purelogs | fbae68a26f20150a540f528586f8bd47e5eadac3b111995da5e77746305f145d

Sharing

Copy URL

Twitter E-mail

General

Target

a.zip
Size

66.9MB
Sample

231204-wywdbaeb4v
MD5

e5794943a6b2ff7182037884501d7e4d
SHA1

36ad8ee6573c2ffa40ca4bb0b515686e8d61e9a5
SHA256

fbae68a26f20150a540f528586f8bd47e5eadac3b111995da5e77746305f145d
SHA512

8263c6c85e3fa07880392e2dddf462327003f6f593e1369a584b52c1c7cd6b4d0fc74e994d2627a841954e392d86f48b55e2642dacbaf526732e6e4d5ea377d1
SSDEEP

1572864:s9wtuxAf9EWBMMwhrCzLRFj+uBN7ksGy5HwefHdHxrd7//:2wtujWFwhaSKasT5xH7d7//

Score

10^/10

purelogs

Malware Config

Targets

- Target
  
  a.zip
- Size
  
  66.9MB
- MD5
  
  e5794943a6b2ff7182037884501d7e4d
- SHA1
  
  36ad8ee6573c2ffa40ca4bb0b515686e8d61e9a5
- SHA256
  
  fbae68a26f20150a540f528586f8bd47e5eadac3b111995da5e77746305f145d
- SHA512
  
  8263c6c85e3fa07880392e2dddf462327003f6f593e1369a584b52c1c7cd6b4d0fc74e994d2627a841954e392d86f48b55e2642dacbaf526732e6e4d5ea377d1
- SSDEEP
  
  1572864:s9wtuxAf9EWBMMwhrCzLRFj+uBN7ksGy5HwefHdHxrd7//:2wtujWFwhaSKasT5xH7d7//
Score

1^/10
behavioral1 behavioral2
- Target
  
  tf2hud-editor/D3DCompiler_47_cor3.dll
- Size
  
  4.7MB
- MD5
  
  2191e768cc2e19009dad20dc999135a3
- SHA1
  
  f49a46ba0e954e657aaed1c9019a53d194272b6a
- SHA256
  
  7353f25dc5cf84d09894e3e0461cef0e56799adbc617fce37620ca67240b547d
- SHA512
  
  5adcb00162f284c16ec78016d301fc11559dd0a781ffbeff822db22efbed168b11d7e5586ea82388e9503b0c7d3740cf2a08e243877f5319202491c8a641c970
- SSDEEP
  
  49152:KCZnRO4XyM53Rkq4ypQqdoRpmruVNYvkaRwvhiD0N+YEzI4og/RfzHLeHTRhFRNc:xG2QCwmHPnog/pzHAo/A6l
Score

1^/10
behavioral3
- Target
  
  tf2hud-editor/JSON/Shared/controls.json
- Size
  
  9KB
- MD5
  
  f511ecf46108804754ad2f3ef19c89d9
- SHA1
  
  e567c6e70e499e16e0ad17b18d109fbc59531c42
- SHA256
  
  72f78631af52a631832387ebc1ef1017962aeea1d7a16f10552891e7f4674011
- SHA512
  
  4887d0a47fb1fd9867d1c28f89775a85de6d9e540c79b2b9c2eb7ec5a39e477a4fd9c32f5f0ef8ce8ec4d3d16e1ad17d5eaa84715a370edee010afbd6db82f22
- SSDEEP
  
  192:GhunmVmV9a2dp2Zwk1etgBqOZxTPAWe7nClCdalZtlt/lU6lC/lyPSEw0mts8ml:Tx4ZMmVDDj8CCa5TJoM
Score

3^/10
behavioral4 behavioral5
- Target
  
  tf2hud-editor/JSON/Shared/shared.json
- Size
  
  7KB
- MD5
  
  9e468c736e80e2a60d58ffaf024a448c
- SHA1
  
  964d9fb11daec355ecee07c3290cad38ac00052a
- SHA256
  
  dabed6b4c26682819366f806b321b7b492f59a46b206532b1502e4c3241f1013
- SHA512
  
  98f1125300b0b8aa9fc95e272e0ec60f9e23ece3d962f23fde554367808970537dd3d51bb452259d2a76855d90eeba3ab9c2b3e33bd5f406cbab90e09ea719f6
- SSDEEP
  
  192:DNanbhD1oZCJ8I5+f3Dh9hqTOZ73HuN5yXsj4RB0AhAb01f:JGF1VJB0V2S73K5rj4T0AO8f
Score

3^/10
behavioral6 behavioral7
- Target
  
  tf2hud-editor/JSON/berryhud.json
- Size
  
  11KB
- MD5
  
  2ddc88c991ca1762b28b005d35928bbb
- SHA1
  
  67c567fae763df030b888e217420f3abf9809f80
- SHA256
  
  7c01b1632432d009b50b38ff9023f17eaab589997378f4e41128d9d8e2fa89c0
- SHA512
  
  e0b29e29ce73fb924196550fd5b4ad6a2c1b00a96d54ff2f87625ba511e29734a4ade4165c593d75371b143c8d2cc93a6fb492feec0895d4eeb6e89de9a21cf3
- SSDEEP
  
  192:WiJ9NG2JgLQNEuVEPkEs1040S0RL0Q010RK0iB0Q0R070Sj0kS0aa50C0v0g0+0i:3ALQ/MOPPsa+
Score

3^/10
behavioral8 behavioral9
- Target
  
  tf2hud-editor/JSON/budhud.json
- Size
  
  12KB
- MD5
  
  ff01c0be0768edb045c46862d72449bf
- SHA1
  
  d44c2c9a8b5b06c4b04c418752a058161a290084
- SHA256
  
  d1a251660cc10e0c309f38fb753c9b0ddc5bbcd0257449e91b7405cb0ac171ab
- SHA512
  
  a2e31a73b33034362f68e09d53f82adf435decb6b92c07efc0f0ea3b7b485a403742acd916eefe33efdfd257dc13469338c947610fd6258d72c9ee5133473ed2
- SSDEEP
  
  192:WiJVQNEaIoYKw39P5WoD1txaZ1mqPQwjy8TJxBsFmMSEptsd3H:3ZDM
Score

3^/10
behavioral10 behavioral11
- Target
  
  tf2hud-editor/JSON/flawhud.json
- Size
  
  56KB
- MD5
  
  57cc39e663c36882b01f215080a439ab
- SHA1
  
  dce0210250081d562d0d5b35a5c8291cf4cb22f8
- SHA256
  
  3ba361992f8cf04c202c832574b410cd3fcd496a7d83d3995e9fbfde1e8a348f
- SHA512
  
  104ac78354d4c20224cf563f24ea8bb2c1c1790abc4fbec977f0ed98624d61389985734d996dfa3df8fb901e0b9e3fbdc989065cac539af708c5a23c72bfd725
- SSDEEP
  
  384:3qhbu0WHv2M72LfCft3G0igYx28IdxUKBhBaYr0a:6hTWT72LfCfhGjHIdxUs
Score

3^/10
behavioral12 behavioral13
- Target
  
  tf2hud-editor/JSON/hexhud.json
- Size
  
  24KB
- MD5
  
  94677ed444015befa012a2b48030b242
- SHA1
  
  61e025e841513c0c186aabd8b76d1dd7a225707c
- SHA256
  
  7dd95873520671467766710aecfa60757f318c91c895fda7c3e906b4b9c7d75b
- SHA512
  
  e79a493e3cd05e9ece0d6d0458a7450fea7ca5aa96d6f6d4f38a0c64f7b3c85431f5adac14a991e40a63edf6a7e8147163dfde0a705ebcdb950b4c6986bc7203
- SSDEEP
  
  192:WiJfuwb4WR/WFkJGoI66NArc+MxA0K1751/W1ioM121Q1C1Q1j0p0c0/nY6SEGBc:3EArc+M4ou4aknMWe0HPyZ
Score

3^/10
behavioral14 behavioral15
- Target
  
  tf2hud-editor/JSON/hud-fixes.json
- Size
  
  14KB
- MD5
  
  c1ffd48f660de23c69377c7b7a2954cd
- SHA1
  
  04ac416c3355858ec71e634c710d4e729b58963e
- SHA256
  
  eedb6b896daa062f8727a7f6921eb804ee678006087fe65510d6e236316233af
- SHA512
  
  12172894411a2ad303e5fea509808d7d736f520a3172f74ca8a17a553974d0dd5518ae0143471a6ce451c5aa7a9303d6f0630e8f7cd0a8d937d718045fbf0e32
- SSDEEP
  
  192:WiJbtVfZptZ3kMecgBBOIxKPjWR76ClVdal0tl8/lX6ll/lyqm8m5SEKtsN0Z0Eb:3nj011OS8K139aGMMX7qQp8Y
Score

3^/10
behavioral16 behavioral17
- Target
  
  tf2hud-editor/JSON/hypnotize-hud.json
- Size
  
  22KB
- MD5
  
  16952927d4f2ec09434090a536a21f09
- SHA1
  
  47d92fe21ce1771e8d60ab669849ded925b4ef73
- SHA256
  
  edb1dcbeb5f4304b9b3615895554083d4c017882f1cbf9509548e596023df7bc
- SHA512
  
  59163ddeed57bf33e0d0a3a99a714215c0b637a65cd7e41436e1973b5ef72a520211b795a8cf174047ece064f47f54b5816a0f71f53402f26e6ab67c1fd61deb
- SSDEEP
  
  192:WiJCfASl/iNgo/QyyKbTo0/pCkq0LEoUz+PNArc+MMoB898Fe9E4FO9j49AV9FJB:3CkVTT1Arc+MpmsIw0+t
Score

3^/10
behavioral18 behavioral19
- Target
  
  tf2hud-editor/JSON/kbnhud.json
- Size
  
  29KB
- MD5
  
  0be37b6fb660b768136b0c50f0512b23
- SHA1
  
  608316d732cb517a0cf66083038c8fa14ba4aa4d
- SHA256
  
  f3234781feace8cabce7885549ed683e58f43fd4df12248560862e63aced4c35
- SHA512
  
  1ada7fd154357aaf66dd2ea6629b5b987a1c1b0f6763e49cec5cdac1ba3dfc7324b4976bfa76a6348f99b952d603cbd18cf185b8cd3ca0412b39eecf335d73e6
- SSDEEP
  
  768:T3L8s7RTDXSAPblkmad7kx/BVLWgcVwS8TaKzC0A9pXZU:T3L8IZXp
Score

3^/10
behavioral20 behavioral21
- Target
  
  tf2hud-editor/JSON/m0rehud.json
- Size
  
  36KB
- MD5
  
  1136fd21396654d2e1237b238a8282a3
- SHA1
  
  d6fd8a44bb93ce13d8a106749cbea1ccf272b945
- SHA256
  
  9b7687b2e831a3b6e81df03ec291f9f92e46faf88e1f8550ef3b3a7d25a7b0a7
- SHA512
  
  af8df9614543fd6e407449f8f73c517605a6932ab49a1b57ca40c605ef46dd1d867c73de7e8cca61d755cebbf5ef73af80a1466a3356d69c2913cb25a1b52aa5
- SSDEEP
  
  768:adT6+Y6pXC+dj8cYvjlFls+sPxZ1eqBX2:ax6D3
Score

3^/10
behavioral22 behavioral23
- Target
  
  tf2hud-editor/JSON/rayshud.json
- Size
  
  25KB
- MD5
  
  e980d535d4a365dfb27ecd6e2338fdbc
- SHA1
  
  ae5f6922f64594ff58e290d2d988628727ba603d
- SHA256
  
  03274b66a646b3eae3ce40191b9bd50b5c2c1666b742b8fd4028f55eecc33fa5
- SHA512
  
  eceb2bb9755881ff6adbd38762eb4745db357a40aefadce16f943c2d0ef36472a541ba1b50a2c18eb867da501727d81bee5f76c287b3213520072853c36c0884
- SSDEEP
  
