9c9a5b48379bc3746557057de57fda7a63961cce82d72ec8ff88c6ce2ca2c172 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

TerrariaFIX.V2.rar
Size

4.7MB
Sample

240517-xjanqsdf28
MD5

2d063648a30c16d6f76617e8663f5ccf
SHA1

d19fb06a9371bf3461a2042e0a3879416b4d763f
SHA256

9c9a5b48379bc3746557057de57fda7a63961cce82d72ec8ff88c6ce2ca2c172
SHA512

04fd2f8e8e143beb94d225f7a2872216f1ddde22f8e5620e909fce37db9c434480f8326659fc6fb4745eb27abe6c25a2fd44e2098d5d32306b50151a605a1169
SSDEEP

98304:uv8fYvRzUVItDaKoVzlKWQP8nbbl2JJWmGs/PjqgYzIqihubKVIeq6d2:s8gRqKoVzlKwzmGorLoKV72

Score

6^/10

evasion trojan

Malware Config

Targets

- Target
  
  TerrariaFIX.V2/OnlineFix.dll
- Size
  
  4.7MB
- MD5
  
  df02427a7dd0e238185e05eddf780ef2
- SHA1
  
  30ea45123498c573efb25e23a322da3e88eba560
- SHA256
  
  ecc9a3b09c204cf231d30dfa599d72fdea48ab3608a70bc3e96226c730593bac
- SHA512
  
  3da491bca8f8e0a3b17cf85edc1af7134f76ecf0ceeab0bbd18403839c40a44ef34c2e9db4a10e895632c45db612aeb738a67a66b8587220010fdab8c83cd3db
- SSDEEP
  
  98304:lUBzT+aFcfuQMcJrWUAVArmRNqHfZWDiqIBzH6HgMfxT+MOQmL:ilTLUutOrWUAVkm2/ZWOdL3Cxqom
Score

1^/10
behavioral1 behavioral2
- Target
  
  TerrariaFIX.V2/OnlineFix.ini
- Size
  
  4KB
- MD5
  
  f0739c9b20b0c32df1ebe1f70262d4a0
- SHA1
  
  6b1045a9144d18da2032dfa45edbd086b15071cf
- SHA256
  
  2778cc0a1891975dab80931c74f045f198d7b6b1019f04e1ef296ba75acaf88c
- SHA512
  
  5a07d172208af503b1ee5a14f965723f34e2a987cf742f6a727674af1eadaf9d81ab10a97787e293b197dc67763ca44bf05f036141059a87f54feb6ce6b3417c
- SSDEEP
  
  96:PN4laNjljw4O4bgdd2HmI98A/W+0/kW73/UprF+x4q4+sHHuxMKnip:RNjljw4ODd2HWD/L74rIWL+6HuiKip
Score

1^/10
behavioral3 behavioral4
- Target
  
  TerrariaFIX.V2/OnlineFix.url
- Size
  
  46B
- MD5
  
  59bf167dc52a52f6e45f418f8c73ffa1
- SHA1
  
  fa006950a6a971e89d4a1c23070d458a30463999
- SHA256
  
  3cb526cccccc54af4c006fff00d1f48f830d08cdd4a2f21213856065666ef38e
- SHA512
  
  00005820f0418d4a3b802de4a7055475c88d79c2ee3ebfa580b7ae66a12c6966e5b092a02dc0f40db0fd3b821ea28d4aec14d7d404ead4ea88dc54a1815ffe26
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
- Legitimate hosting services abused for malware hosting/C2
behavioral5 behavioral6
- Target
  
  TerrariaFIX.V2/Pivigames.blog - Descarga JUEGOS GRATIS.url
- Size
  
  211B
- MD5
  
  b037564474da23da82fefc211c951289
- SHA1
  
  71d4ffbcb5023154b03c0689c67ee0cddf6feda7
- SHA256
  
  d51ff0bf54967d6a468d148b1c29154b6e1971c6afb0d634b1cf4c9ea12fcbc8
- SHA512
  
  9f6e83e9bc0792339687e636865652812fe99a51c56444ef18e08dcdcc677897954efb8d0d36e2e61f43d1481830f0aa56460769e58b8520a6f0e954b9fb5a1e
Score

1^/10
behavioral7 behavioral8
- Target
  
  TerrariaFIX.V2/steam_api.dll
- Size
  
  254KB
- MD5
  
  a01d3217bf92f5d523d5957e40b75b31
- SHA1
  
  3880a301bc17acca88b95b1118f260b280ca2cce
- SHA256
  
  a898f0a733e71d49ca67c4e6d846e65f175fca63fc969f3985a501457b7f867e
- SHA512
  
  e5281b94dd40dd71cb818f25ccdc661e4195cb7d42944860c9d4e7586969f74d5c065c382c9d6a66f7c46f38fb59155d28b322cbff74d625bf6289055a1a0d2c
- SSDEEP
  
  6144:MovOILy800bfy6vgrZciveMdwym52CPF6Tn:MovOILy80h6vIqyk2Can
Score

1^/10
behavioral10 behavioral9
- Target
  
  TerrariaFIX.V2/steam_api.of
- Size
  
  254KB
- MD5
  
  cc62f2ebf08cf5814e9c78d3804fa98f
- SHA1
  
  b2f8a07b657f1de841a1d0be54c9c0303763ec13
- SHA256
  
  19ad8f436cc80081f77272974b0b4de361f6c8ef46f09a9263fd764145dc9dfc
- SHA512
  
  8f6f98f3e35e34f31e795b3981d52b773ebb98b5949e54814510db5a62ad564434724cb65d59528749aab1765fc0ec9cb67fa54597157ef0fa48ec81a83032e3
- SSDEEP
  
  6144:MovOILy800bfy6vgrZciveMdwym52CPFZTn:MovOILy80h6vIqyk2Cvn
Score

1^/10
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12