Overview

overview

6

Static

static

1

GameMaker-...02.exe

windows7-x64

6

GameMaker-...02.exe

windows10-2004-x64

4

Analysis

  • max time kernel
    61s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23/09/2023, 19:58

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    GameMaker-Installer-2023.8.1.102.exe

  • Size

    179.7MB

  • MD5

    038ca8b57c6558588e640416105577fc

  • SHA1

    d3a3ed94121500c6f3f33609760b853aadd4e669

  • SHA256

    c9347696668e87d8dceeb9a739e345e625bb70ba2ebf95456c17fff539f0d9a9

  • SHA512

    ad1b2d2f143bcc954dc4be18e5292968943151dee88252380f37c9a87bf87e30719fc1c084742a039d2d3f285154b1a1b5891d30a96e9d846211b3c7af8a7c02

  • SSDEEP

    3145728:DVDMkatDPr5fiGpKTVoeiPv9NIc6Z/exU7nppU92bynwjyKi+yULhRRyA54TiI7v:RDErr5fv+Voei9NWmcpE2bOZ7gLh7j5i

Score
4/10

Malware Config

Signatures

  • Loads dropped DLL 2 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

Processes

  • C:\Users\Admin\AppData\Local\Temp\GameMaker-Installer-2023.8.1.102.exe
    "C:\Users\Admin\AppData\Local\Temp\GameMaker-Installer-2023.8.1.102.exe"
    1⤵
    • Loads dropped DLL
    PID:4576

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\nsi26DE.tmp\LangDLL.dll
          Filesize

          5KB

          MD5

          014a3be4a7c1ccb217916dbf4f222bd1

          SHA1

          9b4c41eb0e84886beb5591d8357155e27f9c68ed

          SHA256

          09acfc5ee34a1dfa1af3a9d34f00c3b1327b56641feebd536e13752349c08ac8

          SHA512

          0f3d1bf548e29a136150b699665a3f22c6ea2821701737363fa2920b51c391d735f1eae92dea8af655e7d07304bd3d06e4aff3f5a82fa22bcf5d1690013eb922

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\nsi26DE.tmp\advsplash.dll
          Filesize

          6KB

          MD5

          1871af84805057b5ebc05ee46b56625d

          SHA1

          50e1c315ad30f5f3f300c7cd9dd0d5d626fe0167

          SHA256

          62b3db0446750ca9fd693733eec927acc1f50012a47785343286e63b650b7621

          SHA512

          c1979ee98dfdb807776c439218528d80b4b244a87e692f1538e40f9c2c82db8b77485eb1429325b6f44419bf1f4cd454e43ff381eff077a8b4f4d9eb0d7e54d4

          Download Submit