f909ebd511da9da6f365d64c03a65ccd7ab6c25bbeec8734d6a860314e6d34eb

Sharing

Copy URL

Twitter E-mail

General

Target

BepInEx.zip
Size

68.5MB
Sample

231225-26y23aefgk
MD5

e3839b614fb11983fbb541b53b8c0eea
SHA1

a89f4d64e908892a9d84969617fa268ef03d2ddc
SHA256

f909ebd511da9da6f365d64c03a65ccd7ab6c25bbeec8734d6a860314e6d34eb
SHA512

81e878c7a74a2d38102c172e635130b25dc17767f7cf0d2e58a336a5b00181b464535b6493de001c4957a3ff6b82918359c2f0af1c5c17c033b3042905d069f5
SSDEEP

1572864:Z+qM9xf0+JjVb5ywgFlw2K4VLtGtzaC5cx6bjZ3k7p8uPdMJYgUMp:Z+qAfxJj0FhpW5cx6/5ulGp

Score

3^/10

pyinstaller

Malware Config

Targets

- Target
  
  BepInEx.zip
- Size
  
  68.5MB
- MD5
  
  e3839b614fb11983fbb541b53b8c0eea
- SHA1
  
  a89f4d64e908892a9d84969617fa268ef03d2ddc
- SHA256
  
  f909ebd511da9da6f365d64c03a65ccd7ab6c25bbeec8734d6a860314e6d34eb
- SHA512
  
  81e878c7a74a2d38102c172e635130b25dc17767f7cf0d2e58a336a5b00181b464535b6493de001c4957a3ff6b82918359c2f0af1c5c17c033b3042905d069f5
- SSDEEP
  
  1572864:Z+qM9xf0+JjVb5ywgFlw2K4VLtGtzaC5cx6bjZ3k7p8uPdMJYgUMp:Z+qAfxJj0FhpW5cx6/5ulGp
Score

1^/10
behavioral1 behavioral2
- Target
  
  BepInEx/LogOutput.log
- Size
  
  11KB
- MD5
  
  538ee7e5070ede73dfb542da2654cc42
- SHA1
  
  2ed6bc00c13cf71585da7fe7fabfb879dc91acea
- SHA256
  
  3ca353f0ade067dc2d65638ecd7bda4de68517d566cdbec5333554f6fffaa1b2
- SHA512
  
  c7e21a291a2bfa94e3e59c9bc7e2eedbf631d571801790cc054b77117ea5c73936307b449d9cc0667c865ec5c4bc52ac2aa66e21a7d25fe96f14bf5b7351311f
- SSDEEP
  
  192:07dizbXwiMYZY0Y8YQZYJYRY0YLY5YPHYyY0YxYlYiY1Y1YrYzGyv8tilK/TBGP9://gEWJxQWmOJk2P4bJu6rqqEzjv8/9Gv
Score

1^/10
behavioral3 behavioral4
- Target
  
  BepInEx/cache/chainloader_typeloader.dat
- Size
  
  2KB
- MD5
  
  e334096ed634bd0f83f8d89ef93c1844
- SHA1
  
  30006e930c1988ecc59a3b9a4a02894803efc90e
- SHA256
  
  a58cec818d5f9e367f5b3cfea7e2739f2159d3c4c33e2e6bc993714ab4046bdd
- SHA512
  
  e29f59d29124e0f481afd6c76e102809c976a4dabb4626518b51e9b88d23f03eb3b58f6651bf017f78ada8db56ff5da18d5f410821b00d5683afae5f6863659f
Score

3^/10
behavioral5 behavioral6
- Target
  
  BepInEx/cache/harmony_interop_cache.dat
- Size
  
  1KB
- MD5
  
  af1df7997eb86264a2f1b193c8b75407
- SHA1
  
  5ed3ce1ea30994fa3a513ce5ee67b090dbf25bf1
- SHA256
  
  970f7b6b3be4528579864274d0f2998b4e55786b56a7b92573bf92cd6d5c157e
- SHA512
  
  b0d48bcb707ad42d2533a23231f1cb3691f23272ed2249e022102166503f8fe64792958c4e0314b9fca9c525334ff0a5a3d30359e698249a49a56c21da0f61fd
Score

3^/10
behavioral7 behavioral8
- Target
  
  BepInEx/config/BepInEx.cfg
- Size
  
  5KB
- MD5
  
  6fbb79abb157e750f22ca08a527f5e43
- SHA1
  
  55334443c0634bfaedbe4d3b33c825a26245a3ba
- SHA256
  
  8443d78f427027c263511cf66eec454ddf96dee397d042b4f8e00673d3653719
- SHA512
  
  0d99c0603e99b90295a0ce521bbc0c08763689df6928d3ec11c1a8801fed33ee3cbac90f70053cffd7d6adb7c9bbf195e7f7a7a7cd8f88747b8a51471caabe21
- SSDEEP
  
