Overview

overview

10

Static

static

10

Deceit Ч�...it.dll

windows7-x64

1

Deceit Ч�...it.dll

windows10-2004-x64

1

Deceit Ч�...V2.dll

windows7-x64

1

Deceit Ч�...V2.dll

windows10-2004-x64

1

Deceit Ч�...]_.dll

windows7-x64

1

Deceit Ч�...]_.dll

windows10-2004-x64

1

Deceit Ч�...v4.dll

windows7-x64

1

Deceit Ч�...v4.dll

windows10-2004-x64

1

Deceit Ч�...1).dll

windows7-x64

1

Deceit Ч�...1).dll

windows10-2004-x64

1

Deceit Ч�...]_.dll

windows7-x64

1

Deceit Ч�...]_.dll

windows10-2004-x64

1

Deceit Ч�...ad.dll

windows7-x64

1

Deceit Ч�...ad.dll

windows10-2004-x64

1

Deceit Ч�...1).exe

windows7-x64

1

Deceit Ч�...1).exe

windows10-2004-x64

1

Deceit Ч�...64.dll

windows7-x64

1

Deceit Ч�...64.dll

windows10-2004-x64

1

Deceit Ч�...64.exe

windows7-x64

7

Deceit Ч�...64.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    163c65dc199555b52df87f41c10cd44c_JaffaCakes118

  • Size

    1.9MB

  • Sample

    240505-gfh8psca28

  • MD5

    163c65dc199555b52df87f41c10cd44c

  • SHA1

    a40e1501bf187b90796ac9e06f8d67392ce2a80b

  • SHA256

    6e83e0c682d0323703eb728f80cf43c0d88c8d06af7021176b7d7e1762ba78b1

  • SHA512

    cc4e8c317779177bc906f972b6b9d51ba80e01390f6775b32b7da7d690fa3f5f69042856dd2272abcd0e0d55d568b21830e612874f1f57b32b58727b49281e61

  • SSDEEP

    49152:fP4RcrR2BaZfjwJcLG2memkvADts+soY12cna:0cd2aEJcHApzZca

Score
10/10
r77upx

Malware Config

Targets

    • Target

      Deceit ЧИТ/Cheat/Cyberdeceit.dll

    • Size

      278KB

    • MD5

      e97af6196f6ad879f27634fd35666063

    • SHA1

      66a392dd9dad2acef19201996eb4022fdb4742ab

    • SHA256

      c54d090299e30d69765093f77a5c973801e9e1bd852849227a2995b108b2ba19

    • SHA512

      28a221e11feb125c225adc448a76e80a8c6453acbc7f992f3140a13ea77fdef6cdb6882b4173117032ee1f480628aa2279ca1c248a250f5bc11ff3ef2bef38fe

    • SSDEEP

      6144:S993IGSkaCkOirRAaU/30WlXefc/2F8v7nhipPjm8:S93IGSkaCHw2Hk8uEeOv7nhiM

    Score
    1/10
    behavioral1behavioral2

    • Target

      Deceit ЧИТ/Cheat/DRANKDAD V2.dll

    • Size

      175KB

    • MD5

      5c17e6c933d508a29c211834aa615948

    • SHA1

      708f75eb853663a29fa7ce150e168a118c6a23ce

    • SHA256

      2f33840a3639f89a6fdb2b9d0c374876baf855b984e1489f775fcc50e8c42047

    • SHA512

      30d46f8422d2fcefaa3b990ec1ededa1210f02b6d1e59fb6d94f72067ab6c365aaf5476f7ad9ac3ebcc718c7885ce20789cc7de385de093e7b7b41e3bb2f9d95

    • SSDEEP

      3072:98Syzk4z6KngS5CenLRHSTKzf7L0685knYVepJsmT2H/ubyPT3J0M57juTnGO50l:98SpDKngS5CenLRHSTKzf7L0685OYVeu

    Score
    1/10
    behavioral3behavioral4

    • Target

      Deceit ЧИТ/Cheat/DRANKDAD V2_[unknowncheats.me]_.dll

    • Size

      175KB

    • MD5

      5c17e6c933d508a29c211834aa615948

    • SHA1

      708f75eb853663a29fa7ce150e168a118c6a23ce

    • SHA256

      2f33840a3639f89a6fdb2b9d0c374876baf855b984e1489f775fcc50e8c42047

    • SHA512

      30d46f8422d2fcefaa3b990ec1ededa1210f02b6d1e59fb6d94f72067ab6c365aaf5476f7ad9ac3ebcc718c7885ce20789cc7de385de093e7b7b41e3bb2f9d95

    • SSDEEP

      3072:98Syzk4z6KngS5CenLRHSTKzf7L0685knYVepJsmT2H/ubyPT3J0M57juTnGO50l:98SpDKngS5CenLRHSTKzf7L0685OYVeu

    Score
    1/10
    behavioral5behavioral6

    • Target

      Deceit ЧИТ/Cheat/DeceitHack_v4.dll

    • Size

      124KB

    • MD5

      b9e6e111e8a112698b9f67071f1876aa

    • SHA1

      76561fdffc552f2471c904e1195fbb3a8c112ca9

    • SHA256

      cb67172c721dbcc7cf934bbc1ac3d5d9f7f729bdc180452ceedcca274956d60b

    • SHA512

      21a2fe70a93ad17074269f5ee1fab7a107e61a523c56a2d5e810c073005d137099f50e3e03440b924f87dd4234c5862ad1b9fd83a4193323277113ee90386c7b

    • SSDEEP

      1536:MLzkQmyIGBMTaYpUZG7eiVsaIiJWRKv4RSG5yiei6cQeSwzqrIbAPoZ4k1JieIFa:YzUcBkgG7VlcKiBp6cQR6bAPpk1t

    Score
    1/10
    behavioral7behavioral8

    • Target

      Deceit ЧИТ/Cheat/Deceit_[unknowncheats.me]_ (1).dll

    • Size

      32KB

    • MD5

      237ef113927f9696a81494393cf26ab7

    • SHA1

      d81a6df6833926e3df8243b4faee0964de797ebb

    • SHA256

      ba09cffc16f79d0f6c010822069591ef0292d7c7713df30d015511f9e576482d

    • SHA512

      10463f5ff94db57d4f90781a37dbb618b5333657593b6cd60e903514a589d418685601579d44cc13677230bb518da26b3c03425dec095da2efd0c8474e5a6e53

    • SSDEEP

      768:E+vbjusqeCLi6yGdsuP0bZpm5UnU6Rfn8TWjR:1RqDo00fm5UnUOn8TW

    Score
    1/10
    behavioral10behavioral9

    • Target

      Deceit ЧИТ/Cheat/Deceit_[unknowncheats.me]_.dll

    • Size

      34KB

    • MD5

      48679b01536ceb290bac92229904b729

    • SHA1

      ba066de2ab38da61423bd248cd40d485ca55bc2f

    • SHA256

      de10a4a6451941f111ac48a06f57caf019a568bef242f96a18628839e334491f

    • SHA512

      b1eba330b6cd59acc6fd8104d088f692336fb45e9e0abde9e6b3e4200008be88e0bc70e31cdf876f0ccf05426875e6f239bd2c75af3255e58a6ae70d7a44788b

    • SSDEEP

      384:oeKpLznnhU5sUPxN+DkA2+yuyYWIzEnxOd/aOgF/oC3YjhzUvFva04S:oeKpnnnhIsOxN5RaS0CEGvYR

    Score
    1/10
    behavioral11behavioral12

    • Target

      Deceit ЧИТ/Cheat/DrankDad.dll

    • Size

      124KB

    • MD5

      307e31e3e0605bc281670ab44c97c4c0

    • SHA1

      b2b7a7bb951c8158f8ab97afe04aa108def44045

    • SHA256

      9a3e3c5dc9badbe1485fadc7f10863c70b59f9b207cf0c81589e3df0e15991cc

    • SHA512

      3bdeddf39b2af7220d5ca4a62edc9a7a8002ebffdd1bccded34a8b05579c59ceb594eee192abc5e020b015a05a604fa44239db1f4833aaae4f1c69325a7ffd36

    • SSDEEP

      1536:MLzkQmyIGBMTaYpUZG7eiVsaIiJWRKv4RSG5yiei6cQeSwzqrIbAPoZ4k1JieIFa:YzUcBkgG7VlcKiBp6cQR6bAPpk1t

    Score
    1/10
    behavioral13behavioral14

    • Target

      Deceit ЧИТ/Cheat/DrunkDad (1).exe

    • Size

      34KB

    • MD5

      ec6973638c2048c3be3217c4ba1a0e63

    • SHA1

      b43034f6e278e3f9cef674f9a31145032cf6dc17

    • SHA256

      ee3ae094b6790eaa5ec09353632bc42daceec37bc9c0e94129e2470521d130e1

    • SHA512

      ae6bb9b314f7c68c406be8ca0ed01dad0f4e6396e4b83f2ff29447ff0d25dc3a15c7c320bc753911b93abcbcee3ae1af81c187b20c1b697f86dd8cba00a58168

    • SSDEEP

      384:CZPxE/D55G6nVJXCZOqCX4a/BtkkTWrDz3xYjDihBBjeRbnWowno83sl8:C5xE7BnTSOIa8kqvjxkaTyZWpno83su

    Score
    1/10
    behavioral15behavioral16

    • Target

      Deceit ЧИТ/GH Injector - x64.dll

    • Size

      82KB

    • MD5

      6361c6e78fd2b6485ba68f815aedbe21

    • SHA1

      7e8649f2d01e8cc5b54e083e83d43fb239c86463

    • SHA256

      1cf2e2e2fef17843c4f0436be9b6e167296775df83277645d95034b9bb3d8894

    • SHA512

      e02221d2ea9e5674ec0200ddcc351d1a394c8147c4cc6806e988ce8cf9c6c05eaf650061736a783026f2953c75126038170e581dcc2fcc934cdc618d6fe4e732

    • SSDEEP

      1536:EDTtGybOqHXV1n66VRutgr3ndk2VolGW/vB9ZznljUaf2KV1:EDTtUiVJBLVrG2V2GWhzneaZV1

    Score
    1/10
    behavioral17behavioral18

    • Target

      Deceit ЧИТ/GH Injector - x64.exe

    • Size

      880KB

    • MD5

      4c5663d6ec18f7d05fe4ecb100c020aa

    • SHA1

      193c6eccd581e89ea2d85daccb356059e340e89a

    • SHA256

      d99c2d6662e6db724442451c5e83de94a2fb0cd624bb26654e9ef8e3e9df38f6

    • SHA512

      ec938a227aee3bfb92edcc6c20a35faa8f5a04efa25b65dec67b58606e6c199357a6eefe4e9a131e0adea52e612ac537ccb42a664abe8c9ada8108f7e717130a

    • SSDEEP

      24576:mqoIM4mh58kGivEpxMYa4nYzSfKhI9WM+n7:m0Hm3RFYahuicJ

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Legitimate hosting services abused for malware hosting/C2

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    behavioral19behavioral20

MITRE ATT&CK Enterprise v15

Tasks