c21483485569acee77d71b019ed48ba151fa6bdc9c90f2e3f30ffbb5092c7fb2

Sharing

Copy URL

Twitter E-mail

General

Target

mirage 1.16 v.0.2.zip
Size

2.3MB
Sample

240525-vq8g8sbe4z
MD5

c4b157db445734da54568d6383e70e15
SHA1

285f848ec5abcdfacf8d55361f0fb76064a42b32
SHA256

c21483485569acee77d71b019ed48ba151fa6bdc9c90f2e3f30ffbb5092c7fb2
SHA512

e014bb82fc5459cec8ccd630db488d1359cc6d198e204a5686441ce919f93856badfd449ac1b81bc7b2960ce7b1d9d5ed136a7f442e2e3bac0a3bb39a9ce23c8
SSDEEP

49152:a8ibphwYo0hjGhICCl4TFrlPqfSAuqNuSBZCfsrQ8srk97Hn+avIje:WbpmOhmXCl0/CfSAuEuMsnY9H+CIje

Score

7^/10

Malware Config

Targets

- Target
  
  mirage 1.16 v.0.2.zip
- Size
  
  2.3MB
- MD5
  
  c4b157db445734da54568d6383e70e15
- SHA1
  
  285f848ec5abcdfacf8d55361f0fb76064a42b32
- SHA256
  
  c21483485569acee77d71b019ed48ba151fa6bdc9c90f2e3f30ffbb5092c7fb2
- SHA512
  
  e014bb82fc5459cec8ccd630db488d1359cc6d198e204a5686441ce919f93856badfd449ac1b81bc7b2960ce7b1d9d5ed136a7f442e2e3bac0a3bb39a9ce23c8
- SSDEEP
  
  49152:a8ibphwYo0hjGhICCl4TFrlPqfSAuqNuSBZCfsrQ8srk97Hn+avIje:WbpmOhmXCl0/CfSAuEuMsnY9H+CIje
Score

1^/10
behavioral1 behavioral2
- Target
  
  Mirage 1.16 v0.2/DIM-1/data/capabilities.dat
- Size
  
  47B
- MD5
  
  0a358a239cff670b93b4db36aee855ef
- SHA1
  
  c27c74a24322339a534f003c05c73d0eec9518be
- SHA256
  
  2b818c4a2100a78c92ba11192142d1d5076af04d13010f16f4d18c8026c80f6b
- SHA512
  
  312eb14af1398bebce6037c399e86e04b15306be21997171d1bf0497f661e890ac1d1473e40e1eebe71600ea3d9213e901acdf566ecb28c6f74d58522cd98c52
Score

3^/10
behavioral3 behavioral4
- Target
  
  Mirage 1.16 v0.2/DIM-1/data/raids.dat
- Size
  
  89B
- MD5
  
  6ed7073f635e562f2121942d0c190b0c
- SHA1
  
  d87846d2be7f33e5b862336a22652cc89bdf55c5
- SHA256
  
  2ded294f8673f1c2bff9c02b9f55a146c4ec09de59b74d5556a8fa5ca559511b
- SHA512
  
  2e04cf02f0d05e71a959f3070e9e48f79916ec914e5f81c8a79d1c3c39e7040b2385a5e69a4af37bfd1d0538247e2b8bc409546f4192cce85aa67ae48a049abd
Score

3^/10
behavioral5 behavioral6
- Target
  
  Mirage 1.16 v0.2/DIM-1/data/villages_nether.dat
- Size
  
  55B
- MD5
  
  9ff30b295f05797deb6ea7b0cb001409
- SHA1
  
  0f406d4db2522c831f2dab77b6180684959e9c9b
- SHA256
  
  2437ad71ab04a142474c64d6eb2e1836bd062b922d6f6d7ed69e78fada30609d
- SHA512
  
  a132db3b23286f6df1d0499adf4fa625d57ba95e3d04562b4f449585c380e276bd4b3bb1509db0fc60c0c11c918563970fd666d88e297b9984ac457746bba080
Score

3^/10
behavioral7 behavioral8
- Target
  
  Mirage 1.16 v0.2/DIM-1/forcedchunks.dat
- Size
  
  22B
- MD5
  
  87e95b37c11f1139dc218d907fbb24de
- SHA1
  
  32d7225738c6ee6ae6e526f16d695d77ea4278c3
- SHA256
  
  8a1ff1d28cc89befe2b93aec31a800604d46b8e653e6a106d409a240cda20738
- SHA512
  
  8fc0c3dbe07eac36330e6a698620deaa7dab18443fe13dacee1cfe7eaa3f18e882aec057f344a50bca5ed5a001541ecab7dd0506206a5d89511c4ee39fce0f14
Score

3^/10
behavioral10 behavioral9
- Target
  
  Mirage 1.16 v0.2/DIM1/data/capabilities.dat
- Size
  
  47B
- MD5
  
  0a358a239cff670b93b4db36aee855ef
- SHA1
  
  c27c74a24322339a534f003c05c73d0eec9518be
- SHA256
  
  2b818c4a2100a78c92ba11192142d1d5076af04d13010f16f4d18c8026c80f6b
- SHA512
  
  312eb14af1398bebce6037c399e86e04b15306be21997171d1bf0497f661e890ac1d1473e40e1eebe71600ea3d9213e901acdf566ecb28c6f74d58522cd98c52
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral11 behavioral12
- Target
  
  Mirage 1.16 v0.2/DIM1/data/raids_end.dat
- Size
  
  89B
- MD5
  
  6ed7073f635e562f2121942d0c190b0c
- SHA1
  
  d87846d2be7f33e5b862336a22652cc89bdf55c5
- SHA256
  
  2ded294f8673f1c2bff9c02b9f55a146c4ec09de59b74d5556a8fa5ca559511b
- SHA512
  
  2e04cf02f0d05e71a959f3070e9e48f79916ec914e5f81c8a79d1c3c39e7040b2385a5e69a4af37bfd1d0538247e2b8bc409546f4192cce85aa67ae48a049abd
Score

3^/10
behavioral13 behavioral14
- Target
  
  Mirage 1.16 v0.2/DIM1/data/villages_end.dat
- Size
  
  55B
- MD5
  
  9ff30b295f05797deb6ea7b0cb001409
- SHA1
  
  0f406d4db2522c831f2dab77b6180684959e9c9b
- SHA256
  
  2437ad71ab04a142474c64d6eb2e1836bd062b922d6f6d7ed69e78fada30609d
- SHA512
  
  a132db3b23286f6df1d0499adf4fa625d57ba95e3d04562b4f449585c380e276bd4b3bb1509db0fc60c0c11c918563970fd666d88e297b9984ac457746bba080
Score

3^/10
behavioral15 behavioral16
- Target
  
  Mirage 1.16 v0.2/DIM1/forcedchunks.dat
- Size
  
  22B
- MD5
  
  87e95b37c11f1139dc218d907fbb24de
- SHA1
  
  32d7225738c6ee6ae6e526f16d695d77ea4278c3
- SHA256
  
  8a1ff1d28cc89befe2b93aec31a800604d46b8e653e6a106d409a240cda20738
- SHA512
  
  8fc0c3dbe07eac36330e6a698620deaa7dab18443fe13dacee1cfe7eaa3f18e882aec057f344a50bca5ed5a001541ecab7dd0506206a5d89511c4ee39fce0f14
Score

3^/10
behavioral17 behavioral18
- Target
  
  Mirage 1.16 v0.2/advancements/00000000-0000-0000-0000-000000000000.json
- Size
  
  35KB
- MD5
  
  61aa1b8e6820baeb957fe390c7d0660f
- SHA1
  
  4795f7124c071265077fbfcbf535060220b0a932
- SHA256
  
  977a3aa06433100d1ab80e3cf7b3e8b074a2bc974fa0cfe2a2fdad7476c2bbb5
- SHA512
  
  0c1ffdd5b72bc048f4aef94f0d4c3eddec964184739f2974d64ea05883ee75f03a89fa3bdf3e3cb4af29ca61de0fd8ae346baad794460ddebc616c9df5a7ea52
- SSDEEP
  
  192:M5a2I+moyIe9bobSogcCSMHGg6cbbI1Ed:M5a2I+AHbobEcpMHl6ybIyd
Score

3^/10
behavioral19 behavioral20
- Target
  
  Mirage 1.16 v0.2/advancements/c4447e81-96d0-4a3e-8ba0-f49a22115ac0.json
- Size
  
  17KB
- MD5
  
  0c66722d38d5aa556c3be49188829cf9
- SHA1
  
  ac1b4bb6b497166eaf699203ee57c808ec6cba43
- SHA256
  
  29ae43e2c20822b08225bc8205d8e051ababd2e734f938668e532cb349da0de2
- SHA512
  
  1df1bfb2376f3d73cc32e3cd51a0b5cc070f6915dbcf59d47b6d6a34be0b01f8195a639f2565f8a3f0ee6361530c0b423d7f927434ab1d7cebb4374ca287fc07
- SSDEEP
  
  96:BwATxYjI5T8/LI/J/TrNoZRcEgluJuXITQT0XQCwnBYjpHTj/WTvNENKF82NyTTZ:2BkVcwFxHXL4j3
Score

3^/10
behavioral21 behavioral22
- Target
  
  Mirage 1.16 v0.2/data/capabilities.dat
- Size
  
  47B
- MD5
  
  0a358a239cff670b93b4db36aee855ef
- SHA1
  
  c27c74a24322339a534f003c05c73d0eec9518be
- SHA256
  
  2b818c4a2100a78c92ba11192142d1d5076af04d13010f16f4d18c8026c80f6b
- SHA512
  
  312eb14af1398bebce6037c399e86e04b15306be21997171d1bf0497f661e890ac1d1473e40e1eebe71600ea3d9213e901acdf566ecb28c6f74d58522cd98c52
Score

3^/10
behavioral23 behavioral24
- Target
  
  Mirage 1.16 v0.2/data/raids.dat
- Size
  
  89B
- MD5
  
  6ed7073f635e562f2121942d0c190b0c
- SHA1
  
  d87846d2be7f33e5b862336a22652cc89bdf55c5
- SHA256
  
  2ded294f8673f1c2bff9c02b9f55a146c4ec09de59b74d5556a8fa5ca559511b
- SHA512
  
  2e04cf02f0d05e71a959f3070e9e48f79916ec914e5f81c8a79d1c3c39e7040b2385a5e69a4af37bfd1d0538247e2b8bc409546f4192cce85aa67ae48a049abd
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral25 behavioral26
- Target
  
  Mirage 1.16 v0.2/data/villages.dat
- Size
  
  56B
- MD5
  
  4a953ec23b717ac9262df9e7f74102b4
- SHA1
  
  959a9d7a83849841699dad64175a453fea9f28d8
- SHA256
  
  8a85f0223d4d4ba9215ef52da31ddafec004a0b7d3565780fec09762b57cd649
- SHA512
  
  b47378b91682f5b56eaa2e21bb7c9251b39ebead1fbc38655188f1493097ec2350d9ae58777eb04985479a8ee7fe87f5785059f60fdd7e080c19e802648fb85b
Score

3^/10
behavioral27 behavioral28
- Target
  
  Mirage 1.16 v0.2/forcedchunks.dat
- Size
  
  22B
- MD5
  
  87e95b37c11f1139dc218d907fbb24de
- SHA1
  
  32d7225738c6ee6ae6e526f16d695d77ea4278c3
- SHA256
  
  8a1ff1d28cc89befe2b93aec31a800604d46b8e653e6a106d409a240cda20738
- SHA512
  
  8fc0c3dbe07eac36330e6a698620deaa7dab18443fe13dacee1cfe7eaa3f18e882aec057f344a50bca5ed5a001541ecab7dd0506206a5d89511c4ee39fce0f14
Score

3^/10
behavioral29 behavioral30
- Target
  
  Mirage 1.16 v0.2/icon.png
- Size
  
  10KB
- MD5
  
  94df602f8b9c1617cf7a9f26bbac4c5d
- SHA1
  
  3d325ff97d48cf337180d0d87d29df537e80ef1a
- SHA256
  
  7c0b48fcca7156faa2d3bb31c188ac92f4a2f04b2f59202b9d2c4f1a03ffd744
- SHA512
  
  7dbb3baefb5c6ecd02f56ddc07eb36e03e1c7494edcf01d88eef755d91bafa2f779c919710fe1ba6068e069220148825d4bebccbeadaa483dfd895cc68452658
- SSDEEP
  
  192:qw+liMUnsruDKRHke1SNPwPC4ZdchKBQl4RxN5MUCyTpLX0MMWz:f+gMUDDKRJ1Sma4ZOhLl4RxkUCyTFXx7
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks computer location settings

Checks computer location settings

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32