Overview

overview

7

Static

static

1

Offline_Ch...up.exe

windows7-x64

7

Offline_Ch...up.exe

windows10-2004-x64

7

Resubmissions

12/03/2023, 18:56

230312-xlv3fsfa29 7

12/03/2023, 18:41

230312-xbqd8aeh79 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Offline_CheatBreaker_Setup.exe

  • Size

    58.5MB

  • Sample

    230312-xlv3fsfa29

  • MD5

    88758b5a7b79427f63db1d6fb4562ec3

  • SHA1

    be6329db47703cc2ea4bc941c650380f022ee771

  • SHA256

    03cd8ed3bc550e66f8616bd89c16267c6182983ab1c0c153344a187934e7e13e

  • SHA512

    377a0c2de2b03d404076a6af9c61c948f760223375d8033b205a9a4c3c4fb9fa896cff64538a5d8e4033506e1803cf38924c45900eb44c30287c808f73adba9d

  • SSDEEP

    1572864:HmW7RwoY9Ve293WzPEof5WWfMbaPU287TvQJsP0Aum:HVwoaVp9mb5f5WW5UnvQ3Fm

Score
7/10
discovery

Malware Config

Targets

    • Target

      Offline_CheatBreaker_Setup.exe

    • Size

      58.5MB

    • MD5

      88758b5a7b79427f63db1d6fb4562ec3

    • SHA1

      be6329db47703cc2ea4bc941c650380f022ee771

    • SHA256

      03cd8ed3bc550e66f8616bd89c16267c6182983ab1c0c153344a187934e7e13e

    • SHA512

      377a0c2de2b03d404076a6af9c61c948f760223375d8033b205a9a4c3c4fb9fa896cff64538a5d8e4033506e1803cf38924c45900eb44c30287c808f73adba9d

    • SSDEEP

      1572864:HmW7RwoY9Ve293WzPEof5WWfMbaPU287TvQJsP0Aum:HVwoaVp9mb5f5WW5UnvQ3Fm

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies file permissions

      discovery

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks