Overview

overview

3

Static

static

3

Monster_Bl...en.rar

windows7-x64

3

Monster_Bl...en.rar

windows10-2004-x64

3

Monster Bl...gc.dll

windows7-x64

1

Monster Bl...gc.dll

windows10-2004-x64

1

Monster Bl...tor.js

windows7-x64

1

Monster Bl...tor.js

windows10-2004-x64

1

Monster Bl...tor.js

windows7-x64

1

Monster Bl...tor.js

windows10-2004-x64

1

Monster Bl...tor.js

windows7-x64

1

Monster Bl...tor.js

windows10-2004-x64

1

Monster Bl...et.exe

windows7-x64

1

Monster Bl...et.exe

windows10-2004-x64

1

Monster Bl...ss.dll

windows7-x64

1

Monster Bl...ss.dll

windows10-2004-x64

1

Monster Bl...rp.dll

windows7-x64

1

Monster Bl...rp.dll

windows10-2004-x64

1

Monster Bl...xt.dll

windows7-x64

1

Monster Bl...xt.dll

windows10-2004-x64

1

Monster Bl...mo.dll

windows7-x64

1

Monster Bl...mo.dll

windows10-2004-x64

1

Monster Bl...me.dll

windows7-x64

1

Monster Bl...me.dll

windows10-2004-x64

1

Monster Bl...UI.dll

windows7-x64

1

Monster Bl...UI.dll

windows10-2004-x64

1

Monster Bl...en.dll

windows7-x64

1

Monster Bl...en.dll

windows10-2004-x64

1

Monster Bl...me.dll

windows7-x64

1

Monster Bl...me.dll

windows10-2004-x64

1

Monster Bl...mo.dll

windows7-x64

1

Monster Bl...mo.dll

windows10-2004-x64

1

Monster Bl...RP.dll

windows7-x64

1

Monster Bl...RP.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    156s
  • max time network
    460s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14/10/2023, 01:32 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Monster Black Market V2.0.16.0 w DLC w Uncen/MonoBleedingEdge/etc/mono/4.5/DefaultWsdlHelpGenerator.js

  • Size

    59KB

  • MD5

    f7be9f1841ff92f9d4040aed832e0c79

  • SHA1

    b3e4b508aab3cf201c06892713b43ddb0c43b7ae

  • SHA256

    751861040b69ea63a3827507b7c8da9c7f549dc181c1c8af4b7ca78cc97d710a

  • SHA512

    380e97f7c17ee0fdf6177ed65f6e30de662a33a8a727d9f1874e9f26bd573434c3dedd655b47a21b998d32aaa72a0566df37e901fd6c618854039d5e0cbef3f5

  • SSDEEP

    768:6CEPutHjvpMgMwP9h5Ij7khsp/6JtEZwMXVtkUI3t3CXyEyk3VbNbqDvJ4oT1y:/r6CdsCOZwMX3k5dWyklh+Dvbw

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe "C:\Users\Admin\AppData\Local\Temp\Monster Black Market V2.0.16.0 w DLC w Uncen\MonoBleedingEdge\etc\mono\4.5\DefaultWsdlHelpGenerator.js"
    1⤵
      PID:2240

