07ff331ff16a81cb20bdcf7553f66237861830fc9edffa337a58220fc6b958c5

Sharing

Copy URL

Twitter E-mail

General

Target

WIN_BabusGames_LegendOfSpiritOrbs_v1.6.0_PREMIUM.zip
Size

124.5MB
Sample

240219-31vccsgd29
MD5

68dd17ae26d1d0e8b32b5a69d76fe8fb
SHA1

2f576d0c695d35e5f3a45478377f5be2e5ad1494
SHA256

07ff331ff16a81cb20bdcf7553f66237861830fc9edffa337a58220fc6b958c5
SHA512

09c568e89623b3d8b3bc74b834fa971be3221d93c898dd108a0d4bf17b9848eb123d06d0230a6df18f7c9e560a85d12d556ed063cd7dab3b3e506544bf68fdd8
SSDEEP

3145728:EiTEY11tim2JlRlR/Wl4LRtvd4EMevV4J5qCTmM:pRIHRH3LRtlzdimM

Score

3^/10

Malware Config

Targets

- Target
  
  Legend of the spirit orbs.exe
- Size
  
  635KB
- MD5
  
  86cf5a985bb5c10b535c4cc320492982
- SHA1
  
  c314e2991c94e90edec6617d2d057bf4cbb86426
- SHA256
  
  eb56bc738ebf6c5f003471dcaeccb85eda9371dfe4672ff78d9bb919a77973c7
- SHA512
  
  75bda963809fa5b103c3c129948ac9e4283e4cede5db56cedf50043eb64afe9e2dc14b50cc7ada5287796cbe6967cb44aff5d2582afdaf737f27e8c7cb706f1c
- SSDEEP
  
  12288:Y7qTUn2fZKKGG8anZwFy+CV8/eNh457Mb8AnOA:OqQ2fZxthv8/eL49A
Score

1^/10
behavioral1 behavioral2
- Target
  
  Legend of the spirit orbs_Data/Managed/AFPSCounter.Runtime.dll
- Size
  
  56KB
- MD5
  
  f65b70c4d05385ce075755ce34ecb8a0
- SHA1
  
  22b189a825e1f5487f4ab6abbb33154290367ade
- SHA256
  
  53e3e0ddf767a2cde83f7f3ab8d39efd6b914e82fc265c531278603bb577e74e
- SHA512
  
  c4e8bd27e6fa7d6797657cfae679e77bf26db2fd4a624d4d0b7f09a55bbcb1c81de637bd337df38271e78608f754e52792ba2587d453d4337c17f8da1e3f82fc
- SSDEEP
  
  1536:g+qyTLhZLLNlgWcVXkBLYQvKYydt6LtPm:7qyvhN6yBLYnYydt6Ltu
Score

1^/10
behavioral3 behavioral4
- Target
  
  Legend of the spirit orbs_Data/Managed/BabusGames.CgAnimatedPlayer.dll
- Size
  
  9KB
- MD5
  
  ff12e9e190a24cb8acac1fbacf4b8c50
- SHA1
  
  4da720d7ba74d045545b410cd85468a099ed0557
- SHA256
  
  d5f53503f8698ef485e1e75f6ce207105b7d3b92843eafff8d68d15bc86202e6
- SHA512
  
  6b2dea02a010239d40b7214eee96fc074a807d6e32fc313e24d7534bda0dbd13486eb1d785d4a2fd9b3f8603771d81badfc5340633ce849b22989ddd20402da2
- SSDEEP
  
  192:pouvSAsQgmTcfIxZlk1EktKkBaEvKNG76Tsdn:poupsqcA/lHkAkaNKL
Score

1^/10
behavioral5 behavioral6
- Target
  
  Legend of the spirit orbs_Data/Managed/BabusGames.Settings.dll
- Size
  
  18KB
- MD5
  
  53e00152db474168263de78ac78edfc1
- SHA1
  
  9e9a38b7dbc111b88f8bb5bd75a167db357016a5
- SHA256
  
  d2f2cfd9f10db77b980cd993f7a796f0f60b6411de9e7d1912c41d533b4ddae7
- SHA512
  
  f39019f1cf566559eebf5ac7112897b7594d0900b599f4fc792574546a77abacce986d695439080798dd666d534c5fb8555930b5d5dde12a2b163b11a61f4b40
- SSDEEP
  
  384:iek1lm5plUDOEtT6kTrP7CANqxQ4QhZpRYXKZmgotKCCDUD1fa3v:vpl2h/nP7CANqxQdhZUKYsT
Score

1^/10
behavioral7 behavioral8
- Target
  
  Legend of the spirit orbs_Data/Managed/BabusGames.dll
- Size
  
  20KB
- MD5
  
  083808220cd56c3f550c0016584118cc
- SHA1
  
  8e8610ac88c33a2ba95102d4424fa206034172c3
- SHA256
  
  3c26f5ad708155d851ddb5f58c35ef118c35ca3b8471adaa5d813dce7d1ed22f
- SHA512
  
  3886fd2aa5fc082a9c49e0bab2c2adfbc6841b15d24f097cae470a6ed942325ee35a36737f3b842b388cba53da0fbfd8d2ee9f3ba61621d63af13ec6052f5ff1
- SSDEEP
  
  384:et51pLFUm2Ex+kANLCDRaE1ovJpNmUutRSe9NVWEY:qOEx+kEWj1oxnmZub
Score

1^/10
behavioral10 behavioral9
- Target
  
  Legend of the spirit orbs_Data/Managed/DOTween.Modules.dll
- Size
  
  14KB
- MD5
  
  8e6f3508c5d87e685af62fe3bedc308e
- SHA1
  
  28fa5a9c7a4693ccf95a27bbebcc6051395c6425
- SHA256
  
  a9edac434d4f7cae9434e6ff2c8b0e4cc1edbd32e9dd0963383921ac7d030c4b
- SHA512
  
  f38c19ff848369723b88d82305deb7a8e9db578eeaf5c66ff35a8b938f810c4ad904db7af9e0389876d543278c73b8c8ed083fbbf9809be8f2d3eb2541fa8493
- SSDEEP
  
  192:xuk6fYuubshfThUoxRsjxHtFerbmW8L4vEwwaJnEpHxJTT/DbuM9t:xukqYlohfBRsjV3eT8sU3Hpt
Score

1^/10
behavioral11 behavioral12
- Target
  
  Legend of the spirit orbs_Data/Managed/DOTween.dll
- Size
  
  109KB
- MD5
  
  e81590620f48f6aadc1fe7b4d0bf7c44
- SHA1
  
  6b192785168289d1be7a115382dc2a4c9e517839
- SHA256
  
  6d422fdd0da3a2a87000c2d10f2b9792a1dc5ba95ebe1851c9ce8193441abc12
- SHA512
  
  76d2edf9258f7c42cf6e0b40a6ebe9702d4207ab3efee40ae0a563962c961648661848b6f33850766b9d03db09b2f06f6e2259b8414373c155d70c21816138e1
- SSDEEP
  
  1536:msEpAT+lkmrNHydys6eG096ATFv7TAyrOn/9a8/7Z8XwoV77B0+Q7s6si:m5Qwkj6sZkyrOnVaA8Xwon07gU
Score

1^/10
behavioral13 behavioral14
- Target
  
  Legend of the spirit orbs_Data/Managed/DOTweenPro.Scripts.dll
- Size
  
  18KB
- MD5
  
  43c3c440364ef55786067baf98900b8b
- SHA1
  
  72b2758f0de50eb140c7e0f7914c5d4597683598
- SHA256
  
  8b79d92e8f2e1489e70cdf2c86b8f5fbb3b17fcee9264e2cb36feba14fcc9528
- SHA512
  
  2262dafb73a9a564c5156f916ce151b3716a1ed156edb8eeb7ffdfa04f3b96a8f33771e0e4ea796dc782c3229093d2949a5c09c410c5c56b8f0145cd2edf74b9
- SSDEEP
  
  384:aEQw9Psafqq4iMgsTzc9Pbm+yry3YAEiqJVejEKXpKuvVjqUZ:uwX4iMgsTzwmTiBjqmVjb
Score

1^/10
behavioral15 behavioral16
- Target
  
  Legend of the spirit orbs_Data/Managed/DOTweenPro.dll
- Size
  
  12KB
- MD5
  
  1f3cd60b1b984ae09cc9588ca3a74ab2
- SHA1
  
  1703b0ad1d449ec95ca1c6a4c3a4ec7a6f2dec47
- SHA256
  
  2b40b3ebf3be78f73a1993dc97588d6299a58f24de51a1a08381fc4e0818fdef
- SHA512
  
  630f015b29ed9d5abc82779c7b303563f32f8bb0214ec1da7e36fb635b2ac44376b356b5c62f9aecb581c21dc66723e02b317696a2dab8e689964f3b1e14ad63
- SSDEEP
  
  192:n6swXogQzDHuwhT0fD2zv7jRIuxB3ps8ffFdfPEsbE39qQVP:KX4OwaD2zn/xBvfFdxbE37VP
Score

1^/10
behavioral17 behavioral18
- Target
  
  Legend of the spirit orbs_Data/Managed/DialogueSystem.dll
- Size
  
  614KB
- MD5
  
  063210f08917847a20a01b3271198074
- SHA1
  
  ee50d215762fefcba737b9f0bc542b78338134a1
- SHA256
  
  913b3d79ea12ceeff8f0a345518b31732a841281b99988b6e1272e7b1da78b40
- SHA512
  
  6725f113c37371d629eae8ca072a6d45820b0903022a9d7c7fac1bf139ae3fb8600cf035ca586606aa76e2da791c447ff43ad80924770548afdaedbcf5ad5834
- SSDEEP
  
  6144:bvoqVlvZOaOdEaIS40DOZm4cLUqmj3Hm0aCjd2F/KUICiCijMsohtm+HCQ1iuz:bLvUaOX40DsKOj3Hm0vdAKMsoAS
Score

1^/10
behavioral19 behavioral20
- Target
  
  Legend of the spirit orbs_Data/Managed/MagicalOrbs.dll
- Size
  
  225KB
- MD5
  
  b850b8d86bdbb511b3b1a67405e83510
- SHA1
  
  7a6a0dbc610cdeb05216fb2f4e4dcd7b3a4f0174
- SHA256
  
  e131558c127d4faa06b5c524323953f934595962fb08c0c3cbbb29b2fc6dd3e4
- SHA512
  
  1e6bdbf663cd6ed8b99b87efedca2937341ee9eeae88ec3e2ac8fa0e0760189b273c23405f0da312b44029476d754abea77ec67193e6ed5de648ac949adecf88
- SSDEEP
  
  6144:I6miBXU0JMxUYDdAaImquEftOtuJjVUcxd7SG:I6J7JMxUYDdAdjktuJjm
Score

1^/10
behavioral21 behavioral22
- Target
  
  Legend of the spirit orbs_Data/Managed/Mono.Security.dll
- Size
  
  75KB
- MD5
  
  797a1068ad42f286cd125fa2efa978af
- SHA1
  
  8f4be00329b5637ad5ba29c679c6aada94f5d212
- SHA256
  
  c52afe4d3b70f60af13f27fda0d4e4302c17518b2d6783aadf71cf68bb5ccd1f
- SHA512
  
  1cb081afbeb6feae0b9df3367d2839da51850dc325d4bbf661b9c960cefcccc7f05fcb790fa96ef5e77d9c6b130844a5c411b989a6de59729c2dc1cbd1cdeb15
- SSDEEP
  
  1536:rYKVuqUBv/mXKXWOQ6oLcQuxZkEF4O6Dol:vy/VOLNikM4nDA
Score

1^/10
behavioral23 behavioral24
- Target
  
  Legend of the spirit orbs_Data/Managed/Newtonsoft.Json.dll
- Size
  
  350KB
- MD5
  
  aa490856079e763348a1be17abb8c4f5
- SHA1
  
  5f34ca1da54dafaeb7f54420f2fed586c53ae774
- SHA256
  
  0cc6dd9bca2d0486452c0fb3055b84414a15d2524050f88202f52b28dee90cd3
- SHA512
  
  68734aef80d311c3a5cd5856ffdd20683e4a38d2440affcaf0cd8023fd2a89391bcbcd67819aa267fefaa21e07401c0fb72c8cf6ee97a2c9a7f7a907d7d8704c
- SSDEEP
  
  6144:8NmtrPHy5WaSrYJtltHqrJDZotcdHQdH0hUulGzhlLt/:NrPS5dSrYJtlt9tF8G1
Score

1^/10
behavioral25 behavioral26
- Target
  
  Legend of the spirit orbs_Data/Managed/PixelCrushers.dll
- Size
  
  100KB
- MD5
  
  39c6cca3042bf9ef692c04c5f8cf7752
- SHA1
  
  182b67a71618a64731671def248a29b88796717b
- SHA256
  
  714969d5d1b7b5bda562bd1e4200dd4df15239529040c94c9a888340f153b72e
- SHA512
  
  c04fee4b04f993d97ee8f70bdec0442e8f2008fba92974f47f1c411bbdc2ce8e230fcc357e0d10240805252507ee39be4301d033b1a8843df926dca90f6ee040
- SSDEEP
  
  1536:Lw9ePiGagnT+lrCAiNX/rwQV1w1gvrGgaUJaab/5SN25oKDLbi5wKVEix73sluw:SNgnilexK4CgfJaapLbi5wKVE873sb
Score

1^/10
behavioral27 behavioral28
- Target
  
  Legend of the spirit orbs_Data/Managed/RotaryHeart.dll
- Size
  
  8KB
- MD5
  
  ba4b1aeef9a59795c121fa36795f1ad1
- SHA1
  
  f389e1b904cc2b4591a44e12ef99db00230641a4
- SHA256
  
  0c1326060fc1d52347fa7a03f7527af31b2aae67e66ec20c865dce29d10b1efa
- SHA512
  
  b9881aa96a816275d5b2df5be6941bc980a434232a0cb17dcffd7ed08e007470a6feca48980731b040733c9950002fc7eb0e8260d227add10fed246fef24401c
- SSDEEP
  
  192:CH5ZRT/HrxHoZCZMf982ZqTK/hZZKiZaZWwGE9:ArRrHrRoZCZmZqTK/hZZ5ZaZWwGM
Score

1^/10
behavioral29 behavioral30
- Target
  
  Legend of the spirit orbs_Data/Managed/SimpleFileBrowser.Runtime.dll
- Size
  
  30KB
- MD5
  
  2c45c4de875234d41fe1f81c30a224c4
- SHA1
  
  7aa71b705640935fb8ff67246752499dd3808d0a
- SHA256
  
  b60fc475936c4b739fa00e2c4ae3d0b5997e5779fbacc499bcf0196dd9f34d11
- SHA512
  
  eb618bd0e98c9d97e0baa003a95847942579d235e381f6d1837c220d5492b683302d96ad6fc9673eba5a97ef1dea410c7fd68d968f34bfbd1f5933fbd2aad283
- SSDEEP
  
  768:FRDUVf8o419T78pJ6C8WIaZxWZE2HS7qYidaP5F:FRDSN0v8D6C8WPCE2HSOYxL
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32