4ae0b82ef9a79346ecfac449a2e8e0bd36de0f9cce02793304863cbf7125676b

Resubmissions

21/02/2024, 15:09

240221-sjgptshf7x 10

21/02/2024, 15:07

21/02/2024, 15:06

21/02/2024, 15:03

21/02/2024, 15:02

Sharing

Copy URL

Twitter E-mail

General

Target

fortnitepy-bot-master.zip
Size

34KB
Sample

240221-sg6aeaac95
MD5

69406c0a1eea686f2dad131049a50ef7
SHA1

1a4b4e26d067f3ea59121862f893d5a2226aa613
SHA256

4ae0b82ef9a79346ecfac449a2e8e0bd36de0f9cce02793304863cbf7125676b
SHA512

d8b6e562731c5b7dba16e1b3f9774bbd28f1e6d1c4100991ff40b51bd2aed7c9d58eef31aee36f5ebf5c8d5b8a1b16574185699c8b7295f65495f617ed5acd6b
SSDEEP

768:KvRM1FSn94wNn4TpWLbAkN5hvs9ZTyiQac0rNyg:KvRM1MzedW3Nhk90ANyg

Score

10^/10

Malware Config

Extracted

Language

ps1

Deobfuscated

URLs

exe.dropper

https://www.python.org/ftp/python/3.6.0/python-3.6.0-amd64.exe

Extracted

Language

ps1

Deobfuscated

URLs

exe.dropper

https://www.python.org/ftp/python/3.7.0/python-3.7.0-amd64.exe

Targets

- Target
  
  fortnitepy-bot-master/INSTALL PACKAGES.bat
- Size
  
  1KB
- MD5
  
  4eeb5be18c4c89d677f92d9840432483
- SHA1
  
  c6e221374812ec1f596c3dbe80a62327347cb10f
- SHA256
  
  9d896813807801e83c0e216b2aace6adc6cbbf7e55ba904657eef440e975190b
- SHA512
  
  1e43320ad4fccc06d9206d991796e48bf661c640e027fab1077a54fcf06cffff3ba1a9ac04a670ef13217416a7b0d95ca0c4cc8ad70dedab53cc651d9fdc9b85
Score

10^/10
- Blocklisted process makes network request
- Downloads MZ/PE file
behavioral1 behavioral2
- Target
  
  fortnitepy-bot-master/START BOT.bat
- Size
  
  1KB
- MD5
  
  8c29c27144a6730c95dcb7d3f6fd5ada
- SHA1
  
  ab62c6933b13a0c58c0976470decb5f6d753cf0e
- SHA256
  
  0082d01cc214a08f919372ba9d76e4cfb5092351f2ff2a1b7dfafa805c403352
- SHA512
  
  3e31f30dcf1eb892ce4e0b62307f9d1cf2ea58bdc97d4c68a922495374d9637c42169d32afed48232670db1c9ae1fb6f5d8fab204e9985a0c19eb78976e59874
Score

10^/10
- Blocklisted process makes network request
- Downloads MZ/PE file
behavioral3 behavioral4
- Target
  
  fortnitepy-bot-master/fortnite.py
- Size
  
  4KB
- MD5
  
  1fe600aad793b89c965542fba187ef04
- SHA1
  
  c2a812fcafb034c3fc057b0d45a9280960a03141
- SHA256
  
  8b30545079ca6e9dcba79c6d3591dc49213ca6da7f917adf0c2985307025ab0c
- SHA512
  
  f7cd1d9dbe80400a75775701c372cc60a3acf006fd885815661594bad94f5168817d8af8af2f9f181f0a9a7a3348f0e52103f64e904f0889bf839a48f00d2a74
- SSDEEP
  
