803384cfd183884a81fbb077d109b76c9a1dddbe512e4398988c8de81ca270a2

Sharing

Copy URL Twitter E-mail

General

Target

AssetBundleExtractor_3.0beta1_64bit.zip
Size

5.2MB
Sample

231127-xvt7hscc6x
MD5

094474d391d64d5400d89fbe22cd77b4
SHA1

979eb588cb498cf5ac4c771d141fafe4ba44af3c
SHA256

803384cfd183884a81fbb077d109b76c9a1dddbe512e4398988c8de81ca270a2
SHA512

fdf9e27f47617adc71b55f0fded6ca7a40f419ef49407d9373d51bbdd1f8adeb5e6005c05479b542be0c0807ed5808ad7c924b23e76d302444508c4e813f74d4
SSDEEP

98304:c8xUUeKkN6WvD3VIYbvkh9HFYb4xpB7fLEhzYT6B6pfYwBtOiNCMe:lDGr3Vp8h9HOb4xjbKYULODbe

Score

3^/10

Malware Config

Targets

- Target
  
  AssetBundleExtractor_3.0beta1_64bit/AssetBundleExtractor.exe
- Size
  
  42KB
- MD5
  
  4b4a95cc250b63651d079c372989be16
- SHA1
  
  8cb35bcefeb1aa54c373bb4a13d8e14e08a3d1bd
- SHA256
  
  957043465aff2255e4d11c99055609f6c1e34a9417012248eb4afce1bb6e5dd4
- SHA512
  
  1607e275373d6bfa7352d9237f602290844f3637774ea4d48e47a420148b6749698f5a0369b05dc23db4a9aaa9315151b214591b297a0faf85dcee4a5a83d87c
- SSDEEP
  
  384:sQ2cLXnFhooq5stFcp6p+LM03RUUvLeq3qwCrs1xq3UZU91g:jOstWEpc0qawCKZU91
Score

1^/10
behavioral1
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/AssetsTools.dll
- Size
  
  634KB
- MD5
  
  7b11cb22ecb0ad4ab6e9a2dcafa07b72
- SHA1
  
  180fd5a85b602d348d03262f4fe50002ae386a1c
- SHA256
  
  727eb275a06bd563628d2db7398603e06afb73592470c5b902d4e10e430a9dcb
- SHA512
  
  a71c18302f39bacf9a06e9532368a91dd48a969e7b5595e4d232bb8bfbd2330234b614deeef4ae1751f771dbd490c07ec3fcf6121b0d8932e9c3eac2dedf5833
- SSDEEP
  
  12288:TpnYXAkZMSFWxwABmUQq+fdFcilIhJSIAwiaUGGAhpD:TpYX9WSfABnyFcilZ5AUGrhpD
Score

1^/10
behavioral2
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/CrnlibWrapLegacy.dll
- Size
  
  499KB
- MD5
  
  27212bd81469e81ac47911881358e820
- SHA1
  
  b05ca26b8d494dc6c93e1a8d5555a4a552456f61
- SHA256
  
  0d8b251630b9e237a8433d7270371373fcbdef4837fdae7d9b14568684e2d0f6
- SHA512
  
  67015387f0920da7bfffcfe5522f5e5668bba1c71ef09636f463d3f9edd7a4dbab12b5e778ac7e4a7fe373b30a501585dde101dc1b1b374c0b432d98383b818a
- SSDEEP
  
  6144:mOU9WlBl2MxpUgWR8Zo59X6f4B4JPgCv3yYlFmb43oH/9fAGnnQK6WBqpwp3PQWM:FUkBpUgWR0o5q4YP9yYzm03uJecRIne
Score

1^/10
behavioral3
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/CrnlibWrapUnity.dll
- Size
  
