Overview

overview

7

Static

static

7

Dark The F...1).zip

windows7-x64

1

Dark The F...1).zip

windows10-2004-x64

1

Accord.dll.config

windows7-x64

3

Accord.dll.config

windows10-2004-x64

3

Dark The F...s.json

windows7-x64

3

Dark The F...s.json

windows10-2004-x64

3

Dark The Finals.exe

windows7-x64

1

Dark The Finals.exe

windows10-2004-x64

1

Dark The F...config

windows7-x64

3

Dark The F...config

windows10-2004-x64

3

Dark The Finals.exe

windows7-x64

1

Dark The Finals.exe

windows10-2004-x64

3

Dark The F...g.json

windows7-x64

3

Dark The F...g.json

windows10-2004-x64

3

DirectML.Debug.dll

windows7-x64

1

DirectML.Debug.dll

windows10-2004-x64

1

DirectML.Debug.pdb

windows7-x64

3

DirectML.Debug.pdb

windows10-2004-x64

3

DirectML.dll

windows7-x64

1

DirectML.dll

windows10-2004-x64

1

DirectML.pdb

windows7-x64

3

DirectML.pdb

windows10-2004-x64

3

Recoil/gun

windows7-x64

1

Recoil/gun

windows10-2004-x64

1

Recoil/mus...er.exe

windows7-x64

7

Recoil/mus...er.exe

windows10-2004-x64

7

Recoil/sens

windows7-x64

1

Recoil/sens

windows10-2004-x64

1

bin/config...lt.cfg

windows7-x64

3

bin/config...lt.cfg

windows10-2004-x64

3

bin/models/load.onnx

windows7-x64

3

bin/models/load.onnx

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Dark The Finals (1).zip

  • Size

    53.6MB

  • Sample

    240124-emdkpaabbn

  • MD5

    317e83203f2f78774a2362251fe20387

  • SHA1

    1e981adf7287438df15aa3c60094060210bbf9d7

  • SHA256

    96e6276b4d1ff728b1e2014a3be856a5e35a6a885df0797a54728868798feac2

  • SHA512

    fa86e9540db121fb3d31174261258ac6a1beb05d8fc4a5eb794a00141d09c339f075219bca8a69b04a37e05c68acb6b3f267ed485c58e1512d96b78673058b5a

  • SSDEEP

    1572864:+esWR6PvI5nR5gi5b1PhzVtUUHXAFddGnbNvuDk:+TQ6XWR5givPBIUH27Y

Score
7/10
vmprotect

Malware Config

Targets

    • Target

      Dark The Finals (1).zip

    • Size

      53.6MB

    • MD5

      317e83203f2f78774a2362251fe20387

    • SHA1

      1e981adf7287438df15aa3c60094060210bbf9d7

    • SHA256

      96e6276b4d1ff728b1e2014a3be856a5e35a6a885df0797a54728868798feac2

    • SHA512

      fa86e9540db121fb3d31174261258ac6a1beb05d8fc4a5eb794a00141d09c339f075219bca8a69b04a37e05c68acb6b3f267ed485c58e1512d96b78673058b5a

    • SSDEEP

      1572864:+esWR6PvI5nR5gi5b1PhzVtUUHXAFddGnbNvuDk:+TQ6XWR5givPBIUH27Y

    Score
    1/10
    behavioral1behavioral2

    • Target

      Accord.dll.config

    • Size

      213B

    • MD5

      08a09a4c92f3b8a8ad1b1c268049bea1

    • SHA1

      5ad3f318e9e5470db33e3080e864f887063fcc5f

    • SHA256

      3049e83f9b7fa9285a82fb3c7740e9c225b66a31f805d3582a9bfd34b5dd8e6e

    • SHA512

      ebb465a0ccc5a001eb23357ee0807f86b9bb92b285340a6679dd42eb6efe15fd4b965f44a7e9c3115aaa51f777415ee37152ea9c9e73f749538c170f8b84ab64

    Score
    3/10
    behavioral3behavioral4

    • Target

      Dark The Finals.deps.json

    • Size

      63KB

    • MD5

      9369ec8172b9b54d4ffca97aacfde418

    • SHA1

      e089a8aeb381f234e8134c223b48f61315981d65

    • SHA256

      cc855ab58ebac3912f0cf0766354f956c8ed7703f985003a5980d8105aad4a6f

    • SHA512

      61336a29a609464d41d6dd70a0e1a616db6001c5891d0e5e5a7313cd4448f1921c29d51ba21e9303455de9ecb288a61a16a855bf35e10be0a864f6e1eab62cfb

    • SSDEEP

      1536:JUvj/v37X1lcu7znBARSiL1ONeljpZKSts2hR:JAlcu7znBARSiL1ONeljpZKStbR

    Score
    3/10
    behavioral5behavioral6

    • Target

      Dark The Finals.dll

    • Size

      5.7MB

    • MD5

      0d2a022e2b891f0b71aec09948799b01

    • SHA1

      e00125d686d888f0bab6d0e1682f104dcbba01f9

    • SHA256

      5b017d43096a383fc73cfa2081cee5ed728ec78908b8adc4caadd7e872e6bd57

    • SHA512

      a8ba16f3ca8408a38710264b6712f656bebe10e8d7e9067d1618845db53fdcf817da8e7816fde31fdde68669a3ab0e13f20a1cf7d41ca32aaf2989248a81f941

    • SSDEEP

      98304:2BBRHnZs3gai98dNAXWsn7boqhUu8iByNm5sM8Zr7fuaph8b2GUaOwi13x2+:2BBRHsU9IgHhhGCsM8ZfRC2GUa1i1B2+

    Score
    1/10
    behavioral7behavioral8

    • Target

      Dark The Finals.dll.config

    • Size

      1KB

    • MD5

      77e7b874c473ce3f2ccfa7261666dc55

    • SHA1

      a23c3a1a95a3992769dc13e53317c6c801a516bd

    • SHA256

      ce2a2582100c3dfce0d0034c5a61eeaf0ac23d31843ddcd9ff87cbd2c7bb5851

    • SHA512

      4f16203d36c50028fc71dfc8a7e8e41775a9c0b0811fab2af245eecf02b496a7b9774d29c6ec3fa13f58bd845921f1ba580705759fe39d6f0f61d4990e31406e

    Score
    3/10
    behavioral10behavioral9

    • Target

      Dark The Finals.exe

    • Size

      151KB

    • MD5

      49237ab6a4635781c1d0b2c614dba36a

    • SHA1

      8a703fe65d18bf5576310f99abb48013f6d5cdbd

    • SHA256

      637c8634146fadb47d97375a70ff36e24b772ad76486811cbcdf268d91c8c300

    • SHA512

      1acc4e99490aff047b24926f3d04b0d60897e766dae752eb52961fc43d3c9fedfff121af5feed499ea54728f810ec457e2646e8818489518d4ba47f1e2e1da7e

    • SSDEEP

      3072:MKta93TRDiicws0MWbs2OJiKF/ODxT5CyV9u2hNE:M2wX7bJ39ugN

    Score
    3/10
    behavioral11behavioral12

    • Target

      Dark The Finals.runtimeconfig.json

    • Size

      458B

    • MD5

      721471c7153a27f2e49bc2fbea80d764

    • SHA1

      1e83d484473beec66577ddd72b1f58b9b29482d6

    • SHA256

      6012062d86e551bd506a90b74ddf95708f47b5f110ffaad0b2c6fe25b78e0f20

    • SHA512

      ab259b2e1a52e829907d15db790003b5619763b2f74aa7a55d6e3f8769156053d2630370014057cef7c853cb3b4cdb83e7f833a76a361f106040a978c0924dc7

    Score
    3/10
    behavioral13behavioral14

    • Target

      DirectML.Debug.dll

    • Size

      2.0MB

    • MD5

      c24608f8d79552bd6ddc9284b544526d

    • SHA1

      dd26c03c91e0348fbf341632ff55aab54cd60624

    • SHA256

      0ba0f88285cd185172f3515ea19deed45c39a93d5feeb323c33e32c16e94ff75

    • SHA512

      46f47a4b3aae8f09e869d452a50e80d695b463e43b22e6bb9a6e08f52ee282462d5c37393a4cc761c9ea3cfa83dfab83bf83d24c6b03e7f97b84cf042f96e685

    • SSDEEP

      24576:rwMZdCDNHGkLnkMKIT/7lHw1hqyT4nARwLrPgt371OotECJsBb7hxsu9tg+rJAOY:rwDDNtr0+rJAbuyApN05SGXrp

    Score
    1/10
    behavioral15behavioral16

    • Target

      DirectML.Debug.pdb

    • Size

      3.3MB

    • MD5

      b8cfb23e2aec87f640b0f0133240148b

    • SHA1

      c29e5b6d46add5128bdcd0230e70ad7a2e3fe961

    • SHA256

      b8f480f17df0823e888ef458baec8e99ada018ef7ab9f55185632086d3a1a7b0

    • SHA512

      69993ac1dd830e66bc574e9fe587452f9ac743a72a3c5207b575443ecde2e6c708b21128b267d0eb6b46a1472b83398c3df3aafae016fc9187a7263c71feeaf2

    • SSDEEP

      49152:67MDSNBpZzIzLZIbak23Nxk23Ngk23Nxk23Nbk23Nxk23NNk23Nxk23NTk23NxkT:G9kSLGfI

    Score
    3/10
    behavioral17behavioral18

    • Target

      DirectML.dll

    • Size

      11.6MB

    • MD5

      0b646906d2ea7180a3a7f74a40e74e02

    • SHA1

      000010aca4859c42ec9cd87f98242bb6593650bf

    • SHA256

      5d5975d43001b5838f4a46cea1382bb37d5aeb66002062964b677e64a3db16c7

    • SHA512

      17bcddee315165bbd21bf245929e75db41632c2bff8692493ca361f3064b42e77d86cffb8cc59a2de7892f31e81676d2031fc55527eba42810210961be25bb83

    • SSDEEP

      98304:5zfeFhssDz4pH0Vpoy3M0FgyPGodyY3pfYaIJAmHBpA/uJwb29DJDrrbVMqqDZz3:dfurDeuLdddfYTimHXR82LrrbVMqq9+W

