Overview

overview

7

Static

static

3

Papers Ple...up.exe

windows7-x64

7

Papers Ple...up.exe

windows10-2004-x64

7

Papers Ple...up.exe

windows7-x64

7

Papers Ple...up.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    Papers Please - By FranticTutoriales.rar

  • Size

    21.5MB

  • Sample

    230717-ebsv8sag8w

  • MD5

    5fdce0426f5a6deeeb2f052b45a2bf91

  • SHA1

    42f7a273b55c794a3ace5cfcb27940ac238b175b

  • SHA256

    f29a1cfa97ac37a35bc20001a586911688ddd68e52a4db7c3fcb95c47334db01

  • SHA512

    1fdf720253c069ffd692e040d4a1f5985040aea7d82f8844b2f86a96868cf6bdc8ab4fd250b6b930ac513f37ded775707f3a6483286a83e4d4c1b1e947a8e8cb

  • SSDEEP

    393216:jWuB6xTHifx/ANeyqzu3ujBBsCX7nVicZ2841wY3qmaiQeOB:yuB6BHifx/AQzwujBBdXRJKqmateOB

Score
7/10
persistence

Malware Config

Targets

    • Target

      Papers Please - By XaviGamer/Papers Please -XaviGamer/redist/dx_setup.exe

    • Size

      281KB

    • MD5

      fd6057b33e15a553ddc5d9873723ce8f

    • SHA1

      f90efb623b5abea70af63c470daa8674444fb1df

    • SHA256

      111aeddc6a6dbf64b28cb565aa12af9ee3cc0a56ce31e4da0068cf6b474c3288

    • SHA512

      d894630c9a4bdb767e9f16d1b701acbdf011e721768ba0dc7a24e6d82a4d062a7ca253b1b334edba38c06187104351203a92c017838bdd9f13905cde30f7d94d

    • SSDEEP

      6144:pWK8EGMUjp5cGQ3Mek1B3B9h8Ins3i8AEYBSawz1YSc:JGvjp5cj35kDB9hrs3zARBSaJSc

    Score
    7/10
    persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

    • Target

      Papers Please - By XaviGamer/Papers Please -XaviGamer/setup.exe

    • Size

      828KB

    • MD5

      051be444bb912b68b005a03d165e5328

    • SHA1

      17d41f81d8bea23d43aab6830b852dd441a8e0ce

    • SHA256

      6148ded4c2efae5064b48b331fbc4684421afeeb89bce849ebeace952c46572b

    • SHA512

      d78a268e6e2db9b8c9d394dac1072bd001064e8c301a750fedf1a2e17df23bd4f1431de92c39e50e31dcd9bb0e1eba637d6b89d61ab7e68861767c43c91016c3

    • SSDEEP

      12288:sjxolfRJjrQ94OQ/Z2/QPy22ScjY6YCnJUsQOA0q6HRHazuaWtQLH5/yl:sjKVbr44tRXa22SEY6YCqHOEVJp8

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral3behavioral4

MITRE ATT&CK Enterprise v6

Tasks