d44408b53aeb61cd645db7b19397276ceefb15908e6e9db334bcb5ee9d9569a8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

TatsuGame.rar
Size

43.5MB
Sample

230818-xbl2ssch47
MD5

8a85c4fa9adb05bd7101ce3e7af0888a
SHA1

a2d62a531bdce139b564eee14ac830ac27df1e44
SHA256

d44408b53aeb61cd645db7b19397276ceefb15908e6e9db334bcb5ee9d9569a8
SHA512

46e91ccf4d4d1bfa96e599ffb40ce6956fb988a363889ec16cc014940c89b60bd79859f8dd496119ee582843ec7888edb5952f23e871bbf5ac467db633aaa380
SSDEEP

786432:FKmcZ3WFD9KlWgIJJy1zUMKYLCPU3oPpa4XzBFAnKQMlTdvbEu57VtqDWox1C7Rm:FKmcZ3W/KUgIYUM5GMwGn2Hv4u57zOqA

Score

7^/10

Malware Config

Targets

- Target
  
  TatsuGame/Extras/Redist/en-us/UE4PrereqSetup_x64.exe
- Size
  
  39.1MB
- MD5
  
  a688d249c498d4d3b89ed876c8239520
- SHA1
  
  25bdaa9b0a339099e10cf9c26e8abdcd67a9e583
- SHA256
  
  145f4e4d11e76a2612db5ffbfae8f9ab8e4385ff7660802ffd2f473c9dcb2a0d
- SHA512
  
  ca24eee29e9ae1c919b98d1f5e41b96566c86b1e40e30f3f6c7fb5c7e4049f92fb64afa4c87e8e815d3926b9cac17d0347f1f9b69d06e01303ffcb1815efecc1
- SSDEEP
  
  786432:LVbdC1L48ilX91HpNS/R/fO8udf0yj8tmH3StGtv9xRtEh7:pHl/HpNS/R/m8oj8tmH3Sst1xRuh7
Score

7^/10
- Loads dropped DLL
behavioral1
- Target
  
  TatsuGame/TatsuGames.exe
- Size
  
  38.0MB
- MD5
  
  d6a23b2ff2d34ea4f1e80de1729581ba
- SHA1
  
  33fb1f53c528ccf1ed0c1628ed6de6e9ce4914ce
- SHA256
  
  f36b3fea4a8ad0fc6f92923aa9bc9c3f873f985adfd6a5053caf2b5f21799a4a
- SHA512
  
  46175e5bf15fc04fde348e715bbb7457ceed51eb15860a23958d1dec1e9cebda355da4b599025733539f4ea21343c9805bd6806a038f585561735df96997604c
- SSDEEP
  
  393216:5zJjLG+AqDOPrr5g3EKd7qr12pFd5glhzHwSQ9C1Bm/B7AAtvDlA2L1MoFspkERG:5a8aTaxXrLYt6ycrYRacn6
Score

7^/10
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2