Overview

overview

6

Static

static

1

GameMaker-...02.exe

windows7-x64

6

GameMaker-...02.exe

windows10-2004-x64

4

Sharing

Copy URL
Twitter E-mail

General

  • Target

    GameMaker-Installer-2023.8.1.102.exe

  • Size

    179.7MB

  • Sample

    230923-ypz19aac2t

  • MD5

    038ca8b57c6558588e640416105577fc

  • SHA1

    d3a3ed94121500c6f3f33609760b853aadd4e669

  • SHA256

    c9347696668e87d8dceeb9a739e345e625bb70ba2ebf95456c17fff539f0d9a9

  • SHA512

    ad1b2d2f143bcc954dc4be18e5292968943151dee88252380f37c9a87bf87e30719fc1c084742a039d2d3f285154b1a1b5891d30a96e9d846211b3c7af8a7c02

  • SSDEEP

    3145728:DVDMkatDPr5fiGpKTVoeiPv9NIc6Z/exU7nppU92bynwjyKi+yULhRRyA54TiI7v:RDErr5fv+Voei9NWmcpE2bOZ7gLh7j5i

Score
6/10
discoverypersistence

Malware Config

Targets

    • Target

      GameMaker-Installer-2023.8.1.102.exe

    • Size

      179.7MB

    • MD5

      038ca8b57c6558588e640416105577fc

    • SHA1

      d3a3ed94121500c6f3f33609760b853aadd4e669

    • SHA256

      c9347696668e87d8dceeb9a739e345e625bb70ba2ebf95456c17fff539f0d9a9

    • SHA512

      ad1b2d2f143bcc954dc4be18e5292968943151dee88252380f37c9a87bf87e30719fc1c084742a039d2d3f285154b1a1b5891d30a96e9d846211b3c7af8a7c02

    • SSDEEP

      3145728:DVDMkatDPr5fiGpKTVoeiPv9NIc6Z/exU7nppU92bynwjyKi+yULhRRyA54TiI7v:RDErr5fv+Voei9NWmcpE2bOZ7gLh7j5i

    Score
    6/10
    discoverypersistence

    • Adds Run key to start application

      persistence

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks