8e69a5ef3d94f6836b92915fec004e0320e0fde9fc863f9cdb475d04e52a5cce

Sharing

Copy URL Twitter E-mail

General

Target

ac95a474db0595237da1503511bf8d7c
Size

4.0MB
Sample

240228-xd2j9sbc58
MD5

ac95a474db0595237da1503511bf8d7c
SHA1

b2df4ac5d59384fdbf9460ce4a7bf7782cc88b81
SHA256

8e69a5ef3d94f6836b92915fec004e0320e0fde9fc863f9cdb475d04e52a5cce
SHA512

5d0a00ab2c9fb0e3eb4d390ebb2109816e60e49059221217ced15140863e92ed966cb8aaf84e6fa59193af1a0d42b81ca27d44377517be568e8b89ca5c0f2d00
SSDEEP

98304:lzgwLTVZtF8K9LOLa/G1y+9rKhURsm3oKLBlHIEuNQJgFL:lznVZtF8uLO22y6OCRs8RB1kQgV

Score

3^/10

Malware Config

Targets

- Target
  
  gameoverlayrenderer.dll
- Size
  
  80KB
- MD5
  
  36ce8c33db0699b36e13158fd3689c8d
- SHA1
  
  e891c3fba09e7acef882e96a3ff68bd5aada6b76
- SHA256
  
  607153f0600db89e57e78965f25f914efbe073d678c63b6c146193b7093d1a60
- SHA512
  
  80fa7b10b2efeb5c3abac4db1ea89d0d370929257bbc97c6600dc886601eecf32529ddcece96275838477b158a320ad6e2f47da472e466929db79e9c8c7e2482
- SSDEEP
  
  1536:oeY/UGk6ahyuDmtGAW0nHO7+g1Qo84csW+/cdgqCtv7YklV:/YUxDmENGHOHF8PgqCtv7YIV
Score

1^/10
behavioral1 behavioral2
- Target
  
  gameoverlayrenderer64.dll
- Size
  
  98KB
- MD5
  
  7ece1a01c8afc4b6f604e8cc21cd15ad
- SHA1
  
  89180b093197fef32d0299382feaa0fb3755790f
- SHA256
  
  ef2ec78dd383cf548227718b8109ab7ae8d78677aca0ff10fb83071e18dcb5e6
- SHA512
  
  6c4f89df832c4fe20032575398c9ad2111635c4d42db7a3eee73549ae35e760f1d6f702587084b01fadf0ae4b6687731762889f9063bd6e4b1e9f7024261e390
- SSDEEP
  
  3072:g0U4S5tvLixqQwMu223OJAlNdt91t91dFtV9lN1dFtVEKrEUPCDdc6Yv9:DUZtvcVu5ekdC3YV
Score

1^/10
behavioral3 behavioral4
- Target
  
  sdkencryptedappticket.dll
- Size
  
  80KB
- MD5
  
  5503778c936c02eb9f2b3d584bee0f7f
- SHA1
  
  2fc5f1201c9260b98174ef0d6b294aeda1b54715
- SHA256
  
  8505756708380d01abdfb1eba2af5193ef6c57d42483238d2e6c6b780467e9d6
- SHA512
  
  1209d867ac1234053548ec4437deaed29c894468dd87aaaae82a4e1fb37d5106fb0490bf4a9d6c35984e24369342435c11b209298cc368cb7c2574fea78bf422
- SSDEEP
  
  1536:qbNgCkq5LEtGojMFaGR7R5DOxtQozsWdV6cdgwpKumpnZkt+8:qb2MuMFb1R5CF7VbgwpKumpnZQ+8
Score

1^/10
behavioral5 behavioral6
- Target
  
  sdkencryptedappticket64.dll
- Size
  
  98KB
- MD5
  
  1325f3959355b399db2f261fe6ddcbc3
- SHA1
  
  960c1442efac92b033e3844c2886238e66b8b6e3
- SHA256
  
  156f9ae92585af95301d4a510dd139bf9b9d958cbac4077f55a274f8b4753df2
- SHA512
  
  344299eb6f8f857ea9ec779868b201ee17c041fa8339032caead435701816b6573ff722119d0f56d35cf399c934d0e84177dbcfe4258020358d8d311b105501d
- SSDEEP
  
