General

  • Target

    Blueberry_Fortnite_Free_External.exe

  • Size

    6.3MB

  • Sample

    230402-sw34laha56

  • MD5

    1c3615f92ab26802bfcf1575485fd4fe

  • SHA1

    5110da60117e2a2d0f2d3971856246f3c659d0cf

  • SHA256

    2437990d15f126e69a56fce1259c4ff90433a991d3f4a9464f2598bb5cefe3cf

  • SHA512

    9631be2c8da8f7d110c00463182bc0a46e8dc266e52c6a61eb7d20a72ab9cee522912a77bcf642e8ccf9112917da441e02eda6900ef8dd895da6b123909214be

  • SSDEEP

    196608:kHnUZL7oNz1+hjWA1xkYJqKz3wnjLwPMQ:kHhwfxkYYbjLMM

Score
8/10

Malware Config

Targets

    • Target

      Blueberry_Fortnite_Free_External.exe

    • Size

      6.3MB

    • MD5

      1c3615f92ab26802bfcf1575485fd4fe

    • SHA1

      5110da60117e2a2d0f2d3971856246f3c659d0cf

    • SHA256

      2437990d15f126e69a56fce1259c4ff90433a991d3f4a9464f2598bb5cefe3cf

    • SHA512

      9631be2c8da8f7d110c00463182bc0a46e8dc266e52c6a61eb7d20a72ab9cee522912a77bcf642e8ccf9112917da441e02eda6900ef8dd895da6b123909214be

    • SSDEEP

      196608:kHnUZL7oNz1+hjWA1xkYJqKz3wnjLwPMQ:kHhwfxkYYbjLMM

    Score
    8/10
    • Sets service image path in registry

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v6

Tasks