  96:ChKEeCeYVBkLcPPto2vtWuOy3udv3W9WVov:gKEcGGLcHG2FWuO2udvWQVov
Score

3^/10
behavioral5 behavioral6
- Target
  
  fortnitepy-bot-master/partybot/__init__.py
- Size
  
  1KB
- MD5
  
  dab35fb9c6166ea580ad4b3bfd8f7c28
- SHA1
  
  89d5b23f43229a69e78d8b49bf859d481fd57168
- SHA256
  
  ed9ff239fb3b1744cd483a7dfa22892e320c6f89df2957f735a28acff536bc78
- SHA512
  
  3a8d8881db6c848ead7148edac63b06d0f5573e783e9d6444259d075965027ffe6331b300d400321085ab84a33207a169b7da1c58dccd8841f7417e378f7e026
Score

3^/10
behavioral7 behavioral8
- Target
  
  fortnitepy-bot-master/partybot/bot.py
- Size
  
  7KB
- MD5
  
  e3cfe3fdb9a0b9c08481c314602ac7a5
- SHA1
  
  b27cfc18905057f13840247ed5422c916d3dfb11
- SHA256
  
  568437c0d89d77f6d564fa7c4a7213775d79d9eaba1105400324f814d19863af
- SHA512
  
  81e0497a262227b12b1fa6aa84c4cd903a01ecc21c03d3dcbcff1b5249d8decb5685c35f0fa5b10fa8db05859bc62af11e12878e66dd9235ce1e682d59e69489
- SSDEEP
  
  192:tKEQPU7f9elxVGJu3qtViIOVCZ3EILdd1r:tdQale4Ju3pILdd1r
Score

3^/10
behavioral10 behavioral9
- Target
  
  fortnitepy-bot-master/partybot/client.py
- Size
  
  4KB
- MD5
  
  ca532efcf5872dfe3f43aecaf6b0624b
- SHA1
  
  b24eefbe9bb9de47ae715b63b41ea64abbce6701
- SHA256
  
  ea7656653c8694468d90b31eadb5c0d4f4f6e0ffc4390fd71e7df33dd9d4ca8c
- SHA512
  
  94868ed437b8a1109683b8071e11dc234cf3100a5529d9b964bdcf485c7d64ffc114704a148d4483b526dfa258cb16c7f44ae7646c58b8f61db96d7dffcb7634
- SSDEEP
  
  96:ThKEeCYqnHZJI0fYON7OE2O2dYPcWtH1PokTGO1/qE:tKE5nHfzYSoOxUWtVos58E
Score

3^/10
behavioral11 behavioral12
- Target
  
  fortnitepy-bot-master/partybot/cosmetic.py
- Size
  
  54KB
- MD5
  
  6eda4d391256b16a9fae852f92dab303
- SHA1
  
  e4afbd25a3bb5aa15343010c1be3afdcdc518ec8
- SHA256
  
  1e7776d9cc53ab9e45ab299fca45ebec04f58e75dd4254f66be88e531f889c64
- SHA512
  
  f3c3ee7c6f0ddcaf26b0bd7c69f0929d19e2ea780ab2249497aa25e50df9e228c439550d16d0d426b83076a8ffb7324acddfbb8c801906e0b1df5886f603dc45
- SSDEEP
  
  768:zbR6WzZ1J4J5yWPEfudKlK++A0D8+ABmaGut/inasBpdTZqFTGaLTAq3vXFqkwjB:hbz/XGj+HTrTAqeD6e
Score

3^/10
behavioral13 behavioral14
- Target
  
  fortnitepy-bot-master/partybot/deviceauths.py
- Size
  
  2KB
- MD5
  
  a4cec735a12c3359f0d23c9d93e1f442
- SHA1
  
  ad7e62bd9b7fde7fb3460fda05cdf39e3d01f47e
- SHA256
  
  36cc5f8c927ea0bac7e6193819079a6c8102148751cfc8bf7e5f781210a4304d
- SHA512
  
  812920180d508e2f0abdaf0706127ec10b31c3fdae6e5f0e22044a407bbc4707c22f7835c52c88bd10d6c848f8b31b2c2b4bdc0ff7619ec5c45ea926f32c10eb
Score

