206744c948dbf1a810a633fd760f699c16b60386c66a6b6b7

  • SHA512

    c16f7b2d8c4fd6b0aad0f4061a8c2b8617f1dc09d696ab6e28ee8e87c661713a5fba34c3916f6477731f36f49ea74cc0c557e73ac05d07807576259eda7c4a00

  • SSDEEP

    98304:XfZt4EJC5UiDvZpHMM+5rFp3tSjiZmJXbICNqI6:XxzJZiDR6M+5roOZkXbICNqI6

Score
8/10
adwarestealer

Malware Config

Targets

    • Target

      Minecraft Launcher.exe

    • Size

      4.4MB

    • MD5

      be214f4374142dfa548ac39eca507e94

    • SHA1

      3e2279a0eb74ae3dcf2d60cd6ed33a3fd45fa304

    • SHA256

      ea04fa0a4191001206744c948dbf1a810a633fd760f699c16b60386c66a6b6b7

    • SHA512

      c16f7b2d8c4fd6b0aad0f4061a8c2b8617f1dc09d696ab6e28ee8e87c661713a5fba34c3916f6477731f36f49ea74cc0c557e73ac05d07807576259eda7c4a00

    • SSDEEP

      98304:XfZt4EJC5UiDvZpHMM+5rFp3tSjiZmJXbICNqI6:XxzJZiDR6M+5roOZkXbICNqI6

    Score
    8/10
    adwarestealer

    • Blocklisted process makes network request

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks