f002bc61a67997c0fa994f7d08f0cef3f46a422a952f26f31215120b3c5320f0 | Triage

Sharing

General

Target

leagueoflengends.exe
Size

8.1MB
Sample

240526-2vyxxsga47
MD5

ce3d45558b65efef942aaa593b3c8e9e
SHA1

987ea2480146e5ba8bae9387ef3fcbca4ea33352
SHA256

f002bc61a67997c0fa994f7d08f0cef3f46a422a952f26f31215120b3c5320f0
SHA512

99b00dbafb1d5749ce2cab6d327a8827bb5dedb785e12984ca08b983c6657a69b97f93731b006d3147930e87a7645dc44fb5cd5b05ed7f54078e4d33801d97b6
SSDEEP

196608:Rn+ru0XeIX69onJ5hrZEReyiU8AdZYJERD48RmU/ITvN8wZlsPvZPrTdQlY:QrVnK9c5hlERuAdZYydtNITfZWZrhEY

Score

10^/10

pyinstaller

Malware Config

Targets

- Target
  
  leagueoflengends.exe
- Size
  
  8.1MB
- MD5
  
  ce3d45558b65efef942aaa593b3c8e9e
- SHA1
  
  987ea2480146e5ba8bae9387ef3fcbca4ea33352
- SHA256
  
  f002bc61a67997c0fa994f7d08f0cef3f46a422a952f26f31215120b3c5320f0
- SHA512
  
  99b00dbafb1d5749ce2cab6d327a8827bb5dedb785e12984ca08b983c6657a69b97f93731b006d3147930e87a7645dc44fb5cd5b05ed7f54078e4d33801d97b6
- SSDEEP
  
  196608:Rn+ru0XeIX69onJ5hrZEReyiU8AdZYJERD48RmU/ITvN8wZlsPvZPrTdQlY:QrVnK9c5hlERuAdZYydtNITfZWZrhEY
Score

10^/10
- Suspicious use of NtCreateProcessExOtherParentProcess
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2