  3072:uwxrbxbnz/YQ28HZbmEFofSg2dFtV9lNdt91t91dFtVUiWBUa1RcbYUW3:u6xbnz/YQ2BEFonkYU6
Score

1^/10
behavioral7 behavioral8
- Target
  
  steam000.wow
- Size
  
  116KB
- MD5
  
  f25617d58815e32aab958b9b7f6bdf59
- SHA1
  
  735dde78f557281b391466805d52c7fa046e44ba
- SHA256
  
  fc20547408a7c34f0bd4946a34c21aab48a75e3b98dce9e55969f486d37b212f
- SHA512
  
  0c625336435f41d6af535e7a5199d09ec083d3f4763928e41daffaf3ae34251cfd5e32b6825d8ad36043045216af804f33cee5501fb06dca5d9fdc53e7122fbf
- SSDEEP
  
  1536:SeQlAK0s7LsBGeaVYsaZHlmDLDCTxojCLaM41VqqkYL/D9PdUkeRg8T/M6g7kiiM:xQj7gYmscmDnCTxatbqq1dQy8TKYqaM
Score

1^/10
behavioral10 behavioral9
- Target
  
  steam001.wow
- Size
  
  102KB
- MD5
  
  36b0a21d3fd736aaed9d461fb3c4d858
- SHA1
  
  03bd9f3e352553a0af41f5fe006f6249a168c243
- SHA256
  
  abfedd473b3f4a9597bbdc90d20f4b6f696bb2ebb937a03177461df695430ad6
- SHA512
  
  6c8d8dc1244f6541188435a98f25a204d7b491ee8aa5a686d7a0beecd83bfaaaef76727e83aaa261fa228608dd7340a874dfb08c1cd5b077e5cbd29b9ed8821f
- SSDEEP
  
  1536:2PdtkrNFNwJ5gcYJbR3rKiIfvwYUJRqvzK7/pmfaiRuiJDDxrks2QJa8qhT:+Hke5AJbhKXAYCrAykBvJa8i
Score

1^/10
behavioral11 behavioral12
- Target
  
  steam_api.dll
- Size
  
  102KB
- MD5
  
  d50dad71febaa1b8de272ca295a69d1c
- SHA1
  
  fa6a4a90c9e60ae7ffa7d11b6daa9082b3b48f25
- SHA256
  
  e0e5d7002609ecbf37cc02e49832123e535afd08fb8df6216f0723032975c53b
- SHA512
  
  4f35f4a72283a4722e8d9516de45a289aaf4c92584c3829f2438761b6e31349c3f76e92f0e6e48132fdc55956b5dc797fcdbecc80eea89f34057c9571b5911f3
- SSDEEP
  
  1536:dPdtkrNFNwJ5gcVJbR3rKiIfvwYUJRqvzK7/pmfaiRuiJD2xzks2QJa8qhT:VHke59JbhKXAYCrAy15vJa8i
Score

1^/10
behavioral13 behavioral14
- Target
  
  steam_api64.dll
- Size
  
  116KB
- MD5
  
  04481df4b7015b4a6e433446a7f25bbe
- SHA1
  
  057e16ad4f33c7ea2c456380d1987ea3ea2c86d0
- SHA256
  
  c1d70735a43c0757ec48a33b509f050c565a6a975bb55281e4def48baf6dfbb4
- SHA512
  
  d0152f7c6c7165b98051f1625994c301042c434707de11888d9089eb15ff316a254fb7a232500cf7a77cafd0aa524a49461b9fdf6f2f1bcc5fa7d73beb48b9c5
- SSDEEP
  
  1536:neQlAK057LsBGeaVYsaZHlmDLDCTxojCLaM41VqqkYL/DwPdUkeR18T/M6g7kiiM:eQK7gYmscmDnCTxatbqq4dQj8TKYqaM
Score

