2d840a08d60d89aa2a0b07cec1e4c940e5d6b59bddbea43465f46086508caf51 | Triage

Sharing

General

Target

mods.rar
Size

7.4MB
Sample

240325-r6ecjsdh8v
MD5

a2b24aad76022d61dbbbc14186400625
SHA1

4ef94d9dca8519783776a4ae8535727004cd0dbe
SHA256

2d840a08d60d89aa2a0b07cec1e4c940e5d6b59bddbea43465f46086508caf51
SHA512

2f88fb568ecc8e4c4bcbc1439c6ad683808aa77db1c852dc564bf94d61b8c9419821630ee1e982561601ec3d24bb5e94ec0d435c51befdb6bfbd8d70de74e305
SSDEEP

196608:f68EdYdsxKn7gez4Iyxtjd8KDKD1uH8wRfH3fo+9hliE61b:mYdsxKnkeUIEtjd8DJw93/3nMb

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  mods/fabric-api-0.53.0+1.18.2.jar
- Size
  
  1.3MB
- MD5
  
  e5f6a9325951bad339cfd4bb3d17e791
- SHA1
  
  9763a1588fe73c36a4d15f98d974240ec7e5ad6b
- SHA256
  
  3e42a893a0145d1510b11a3c27aadd5f90d292bb0240dbae03d6de0ba2e9d81b
- SHA512
  
  9496c5ed97d2fb6b70e14004186702b5e678209090182c1ebe1a0f452204bfb7a8306ddbf141988701901bfa3cfa4998ebeb50d8502e7337487505d282f80be0
- SSDEEP
  
  24576:y0VD/ceWDM+JukjT6f5mqzKdIuEbqtfk7sWZNymqXmyr6Da03d:p2Df4kjT63zGIuDWZmXRGDa03d
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral1 behavioral2
- Target
  
  mods/lithium-fabric-mc1.18.2-0.7.10.jar
- Size
  
  455KB
- MD5
  
  8278bb80f5793411255534b412bd5c6d
- SHA1
  
  d5c19c3d4edb4228652adcc8abb94f9bd80a634c
- SHA256
  
  fce2a8e9174c4b8210a73e54df6923fc84784ce4c89230cdc5dddddbf366bbbc
- SHA512
  
  05f0e51191c9051224c791d63ad4b7915e6f3c442e5d38225e7b05ea4261ee459edb3d8ce99411e1a5a854547549845f21cc8ee2f0079281fec999c1d319fb07
- SSDEEP
  
  12288:slvU1pIOXOXzzlYEqgLLM+6nPyUMUh5PQs7XfpW28MiI:slsrIqO3lYEyjHP/PQs7hWPq
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral3 behavioral4
- Target
  
  mods/meteor-client-0.4.8.jar
- Size
  
  3.9MB
- MD5
  
  f4fb6b7fd1ba4cc8bb2b842108ae9866
- SHA1
  
  8400008aae0c9f93c32020b885393c41d850b0df
- SHA256
  
  1caf4eb63aec70054bed83ca36ee94607d31cfbdd9c75be0061ac5dfc9eb012e
- SHA512
  
  b17a2e4a2122aaca308fb43fb2827a45512c2b1b59d27185f8ab3f3ed66220734a77cd51d7c623c1a00bdbd103a56648cf2bd67fd6e9b8dbd328fc68f107d0d7
- SSDEEP
  
  98304:F1Mzg/3fYzaM3q62misKHorLCy7ryCOnZZNiVmkJwZ:fMEPf4VilIr2y7ryCAks
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral5 behavioral6
- Target
  
  mods/meteor-rejects-addon-0.2.jar
- Size
  
  1.3MB
- MD5
  
  c71dc4f7c93249a834c0567312fa6e5d
- SHA1
  
  6698431b59451631b96a1a830803ed010f551a26
- SHA256
  
  1d2698ec80da023547dea65172b6360193884da391cb3182beb19c6123ec86fa
- SHA512
  
  e6b307edb1fd7ed62cbb90ac5e1be38752b519fb628bafd31485f106e681ce8f9fb68e1e0719735ebfff16e2e257f8a8da01b1696991918b106d549904ac00b1
- SSDEEP
  
  24576:SlJ2zI38Y9k07b8RVf3Qw1d2MDvKcEcpTRbvWozSCRUyBUJbxL:IJ2zI384k0v8rQwzZpVOkSCRgt
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral7 behavioral8
- Target
  
  mods/sodium-fabric-mc1.18.2-0.4.1+build.15.jar
- Size
  
  1.3MB
- MD5
  
  601f5c1d8b2b6e3c08a1216000099508
- SHA1
  
  f839863a6be7014b8d80058ea1f361521148d049
- SHA256
  
  776fb3cd8c8ddee898eb1d9dc88a72d899aaa8792f21914b39ad990cea253784
- SHA512
  
  86eb4db8fdb9f0bb06274c4f150b55273b5b770ffc89e0ba68011152a231b79ebe0b1adda0dd194f92cdcb386f7a60863d9fee5d15c1c3547ffa22a19083a1ee
- SSDEEP
  
  24576:oERs8iAe/ygK4xNNpvAwo/WgwYQWZ/ZtfoTvzSoa/P5zw1PaJRgq:okOt/HxdAwo/w0Z/ZtAc/B2q
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral10 behavioral9

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10