fb8f0ad44b477f5baf24fa26a61296f61f5e6e3cc1141ec82978be3afdf02faa

Sharing

Copy URL

Twitter E-mail

General

Target

Valorant Optimization Pack - OGTech.zip
Size

29KB
Sample

240220-ljcybaec7w
MD5

b48d618ab907343c5f447befc709817c
SHA1

cd9c3a3925293c7e3a97a4cf32483b4e87ebe4e3
SHA256

fb8f0ad44b477f5baf24fa26a61296f61f5e6e3cc1141ec82978be3afdf02faa
SHA512

34ea163a9c9bdb61d1dcbfa0a7743fe011c6706a79b60d6c86200539e72bbad7b225d56fb1798439b6d35d6041bd82d9c3a6d42de8cdbf1495300fde659f4be3
SSDEEP

768:Xq8LPHRawnySy4l6/bjbQbFyQNk17MyNN6j9knOqfUFu0yqhI3yPL8/piFDlpT+U:XLZimFLCJKL87qFtVos

Score

8^/10

Malware Config

Targets

- Target
  
  Valorant Optimization Pack - OGTech.zip
- Size
  
  29KB
- MD5
  
  b48d618ab907343c5f447befc709817c
- SHA1
  
  cd9c3a3925293c7e3a97a4cf32483b4e87ebe4e3
- SHA256
  
  fb8f0ad44b477f5baf24fa26a61296f61f5e6e3cc1141ec82978be3afdf02faa
- SHA512
  
  34ea163a9c9bdb61d1dcbfa0a7743fe011c6706a79b60d6c86200539e72bbad7b225d56fb1798439b6d35d6041bd82d9c3a6d42de8cdbf1495300fde659f4be3
- SSDEEP
  
  768:Xq8LPHRawnySy4l6/bjbQbFyQNk17MyNN6j9knOqfUFu0yqhI3yPL8/piFDlpT+U:XLZimFLCJKL87qFtVos
Score

1^/10
behavioral1 behavioral2
- Target
  
  Valorant Optimization Pack - OGTech/1. Optmize Desktop & Laptop/Create A Restore Point (IMPORTANT).lnk
- Size
  
  892B
- MD5
  
  7a843ca44af0ba3a30f4cea1bc4f3635
- SHA1
  
  e6508bd30edd34cc5bebb2838ed175dc47e3ab71
- SHA256
  
  3968a308a2306c08f439d49e78ac091c78db32c4f21f346af2e5a263087f1152
- SHA512
  
  0028a896232f6c9506f2c00a22d0d78c9070ace93f17388936a16c4b838caa6f6114db687f4d126dc1b8834b44202ed7605ffbda18e997d4fdae4d32b7be1a8c
Score

1^/10
behavioral3 behavioral4
- Target
  
  Valorant Optimization Pack - OGTech/4. Clean-Ups/Clear DNS Cache (Ping Improve).cmd
- Size
  
  99B
- MD5
  
  f0deed8e4300ddeae9a411eb67a8570a
- SHA1
  
  6ef6b925476d5812a8a41c1c44605d091e4bef69
- SHA256
  
  e22e3df20ba829d68412f37848ef23faf72927f529de22f5e5c127488d2724b3
- SHA512
  
  bc51c3069e781317807a731b10074401c8f738e5bb0fb5bb39071c9b18878e128dcd1efb79e78852dc8f1f74311de4d9a63ee3fd21f734d98d9851faafb6138c
Score

1^/10
behavioral5 behavioral6
- Target
  
  Valorant Optimization Pack - OGTech/4. Clean-Ups/Delete Log Files.cmd
- Size
  
  78B
- MD5
  
  14a752986c52c82e3f8b56b978ef8910
- SHA1
  
  2ae902cec435ec3861560f92823323b6b3c5f066
- SHA256
  
  40d1671961492d1775333a97ed10503d2c1182c04956a19de147005d26d3b84b
- SHA512
  
  6d4c7a80297ed313f327e4d5bb84478c7fbcc8bf4adb2c9c7581dca3b2884c24880d51951a579fcf1298cb3e7e848efb1e8cbe703e083c09753b298460bec179
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral7 behavioral8
- Target
  
  Valorant Optimization Pack - OGTech/4. Clean-Ups/Delete Temporary Files.cmd
- Size
  
  255B
- MD5
  
  dedd77d6e101adf0debbed6239b88ef3
- SHA1
  
  e6c326dcb8ca50a4d07fac81859d5e9a54c5d4ad
- SHA256
  
  6ef500eea24cd9669557fd3cd43d7a028a89b6599d15d83ca4e136c2094cdb31
- SHA512
  
  f73483b743a3663e2920363379a58ea55d0c7005575876e29d50c982e4e68e85183f3ccd36892e79e4e1907994c22b0db296b334250c90322b07af75e8652309
Score

7^/10
- Deletes itself
behavioral10 behavioral9
- Target
  
  Valorant Optimization Pack - OGTech/4. Clean-Ups/Delete Thumbnail Cache.bat
- Size
  
  232B
- MD5
  
  5887f03adc7ffe40769d0246d457531d
- SHA1
  
  6681f82771048fb0ae405c02c7d8a06f08d77a4c
- SHA256
  
  4bf7497786206040924db5f8c2ee75b9466676a115c169657f620c287a92ae20
- SHA512
  
  2cfc53921eca548df790dc98f8622c9a322139f280a39c58e503b42b6000864f329632af42155af495363eefd75a67961a2e97f6336925767f4a6cf5e98341c0
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral11 behavioral12
- Target
  
  Valorant Optimization Pack - OGTech/4. Clean-Ups/Delete Windows Update Cache.cmd
- Size
  
  157B
- MD5
  
  a7865b90ffa1e415387e39ef19d5c015
- SHA1
  
  bcb214aae21bd93c39dd18366b6e07c5fe917080
- SHA256
  
  d4cdc3c32845baad86e299abef45bf4bb9d87b579c6a5667b3bfa58ebb236bc2
- SHA512
  
  4aee679084196fc53e9cbd0207476a3af43dd23e0a8b2802b3064b5463d878af1f4c1ebbd4f98f5a1b723e2185875d455d7f7a4939f7bb292ad3706876d6da12
Score

1^/10
behavioral13 behavioral14
- Target
  
  Valorant Optimization Pack - OGTech/4. Clean-Ups/Disk Clean-Up.lnk
- Size
  
  1KB
- MD5
  
  a12ee1fb4f7e0d28610764303c068562
- SHA1
  
  17dce6d8afa851610928b6a8bca569bf14c62cb0
- SHA256
  
  52546beab9d29e78b6f0bd1ed263a3390201f416b067f092d0dca7a117df1084
- SHA512
  
  d9089e3e324eb26f72441a6151101558a5f3e11e9e9dc378396c84d06f29633d0a761822137f9f1b14e0b840a9f6619911642bb4fef3eb59d0b4ad0ecd05cdee
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral15 behavioral16