Overview

overview

8

Static

static

1

Brawl_Star...23.exe

windows7-x64

8

Brawl_Star...23.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Brawl_Stars_V2.0.11646.123.exe

  • Size

    9.4MB

  • Sample

    240107-waqsxscde9

  • MD5

    f5e7ba37555932ecea7fbd874108d47e

  • SHA1

    009c388a6e381f502dee72c587f553a03838436c

  • SHA256

    2f6e75e0384b85cbaffbb9947cea5c1b2e4acf4952c3ab6fae919c8a965e1d43

  • SHA512

    7ac31e4e877d4e7058cb7927e63d02e07272ba81c06b23c70734ed91bde435ee77effba5e8ced2dfb2480e4115a3ab735438bdb5e330e6f2c7dddde76cf30ede

  • SSDEEP

    196608:hkb78tqlUgN7AktVweDO8emQmG5eWWi/zio/ia:q+2O84wWrX/

Score
8/10
bootkitdiscoveryevasionpersistence

Malware Config

Targets

    • Target

      Brawl_Stars_V2.0.11646.123.exe

    • Size

      9.4MB

    • MD5

      f5e7ba37555932ecea7fbd874108d47e

    • SHA1

      009c388a6e381f502dee72c587f553a03838436c

    • SHA256

      2f6e75e0384b85cbaffbb9947cea5c1b2e4acf4952c3ab6fae919c8a965e1d43

    • SHA512

      7ac31e4e877d4e7058cb7927e63d02e07272ba81c06b23c70734ed91bde435ee77effba5e8ced2dfb2480e4115a3ab735438bdb5e330e6f2c7dddde76cf30ede

    • SSDEEP

      196608:hkb78tqlUgN7AktVweDO8emQmG5eWWi/zio/ia:q+2O84wWrX/

    Score
    8/10
    bootkitdiscoveryevasionpersistence

    • Modifies Windows Firewall

      evasion

    • Modifies file permissions

      discovery

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks