6ec79179c1e61df21e38b754017b672d559f0537ce0a3b64afe7df97025fd01d

Sharing

Copy URL

Twitter E-mail

General

Target

MegaManMaker_v1_8_5_2.zip
Size

45.5MB
Sample

231010-mpq8kacg51
MD5

fcfd752bf73143bd77c1da9a30fcd238
SHA1

ec611c57aa10708c9a727d1a2acce31cd47d80f5
SHA256

6ec79179c1e61df21e38b754017b672d559f0537ce0a3b64afe7df97025fd01d
SHA512

0b416fa5da42428a19da5f000433bff34fddcbb8a932cb4679972d3cc03229dafe3cbfb59e99907d13c9f9a31c3866be18976c01ce69e531cf066caff6d8624f
SSDEEP

786432:40vFw5nZ0Xsr/r+J8nNql74+ZmnvHwwClFbdNKdZw+ChDCdQAL8uxBoQ+ssmfG65:pvFw5Nr+JB7vwn2lfNbIn3onMGCA+X

Score

8^/10

Malware Config

Targets

- Target
  
  DLL/MegaDLL.dll
- Size
  
  17KB
- MD5
  
  d904120b05f69c04f55f31f4a0c330db
- SHA1
  
  5e2c67cd8e0df64372b0f480eaa0bd2318d0af88
- SHA256
  
  9c344fc3b74cb0c407941f328817acc14af1958596f514081c22541d125f30b1
- SHA512
  
  34c70d7f14751c611a7ee28225535ba18025065a47c545d1cb14a6609ea5f5fe2b5e0e182bb7018d606e3afd2ae5970b1a1ff7b1034278c38949a924378f0f1a
- SSDEEP
  
  384:MnW5v2OkC4ksAG3qdDeGpmeyQQ1jtgzQ6jdO0uuokwawAO8wWsKMDc:kW5uOkisqdDBtKyk6jdOAFm
Score

1^/10
behavioral1 behavioral2
- Target
  
  DLL/RollMQTT.dll
- Size
  
  60KB
- MD5
  
  dec05b850068b39bad89d285b2d9ffa5
- SHA1
  
  795dfbf74d955dc22026383acf12e97fe5c24c1d
- SHA256
  
  e5beab2288ae60d8e7ce7950ab8295a311301db68277a8b547fc03059d10ba18
- SHA512
  
  14ecda60cc0665ff4d54fc09b41847783e1e4134f7293c4f6f6f05a1eee92e1404ca429b5192f2828539a8142579c169267782d22e83ae18612c0d103cce4ba2
- SSDEEP
  
  1536:vDUnpFoDZWgLk/87dqy9u2hqTpLXonjN:vApf0Yy9nhqTpLY
Score

8^/10
- Blocklisted process makes network request
behavioral3 behavioral4
- Target
  
  DLL/updater.exe
- Size
  
  8KB
- MD5
  
  6ff4aa22d7332270cc0f3db2df8e991f
- SHA1
  
  ff28e450272e78cbd37739b44398f7577ea76fa9
- SHA256
  
  17efb4a6eabb48da0fd6021f7ceec98a03322206fe7dcc6921ee49352b745c7e
- SHA512
  
  12aba0950a310fa7d097c86302b3fb1a9cebe9a5f1c70b1c5bf8e43bfc6e6e7039821aeeb3c1db4793c919a8fd286af76570a9f061ed4638589a14592ab0fec5
- SSDEEP
  
  192:yGGZBQ3tNS/qhO0Cpd2FtBySIjl7e8wvUx7o:ybZBQ3OYO0CjUtASIjl7Dw8x7
Score

1^/10
behavioral5 behavioral6
- Target
  
  MegaMaker.exe
- Size
  
  5.2MB
- MD5
  
  0b2ee8c1d994f1ac88900ab51c67feb2
- SHA1
  
  0b74aef9a77b0634b41c3076affe0c74004a6f62
- SHA256
  
  713b9843c19bdf147a595dbdb1882f90eb09e43017777fbbdf69b6815ea70fb1
- SHA512
  
  13afd824d6196145318df529cdeae2aa2a7eb7af845f4ea59f78b550df310ae7d1564aea4f939951b5fda3b216402b31dfc16be9dd719d0ae80e02e96d8c264a
- SSDEEP
  
