543a201d0a4ab2e487db61022719c3ccb74054c42f851b1582f41b2146c8ffa2 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

CS2 Bhop_[...]_.exe

windows10-2004-x64

7

out.exe

windows10-2004-x64

Resubmissions

05/03/2024, 17:59

240305-wk7jesda7v 7

05/03/2024, 17:57

240305-wjrrksea33 7

Sharing

General

Target

CS2 Bhop_[unknowncheats.me]_.exe
Size

444KB
Sample

240305-wjrrksea33
MD5

ddfda1f4f000dd283aeacf61bbf09e94
SHA1

dece52d7bcb5b25c216fc5b5edd66a80c2cac1e5
SHA256

543a201d0a4ab2e487db61022719c3ccb74054c42f851b1582f41b2146c8ffa2
SHA512

7a5f0cf34b84fec3774be35ea2f9f6e14414da692c6d8c66c7cf7be2d80a4243e058c488b74b7b7be0fb6bfa434d50f8e6a8e3ad45cba47c1309a554b6535c9e
SSDEEP

12288:ofsVoCyy14HcQCOLD/JsShH2gTy88V9ibL:o0VoCdkcQhbF7yg

Score

7^/10

upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

CS2 Bhop_[unknowncheats.me]_.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

12 signatures

300 seconds

Behavioral task

behavioral2

Sample

out.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

300 seconds

Malware Config

Targets

- Target
  
  CS2 Bhop_[unknowncheats.me]_.exe
- Size
  
  444KB
- MD5
  
  ddfda1f4f000dd283aeacf61bbf09e94
- SHA1
  
  dece52d7bcb5b25c216fc5b5edd66a80c2cac1e5
- SHA256
  
  543a201d0a4ab2e487db61022719c3ccb74054c42f851b1582f41b2146c8ffa2
- SHA512
  
  7a5f0cf34b84fec3774be35ea2f9f6e14414da692c6d8c66c7cf7be2d80a4243e058c488b74b7b7be0fb6bfa434d50f8e6a8e3ad45cba47c1309a554b6535c9e
- SSDEEP
  
  12288:ofsVoCyy14HcQCOLD/JsShH2gTy88V9ibL:o0VoCdkcQhbF7yg
Score

7^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
behavioral1
- Target
  
  out.upx
- Size
  
  988KB
- MD5
  
  819c323881989b1b4083043b746b83de
- SHA1
  
  f140c6c2f59b270a1ddc765e8d68a93351f273ca
- SHA256
  
  0d5b7fadf61daed6ace4c158d7ae1e8778d639f77fc436bfbcc3bbd5a5ef001a
- SHA512
  
  03f1ed21fd46fa55fd78395894037b112afb7db3587457608ad0864979a374b45aafae7e9efd1fd8febd81c596187eafdd60ff5eb75146ed0c4bf0bdfbee32f3
- SSDEEP
  
  24576:hRaZROMOm8FN7TjsPnzt2heeRhQbJiHssU:7kxOm+7TjsPnztyDM
Score

1^/10
behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Replication Through Removable Media

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Replication Through Removable Media

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy