General
-
Target
Fivem hack.rar
-
Size
1.9MB
-
Sample
230215-bj9xyagh3z
-
MD5
4156197b492c58a50e3fb2ffb4bcf681
-
SHA1
7e5171efeaabe69d72ab28dbed028cc7efcdc6af
-
SHA256
fadf73572a43a77edf12de54a2fe9cc13e58a6653d538202cde992c0ee8fdf1d
-
SHA512
76f585aa8c00f9f09ac58b4379c1fe296088133bc8acc5f664458cdd34e6e8b138d9e1125e0dcf161ae8007088d6f202e07b233d8ac1c112863f58f65aaab8e6
-
SSDEEP
49152:4NB5tG9MW7vXU4EzJuI1OKLf/7mnQYE2Xzp:4pTIWAKLXWNE2Xzp
Static task
static1
Behavioral task
behavioral1
Sample
Fivem hack.rar
Resource
win7-20221111-en
Malware Config
Extracted
vidar
2.5
408
-
profile_id
408
Targets
-
-
Target
Fivem hack.rar
-
Size
1.9MB
-
MD5
4156197b492c58a50e3fb2ffb4bcf681
-
SHA1
7e5171efeaabe69d72ab28dbed028cc7efcdc6af
-
SHA256
fadf73572a43a77edf12de54a2fe9cc13e58a6653d538202cde992c0ee8fdf1d
-
SHA512
76f585aa8c00f9f09ac58b4379c1fe296088133bc8acc5f664458cdd34e6e8b138d9e1125e0dcf161ae8007088d6f202e07b233d8ac1c112863f58f65aaab8e6
-
SSDEEP
49152:4NB5tG9MW7vXU4EzJuI1OKLf/7mnQYE2Xzp:4pTIWAKLXWNE2Xzp
-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Suspicious use of SetThreadContext
-