  48:5XUersx5gHtjYjnnV7xdT9xD+KFNel2ieevnrUn3V7apmvY7rUn3V7apuenY2z09:5XjESNjYjnxTLDtnUdxU36pU366GCnOU
Score

3^/10
behavioral10 behavioral9
- Target
  
  BepInEx/core/0Harmony.dll
- Size
  
  200KB
- MD5
  
  4705aa1c7a9795d2787722bc8c419ae8
- SHA1
  
  aa1552cf0311f27ca02d34df0558a718d16fb660
- SHA256
  
  1a21cc03424fc82c3dd1346905d16494536b9595ae4162228d99fb7c285c1031
- SHA512
  
  2f2bb761d21d7288c2b373958a5eab228797d1a348147f8ff0ea603611c6d79e938a4ccf45f23ffc82500731a68bce8feafcd26a5264d79fd5d7435e6ba69b93
- SSDEEP
  
  3072:VQsxAaNWfZKtIZWTr7MDiIVXQ9PsMIuvq14e3Lvvv9L2yZKDVkNCuwMTfyQV:GBa+UWi2XCH7s3RqyZ5NCuTeQ
Score

1^/10
behavioral11 behavioral12
- Target
  
  BepInEx/core/0Harmony20.dll
- Size
  
  109KB
- MD5
  
  5f5de3df6984a806bf0175c96027ae4d
- SHA1
  
  1acbbb103c522d039c987bea852473bb1187676a
- SHA256
  
  f1f69690ccc7aae9156238c4115c09e9c9c7bd646d4524ff9091ae3e04667e23
- SHA512
  
  a8870bd53fa4f5c2399d3a01d909ba06c37e82fc3a4d4e7ed115478e21a690ce39df59291fb30785aca14eabc2655062e13d8c6368b5d505516aa15b17b52327
- SSDEEP
  
  3072:Nm7Ygs3s0FIIashShCJJwW1dEknAh1StSE3zZ7:T5s0UsAQJzLEknAhE
Score

1^/10
behavioral13 behavioral14
- Target
  
  BepInEx/core/BepInEx.Harmony.dll
- Size
  
  5KB
- MD5
  
  dbda2a5dce19f10b1d28e4c9f6132f33
- SHA1
  
  28cdb90e0ff909e125c97a1a16ab567387548395
- SHA256
  
  d0739c4a13f369094cb164c205ee4cca5392bdd7241b9f242ee13f0d4c0b1856
- SHA512
  
  515b30fa0479c8fdd9d5dfdbe7e4fd407ecf31d8885caf2a5d76ed02beafe2c4090aba94533cc844e7a04c552a642cd8e38623fdf91a8f7d3a0e06544ce10aa1
- SSDEEP
  
  48:6Pw5Kgf/sY1jYyx1mG9dt7kjYgKYbLkark/G/wKCogkglufVkd6u9FFUpE6lPkgg:gQT1tx1mG9dt7kc/YbLkmA3okYKdWx
Score

1^/10
behavioral15 behavioral16
- Target
  
  BepInEx/core/BepInEx.Preloader.dll
- Size
  
  41KB
- MD5
  
  f2f4c346de1c195fe04e5ae70d2e4e2b
- SHA1
  
  21d69b3f01e0f15b7657177afcb142b797cb3c3e
- SHA256
  
  d247b6a3b9a04f0d96105cda2961864a404aedb9193c59663aac5fa153d6ffbd
- SHA512
  
  636bcca9acd86788b74ed1cd34882cfd63765610a8d10bba087f7e0d09f94063445261d36368b34c48a3119aa6a9a4fd57037a4f773afbbb8741e958cc5545ff
- SSDEEP
  
  768:L7p/5FwgFSj36au2hvZvbh58LCWMMGjobOogub86cNQG0Ep:h/5FvFjau2hxTtWMoSTjQG0M
Score

1^/10
behavioral17 behavioral18
- Target
  
  BepInEx/core/BepInEx.dll
- Size
  
  124KB
- MD5
  
  1a5e430022ec26485dee232e9ad3780f
- SHA1
  
  bcd8cee94d81e185aea3d7fcbbaf9a9bd61f04f0
- SHA256
  
  2674d3aecf3097bee817abe7e8bbcc42bf583df51402069d5fcd4fbed55017ce
- SHA512
  
  10af71ef9a75f3756793cb4a1d3ae2465b05ac9f8c87b82ceb694e51edbec4956d9582150bdfbf97273ef294288170230f8f49685eebd4cf621f41341e864129
- SSDEEP
  
  3072:wQfEslO3FJ1TR2N0gvQvoc//8mfFIs29zXKBQeG9VROkmw1I:ks81D9QD5Bmw1
Score

1^/10
behavioral19 behavioral20
- Target
  
  BepInEx/core/HarmonyXInterop.dll
- Size
  
  23KB
- MD5
  
  e4e97d7d922e53f023a8741a35e2dfa0
- SHA1
  
  3abe7645b27c3d6f92876491a1ded7ee68cb247a
- SHA256
  
  8c26c96003c32742b8fa3d134f56782530be3a8ee8b8c662bde210190d1aac64
- SHA512
  
  635219aeea14939cefc1cb50613bad9e5ab75cf9d7b47eec0755138b84a255350fd31e77de8b0678e5114e70b3f66817da2e7f65e8e1bfcd06c40734499310ae
- SSDEEP
  
  384:mnZ+u8rdpVwx6ycbCvVOnjhTyO5P2F2KqY3DB/ZU2CamZM2/DVejhUF8fC/bUAGp:mnfqVBlC8VyePqrU2nSWC/oAG2xj6
Score

1^/10
behavioral21 behavioral22
- Target
  
  BepInEx/core/Mono.Cecil.Mdb.dll
- Size
  
  42KB
- MD5
  
  5a8b48fcf5e445095799e2c9149ff932
- SHA1
  
  d4c514fbac7a30ddee7d0f597c3eae23a32ccedc
- SHA256
  
  5896d1898f616701fff18f3b2c71e6b844d2390ef9f41e1c5fccce8cb27c698e
- SHA512
  
  b99b02f296e5c817b8f984317e67c885099a3cc1198ee1808a0033b48ef60d27866719f0986d7f9a1ad547939bf6dc1886e858b9db7ba4375013b96db31957b6
- SSDEEP
  
  768:XgjgMVEdS09ayuzjF/RwmanXdIiO1nqP+7y4CRIJZTMRTIzcRuYhpzt:XgUMn09ay6jF/WmcITIlITMRTtuYnt
Score

1^/10
behavioral23 behavioral24
- Target
  
  BepInEx/core/Mono.Cecil.Pdb.dll
- Size
  
  84KB
- MD5
  
  427e0464246b1e364c5a1a898db2ecf4
- SHA1
  
  dc968ab6e3f9202b5550efb04c0e17c1df04d7d7
- SHA256
  
  174db44a067f58561510af746f3caeb032037762c57a31c8d9ee32db25174984
- SHA512
  
  02ef1f9246e6117e6e958f019333720f07ff13feb5778b343e69d6e27e74e8ef1e6f122b486ce12b1e1eed546b17499ce906e8660babf281676bd8c6405f0dd6
- SSDEEP
  
  1536:qguHKU52yKfwZyrw03xFjeylsP+ndKFi94lNSex6SU:qguHKU52rwZyrw03uZ+Um4lZ0SU
Score

1^/10
behavioral25 behavioral26
- Target
  
  BepInEx/core/Mono.Cecil.Rocks.dll
- Size
  
  27KB
- MD5
  
  36a8284f264bdb2cb3420f5d2b8b10e0
- SHA1
  
  b842aa70ac6ff9cc3922189e971a62659299ef64
- SHA256
  
  54ac539fb5ddc8b44c0e9acd0fcb7324f89d1a072edf8ebc1b06dd691e3d3927
- SHA512
  
  3979601ce74b72e1519d020832e57e21b5269bda955878ad52e2d162d6de47fde4793fee9a163551f52081bc2dff90e197f030f8cb83128d07b8571073451e0d
- SSDEEP
  
  384:ZNXMT7GsmR2jm13u4NcU11qvJCyIXcMeDz8PmR1uhLoXeuLMBG9UphJAprjE+J1H:v0I2jo3uobeCyV8uRsdeeum1pg1w7H
Score

1^/10
behavioral27 behavioral28
- Target
  
  BepInEx/core/Mono.Cecil.dll
- Size
  
  331KB
- MD5
  
  50ae8a86b701c83fce3a814ae8d79321
- SHA1
  
  7c8b821367897baa1b78157d5cea0767f424bc40
- SHA256
  
  7ae470288fff4a402899c254d0a76cefef55877f5c54f96e83c797cc5bb6e2f6
- SHA512
  
  04b57207d4fd9fa9f1a71323ea803f023b4b0f2f7a7070bf431806c7a7f41277969c0f5979ecf134812001b47f5d36ec8e8541982473287323e783b3ffe93121
- SSDEEP
  
  6144:BTU5Xn0f1oUh8dK9S5K0UEece8plCTNgoF:9pJS5KEpWgo
Score

1^/10
behavioral29 behavioral30
- Target
  
  BepInEx/core/MonoMod.RuntimeDetour.dll
- Size
  
  103KB
- MD5
  
  04e1988b3ea65408d4c4c29e34bcdeb1
- SHA1
  
  9c599b3c60f92bd3663042dc0781be78e2ff0882
- SHA256
  
  40e49bb314391cd7bddc2644f8553eeba92c194b940836b103df16955c464e0c
- SHA512
  
  93fd6df274132691a47e00c84e69c84620de7967434c2164deeb7b605038233be7d29d0acb2dc6dce5bbb4b13225094a61f12458be094ac9b2ec27edc6a524a0
- SSDEEP
  
  1536:IFSuZYhhgotA6e4GDSGVjkodWWD7Fjsgql8R6AvdbiwbeMvdo:IUuOhhgsAPDlV5agql8cAvd5do
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32