11ffb46ab612ed07fa2cfdec7b0e26adaee8695dcd1141a7a47bc545630c7212

Sharing

Copy URL

Twitter E-mail

General

Target

Valorant-Checker-Fast-Api-main.zip
Size

19.4MB
Sample

240224-nl78caba7z
MD5

27d93384f09440bcf25af82c0b284def
SHA1

2af8c640a52b1535cd437671775f57e07aab1bc8
SHA256

11ffb46ab612ed07fa2cfdec7b0e26adaee8695dcd1141a7a47bc545630c7212
SHA512

0e2eb8abb94839a33921e19b86997d99b6c493f9535ce6d5fdac3743c0d1073ecee79b97650177819ed8b2e4dc5b46589a7d05246f854992854079198490f374
SSDEEP

393216:j+V1oeJ/DzyJ1uWo8Q/54Su8vyaYNI0/0xmJNVEHgD1fJz:a1J/Dza1uWLgfvyHI0scJwAD1Bz

Score

10^/10

pyinstaller

Malware Config

Extracted

Language

ps1

Deobfuscated

URLs

exe.dropper

https://github.com/LIL-JABA/valchecker/archive/refs/heads/main.zip

Targets

- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/checker.exe
- Size
  
  8.4MB
- MD5
  
  ec4e6e7342798e7af83922aa1aac151d
- SHA1
  
  ba626e2fbe9176a9954a11623c08d6c794e2c7a8
- SHA256
  
  ecadf79fff69f74a557a6ad1d31d24dc63fcb1ce7244a00b293793f95fdca699
- SHA512
  
  003fdaef64a9d650cc2551ef972f19befdf354a9df15d475f3f8f794723802828aca424ea6f01d6aafe122bc693af0e4c3ccb08a81631819661b59a6076bd9d1
- SSDEEP
  
  196608:6Rlnn/RNrlHAjoG+IfdQmRJ8dA6lkaycBIGpEonE7jXIbg:sZxlHOFfdQuslp9N
Score

7^/10
- Loads dropped DLL
behavioral1
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/checker.py
- Size
  
  31KB
- MD5
  
  5673a94b0741496b73829c6927840bb1
- SHA1
  
  786b98fbd1b149c18be1b96fd37947ad71384843
- SHA256
  
  0bbd3d0d02c05f0eec0d5ca18bd96056cc0514dfb869f933b21c3ef95f894afc
- SHA512
  
  078413ee5cceaeee177ae841b238797d35f9d521d8014a0ae6390a8b9fdc2f857d005b2583cf68c4a0f88b4d038964f4c95988f91499c66068b8c4bef554f9ea
- SSDEEP
  
  768:XTc1Z0zgDhPgfpVC9hBOBqsiQCmcBOBjsh+K+6+BIGT+B6r+ExbNADvcPr+EmbNJ:XTcIzglg+BOBUBOBjsERxbNKUzRmbNK4
Score

3^/10
behavioral2
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/checkmodule.exe
- Size
  
  5KB
- MD5
  
  8406f2837a1c88913823bd0f56388823
- SHA1
  
  2eff05727b75e51e6566a455e12596da1da5442a
- SHA256
  
  a46d49755e6542c1562896a727282d9585ead892b0ce86f5a33af58e8a1184f4
- SHA512
  
  c55fa01ea716aa26ab40ff5ee6245be65c31b5f0427d3063f8cf79c50d92a3540a7fd579130f86e16e8f92215535c75b90b1a1e80ecc0287419395dbc566c326
- SSDEEP
  
  96:gurZY1HUoCiGs5bVk4Cgqrwhjw+grMkSzNt:pri6E5BkQqclbgrFU
Score

8^/10
- Blocklisted process makes network request
behavioral3
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/chsetup.bat
- Size
  
  162B
- MD5
  
  48f4fd4027769370d87d4c422a53845f
- SHA1
  
  57d3431446eee067c9ac6b83cec9221f3a60f498
- SHA256
  
  dd8a1dea31072dc769dc745708ea82d2774c59b64dad06394b5e4d7006ca0242
- SHA512
  
  03794c1701946b68145115e88dbe88ba0e9778f74452226b07e19ae7af8a6e2fa6b0093a34dddbe7586290355be311431e4cd1ba89c5a58eabcf2d71a02225ac
Score

1^/10
behavioral4
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/py/PCSS.py
- Size
  
