3e4c0d38b5e8673c740917bc444ea154bbcfd99e2c424f3e1a8760a00ddc1589

Sharing

Copy URL

Twitter E-mail

General

Target

powerbomberman077c.zip
Size

606.5MB
Sample

240126-xlqsqsccc3
MD5

48f6d91d1f831cb46ec05060fcc1dd08
SHA1

1d9eda97ce58ad4e1aeeb46f3280e2612154eca2
SHA256

3e4c0d38b5e8673c740917bc444ea154bbcfd99e2c424f3e1a8760a00ddc1589
SHA512

1197eb549eab5073e27fc8b3727838b7dc057349cac0c827aa601bc45dd29d2b0e31f11097460cf899017cb1a3a719b649bf8783a9e4711840071dee84fec197
SSDEEP

12582912:Hzj4P51TjbMlgzzAnaVSWbZgAys/GLnSRV4fuCSTH2Rt9t5j/qduWV:HzaFjgglVSWbS/jSRV4frRPtx/e

Score

6^/10

Malware Config

Targets

- Target
  
  powerbomberman077c.zip
- Size
  
  606.5MB
- MD5
  
  48f6d91d1f831cb46ec05060fcc1dd08
- SHA1
  
  1d9eda97ce58ad4e1aeeb46f3280e2612154eca2
- SHA256
  
  3e4c0d38b5e8673c740917bc444ea154bbcfd99e2c424f3e1a8760a00ddc1589
- SHA512
  
  1197eb549eab5073e27fc8b3727838b7dc057349cac0c827aa601bc45dd29d2b0e31f11097460cf899017cb1a3a719b649bf8783a9e4711840071dee84fec197
- SSDEEP
  
  12582912:Hzj4P51TjbMlgzzAnaVSWbZgAys/GLnSRV4fuCSTH2Rt9t5j/qduWV:HzaFjgglVSWbS/jSRV4frRPtx/e
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2
- Target
  
  FMODGMS.dll
- Size
  
  180KB
- MD5
  
  be68f44a1b532da3ec52ca1ba4c6d7d4
- SHA1
  
  214e6c4ed11b10db523718e2f1fbf16ad7a24de3
- SHA256
  
  9d1de6c1e9262048eb4c417ed9fe497cc7548ede802475f079345c0f7cd9335c
- SHA512
  
  e94a2eb628c1bd3f7bae2c311c3b74c4cb159cf16ce2d45bfeea9fb8233b31711fbdd3d51ff9b5cd5e2e9fd0877faa349481afd8817a50b800ce7ce26b65a859
- SSDEEP
  
  3072:NAucEC4pE4a8bsP/f3A/0n72LRGkYu9biUXI/yfnGsAg0FuXVrt73VBDrSYg:KucECtq0n34kCLQkYEmRPsAOFrJlprSF
Score

1^/10
behavioral3 behavioral4
- Target
  
  Power Bomberman.exe
- Size
  
  33.1MB
- MD5
  
  9c8f6123ae36fb4079b432f4ac1280e9
- SHA1
  
  a6666f8dfed0498edc496931df6e0a79eb31dc60
- SHA256
  
  b01b6797552dd0d7a6d06fb8b347eafe47931cbd062e6a24dc96b441a9517d40
- SHA512
  
  00ea29d4741b8ddf6be48c1b77fb1c6881daf5887c71901fd0b5adcf8651f40d6c16599bed88cf361117655a2ae78fe121d0bdcb86b88c929fc5a75330d2127d
- SSDEEP
  
  786432:Ets1kBmXKYmCmUoJt1haFjtH/Id3yUNQeu+EN:Ets1kBmX3mLUIaFjF/IQUg
Score

1^/10
behavioral5 behavioral6
- Target
  
  SDL.dll
- Size
  
  1.7MB
- MD5
  
  6f430604ac9fc394f246fd977cd14453
- SHA1
  
  a6897132a3287e91944153a7d6e3d665c88dfb5b
- SHA256
  
  f3484711f1e557cfbfa918692783e1b28a19672c8b007d3cc923d3c874967a2a
- SHA512
  
  4032e8ee893c10ebcb6fb3622d75aeb6967438361565f7d73fcc7dfe9fc303a1263e75a82a25cc03f2b7c67b54805b2a5bcd68783bfb0a187b816e6eee09721c
- SSDEEP
  
  24576:GD5SnmCF9rAasVuu0mQLoXaQUjXirsXRXbjrW+5saw1RP:GQnR9rA6LaVUGrQRLjrW+5saw11
Score

1^/10
behavioral7 behavioral8
- Target
  
  data.win
- Size
  
  48.2MB
- MD5
  
  3c9b62abdbaf0741c244acfb8d9cd3e8
- SHA1
  
  e1e8a3df77b689f7e533f4b3da5ec08ab66ecd4e
- SHA256
  
  bada049b1b77f4366a1ca96c968a1f77fe73f3a6b61f3335d7cd3813d52f5869
- SHA512
  
  1cd41078a71ac090ae9e253ad64be7d4e041fcf398313fbfdce09480d06bb457c667c8072a5176c27f621ecd29a3a2c6e3fa2e3cf56e767746da0b13966c7cd7
- SSDEEP
  
  393216:QB0/WAcn/P3y+EVuJnOheruyx70xNMWdaS8Nv+p3e2gp1FUJbs+ka3R10:Q+/ISwnOsn70nDdkvm3e2gtgbs+FRG
Score

3^/10
behavioral10 behavioral9
- Target
  
  fmod.dll
- Size
  
  1.4MB
- MD5
  
  3399d23de039f78edb383113a81444b5
- SHA1
  
  6f1463c9e6a9224cc3767257a363ef2e186d00af
- SHA256
  
  d2e4a4ffcc703ecf3caaf773ea7151976d9fc9d788ab7913b10ebd50d802b43b
- SHA512
  
  694725abff26e33f40bc20bdef4bd7def3511480700eab0ada9c37b7ccf19dcb9185bf0155b0fd3c6043bb57bd338885acbcb2659ac03f7dde70630280b25457
- SSDEEP
  
  24576:PdM6IhC21GpMdMl4Y6VkY+Vj0VMFyBUKkN7RI/H0+HTYfVoUju:PdyqMdMl4Ya8j0KbwHwK
Score

3^/10
behavioral11 behavioral12
- Target
  
  joydll.dll
- Size
  
  54KB
- MD5
  
  4ff7d5e6232f4fa566d5531983aa11b0
- SHA1
  
  70fcf011785d3181488d4815b1154c39c57502b1
- SHA256
  
  3afbccfbd9dbf261dbfaad44a9428ca3f882b2e6017b79e41df91981e7fd40d4
- SHA512
  
  90c8075723bb3636191896f5efa793cfaebf178556ef8f5b41dc56312b3c596333f04a2a0fec5981df5c043a8454b2fb2dcbe5a4df90012fea5c784386a65310
- SSDEEP
  
  1536:UYEt8MQGn+JrUyXGXjcDtrqCTzHO7zwKV9ObkGETxEPNZYh5b:UYEt8MkrUyXGXjcDtrqCTzHO7zrV9ObW
Score

1^/10
behavioral13 behavioral14

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14