88c5875ca7a7290deb701ab3e05b33c5163a8d8c80ec784b3ac515f81e25df27 | Triage

Sharing

General

Target

DangerousGame_ACT.exe
Size

27.1MB
Sample

230317-tywyqshb34
MD5

bcec025fa6aba59c737dde9b7b21a2a5
SHA1

0e6d5c14d84e8081d2c1a762542669014db516dc
SHA256

88c5875ca7a7290deb701ab3e05b33c5163a8d8c80ec784b3ac515f81e25df27
SHA512

21ecde223216fc250e8ccb85db0a3dfe064bf64bf4c4bc2b9f49a3d0b0a89f558ee1083b475e8274e76a1ce3568997a495e41993d13c7d9c5ebb9c62c6c151db
SSDEEP

786432:KnbKVDCP8KL9gfsiH4S4AVAdwz9TpszBnsSHbL:Q2/K+zHh4Acwz9TpszBnsSHf

Score

7^/10

Malware Config

Targets

- Target
  
  DangerousGame_ACT.exe
- Size
  
  27.1MB
- MD5
  
  bcec025fa6aba59c737dde9b7b21a2a5
- SHA1
  
  0e6d5c14d84e8081d2c1a762542669014db516dc
- SHA256
  
  88c5875ca7a7290deb701ab3e05b33c5163a8d8c80ec784b3ac515f81e25df27
- SHA512
  
  21ecde223216fc250e8ccb85db0a3dfe064bf64bf4c4bc2b9f49a3d0b0a89f558ee1083b475e8274e76a1ce3568997a495e41993d13c7d9c5ebb9c62c6c151db
- SSDEEP
  
  786432:KnbKVDCP8KL9gfsiH4S4AVAdwz9TpszBnsSHbL:Q2/K+zHh4Acwz9TpszBnsSHf
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Replication Through Removable Media

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Replication Through Removable Media

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2