  5KB
- MD5
  
  2cf60fa75a7c92c264e56f4c094dce50
- SHA1
  
  1c1bbee2100ad2460bfee7be43fec78ab51c588a
- SHA256
  
  c3bc73fbe78440513d57dd4a85ae54c62ad5e426d67113a47e8e5ca0e046b1e5
- SHA512
  
  39a5ce6c9503a47dd1350a37d6245b75b563b367b0dd902fdd3e9b73935a2d813d81df5b954b0c7c7b38d11b37c5ebf864fb14448b8b9f11b7acd82b0f2ffec1
- SSDEEP
  
  96:Fhq0YFfpHbVVp4BdQOKKPaw7QSQbx+Gz7P7PXpdz/p8b8Td:FJYFfBbVDDOKIaw7Qxx+Gzr7PXN8YTd
Score

3^/10
behavioral5
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/py/auth.py
- Size
  
  7KB
- MD5
  
  399e4b909ba72dece4adb927b2421567
- SHA1
  
  7252ad4fe07abff662cbab5d98e1d36dcfa7445d
- SHA256
  
  dbcb04f558eec0d98ecb6d0c8546566e4a5d074f4bb39f77ed44481839cc8738
- SHA512
  
  1c963ca131ca6a9d927d3892c4cb5bbae86e5309944f61fe9c3904a0c5429eb6edcd702e0b174c55cc966e98bbd7b25ac291ccfdead6f45e3b9b8c7c0d2e04d7
- SSDEEP
  
  96:mdGFaG8Wm/GzleEsNBOBlOL9ebBsvqPCP7OPCS74nljxF:mdG+/GzkEiBOBlOL9edsvACRljr
Score

3^/10
behavioral6
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/py/bot.py
- Size
  
  3KB
- MD5
  
  e2a39bc546c722d37c8fb40aa1614d1c
- SHA1
  
  bb5e4cdc3959dd186f9b3a431db6d900d54ab48f
- SHA256
  
  2a5aa27c2b101ff6ca6ae6660f08ba68c74b990798365e471b964ba61d31643b
- SHA512
  
  6045e7cfdf66cd6882047e1d67d5ac9c787b101cab2ad98ebfa6daba0ad450f32520fc7fe5965372dc0b754fa0ab618928f49fb4d3a0221d679ecfb3ef56349f
Score

3^/10
behavioral7
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/py/check.py
- Size
  
  4KB
- MD5
  
  90ae772d53da7895fdf3c6d8b7ebb56d
- SHA1
  
  3a6ea6e26e64b7e5d24189a52755583ee5b23041
- SHA256
  
  41688edd0adfafb1d357aa1b2757f8a71f453b215b7791b279d2a0b3ecb3e648
- SHA512
  
  4a147abc0d22694d5b5fe4ffda8c02e6f8f1a9a3a4c9c2898618771cd0f6ba241c63c8e102d7c62bafabd38a251c041a7589016e60881fcc79aa79f2d5fd2c3e
- SSDEEP
  
  96:5yPL730MMNbN3DjO4RORu8VNDH36VEGas2VL:SEMMNbNTS4RiuONDH36yGqL
Score

3^/10
behavioral8
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/py/checker.py
- Size
  
  31KB
- MD5
  
  5a9017db6814865a90a3c8ac9559bda5
- SHA1
  
  2a371cf4cdccf84435c53301d5be35db945db573
- SHA256
  
  986acb39a5165dc23d38e057468903433c23478c4e9ce61900c6c8ae32d4938a
- SHA512
  
  a292f97302853a6b3ff8fd80f44bdb68308bb790f04b22cb6a240e2cad02e419f99570b6f825593ce3563fa9898115bd4c2f96e60671ac19778069fc868a2c40
- SSDEEP
  
  384:W5lHZzNWC8wu+R+aQjcCZyq5LR6RfQLR6RfoLR6Rf5LR6RfBvKTtnLwyi:2lHZzNWMu+RWcCZyq58Q8o858CxwP
Score

3^/10
behavioral9
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/py/checkers.py
- Size
  
  5KB
- MD5
  
  358ed80ac5dc85bc552db4b55e08074c
- SHA1
  
  ffb21a90a5647d131feec934f87c5390619a5fcc
- SHA256
  
  6f6ca343588bf3a8e7e978cfe8222e4d10b533f7766f84324a0b4310d37d240e
- SHA512
  
  adafc66c0058adaf54a95b6099ae1f2c4ef76148fa4e087c1df99ce444c2b868d351ba4382aff1163d106a079e159e501c1e900a4e83da6974c50ec4748fdfc8
- SSDEEP
  
