a52746ea153c240939f66d63af4fe74c658f09fac4483c6b3d85410eb496d2c2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a52746ea153c240939f66d63af4fe74c658f09fac4483c6b3d85410eb496d2c2
Size

12.4MB
Sample

240503-mba97acc7x
MD5

5a838b051465da9926f98f7f8b14620d
SHA1

cc991b77792ca8502db37ba6fe561dc5cb85fc7f
SHA256

a52746ea153c240939f66d63af4fe74c658f09fac4483c6b3d85410eb496d2c2
SHA512

f15ecb9896eb0910a16e0b74b94bcaf57a4f5a5969dae5f15be6c461ad037bdecc45a79602deaab0f4a02327822408dda68844cc5bc042c42fa8aa3021c89e12
SSDEEP

393216:jZYGqBgG0X9qcVTgsqamvfeM+zhIOPtQUYsb:1kBgl97gsqamnNoIQtQUtb

Score

3^/10

execution

Malware Config

Targets

- Target
  
  LiquidBounce-1.8/scripts/AntiBot.js
- Size
  
  2KB
- MD5
  
  c318dadad79b3d8bee8e31fb0fc26eca
- SHA1
  
  e09427cc210577e6729b9b7047d059340c87cf10
- SHA256
  
  bcd74c6ff9126e62514432e7169cc71271e941ff3a67646c3e8fd85374cbcec1
- SHA512
  
  0f1073b0db8b50eaa1238de10d6da1e76f0a4cf3a9ad33314281ca19492e9b472ae0f19ccd103d37ac3e6aab71972d5bd44dc739621fdc8531a8823368620f51
Score

3^/10

execution
behavioral1 behavioral2
- Target
  
  LiquidBounce-1.8/scripts/AntiFall.js
- Size
  
  3KB
- MD5
  
  3167aa343fba1eedd1f7978b2cb0deb5
- SHA1
  
  51b624a1a6a6d7510f037c031787c7827ff21977
- SHA256
  
  3f6f520589365004a2f0e199d2ad16b2e0335a0f2a4a56024ef8f67bef7e461e
- SHA512
  
  642a32bc11900bdb1cc2ad444b90025cb5c3fe604790fdafcd976c36a91b0b4e22a07d8511065ab1c01240f5b9a943b6bff08bbc8f2b13c55a0923f5a8c41a81
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  LiquidBounce-1.8/scripts/AsAntiBot.js
- Size
  
  84KB
- MD5
  
  7a8c0e830155157888ea5ba0d0804ada
- SHA1
  
  04f7d984e2ed86d56f97b30fa480d760ec4eaf80
- SHA256
  
  e6e38cf08416e411851ea7ec02e03b3cd84b1317235b415f41507244b427a3a4
- SHA512
  
  7e482e53eaf3e881f21f19259c519b73348bdba851d2d0b5261c30d6c55a8765a53370df6b6939e66736db6f11892172becca24b88edac3fcb3cf604bff39677
- SSDEEP
  
  1536:s5imazS5/c3gM5q3JsLsSHSTTfkNQR6HQK92L2pS36QAQOT5AqIaJiJFZt8F2c+i:s5imazSFc3gM5q3J4sSHSTTfkNQR6HVb
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  LiquidBounce-1.8/scripts/AsKeystrokes.js
- Size
  
  163KB
- MD5
  
  5adfc1d8479d751f0e4da5df2a7706c9
- SHA1
  
  aa670c7f395fe85a30e467a5929c1c527519f07d
- SHA256
  
  dfd3cd6fad21634db3b31248970a3a5413af19dba6a47d8ee74ce02f1af8d4b8
- SHA512
  
  4cac158886bbb145d30c94fb6b467fb6ea4051f88215e3d4e906c4689933eff98144718961fdd48a93c3a1316a8526b8f7648edf681ef59c5a6520f4d991794d
- SSDEEP
  
  3072:k/2vnW0EApMtojxYJUmcOASiNBVTDeuxaLvmY6TT+Aul6rs6yEn4I3hNoH2WAO6+:dc6W3ggApz+tZWS5dGDn4umTDeQPTKpk
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  LiquidBounce-1.8/scripts/AsMap.js
- Size
  
  3KB
- MD5
  
  1c770f957c40434350d63567ddde581b
- SHA1
  
  10d45c498aa0fb7c506e7ec90f285727f284a06a
- SHA256
  
  88354161174bd843d7caaa66de975050e2a5ef572a7be117b1ba5e1f95b47807
- SHA512
  
  4cc8a2b05276c263f7550fc24b0b30fffb58a13ebf3c0322ddc96789bf6e3c9ec91627e8e3ed98b034832aae6f1ce944ab2d2d3d350e0904422282d915c2255e
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  LiquidBounce-1.8/scripts/BetterScaffold.js
- Size
  
  2KB
- MD5
  
  7b2d46033d5540faa9634f2902d17c2b
- SHA1
  
  d6d4bf9d380038f024dff1262bbe60548113d994
- SHA256
  
  12250430e34e1dba66f7d0739af2297e197fb49cab3488d532027b8b77aeff77
- SHA512
  
  fb24aade75f39064f29421ad07a93a32926374d755cb00da8e55d4cb77f403b684f46f52f263f779f0f3340c6efa1c7cc5f1d240e2ac7380ff5e649fcf919a34
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  LiquidBounce-1.8/scripts/BlockAnimations.js
- Size
  
  14KB
- MD5
  
  b6038a918c9a59aa628e94fbd6762bf0
- SHA1
  
  c74bb8f9f2e79d66672854a78a5210bed7a544b2
- SHA256
  
  9f3825ad3313f28867d5d747eac906f1e492420967c223c2e3a68554d5669c37
- SHA512
  
  1e39671b0bb845a3c730e82034938cc05fc1d1bc2533cca02efea60a4ddd9a0d9838a471265cc9c92373a054cf947272b1c267044973e94bffa4039369dec390
- SSDEEP
  
  192:D3HWSpd7SKA9KuHmRec7y39sIf4oRptsLxpRDMWIUQZZexmF:bHbSKA9HHWec7y39Xfyx8
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  LiquidBounce-1.8/scripts/Core.lib
- Size
  
  46KB
- MD5
  
  248465c821b39ae91b5c99f970e86b0d
- SHA1
  
  b11dd16ebd9efbfbc33d2227324a38c1426251fb
- SHA256
  
  7cc6c806064f43dd14964c70a2c732e02a74a6503a8070723024a2c94172b70f
- SHA512
  
  936fcc74c1495f5ee8c9ed9e91fe132e26b22b3b1ce57663dcb38caa66a4b34548cb0812df9f9b00e71b90b302aa5aba7bbaf361cd37df249b384f263d36d0e7
- SSDEEP
  
  768:nKFgOfaGDQq/OVoLJyQujYL6GdPCFfKqcqYwPOx9WNDLyFy4sKX0IHJKUo:nKwG0qMSGYL6OPCywPOx98DLyFyRKX0r
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  LiquidBounce-1.8/scripts/HypixelAutoPlay.js
- Size
  
  25KB
- MD5
  
  9ff408214a9ff15a6f6d851902724c15
- SHA1
  
  a88d9f690ac0c4c024f5c53a97bbcf1a876e1719
- SHA256
  
  e3320c140e2b5b8082aaf5e8e10fe18961596872c87a38dbb7b2ef16e1e2a9fc
- SHA512
  
  1a50341cdf8f8c83f3c15aa955be31da1afe9cda43142826bde95f632329d9ac2b1d3abaec23b204c8b3ef5396c21e3417428bb297b68d2bd761ff4a26dd029b
- SSDEEP
  
  768:1yRhQXUOizP6WkNiiEtnLt6WaVxDqqUXUvN/9VMopUtCSGpo5b4s/hQyYbAKZb4q:1yRi1LY4PH
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  LiquidBounce-1.8/scripts/HypixelBlock.js
- Size
  
  24.4MB
- MD5
  
  ee53d513e56e8916ecd709221e9f2c38
- SHA1
  
  5e84abe2f963b29bfa6aa34649ba33942d1ab412
- SHA256
  
  be44aecbb05c54e5e7a44ade8e9235bda9749b00f325c8e6a22f48f41dfe2fe5
- SHA512
  
  38d3b8503d8d40cc3307203d6454e7602b7d8d860390f34841399dbbfc63087cd80bbdf94601f9eb72955898b88cad025567e4df9dcf0918e867b4cc4fd51db9
- SSDEEP
  
  3072:D1p912Lt/X63OkUuqR88RcTzMXsUpK1M309MCSvwSouDvFi9vF95XZ5QiQV7cBvE:NjI
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  LiquidBounce-1.8/scripts/IRC.js
- Size
  
  461B
- MD5
  
  05857dba3a4d96a0679f302a68752c08
- SHA1
  
  aaaa64b4384c0591718356b8da18fe6947eaa9cb
- SHA256
  
  131d98ac36fba8211729da603e3c08a0771cf4c76769272f5d91ebe2245c68f6
- SHA512
  
  af38ec19512bcd61720e7f4a643ff040f40a3a712128c7984085db060ce354f4765b0d2a5dfb9443619e28a6100a528a5023ae9d5253cc16a1b35b2123971dcf
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  LiquidBounce-1.8/scripts/KeystrokesSetting.js
- Size
  
  8KB
- MD5
  
  8fbe75ea4ea692f6a9c785ae4108ff3d
- SHA1
  
  836dcec462c8ebb694ae70c9247a120037aec9c4
- SHA256
  
  5f1602627a1cac355c7855c57919f612fc62fcba6e0f0c26a85590181a7e984f
- SHA512
  
  d698cf1635021868c984657372bda1ebbdf149703dc39c2e98c672fd982a10a6dec6e0767c19ab39f05437f76f6899b87782b3741dd446c369cfbbddfd5ee4b8
- SSDEEP
  
  96:wwRmmjkZ1tr8QXmrkZ1368QXmDkZ19+uf:NcOcfc8M
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  LiquidBounce-1.8/scripts/LagBackCheck.js
- Size
  
  8KB
- MD5
  
  9b7c95f78f8e66d83566bf4b8ee7455b
- SHA1
  
  f83f8a2c954dc7b188b4e4c0a556ba065e82f3f6
- SHA256
  
  176612f6c05dcd021773471226f15d0f3f48d5825f353d526954eb7cad3ef23e
- SHA512
  
  e1015d64eb7c978d5a75dcb5ba6dbd2fb30ef09b0f60e28c1f37b59691b9621381dc0ab6ff9dd8e9286b482f9dcf988dbf66f90fbfb54e1140bf3af4dfde5285
- SSDEEP
  
  192:SAmccvumSsL0+7qda5eRmMTwa8yXImIDef:SA7cvdSsL0+7zsRmwwn1e
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  LiquidBounce-1.8/scripts/LiquidBounce Client.js
- Size
  
  907B
- MD5
  
  c807776ee786eb8ddaf1fdbd06a848e8
- SHA1
  
  5b32ce4d9ccdf9cdb0f691c74b247bd908c3deb7
- SHA256
  
  897235abc92dc66c89316d3f6bac7c5efcd50dbcd8e9bcc9789ccbf257a3601c
- SHA512
  
  8b7220db3d2cd722623a0df10b7468a8a47344e17f65157e5d199d30e512012bd34171803849a0c5b6b7689512f2873e22a46c6e589412fea63ed49bd2c33e94
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  LiquidBounce-1.8/scripts/LiquidBounce.js
- Size
  
  501B
- MD5
  
  e4caca2f26ef0cfe5a42a1be6f44da49
- SHA1
  
  f08cfa28baf764b5bd5bed096fa55edc61443962
- SHA256
  
  7c890d53e766cbe9fb6d23a240932d305982600ed2224fa3a4ab0a6b79421e35
- SHA512
  
  c560d8887767cc84abce4b3d6594c088bd71c304dbfe48bd4378f4cb5a9c14b9d8e738a39f252c235e1899c216dbbf61cc665f79b02d86f20225ec0fd27d2eb6
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  LiquidBounce-1.8/scripts/ModCheck.js
- Size
  
  6KB
- MD5
  
  1e7cf3321bb177fd4801cef8d4448ccc
- SHA1
  
  f86aaef9943f1717e467c300809fc9ccbe6847a5
- SHA256
  
  a00354c0357a90e2fd2cb39e80451f325d640fa85b5f4765e04a133a9a7bf9ea
- SHA512
  
  503efaf640a10ede381c4428f4bc9b911a4919485a6cfcb6582ad5ff4272f0e1b02b68a7ae9719ebc035c76b9d70678093673a27fce4d0460069d4b489874cf7
- SSDEEP
  
  96:9QwdvdUD8kqpHS13kp/KZFI7BPhSGNlmPWMd0g/lmPIxFof:9QBFLUJK3C5hTlmPWMyg/NxFof
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32