r77 | 433cf60dedb499c1e45f46586bb680f85b8a5f8201fdc4ff33bc0f2db32627dd | Triage

Sharing

General

Target

433cf60dedb499c1e45f46586bb680f85b8a5f8201fdc4ff33bc0f2db32627dd
Size

682KB
Sample

240412-wqredsfe9w
MD5

d2ba29bc4198dcc695984c0475945da1
SHA1

1718e2fe828699152866dbef5b226b5d842b1708
SHA256

433cf60dedb499c1e45f46586bb680f85b8a5f8201fdc4ff33bc0f2db32627dd
SHA512

dd45cd3ec2c8c2faff132801e31d44ec338a4ff4d435af323e36d736f43bc25f69cd82aa54d4ac66cf8ff68364e68bee7b1247151532b14e2f8d1a61f4bfd2c3
SSDEEP

12288:VQu+K3rF4k9FT+rYsdcoCHPovja0JEsj+JPLxnoIg5nMCt7f0z:VR+K3qq4ap06sejx7QnLt7Mz

Score

10^/10

r77 evasion trojan

Malware Config

Targets

- Target
  
  2022年全部热门单机游戏及汉化下载.url
- Size
  
  147B
- MD5
  
  f4f991d2ab8c37612a931518f0e84fe2
- SHA1
  
  bc468d41d0ac8170663be3f2f3004fba4f3e539d
- SHA256
  
  49d2095c4d0017c5ecefce4aa579485ff1773643c0dc4f6c59d3fec906465003
- SHA512
  
  a0fac66c4e6ccd569ce000946d6d8d53fd0649f60f8baa6dc69abbf15c465d0e588f3c4075e957d1d42ce86af3b11a48b6503a58a76e57bdc50898a2cac3f4fd
Score

1^/10
behavioral1 behavioral2
- Target
  
  Cuphead v1.3.2 Plus 8 Trainer.exe
- Size
  
  1.3MB
- MD5
  
  1a6192c1dbd34a4c1b3cc3f92e8b1954
- SHA1
  
  40dfedd3a712bc5b918f12e9aa19ae94d5b611c0
- SHA256
  
  3b3b74d2ae7cde356bd67fc10cb988b363ab3d8155a4cd90126dfd0e20a84727
- SHA512
  
  466b12869ed21721c46070c7f95d7fd6dad0436e5f43285a402321257ec0f08ca3abdcedc7ee6b3e07990efba685dbfc547a3ad9f9bb6e5e1bbeb126b21a090a
- SSDEEP
  
  24576:183/DwNbWtvuQXcyCHrbwbb4B8j88DSngtcbJ74A9:yckt2QsdPwe8YycV779
Score

1^/10
behavioral3 behavioral4
- Target
  
  www.3dmgame.com.url
- Size
  
  122B
- MD5
  
  49cbfed4fa9b3fafdc9d499b6163fa62
- SHA1
  
  28decd9138bd3f7b3ef38bf9e40cd0d6305d1cdb
- SHA256
  
  03df27e82600098c34c413cc2e45b43638d3ac33666960cfbd913f1c3f9a0b11
- SHA512
  
  64e91ed564ef64d7687599012c4728b811fec2661dcb7941374cdd3a8450563073c67c452d97d43545f49182fbda2c26702dd35088723ace21717282d1233627
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6