Overview

overview

7

Static

static

1

Papers.Ple...2).exe

windows7-x64

7

Papers.Ple...2).exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    PaPeRs,PlEaSe.v1.2.76.zip

  • Size

    40MB

  • Sample

    230319-czqpnsgf2y

  • MD5

    c402044f6b444ca439aa75f7b6fb34b2

  • SHA1

    f5d4d152618aed6140fd7e2d3ac340e4f17c1b35

  • SHA256

    f7192526dbe47540e5b2d3b58a511bc65b8a08f76a31c95adc40921f25f8acf3

  • SHA512

    7a98cacf808e48887b376ce1ca6f61eac00003272d9adcfce4b476f0a35d9c0798bfccd13011dd68391253825fd78d0f8ab42eaa25d76c0bf7b34ae7e335ef3b

  • SSDEEP

    786432:Go+/3+ptYcefxalD2bxXHPLe4978l0luDRhhjuTjdY95TsDKO9PpRdbbO5mE:E/3EtYcef2i5P+0lehhqNekVxO

Score
7/10
discovery

Malware Config

Targets

    • Target

      Papers.Please.v1.2.76/setup_papers_please_1.2.76_(54232).exe

    • Size

      40MB

    • MD5

      354d10586bd68448685e925e48810bed

    • SHA1

      ddfbe39b92b2277f989e7597af91379d7ec2ef7e

    • SHA256

      412de5f617c9115d8199d78ef93e34a9b46e021b81902feb9eef14a4b2c035f0

    • SHA512

      6f4f17b5dc51b8448184ba21af9b7dda7f7c91f5c4eef609ae6699b8bead4019fdb6280bf83853cd1db98b1a621c8dfaad4bf2fb13305ba726b66aa046bdb469

    • SSDEEP

      786432:pBaa+1a5dqYwSYjm9x+hvRprsSLQWvVyPf/Wj8LT3y53RZYvv/w/go1PIGvUaQvL:ma+1QqYHYSerDHuf/c8LTuT+iNu

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Matrix

Collection

    Command and Control

      Credential Access

        Defense Evasion

          Discovery

          Execution

            Exfiltration

              Impact

                Initial Access

                  Lateral Movement

                    Persistence

                      Privilege Escalation

                        Tasks