a9905cff617afc9d8186192e22deeca1472cb3b9dccc1fccb0e401c23fdce141

Sharing

Copy URL Twitter E-mail

General

Target

xvll.zip
Size

70.6MB
Sample

240318-t1sdbsdb38
MD5

035c900fc932dd76dfe96696db304ac8
SHA1

bca99d85a743a6a5871359c7d63942a676c23d5a
SHA256

a9905cff617afc9d8186192e22deeca1472cb3b9dccc1fccb0e401c23fdce141
SHA512

47f12ff427324c77a7968b6461ac7009617255d76eaede23ef4216ca277ab576e7e73f303927aa804e91ef43076fd3c0f4925546f05e95aa7749bf390dbd10ec
SSDEEP

1572864:G0u7qWAOC/Pqn9xawsmUZ579Ji6CE3UmGRnpWDfwgI:G97qwCHI9xrsmULxJi5xmEWW

Score

3^/10

Malware Config

Targets

- Target
  
  xvll.zip
- Size
  
  70.6MB
- MD5
  
  035c900fc932dd76dfe96696db304ac8
- SHA1
  
  bca99d85a743a6a5871359c7d63942a676c23d5a
- SHA256
  
  a9905cff617afc9d8186192e22deeca1472cb3b9dccc1fccb0e401c23fdce141
- SHA512
  
  47f12ff427324c77a7968b6461ac7009617255d76eaede23ef4216ca277ab576e7e73f303927aa804e91ef43076fd3c0f4925546f05e95aa7749bf390dbd10ec
- SSDEEP
  
  1572864:G0u7qWAOC/Pqn9xawsmUZ579Ji6CE3UmGRnpWDfwgI:G97qwCHI9xrsmULxJi5xmEWW
Score

1^/10
behavioral1 behavioral2
- Target
  
  AutoMax v1.0.5 - Cracked by ElectroHeavenVN/AutoMaxManager.exe
- Size
  
  2.3MB
- MD5
  
  448779be5cfbe0ddd46948f5ac7bf6fb
- SHA1
  
  43bf920c9a59b364ca3915ed63f3d21c9ff06a41
- SHA256
  
  263dc4e20f200822946894019d532c82fe303104aacf9fd30fb254440657c512
- SHA512
  
  45a1514b91ddcbd932ad00bd995a3a47e5aa7a5bbf1b7a4d99df0ce1e1901ae53431956f61736e4e8fe5937e21141c7d2ea49f90087f36f2ffbef0c7e7e8d0cd
- SSDEEP
  
  49152:rviigdGRFxDB0bSvZFGapy5ONVSbKmkvAjddpllmz:9gUkbSvZzYoWkvypK
Score

1^/10
behavioral3 behavioral4
- Target
  
  AutoMax v1.0.5 - Cracked by ElectroHeavenVN/AutoMaxManager.exe.config
- Size
  
  330B
- MD5
  
  38602c0c755abf6e28390c1ef361e55a
- SHA1
  
  866da18e4b951e3892963e20b04ab2ef6e43bf24
- SHA256
  
  1e820ec72ad84cd3b31e1ebc0316ef8d982b0ba2e8da01a96937d98230d38cfa
- SHA512
  
  b504a2d5b4e98e49e216ccba2d5b5ab44a516b355c624218c362d7790e7679a932ec62d5ddffa9f4579779484de564735b02c88078c5fe4d3d2eafafd728dc4b
Score

1^/10
behavioral5 behavioral6
- Target
  
  AutoMax v1.0.5 - Cracked by ElectroHeavenVN/Data/Account
- Size
  
  252B
- MD5
  
  b10d22e1daba6f6f9934eb85beb33605
- SHA1
  
  984eb9f7649312ffbaded5ce876baff02abd21f8
- SHA256
  
  e7e61cc12d76e52a8dc5b9eaf3619d496089e3e304eff731ba493ef06903ed3d
- SHA512
  
  16e28aee58956c0ed586369cdb7c693be9c552e315dc07b1dd18cac0d0d39caa7892c3b53fe6a466e7ff97cb33dc870051d22b2048eb665cc044f72b3f226af5
Score

1^/10
behavioral7 behavioral8
- Target
  
  AutoMax v1.0.5 - Cracked by ElectroHeavenVN/Data/ClientName
- Size
  
  15B
- MD5
  
  8a132f891b1b7ce960a4027657393ca6
- SHA1
  
  a5d99d1d47bd258873c5f9f2da4c33efda2fad27
- SHA256
  
  f6ec6fa26268603ce6969ba6b700793b8ca2b7c032d241fef8ffbbea31708e71
- SHA512
  
  3bc5ba9ad79c51367f21f9f50eaee4a7d627e2e4a4a9e3311db31f6431bb330bef04e22d9ca2a45162117e5540058db08e88d18a4d217123e521334ff0a9c67e
Score

1^/10
behavioral10 behavioral9
- Target
  
  AutoMax v1.0.5 - Cracked by ElectroHeavenVN/Game/AutoMax_EHVN.exe
- Size
  
  490KB
- MD5
  
  a2e383d1e67c89ef06f7843a9cff0da3
- SHA1
  
  f0f2ce88dbf8cb02eeea00f67bd47a55cd7916c5
- SHA256
  
  9fd94fa5db0b38ab39bff155fd095d0833d7b8ce36a7bf8cd81a1549df47376e
- SHA512
  
  1126450f442443929b28e01a4212d03197fff41c34cfe291737bd17a146dd5945a211cf83f694e640ff8a8297c15bc496f1622a29695a2d306b59dc0cf2d7aa1
- SSDEEP
  
  12288:34eCWCuDN6oyIz359lCcPqub/vY+FB4XQzl:IED9RBnD0QR
Score

1^/10
behavioral11 behavioral12
- Target
  
  AutoMax v1.0.5 - Cracked by ElectroHeavenVN/Game/AutoMax_EHVN_Data/Resources/unity default resources
- Size
  
  4.6MB
- MD5
  
  45ca075a660921149eb37eaf028c14a0
- SHA1
  
  e95bfdccc7c16235dcadef37b8037733e455a6ba
- SHA256
  
  458713a9e0aca9b787f40e355055a9e8f8193d0a203058b21164035fc573ad4a
- SHA512
  
  8456efd7379d46a8f2f1e148be8e29f2e83d1ff3e777ce13312f7030c2f4741b6632389cc68f665b6361b1cc72b175311bd24d97bcc74d713b65d5f8c7c396c7
- SSDEEP
  
  6144:N9p1zj6Ipj/LdeK7aFAc3OE7pEODIhR03YWO/OJ9WqWmKySHCkcC1Fdj38mXpgk0:r4A6T8hfPOjdWZZFdrE7n
Score

1^/10
behavioral13 behavioral14
- Target
  
  AutoMax v1.0.5 - Cracked by ElectroHeavenVN/Game/AutoMax_EHVN_Data/Resources/unity_builtin_extra
- Size
  
  371KB
- MD5
  
  a8b56cdf60daf89c7901ae18832333ea
- SHA1
  
  4b2fde5fc313419e52c0994394a9666cd1813f77
- SHA256
  
  2245ef822d0c1d71ce8bbcbf7f393a3bdfbfb42ab8e3c015a3d2af401ad36bee
- SHA512
  
  7c71351812a2f61cf38bfb34cc48dd0a2a92b79d751087bdb6926a59b2a2b362f41073fbae09a1febd61a964773a163e58e1a2e8ecc14ed32f03240bf13dad84
- SSDEEP
  
  3072:VPzRtWZ8K69Wqdve1Ggpmg1b/jN67esi5EU:VPtwGK69WL1tpm086FqU
Score

1^/10
behavioral15 behavioral16
- Target
  
  AutoMax v1.0.5 - Cracked by ElectroHeavenVN/Game/AutoMax_EHVN_Data/ScriptingAssemblies.json
- Size
  
  2KB
- MD5
  
  b76e5536daa4342d8f2b7b97f5ffc2c0
- SHA1
  
  a92361f3741f30621e097c8b13c76101ce8d4959
- SHA256
  
  3547b5dded1df5850469169d52a632ae0521159c70095cef8acbf347d8de5fa3
- SHA512
  
  166e0e897e4ae8dac4461cb8e726db6de958d9919dad465ef2ad180e6b5fbea9f3cb1ae48cce039d07e3bd73f872589ca72df89e1687b52096c27f70226826c8
Score

3^/10
behavioral17 behavioral18
- Target
  
  AutoMax v1.0.5 - Cracked by ElectroHeavenVN/Game/AutoMax_EHVN_Data/boot.config
- Size
  
  76B
- MD5
  
  b0bd6c5480db664bd55aa48232891c1f
- SHA1
  
  cd1c2e3c6d20829842dedaa65c0b37ba57a4619f
- SHA256
  
  498f352ceb88c9b8794639f77fe1119c5f8a9288208784caac0a0e1a94fdd751
- SHA512
  
  f584a95827fee5dbcd73edba70ce7120bb9e58c0eb87de0c7003b157b5a74f6e50fffa9263ce641a1c98b3b81b49b261995adc3c6ea518f37b4bd8e350b5b5c9
Score

3^/10
behavioral19 behavioral20
- Target
  
  AutoMax v1.0.5 - Cracked by ElectroHeavenVN/Game/AutoMax_EHVN_Data/globalgamemanagers.assets
- Size
  
  73KB
- MD5
  
  95a3b2a9fbc5b928a09a4343d705a2b0
- SHA1
  
  adacb9c7e74a9288f7426826a2cfeb20a87c288c
- SHA256
  
  f887d428315321521f830c511c22647e5e3ae846b62d17637033c79879886df6
- SHA512
  
  7b180748c56fe794425e334fe7df5e93f4df15fe119dec66c615a9b9750dc63581ed79c727be064ee110fd8836c8c2b187d65a2a67121cf151ade3a2cb47cd9e
- SSDEEP
  
  1536:k4mpVzKIjT+tRioYGQSRdIcGEoOgWsebgnjakCU:krVzKIjvSpgvCU
Score

3^/10
behavioral21 behavioral22
- Target
  
  AutoMax v1.0.5 - Cracked by ElectroHeavenVN/Game/AutoMax_EHVN_Data/il2cpp_data/Resources/mscorlib.dll-resources.dat
- Size
  
  329KB
- MD5
  
  21d06dbc8af6432b2b49536ed30609af
- SHA1
  
  11a1c0e2ab2f8c06fe4507535ed47e0dd279a60d
- SHA256
  
  c5baa176a5b72cd545266340e42102d393a5e43d38c95796bc828918bb95277f
- SHA512
  
  2971f54eaa14c3ce6e2352e5a1aea5b044f0894bf4eac92de8cd92515b6473b5ca56ebfcad4369a9d4935cbefea2540a83f332fd4d832c37768310e8776ceb5e
- SSDEEP
  
  3072:c5j+evAPQ48RhHkXKSmLZsumnWpevI1kMqXkD3by+BEL:crvS8rHXSmJmnjvXkSr
Score

3^/10
behavioral23 behavioral24
- Target
  
  AutoMax v1.0.5 - Cracked by ElectroHeavenVN/Game/AutoMax_EHVN_Data/il2cpp_data/etc/mono/2.0/DefaultWsdlHelpGenerator.aspx
- Size
  
  59KB
- MD5
  
  f7be9f1841ff92f9d4040aed832e0c79
- SHA1
  
  b3e4b508aab3cf201c06892713b43ddb0c43b7ae
- SHA256
  
  751861040b69ea63a3827507b7c8da9c7f549dc181c1c8af4b7ca78cc97d710a
- SHA512
  
  380e97f7c17ee0fdf6177ed65f6e30de662a33a8a727d9f1874e9f26bd573434c3dedd655b47a21b998d32aaa72a0566df37e901fd6c618854039d5e0cbef3f5
- SSDEEP
  
  768:6CEPutHjvpMgMwP9h5Ij7khsp/6JtEZwMXVtkUI3t3CXyEyk3VbNbqDvJ4oT1y:/r6CdsCOZwMX3k5dWyklh+Dvbw
Score

1^/10
behavioral25 behavioral26
- Target
  
  AutoMax v1.0.5 - Cracked by ElectroHeavenVN/Game/AutoMax_EHVN_Data/il2cpp_data/etc/mono/2.0/machine.config
- Size
  
  28KB
- MD5
  
  cad24142abba464dd90777c3d347ef88
- SHA1
  
  d8db7111fce5a08d8b7c9a6e1e0ad2fbf34cfe12
- SHA256
  
  edc5bcf685d930a607bc097927260a3f9ac7f52dd809db68158298bfd934b7ce
- SHA512
  
  5d3ee2ee7921c95cc30790ae670fcadcf091d4fa1b9b5e1b9c7500c67230abe25467236ed160c51aa662e764ccea10e4955887359a65b09432b727abf27f8454
- SSDEEP
  
  384:PbBtBtWR5RwRqrR2RN3RPfRaRvRyRaRIKbX/y4RpQXWBE43g:DuY
Score

1^/10
behavioral27 behavioral28
- Target
  
  AutoMax v1.0.5 - Cracked by ElectroHeavenVN/Game/AutoMax_EHVN_Data/il2cpp_data/etc/mono/2.0/settings.map
- Size
  
  2KB
- MD5
  
  22c818a23169e12bd3c8587b6394c731
- SHA1
  
  dd2be2dbccd34736719301aee92429d4258ea5a0
- SHA256
  
  49c6160f9d54af4270a3b4e997fc4a8301f79b9e2070118fa46ddbcbbc44f9a2
- SHA512
  
  c1352e817e01277413a1790a94a4f979dc1b8333874fef28d735441c034c97bf8ce501fd9cd04c47d25541a0c1d54fcd4dd3bee9ac3e8fbde83ada9a1d2662d7
Score

1^/10
behavioral29 behavioral30
- Target
  
  AutoMax v1.0.5 - Cracked by ElectroHeavenVN/Game/AutoMax_EHVN_Data/il2cpp_data/etc/mono/4.0/Browsers/Compat.browser
- Size
  
  1KB
- MD5
  
  0d831c1264b5b32a39fa347de368fe48
- SHA1
  
  187dff516f9448e63ea5078190b3347922c4b3eb
- SHA256
  
  8a1082057ac5681dcd4e9c227ed7fb8eb42ac1618963b5de3b65739dd77e2741
- SHA512
  
  4b7549eda1f8ed2c4533d056b62ca5030445393f9c6003e5ee47301ff7f44b4bd5022b74d54f571aa890b6e4593c6eded1a881500ac5ba2a720dc0ff280300af
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

Install Root Certificate

T1553.004

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32