  534KB
- MD5
  
  4c7ca65f1c1dd082655bef11f37bc33c
- SHA1
  
  66196ba53342ec5d4c8bb60e048e11541b9ed9de
- SHA256
  
  25f7b24113a86eddbb78c705e308d3fbe47ceb534ea16bc955708d8fd2625bd3
- SHA512
  
  cf86cfa8de64e6ec7150b933d747fbcc31e4cf7ad3270f788b1f9e1cb7d186c88e69ba37997857133bd49712839b1ba6c206fd09a8d53138332ae1676627b74e
- SSDEEP
  
  12288:KU0603ADeyCgER6VL5H+h0aZIZVRtplh4JTOM5gJ+mr1:eJN4K6VL5H+b9JWJf
Score

1^/10
behavioral4
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/ModInstaller.dll
- Size
  
  327KB
- MD5
  
  668dad5d6887b5fbda8694c3d8ecaf78
- SHA1
  
  0ffab12aed2865c6ca5f6b71392c60182634f805
- SHA256
  
  4c360af78c9d57c5ebff22806ebe783e3e4fc06fa21020d84267ee3fe6c25b04
- SHA512
  
  aefe35864fce1c9ffe4bbe1019d9ab5dcd20e07eb8138f028566894643e7ccbfc8d3c80d6ecaa5befda22294f58db5ccb8a6cdab1523054b6521082e2763c978
- SSDEEP
  
  6144:mptNCzSA8J4XJtCAbwAdpPvKwCCxUd69yNxdBmQMPgvlFt:0tNBJa8AbwAdpP8xaYvh
Score

1^/10
behavioral5
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/PVRTexLib.dll
- Size
  
  3.7MB
- MD5
  
  ce70b7e50cde35396af8b488da24e343
- SHA1
  
  8f507cc4efaa8495f3b3ad3570a090708347b535
- SHA256
  
  91bca6fe9179b397c4d8d760ae900a9bf2b0cbb3f6ce044a15b883a9519a5e68
- SHA512
  
  42c050513e4d57829f61fbda8bd8631e5fef1c490d0ba241bbb3d00d8ed423400688fee5baa43d7bcf79f6791c90890cee33dd62488bd8fa85d30e02e92d0c91
- SSDEEP
  
  49152:Nzhuy1T8iZCnVhWiaNB2YRD0mXuXsU3LkO4Bg6xdSuAKMYx2:X2iNRD0rFwvjdSuAq2
Score

1^/10
behavioral6
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/Plugins/AudioClip.bep
- Size
  
  43KB
- MD5
  
  f11e22671f6a45d4df0b1357d328c964
- SHA1
  
  b72353bf85ba56cd7aea984281c1c3ab6db14dc0
- SHA256
  
  49888649bf98f44e6369ac2b6162ccff102c24ce5b293d58331994492f0d2662
- SHA512
  
  ab7af9635d7eefb02b53280ac559f2abdfa728e5c6760041c3764fafde1d10fcf3769708544b6f8223098b22689b24c8a81d651758cbe60692b58d6b225de41c
- SSDEEP
  
  768:85sgVf8HSOSDTbTlgjQUSLhHDZc/u0qW+6tsvyh:85lVfXOS/bTlgM9LhHC9+y
Score

1^/10
behavioral7
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/Plugins/Mesh.bep
- Size
  
  1.1MB
- MD5
  
  5f917514b0cc7e1629b0ae268300e0e9
- SHA1
  
  47621230577f52fb696c85558f597ca60d89eb2a
- SHA256
  
  406a32e1add325ca22c8df0386f261fd037bb890761f96e3010feb248cb0cb54
- SHA512
  
  9de52878a049ea30eba068a9bae38454c460cebd2cd21be0041be89abbf756df235b92706a861c068fbadb1835de2a0e6413927408dc2bc6d71cfd3d56f49958
- SSDEEP
  
  24576:pATaUuoQI9a8F7rMEFFVH1hezIhSMXlw2qTHb9jf:pAm/hFa7rMEz4X2qT5
Score

1^/10
behavioral8
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/Plugins/TextAsset.bep
- Size
  
  40KB
- MD5
  
  08341f38e08d5c276fcb9642032862ec
- SHA1
  
  6d498a6dfde71c9837d07cabce8f84553a36b4d8
- SHA256
  
  dbc395941df07e1bca9c487f477de77d6b8dcd6218c543efb72efbcc41d17d35
- SHA512
  
  216f64f6ded67e377314bf2bb847321bbe0b62701b28e362389bca65e65552486e2218170ec02727e4241a19b392d846e49776f96a2c0bd383008ac83d1e64bb
- SSDEEP
  
  768:YTli4N2+neXcrMO4mKPenLgBrkPGrz1tzDLrqjS0Qd6:YsK22aeBWeLMIOj8Qd6
Score

1^/10
behavioral9
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/Plugins/Texture.bep
- Size
  
  402KB
- MD5
  
  219e2dfac6720290e5679d775fa55a71
- SHA1
  
  890ffb38ebc72cef450f293d1236192a8a5a50eb
- SHA256
  
  e01c6cdbeb349c85a4c04bb20ed1c269953025e11ad53cc7621da1d87aeed6ba
- SHA512
  
  960d5a65be910c01b8ee6347e089393822f1d66706d94057b74cb59e8a36301049c2d073453ca297eb76f9fe33df7ad26c0c9903f709cfe4c18b93ab02318160
- SSDEEP
  
  6144:LgRE6dyPOYhEX18/dcH7sjWllNQ5uqphezIhSMXlBXBWCThPiznm3s:0RhyPuidcHiuqphezIhSMXlPTh4l
Score

1^/10
behavioral10
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/Plugins/Utility.bep
- Size
  
  230KB
- MD5
  
  57a911c43843bb80a886d49a3159c0e5
- SHA1
  
  e82851878d1d8dd7d8249435b2bbceb1bc9d6330
- SHA256
  
  c573cba3a589fad5c387f27a75aa450a11b328d6caf265ff69243a8095b15b8a
- SHA512
  
  14b1626b408a128b2df122b4d1e46a0fd99c043e718c471066f692a4a5353e405a231bf506babeef4eb29162add01b5991de91a14d679555a55aaad04053a755
- SSDEEP
  
  3072:E5Xp5lqWa8eJqQ3Z0yc3/a99TvkxpheLRJIhSMXlk4ZqKFya5XB67TeFYUM+js:EHvtNiMCzAphezIhSMXlBXBWCFfjs
Score

1^/10
behavioral11
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/TexToolWrap.dll
- Size
  
  13KB
- MD5
  
  ff542ac31de72b28abbc4120195ebf00
- SHA1
  
  d2f5de131f42187d42bdbc7a80ede483a814b7cd
- SHA256
  
  0ca7e794579f617335dd0829950c07a5d70903b144d1b9bf7587488bbb995dc3
- SHA512
  
  730ec4b8b08583c3d559596d69f1a3978e1505effa2f5f0a60c362115861b094cad00d8f607a5950257a80b37c33344331fb3f791b44c14685c1507b46aa64e7
- SSDEEP
  
  192:8HukYkMOeJO7BievBSkXe1dW05oID1XYDLi8uDB:8Ykihep41dpPD1Xmix
Score

1^/10
behavioral12
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/Tools/Mono.Cecil.Rocks.dll
- Size
  
  27KB
- MD5
  
  6e7f0f4fff6c49e3f66127c23b7f1a53
- SHA1
  
  14a529f8c7ee9f002d1e93dcf8ff158ab74c7e1a
- SHA256
  
  2e2623319bdc362974a78ea4a43f4893011ec257884d24267f4594142fcd436e
- SHA512
  
  0c773da6717dd6919cd6241d3cee26ab00bb61ea2dbeff24844a067af4c87ff5cbdb2fe3ada5db4707cee921b3fb353bd12ee22b8490597d4f67ad39bace235e
- SSDEEP
  
  384:70ve8JOuJ5iC7n2NwxEXCni+VXcMeDz8PmR1ugLoaeuLMBG9UphJAprjE3uFLHa9:7+m4iCyrXOhG8uRssveum1pMFLHFBvd
Score

1^/10
behavioral13
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/Tools/Mono.Cecil.dll
- Size
  
  350KB
- MD5
  
  de69bb29d6a9dfb615a90df3580d63b1
- SHA1
  
  74446b4dcc146ce61e5216bf7efac186adf7849b
- SHA256
  
  f66f97866433e688acc3e4cd1e6ef14505f81df6b26dd6215e376767f6f954bc
- SHA512
  
  6e96a510966a4acbca900773d4409720b0771fede37f24431bf0d8b9c611eaa152ba05ee588bb17f796d7b8caaccc10534e7cc1c907c28ddfa54ac4ce3952015
- SSDEEP
  
  6144:jIevdbLPNYe8bikm98KXPHhOWY/fFREomhUFD3z:se1PNL+QRfBg/f/EWFD
Score

1^/10
behavioral14
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/Tools/TypeTreeGenerator.exe
- Size
  
  48KB
- MD5
  
  435bd42ea77344ab3a6d0ad559fbbde2
- SHA1
  
  29ac6c841657894c2bd1384be222e92029d963e7
- SHA256
  
  423f6774b299fad62d4f879a39671fc5c13c3245b682b647ed02cc568e1029a6
- SHA512
  
  3ea20714b6a251224bc6f55006b170b349182ae629a140ccda0d60e181946a6049fdc146378501c2edc8634a11187a822d4bc7105d4ad95f530241c41625a8e3
- SSDEEP
  
  768:IIXJq4fD/0x55+J+Odn1Ssdoopqv7Aoaanj4oBNFGbIWw65tJVPoPvH2vW/WIr:IifYx55+byjXjjdGb7w65tJd6/2wWK
Score

1^/10
behavioral15
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/UABE_Generic.dll
- Size
  
  553KB
- MD5
  
  67c833d897cda250f7f9fe71e6c57b72
- SHA1
  
  c29843e9678572504d5c58de9c49ff36d210693e
- SHA256
  
  c36d51d6d830eae60d89109994fc825483f1fe504ac4ca65e8cbebcd46bfcf77
- SHA512
  
  cc20084b8731d067dd690289a07c1101ee6fbca69fec9d377dc8a9e7754695cf914fdeffd66d32080e5082109c46933950941b94daa667655184bf68e2db1ea8
- SSDEEP
  
  6144:XbUwgRDf40YqzyAVIt1as+aoPA4t3iBNg2xz+phezIhSMXlBXBWCYjhse/4:L/8U0Yq2MItgs+xOsphezIhSMXlPY+
Score

1^/10
behavioral16
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/UABE_Win32.dll
- Size
  
  833KB
- MD5
  
  3f407da12bb2b03ffbd81852aa2d15f3
- SHA1
  
  be03431227acd477264329cd2e6db6e42a1cc32c
- SHA256
  
  b5479ebac9275e83be62f508380bc2455bcf0cb13f7dfd5795a1aa111e724b12
- SHA512
  
  64c7ee363650270b2358cd4c5baff7703320903861f17617e021611b318ad7172163d0a60cf7abc32fd9e109eec5eae9fb6399c8d2cb2a24966cdd495429e703
- SSDEEP
  
  24576:hRORqP63XPr8QorsXhezIhSMXlbjAANhxvd59/d7:mR7XT0Ut3
Score

1^/10
behavioral17
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/classdata.tpk
- Size
  
  71KB
- MD5
  
  53a535ae8fa3f78609e02cb8c23134ca
- SHA1
  
  48502ca70df46d5864e3394d7530508a2951fdfe
- SHA256
  
  8561c35f51e0f8212e3fe0820843ea0ac66ef522872898c7ebeed75442446f40
- SHA512
  
  86270ecaec7346de4d53c77adc733d3172923a5a69d21ef9c90da722735eaf8ec2584cee93970dc28557a301c02dd49e30b220503eb0c7921b08910786371f15
- SSDEEP
  
  1536:R46Xh/3boL6bLU/HC1Z5cAQZXd4QrwZJRW3NwNDp0EItv2LB+aoU5:R4i8L6ba6u7T4dJUdQItv2Loy5
Score

3^/10
behavioral18
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/fmod64.dll
- Size
  
  1.8MB
- MD5
  
  040775e1731b377212be1b3afbecdda8
- SHA1
  
  f58fc2c2ca4a1acabd098bc1b2add834430d7901
- SHA256
  
  5a954a3515f693b652a7243989f1c1d9935ad093161ffe0b6917bf3dbf383b2e
- SHA512
  
  b1b7ae0c93d3cdc2f86524ef7eb7a3f0f2d1aef31fe25b751a8cc763081ceb071a2e7242189bfe2374b43327db764ed402ac46b33863b39e0c90d9ca94d910a0
- SSDEEP
  
  24576:23kyO8oRqsQ8eOWMEleAfNmlyW8V716FajhvJx5bCPywf4Ag3hvx34:Oi8oo7leA1ml2iajhBnGq3Ag3D3
Score

1^/10
behavioral19
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/ispc_texcomp.dll
- Size
  
  846KB
- MD5
  
  25d5c386ed5f94c8ef30ade870ba4070
- SHA1
  
  5e6ec2a2da8f5d1bf1c95127a8619200d3a91923
- SHA256
  
  d7354c120009134ebe2656ff97bce5f0399567e63246a6cee25dcd76e23006df
- SHA512
  
  bc132b0932389ec24f42fdf619dabf235e823ab9762e5916ad40794625ab5230bcf1a2d75f9cf3a87347b05fe5fb5cf0586148bb9904d99c31e15dc015b8e617
- SSDEEP
  
  12288:E6IWO1wJ5zkRH3QgWRf1A30BBE9/6hFJh4N7p1cBCexe:9IKs9WDAo+9/6hFJu9p1mCexe
Score

1^/10
behavioral20
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/mCtrl.dll
- Size
  
  185KB
- MD5
  
  8c08b19b777de3f1164bf50485163186
- SHA1
  
  2b3667ed0a86645b3e335412026ccfc8a6ba127c
- SHA256
  
  e1adae1ecd890698ef96b91aff246f3b4df9bd023f1162606e496d618522477e
- SHA512
  
  e11390744c7981a3fd69bc890f04765285989b26f3c1c0ebd0d805fcbf9e6d5062f2065adff01925ef45d49710900a265872fcc1ff12d32a9206047caaf99715
- SSDEEP
  
  3072:XZdrSjQBURKtpMBpVNLupeTu4F9zP3oWWmx4aOx20MRSM6LnkxzG3SiDV3OeB:/r8EjMBp7LieHFpDOx2N+kDg
Score

1^/10
behavioral21
- Target
  
  AssetBundleExtractor_3.0beta1_64bit/texgenpack.dll
- Size
  
  208KB
- MD5
  
  9b79437e3a1222fdd1e3dcfb03d2e592
- SHA1
  
  3bc8110d8ac098d3adbf8ae06ab6bda9db22e6f4
- SHA256
  
  ccc083b11bbe99c0635c1cd6f5fb73fd975c5e659e6c5f9f1ec3b982d457f0e2
- SHA512
  
  80febe7d36a9c0970981afbd1ccac862515c51c153144bf8af7b02d5f2d1a439a20a07517108b63e7b2369cd4b2a6b435ae7298c5cd132ad3831a08769ca050f
- SSDEEP
  
  3072:AMCPMsAo7h4lmTeN1HJxy0ECPtlD1PFDK0b53U9Z:AMCPLAo7leN1pxy86Z
Score

1^/10
behavioral22

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22