  192:WiJENBUSVJhS295Z0lz0lH0ly0l4Wo9bcpm0mhRdItsU0p0E0/0f0SkQvy9i0x0Q:3eaSCc4D4DHPx0
Score

3^/10
behavioral24 behavioral25
- Target
  
  tf2hud-editor/JSON/sunsethud.json
- Size
  
  19KB
- MD5
  
  3077497936a8001c17e6d18024352a0f
- SHA1
  
  8587585329565efdfc6e0100594a770ea02e8774
- SHA256
  
  fac609f806332da216f0d617d20064450f0a44c566d54951d4140cfde18fe754
- SHA512
  
  cc55fdf11e8d248577f3003e4d89df3554ee79db5b0c133dcf10654a75969df49cd6eb14415ac072846b057a447759ad8036767b51debdc216d3d5a27189fef3
- SSDEEP
  
  192:WiJNIENZUF/Qeeo+H1woqEtJN98j/381jKMEwUV9gd5v25EuE3EYTCoumoSEGB2J:3Ld98j/3SZ0YrKOR8BDt
Score

3^/10
behavioral26 behavioral27
- Target
  
  tf2hud-editor/JSON/zeeshud.json
- Size
  
  25KB
- MD5
  
  fee9d7a4d9b75443216b60364cd84406
- SHA1
  
  2e0307b2b4145afe5c44b933143539cf5b134de4
- SHA256
  
  36431a03caf416f71b4a2b7c6d09a08c44647afe4aec646a2796ba06e62e89d0
- SHA512
  
  afa95945aafd196f8295fc57be95f5f8451e851ad1e3dbb02090e8bfdc4dd7b4e1b24ee44703c2ada3d9879eef13847ce03a99528cb57f30d0af575d8255fa2e
- SSDEEP
  
  192:WiJYs1dFlorULYhu80Me0z0VN0w0+M0Q0/E0x0x60J0hF0G0Ad000aP09z0Sts0A:31FPkP87aAhBqjnpnrNuLN
Score

3^/10
behavioral28 behavioral29
- Target
  
  tf2hud-editor/PenImc_cor3.dll
- Size
  
  155KB
- MD5
  
  eeb022ac5d4b333aa56f08ca2f695e31
- SHA1
  
  cedc90d7b96d9299a42f42598c4afa39e152fe7b
- SHA256
  
  618197bcc4cae66164ead840681aa1535f6c4ba314c0736c8a3f4afe9dddefbe
- SHA512
  
  47b19d0553f6a1b33ad715ae126bff1b173df107e6d33c8de88ccbc68e499fced0495622ed4f831706fa7cd19f7b03043c788b7cf8e12b7203178836541b9bbc
- SSDEEP
  
  3072:nq+gkcAWB8bxxGktTpCSoSuuEQjx81ATZ+7yHPY43D5r:nq+g3B2vRtTIb1uEQjxtUyH
Score

1^/10
behavioral30 behavioral31
- Target
  
  tf2hud-editor/PresentationNative_cor3.dll
- Size
  
  1.2MB
- MD5
  
  370b4aa0e23435e8e7c1b9111b7c59b5
- SHA1
  
  bed868e0d5d689c84a07f8f9c4b6e3ed7abec917
- SHA256
  
  43fbf2ec1c311d0b1785a8f93557ced67ce1bd956cf229aa466d5aee8f53fdb3
- SHA512
  
  2cb8d54ce49fd3c8622bc073d5614406b05a9a79521d80d0317036596c157eb4435a8dfa469b75bd61d96fec5ca4b3ebc212e25913e89ba755fbf0a217c250de
- SSDEEP
  
  24576:vidO8pkxmHUm6KDILQmkCESLSPJL/AliNzdPw9cM+D/H+VHFpYpWwxzRNDDb:vP8pkgUm6Kq9zLSPlAlgxPw9w/H+xYp9
Score

1^/10
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32