  96:iBQ4WAYYfQrQoVmAU4fMAAuMUPYA04l9OHDA044gRG7x1kVLDtsk2:Dx8fQUogDYMAAuMUPYzaIHDzXgR61kR2
Score

3^/10
behavioral10
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/py/data.py
- Size
  
  11KB
- MD5
  
  d8b0ba447635e49d4d28455e92f06054
- SHA1
  
  ba24ef327c68155081f34299882cf9f0347e79f8
- SHA256
  
  4186799e10afd7371912c0bb879c2570c6e870c0c21f6f189892a0147649a23f
- SHA512
  
  f0a95354b15266d57d05fd45b3827fe5a048b68bb62c41f2c10fadae5ca5b8fa1351ad5dc171398c5d787a1969d19843073e7cd676d8159e92b8f7f3b1909302
- SSDEEP
  
  192:BWuRISNQR642tnJKrrEC1QoPbk2RvmwxfuLdy0klM:E7R6x6E4QoTk2RZJM
Score

3^/10
behavioral11
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/py/fastcheck.py
- Size
  
  8KB
- MD5
  
  c791e29effc28a6f471b6a1050190ea9
- SHA1
  
  44f5a4c8d841ac811b196562aa4d2f4abd7f2e11
- SHA256
  
  ca4977375d29628feab10085397e5cbb9dbcb8b126f16c7fb5500f8f05720ede
- SHA512
  
  2c21e3d0a921852b1af8473e4ebe91b290659d2223d047b42b4625749b8dc7e2e96d2c2b9745f2a5f082f68d5611d3e5b10dfad7aa13d7a208ca86199a16799c
- SSDEEP
  
  192:AXEz83kDOY+yvrcKD5nXWVrbvnvG6Jcl6qfLnwTo:A+UwjcKNAbvW5Dnj
Score

3^/10
behavioral12
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/py/install.bat
- Size
  
  31B
- MD5
  
  ed479ebacddedec77a46c27cc0e6a94d
- SHA1
  
  7b1855527317d0124ebeb726defa838d54e9b663
- SHA256
  
  f634394e6be6cb445c6bc8191ae89e2f0de21f2214dc16b9cd2e080ad660b1dc
- SHA512
  
  41fd6db1b319fceac0d1796b4183cec97e40ddd6ac919cce89bbd531e4e0153e7d607732177359d4e2719170b495cb70cefac806d3c90975cb85eab10bcd8fda
Score

1^/10
behavioral13
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/py/main.py
- Size
  
  9KB
- MD5
  
  1f564641cb7edde50358a76f0178cf28
- SHA1
  
  3ab81d72ce4b4a2f5120155202d03b60018cba98
- SHA256
  
  1ae2d1eb5f5cfc4700438f4c2b65d6427fe185b3e699601251d72c5cb840905a
- SHA512
  
  258eea5e3393e4727e595226eac9439ba08988e3a3a48016168325f882787ec99571a94c80b9477a2c1b3bfa8fdb6bd93f25d911417a91401087249500236215
- SSDEEP
  
  192:7b7wDCe0HCiIZ6agWPHFXlaXBbnQ6n0XoXJB:7b7wOgVZ6ag2lIxbQ60Y/
Score

3^/10
behavioral14
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/py/mainn.py
- Size
  
  1KB
- MD5
  
  8ba0432ee4eb0c4ca79b831d54db30de
- SHA1
  
  ad71413b1579601b637282c67a131e4e97d29a11
- SHA256
  
  19c29d883f7422caa4a8ad1308f297cdcd44595295718186ed0472cdee4344e0
- SHA512
  
  1279365c2fd59d222425447bd55df1025d2e40e980a86b7dd86dc6e88247f2354c45b3928b0a24eef2f607b81ea6557e8cd54d041a9fa83794c57bfdeb27ece7
Score

3^/10
behavioral15
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/py/resources.exe
- Size
  
  65KB
- MD5
  
  45a75aa481a7148a837086f41798e847
- SHA1
  
  9a22f26b76ac3813f1130c4d29a11dc1179b05cb
- SHA256
  
  5843142659449503fcb25e25c423d3d42be85d4865b1c0373e1442e118e3e509
- SHA512
  
  bc8389f0544956921daff9267c2c783329bb134aba67afe360bbce794ade3820930f3fc40a055daab9eae015d27274c44b1a989a8ea257550b0df26351ceff05
- SSDEEP
  