    Score
    1/10
    behavioral19behavioral20

    • Target

      DirectML.pdb

    • Size

      6.1MB

    • MD5

      4bae917175a36729c06e1b52da9a9e77

    • SHA1

      8ca59006cdaf233d76f4aed171cbafd6be500349

    • SHA256

      70fc030662436c3d360e25ae6a63e39b7ebb20d532cebe4d5ed06ea227632a6d

    • SHA512

      a76bdf1aae69669ba5df683f226256224c73f72bd35cc780c008e82a4f7633eb1173483f08a8aba6120d4b51b607c66dcfa83ff859147bad55e526e317820109

    • SSDEEP

      49152:RSW6Yk23NoQk23NofqegnbW/t/c1x1VJX24IvDFiDuQp+dkkxk23Nxk23NCk23NB:CpHoU

    Score
    3/10
    behavioral21behavioral22

    • Target

      Recoil/gun

    • Size

      4B

    • MD5

      f4d97fd5590420c0a93e8f1ac779fd84

    • SHA1

      b6b8b934c6d2f360457fb800019eadc39c11b009

    • SHA256

      bb99494ff5f8a9d54065138eaeccba8d060b3d270655b542d4fe35075537c281

    • SHA512

      7146709b01eb8aa16c289c85711fbcb1f4f8cf312aef03e596ce5e6037bd2cf0e6c031ddcf1cb0af7880974b019c8a28a2650b1bb105b74c350b03da377a25a5

    Score
    1/10
    behavioral23behavioral24

    • Target

      Recoil/music-player.exe

    • Size

      5.5MB

    • MD5

      71c4c4c5616d647d515bd0ef694a5f5d

    • SHA1

      826503248ac2c08c16360925054e0f4b8be156a5

    • SHA256

      eee2cada8656857c82ad8a6154badc10122d164929dde749949f99079183f0c5

    • SHA512

      138ee9e51e9b6f52d29102bf5164639dbabd85c33592b12fd250184a8bf8c951cd4c551bf249bd7c817751ffa5232ac9d24e296c06bfbe39f3823f54171a9c18

    • SSDEEP

      98304:tlCpMkPW2l6srsqjiSF8Wckg2Thv5VvY/0MEXaq0Emtne1fWaxBIkMo4:WmkuHsr5/F8Qtv5BrMEXn0hdyWa4

    Score
    7/10
    vmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect
    behavioral25behavioral26

    • Target

      Recoil/sens

    • Size

      1B

    • MD5

      c4ca4238a0b923820dcc509a6f75849b

    • SHA1

      356a192b7913b04c54574d18c28d46e6395428ab

    • SHA256

      6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

    • SHA512

      4dff4ea340f0a823f15d3f4f01ab62eae0e5da579ccb851f8db9dfe84c58b2b37b89903a740e1ee172da793a6e79d560e5f7f9bd058a12a280433ed6fa46510a

    Score
    1/10
    behavioral27behavioral28

    • Target

      bin/configs/Default.cfg

    • Size

      215B

    • MD5

      5d86b415aec1bb28364783da7d11d3eb

    • SHA1

      3ee034cda8e96da6275dae75ed66aac44c609257

    • SHA256

      855bee1a99510b3daf1a12a8f37c05323f9a70e824e0c05e9f75fd131b8cbca4

    • SHA512

      50766c91a2c553240a1fee98f4550c301bb89b116e3e927e6a41065d34adfdc4b5b3e5186b65236cd2a5545e4dad1893594a53b3eb8a276ab590d5db040da20f

    Score
    3/10
    behavioral29behavioral30

    • Target

      bin/models/load.onnx

    • Size

      11.7MB

    • MD5

      d6450245abbd7ad58ae5f1071da48900

    • SHA1

      345acae45cc9e24f9244433ed6027674b9ebc44a

    • SHA256

      d851484492048c5e1504e83da6b31586ced631a19ac8c0e8efa056534384e710

    • SHA512

      192016be0f7edec9715f0a44e44dd2b9d9311551b7491933db258a5ffcc348c6ff5f83d557e23acc8ffd24f6c8f18fc550831738b8f507eb7d5d4f256c096b66

    • SSDEEP

      196608:26SYNg/t+ntY9JMtxQCv1X+c3IDtOVxhkVxQVX25YzXDS4tBgt8V4R2Sq1A1vqrx:cTsnG9qtxQEtlOAjhg4laeBe2N21vq6Q

    Score
    3/10
    behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

vmprotect
Score
7/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

Score
3/10

behavioral4

Score
3/10

behavioral5

Score
3/10

behavioral6

Score
3/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

Score
3/10

behavioral10

Score
3/10

behavioral11

Score
1/10

behavioral12

Score
3/10

behavioral13

Score
3/10

behavioral14

Score
3/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

Score
3/10

behavioral18

Score
3/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
3/10

behavioral22

Score
3/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

vmprotect
Score
7/10

behavioral26

vmprotect
Score
7/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
3/10

behavioral30

Score
3/10

behavioral31

Score
3/10

behavioral32

Score
3/10