3^/10
behavioral15 behavioral16
- Target
  
  fortnitepy-bot-master/partybot/errors.py
- Size
  
  99B
- MD5
  
  c2dd0431e4a2c21ad38d0e8269392bdf
- SHA1
  
  7bf98ccf2a2b3b102fe3954686aa7a4958c981cc
- SHA256
  
  531554cda6ee827c1ff61ec722d32a57b59eb0ceb5cf631c4332c32f3475639b
- SHA512
  
  b57c080562da0c3e67d65b51c9f852a3085ef77d9876d9cb1fc779be45fb8ec3cacf61a73c52c8aa8dc2087f1389c92b094a22cbe455e92845f19005ea02fe23
Score

3^/10
behavioral17 behavioral18
- Target
  
  fortnitepy-bot-master/partybot/generator.py
- Size
  
  7KB
- MD5
  
  47cfa5db928e7bc45369740e4177f0b4
- SHA1
  
  e535b89c719577694c5321173f7e302615e5e476
- SHA256
  
  4bf5a28c176c0e78342eab2ccbe42f4beb6084afc5ffa06b8b522b7f52eb743b
- SHA512
  
  3a073aecea4d627ccc8bd15b7ea617fc6685813c7c7da4923295dba6918c95c60b04bb01e604401fcd15099352de2802a083a0d7842ce5428d642a2c734146de
- SSDEEP
  
  192:tKEQQF7oXvesUW9W+A9WsG3NWYvK69W3hnC9W58Jg9WdSS:tdQdHUi5QxG9nRQ5GpJw6b
Score

3^/10
behavioral19 behavioral20
- Target
  
  fortnitepy-bot-master/partybot/helper.py
- Size
  
  1KB
- MD5
  
  8ec052a6b9ed8c1915e65b1a7d2a04c3
- SHA1
  
  e68bbb89557462f65e7c5b003ef7fd0f747863f1
- SHA256
  
  12fcee67d16fbf3b77ee6f878b2831fe1cf1bd8c6a5a4fd91b57f15b92cd4ee4
- SHA512
  
  011fb2989999aa400a2108e97614425cb6343ea9100ffdec47747041fc4ebd3ac2e29c3e96fe80a4faa7e88fa1ac3476629bf868f13111831bcf918b3f3b8b7c
Score

3^/10
behavioral21 behavioral22
- Target
  
  fortnitepy-bot-master/partybot/party.py
- Size
  
  21KB
- MD5
  
  d03b9efb222c737adec2c4e6aeb548fd
- SHA1
  
  187deb0c566035312c0fdfdc25dae28099898664
- SHA256
  
  f0283b7f956a9fdb53b3869cf868aaadbc8fe1337f3e0fb25870f0bc98d60fe2
- SHA512
  
  f0712ab1f17ae9f0b775cbc2c18082a636e382bbf83e17ee3ef0b9aad9f18a118ca355a8be47cb64b225c706c405d3e2d96521708a1af5b426d118635a7c3e2e
- SSDEEP
  
  384:tdzCdjk1vnvClOPhfNmMuZIeq9Ku4390Mhc5d5JSSM3X3LW9MNs7ZxKWjvZU:zQ7lOpVqZIe6Kx9P3SMH69M672WjvZU
Score

3^/10
behavioral23 behavioral24
- Target
  
  fortnitepy-bot-master/partybot/settings.py
- Size
  
  3KB
- MD5
  
  f5eed9e903918f4dbb5c4507d3c3c130
- SHA1
  
  5186abf11721a420061a2e93c3d1dd5d7a2ab6a8
- SHA256
  
  84bc7983272b0dc5102d9e6cbf548ff6b3f6c330c6ee4266b35050ba3f99d1a0
- SHA512
  
  f953b944fb0bfe769db24665606e9542590a616dc7a2825ab156678cfd7b76a355aedd642144eaea855aed1b7658aceda5d8d58c76763c04716e88922a707f06
Score

3^/10
behavioral25 behavioral26

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Extracted

Extracted

Targets

Blocklisted process makes network request

Downloads MZ/PE file

Blocklisted process makes network request

Downloads MZ/PE file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26