  1536:l1jpfHn5T82s45tlDqwIdvKKBLutvfFoV/XUuP:lvfH5TZsYnjIdbCNNoV/Xh
Score

8^/10
- Blocklisted process makes network request
behavioral16
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/py/stuff.py
- Size
  
  1KB
- MD5
  
  c4c3219abffc7c52516c900972050fbf
- SHA1
  
  57c53750ef90bb120e52b2831ab83c26138df7b2
- SHA256
  
  bc125f246247bf737bcdc9dc5650dfec24017167bdf7b5dcabdcea6855e85658
- SHA512
  
  78b3dcf6f739d6a34d30ac2b474572701f3fb3ea795823c7cd2bdc64292368a84deeb1d92e0fc97fc75399f1b6939365fd9a7099890f6055aae4eaa911f44e79
Score

3^/10
behavioral17
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/py/systems.py
- Size
  
  13KB
- MD5
  
  e03d27ee271494541c4a515ad582a0ff
- SHA1
  
  6a4ffd16c21b0007f46cdfa4f4d059c197e28eef
- SHA256
  
  5667f80c13bf02603de92d75ce08fbd1ea7124864e1cf7ffb6a13bef89c5b9f9
- SHA512
  
  4e573c0215af756710b8ff20b0eb98cb0123a2e3bee901e594d9f1998e6c0ff34352f6dc7c47e60e0583a4e05b1b42efea8ed29675f2d131e40c4843a2077616
- SSDEEP
  
  192:xHB4Q3l7PJd597njMCCNKsV/lUcyTnTVTyTnTTyTO9haqwl9YNF/SQIQlIUOVHMn:xh4QV7PjfDjgUJTnTVTyTnT5O9FKQA
Score

3^/10
behavioral18
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/py/trs.py
- Size
  
  27B
- MD5
  
  e736e1d87a408e950cea61c0ca0b58d2
- SHA1
  
  f96cd55423931192b52bbb58a76e5cb96f9543ce
- SHA256
  
  dfea3d76af93b2ac46682364b1851f9d40a58f09b94d5fc995419e1ab89ff5ec
- SHA512
  
  b0bb43d7737502c1056f59c0aae8e3e72e93cf422ec23d3c13ca7b7815420bf5d05b2fe8f4d994a3543aa1cd2e9d2b53bf29a7fd28cb612fb795b875d3db1f9b
Score

3^/10
behavioral19
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/py/validsort.py
- Size
  
  7KB
- MD5
  
  4f0abe54c85a869ad43d5e5f626adb40
- SHA1
  
  2abf03b810ebc89c5dfaa05d5725c219799ed6fe
- SHA256
  
  c32766fccefc71c7d5ba3221cc6a790a93cc95b1203544ee85a35bc015c43f88
- SHA512
  
  6f0679abae5d014569f3e606dda49727690bad01cec4166ad9281f0a23f8f8e4d02306e29e1e6c7a38fd88335c6338cc35680eadaa1c49359281042c4c77799b
- SSDEEP
  
  96:+/d0fXNDkTiC9OLLEDhLEhLmhLoovFAj8Ka3NvhoXJ9e9:+lsBLE9LALuLXHU2
Score

3^/10
behavioral20
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/smmmodul.cmd
- Size
  
  40B
- MD5
  
  63d3668902029654d9323b2e4c5f762f
- SHA1
  
  660f8b571f7c2ff7652a22e03b45cef480a74dc6
- SHA256
  
  b27f89221aa7871f43fb77024485f569c6bc9e322ca9cef145e2b500bfa9fa02
- SHA512
  
  bfc279e9c8cf86ca960065b66dbfe1b1326df5b1cd6d8272f48e7792bd920dcb65e80ff35644285525d1b99f6ecdd98de50a4a0f7ee6802979309929cb7c52c7
Score

8^/10
- Blocklisted process makes network request
behavioral21
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/start.bat
- Size
  
  38B
- MD5
  
  4b535df2ccac4eb6326f1b013f7b5a58
- SHA1
  
  76c5682afe3891fd5687b1c0bd19eadf5603099c
- SHA256
  
  898e93f6525b1cfc1c55634d3e75ae4c7dc37545be808198514fd67e4039cb06
- SHA512
  
  559718299fc59d077365907ad21a7d1f0484419547a560729e5625ea5ed12a909312b67340631e1c2488c1da2c125d6eefdbcf54fb20325f3a9c1fe4250fd1d7
Score