1^/10
behavioral15 behavioral16
- Target
  
  steam_api64r.dll
- Size
  
  1.6MB
- MD5
  
  9d94a029fa89e1d0eb4db188bc3a7c3e
- SHA1
  
  ffd9556b7ed9b243b291e3cacd70c6248a3c7134
- SHA256
  
  5d349f2928395e3b3e3519f3a0c1cfa84616cd89e315c69252c46fbaaad80195
- SHA512
  
  aa98d0fadd936389a533409b15c5d6f75ba7d005689f2da778f76cc5458774966d220a927375114eb460f68f10b18bc2410c4dcaba20488a79f29b9a27fab15b
- SSDEEP
  
  49152:wLuJQQCgIzhwy36PY2p3azKtlMlTH1mauC:7JQyIzh9h2pKKUQC
Score

1^/10
behavioral17 behavioral18
- Target
  
  steam_apir.dll
- Size
  
  1.3MB
- MD5
  
  53f848311038f86d47da9f8bd81bf24c
- SHA1
  
  63d554b95da9fda0c40a01e1a765ea6ced54993e
- SHA256
  
  d65cfdcd6e96d1a439145ef91ada48f3581e2759619fba752641cf0ceb19bc01
- SHA512
  
  6511ef287ddf1c6375d02fa639b76456147e2fec273d406f1895dacf8f24363776aa7824a878d7c6d86fec513765a1d1b44f27d06e209461f86f07925abe5a51
- SSDEEP
  
  24576:ZmvRtN/+cyiCqZ4GxteLC+OSLI2qjuYVZoQxhBGnGGKL6J+R5Gwf0T7YKnZei:Z4HC1GPe++93evjoQxhB7GtJcIrjZei
Score

1^/10
behavioral19 behavioral20
- Target
  
  steamclient.dll
- Size
  
  95KB
- MD5
  
  6016d5876678bda53eea53c79c285fd7
- SHA1
  
  20a47aa9eab06c28c8cb36f7ea35cdce4d8372f1
- SHA256
  
  8cb93c1cb85277f571e3a2557b4b137f76bcf3e942444d192d0c05eac5920dcc
- SHA512
  
  f50b08d115deaf566d1c3f1a1f370d5d87a2b016e1db1260781d6d0624177a5f8ab4ffa2724181713721029aaaf61ae180242206ead13a57dea1da38908cf1bb
- SSDEEP
  
  1536:KWjsAXBnJkPq9zOvf2WGAuq/yXxVuQozsWdV6cdQwvJO2iWVCktb:Kyh/JUf2/Jq/4uF7VbQwvJO2iACQb
Score

1^/10
behavioral21 behavioral22
- Target
  
  steamclient64.dll
- Size
  
  102KB
- MD5
  
  1c5bdb0d890d74c57918f2f79ae7f13d
- SHA1
  
  3d68aff25ae512243a91b0199fe841a3588be701
- SHA256
  
  bbf28cc641207f95edf5502b2f63e3d42b6289828edaea36abe5f03bc63a1224
- SHA512
  
  96fc3bd196824924ab26b427a5503982368bfed5fb9538d3f9bb430f6b05161978c891406abcdfca93e03461482efa01db4d54777363b48befd08b34be9baa6f
- SSDEEP
  
  3072:6KWVMCWKHfsr+YdaPNOxPvX1KLFg2dFtV9lNdt91t91dFtVUiWBUlx01ncb8X4DC:6ztFHfsr+Y4yvX1qEK8qC
Score

1^/10
behavioral23 behavioral24
- Target
  
  开始游戏.exe
- Size
  
  4.6MB
- MD5
  
  3d4b53eb549585ee077617f61072c6e7
- SHA1
  
  f2b4efe06ed35af3daf7b0bb1db302411f93682f
- SHA256
  
  b4538fc19c0fd8db74795d4983d17044aa722f30030a0501a247b2b195ba6363
- SHA512
  
  6d04931ec1c97401ec2c6d090594808ef64ff9e55c217235389783ddd0b72bc923c09a4469217699816320340d9242da70f9e5409a5887b7514628e8d4bf3931
- SSDEEP
  
  98304:1os1F0N57N5oj1/Uoej1/8Gz8Na4OhtrqNkGy29lTDJoj:1o3N5oCoa1/4NJOhtrqNrfij
Score

3^/10
behavioral25 behavioral26

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26