    Network

    • flag-us
      DNS
      14.160.190.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      14.160.190.20.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      240.221.184.93.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      240.221.184.93.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      95.221.229.192.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      95.221.229.192.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      g.bing.com
      Remote address:
      8.8.8.8:53
      Request
      g.bing.com
      IN A
      Response
      g.bing.com
      IN CNAME
      g-bing-com.a-0001.a-msedge.net
      g-bing-com.a-0001.a-msedge.net
      IN CNAME
      dual-a-0001.a-msedge.net
      dual-a-0001.a-msedge.net
      IN A
      204.79.197.200
      dual-a-0001.a-msedge.net
      IN A
      13.107.21.200
    • flag-us
      DNS
      9.228.82.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      9.228.82.20.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      55.36.223.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      55.36.223.20.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      21.236.111.52.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      21.236.111.52.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      108.211.229.192.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      108.211.229.192.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      16.173.189.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      16.173.189.20.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      126.21.238.8.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      126.21.238.8.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      75.159.190.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      75.159.190.20.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      tse1.mm.bing.net
      Remote address:
      8.8.8.8:53
      Request
      tse1.mm.bing.net
      IN A
      Response
      tse1.mm.bing.net
      IN CNAME
      mm-mm.bing.net.trafficmanager.net
      mm-mm.bing.net.trafficmanager.net
      IN CNAME
      dual-a-0001.a-msedge.net
      dual-a-0001.a-msedge.net
      IN A
      204.79.197.200
      dual-a-0001.a-msedge.net
      IN A
      13.107.21.200
    • flag-us
      DNS
      86.23.85.13.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      86.23.85.13.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      206.23.85.13.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      206.23.85.13.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      29.81.57.23.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      29.81.57.23.in-addr.arpa
      IN PTR
      Response
      29.81.57.23.in-addr.arpa
      IN PTR
      a23-57-81-29deploystaticakamaitechnologiescom
    • flag-us
      DNS
      240.81.21.72.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      240.81.21.72.in-addr.arpa
      IN PTR
      Response
    • 204.79.197.200:443
      g.bing.com
      tls
      1.9kB
       9.4kB
       21
      21
    • 204.79.197.200:443
      tse1.mm.bing.net
      tls
      63.3kB
       1.9MB
       1353
      1352
    • 204.79.197.200:443
      tse1.mm.bing.net
      tls
      1.2kB
       8.4kB
       17
      16
    • 204.79.197.200:443
      tse1.mm.bing.net
      tls
      8.9kB
       222.1kB
       171
      169
    • 8.8.8.8:53
      14.160.190.20.in-addr.arpa
      dns
      72 B
       158 B
       1
      1

      DNS Request

      14.160.190.20.in-addr.arpa

    • 8.8.8.8:53
      240.221.184.93.in-addr.arpa
      dns
      73 B
       144 B
       1
      1

      DNS Request

      240.221.184.93.in-addr.arpa

    • 8.8.8.8:53
      95.221.229.192.in-addr.arpa
      dns
      73 B
       144 B
       1
      1

      DNS Request

      95.221.229.192.in-addr.arpa

    • 8.8.8.8:53
      g.bing.com
      dns
      56 B
       158 B
       1
      1

      DNS Request

      g.bing.com

      DNS Response

      204.79.197.200
      13.107.21.200

    • 8.8.8.8:53
      9.228.82.20.in-addr.arpa
      dns
      70 B
       156 B
       1
      1

      DNS Request

      9.228.82.20.in-addr.arpa

    • 8.8.8.8:53
      55.36.223.20.in-addr.arpa
      dns
      71 B
       157 B
       1
      1

      DNS Request

      55.36.223.20.in-addr.arpa

    • 8.8.8.8:53
      21.236.111.52.in-addr.arpa
      dns
      72 B
       158 B
       1
      1

      DNS Request

      21.236.111.52.in-addr.arpa

    • 8.8.8.8:53
      108.211.229.192.in-addr.arpa
      dns
      74 B
       145 B
       1
      1

      DNS Request

      108.211.229.192.in-addr.arpa

    • 8.8.8.8:53
      16.173.189.20.in-addr.arpa
      dns
      72 B
       158 B
       1
      1

      DNS Request

      16.173.189.20.in-addr.arpa

    • 8.8.8.8:53
      126.21.238.8.in-addr.arpa
      dns
      71 B
       125 B
       1
      1

      DNS Request

      126.21.238.8.in-addr.arpa

    • 8.8.8.8:53
      75.159.190.20.in-addr.arpa
      dns
      72 B
       158 B
       1
      1

      DNS Request

      75.159.190.20.in-addr.arpa

    • 8.8.8.8:53
      tse1.mm.bing.net
      dns
      62 B
       173 B
       1
      1

      DNS Request

      tse1.mm.bing.net

      DNS Response

      204.79.197.200
      13.107.21.200

    • 8.8.8.8:53
      86.23.85.13.in-addr.arpa
      dns
      70 B
       144 B
       1
      1

      DNS Request

      86.23.85.13.in-addr.arpa

    • 8.8.8.8:53
      206.23.85.13.in-addr.arpa
      dns
      71 B
       145 B
       1
      1

      DNS Request

      206.23.85.13.in-addr.arpa

    • 8.8.8.8:53
      29.81.57.23.in-addr.arpa
      dns
      70 B
       133 B
       1
      1

      DNS Request

      29.81.57.23.in-addr.arpa

    • 8.8.8.8:53
      240.81.21.72.in-addr.arpa
      dns
      71 B
       142 B
       1
      1

      DNS Request

      240.81.21.72.in-addr.arpa

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.