1^/10
behavioral22
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/updater.bat
- Size
  
  916B
- MD5
  
  e3e309fbacad4c207f87276b0bcf3047
- SHA1
  
  8b49e7896c9ba22f8f421a77e027dc35dd250399
- SHA256
  
  d364a73520cb64d6feb233d6f6e36815aaebedd3c626c22bc68b57b978af6f69
- SHA512
  
  b9b231fbd45018f39c58f86fe2000855b336e49d28fb08ac028974b7da1c01a54be9cb4d689eff611c93d6c29a3810f3191fd6b364e05ded40f555c4028ad7bb
Score

10^/10

pyinstaller
- Blocklisted process makes network request
behavioral23
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/vacwcbmpy.py
- Size
  
  4KB
- MD5
  
  9f5bfe309879927948245591c2418a47
- SHA1
  
  b6bef5d98a0bc19a469d6d95d89bcbafe69c2277
- SHA256
  
  206450b0816bea21c4867477b371c0801450b154ba66555d154911bfe52c487e
- SHA512
  
  c936b83e9fa526191866aaa60054af5157271aae4b2033c4dc7bec8abe048efbbec5808e560c205229360e10384f8057fed8432f5ef57c72f36bb8423df15ea9
- SSDEEP
  
  96:KC4Gjgz00VXGSLSJOtVYUWJTDIt87GcKajrLTQe:BU4UXMkZWJP97ZHrvQe
Score

3^/10
behavioral24
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/valorchksw/sw.exe
- Size
  
  11.2MB
- MD5
  
  f40ac2745f032d01a1cc2f0123cf7ceb
- SHA1
  
  4c00c4f72e3e2dbe605c7c327021fbf94a1ea0a1
- SHA256
  
  591d2e84ae65a7f7a56f245594f85d6aceb01877b4afba36553f3beeb198432e
- SHA512
  
  5afdd4ce5fcadafb18ef5864b4a24190499f75e9e58806c5e3b18d3852af5b59de8942d6350dd52c4a8ba0b19511d79602eba38fcd2a451bb77b34abaea2b5bc
- SSDEEP
  
  196608:bHlRYn/RNrlHAjoG+IfdQmRJ8dA6lkaycBIGpER/1q3+dgSVnEQB0W8/LaIX1mv:jQZxlHOFfdQuslp9uq3+d9V0W8
Score

7^/10
- Loads dropped DLL
behavioral25
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/valorchksw/sw.py
- Size
  
  23KB
- MD5
  
  7cb909f6c686633fa977e6025b520a3f
- SHA1
  
  64f3888d2400ec742998025827acbacae082517e
- SHA256
  
  3aedaf0a9bca98615a021566558d82084d4deeb6d500c6b757517805a1978b7b
- SHA512
  
  69935e8552a62872ccaa02c47fa791c9ab592aa35e166510ffcd989c51860fe199c82fb919cbb766f5e51ccb50225906d3a70cd6a10503f0e11c932524c1d16e
- SSDEEP
  
  384:S2/Cvp/MCgCa9BxK+qj5fFu9H9LBOBUBOBTs7IisDEEbyLcu9ha+h6PTC5bMfi4I:zavp/MVnBY5929LBOBUBOBTs7fEjbyLr
Score

3^/10
behavioral26
- Target
  
  Valorant-Checker-Fast-Api-main/Valorant Checker/vcmp.py
- Size
  
  13KB
- MD5
  
  b41328e2071c826b98976c34fa87e86d
- SHA1
  
  b11c9d390f332704057c3dde638a1e2ef0cf37a8
- SHA256
  
  6d9ed0427be4377f1994a178039a90186bbd73e10f896e208b7b4078daeecf82
- SHA512
  
  2330efdd855c4888d5fd4295c1d0e78966f1cb9235d02a425f1d12cfffe09c5f6a00c559069bb18f6e66a2a0c50ed9ee6e8df35d710bcc27e0b18bb21d28a933
- SSDEEP
  
  384:B7lNGTnTfT2FQWmCEq+lpoOM9LsXBBOBl5U8xFbGB+iRbXh2DhTCwr8PiYYkVktp:tlNCTL2FQWmLlpoPLsRBOB48xFwRLwD1
Score

3^/10
behavioral27

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Loads dropped DLL

Blocklisted process makes network request

Blocklisted process makes network request

Blocklisted process makes network request

Blocklisted process makes network request

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27