  49152:Q1zyj2KOmC6IKJkFWBJIknan72ldLIuG+OMO7/3/F7VuyTmxHuzK5u8o3Wh7C8j9:QYjJLfZO/bJQ/YWhuKMSjmVje
Score

6^/10
- Drops desktop.ini file(s)
behavioral7 behavioral8
- Target
  
  Shortcut to Gifs.lnk
- Size
  
  2KB
- MD5
  
  73bae61f67d186a0952d470a95b1001a
- SHA1
  
  d77dcb3aa802f68e5f55bff230f69b8d55a442e5
- SHA256
  
  e7afd94e312c6a58e358ad095e6b6ffe2d944b2d3ee84166bed6665323c38a7c
- SHA512
  
  80911ab5399ddb3f33aaca2db4bf8bdda6aa73df7fe9f42802d6d4efa994fbefaf95d09bdb1c78e821ca8371844ed953299d84b68a3c37d2f0414a924553d71b
Score

3^/10
behavioral10 behavioral9
- Target
  
  Shortcut to Levels.lnk
- Size
  
  2KB
- MD5
  
  bb967f3f23b754efdc6afcb924b5b225
- SHA1
  
  98092dd1bf3157ade4291b310e405de761a98eb7
- SHA256
  
  5c88985305b27e7a7fbe37ed0d5d3c8ab02a7e9e34b9da202dad881b0737572f
- SHA512
  
  0588920a3693c1ea21ec846f3bc9d43834d2a9c39e33c064ae81bbf816f219ea70f32d25ebe3850af80fb44acb1bbeba339de905178be353323f87e8d7a5b372
Score

3^/10
behavioral11 behavioral12
- Target
  
  buffer_zlib.dll
- Size
  
  117KB
- MD5
  
  624975310b6cb5fa9b9e9369790089d9
- SHA1
  
  9f6815572564529eff368905892e8413a32d684b
- SHA256
  
  99d19ea518396d3abf789f7a1814d69f5dd4ec8100e2e7337258a8fd898f53ea
- SHA512
  
  7897f34e6b4bd688cabe87d642ed8b62e72183ebd1dfbc1f5e13f91e5bfc67f06745131573773b8710e8470c40e2a593b7d1376456df34217767bd9fa7f101df
- SSDEEP
  
  3072:vqI/2TWPw865RD1x0n2GucmEFLu6Y/5sbhGQY2vWTBfZYtBR2EGI:vqIP6RD1TGJzu6Y/5sbheTBRYt/pGI
Score

1^/10
behavioral13 behavioral14
- Target
  
  gme.dll
- Size
  
  180KB
- MD5
  
  c9b8b6a88ce55942260ba910f37cbb86
- SHA1
  
  ba131c0d6cbe223175319a9d8bc7b93db6481a92
- SHA256
  
  acae38d5e18a442c42b0c8dfddd620a241cf397142ac99e59ac8893d6738f64b
- SHA512
  
  a224064c1e7eda29348b8749e5620dd0f88241096f74d708aa98b7c9b849af2b203c04bf47b0919fd014e4267622e8a6aec9bdec28d73a443b8316452b2b7130
- SSDEEP
  
  3072:ZRHHMH7b8RpQ99BcplZeedffojr/fFJo77jCOf27vd/nFfvB21805/e/Uq8/JUFD:OH8RpQ99BcBeMwPfFW7qOiFnBl0r4OKx
Score

1^/10
behavioral15 behavioral16
- Target
  
  rousrDissonance.dll
- Size
  
  319KB
- MD5
  
  49069a0ab0892d2a4b1f5ff114571b5c
- SHA1
  
  f75c3ef3b3da8fe182307ebf650bf0aa05678429
- SHA256
  
  02224a4afa548de7b409d515dc4e9e7c5a60653f432639c568140a05cf84f045
- SHA512
  
  557f6e2fff9b11bbf5e3508fbd871b8d4d14a619e11b17738c414903412ec80d6b7f74f80a3d80cbff7956fbe0f83453f03d49edb1550d35a6754638a33c5cb1
- SSDEEP
  
  6144:nf5qHW95s2TtMMAvqaBPsku69/Y16iBRe1KLJ2r1Y0bw5aU0eTVza5q/+uPGhIJC:jMMAvqaBPst6e16XULy1Y0Dela5qzO2Q
Score

3^/10
behavioral17 behavioral18

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

Install Root Certificate

T1553.004

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Blocklisted process makes network request

Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18