89ffa81135a2c1897e0231462cbaef78a62956db40590ae11cadc5b7b6cd59e6

Sharing

Copy URL Twitter E-mail

General

Target

tominecon.7z
Size

71.0MB
Sample

240527-ptcbbade68
MD5

07e087b30b0e2b5ce1654a5c4e1a2c0c
SHA1

e37db9c9af23577974200276678c5e465e26c44b
SHA256

89ffa81135a2c1897e0231462cbaef78a62956db40590ae11cadc5b7b6cd59e6
SHA512

48d707de8c002d5003b309ebe3c106052e0b6e07a2820db6e6bb665998199cba90332f2e11445d17ffc0efd970eb8d02f442e0cf265a3b290aebdc10e6020b39
SSDEEP

1572864:cFcS3HC38T9272SMZre/DFPOAO+kwByheY3g37DRufPhAdLw9C2:qcsi329272SMZsDFRO+BMhj3elunhdC2

Score

7^/10

upx

Malware Config

Targets

- Target
  
  tominecon.7z
- Size
  
  71.0MB
- MD5
  
  07e087b30b0e2b5ce1654a5c4e1a2c0c
- SHA1
  
  e37db9c9af23577974200276678c5e465e26c44b
- SHA256
  
  89ffa81135a2c1897e0231462cbaef78a62956db40590ae11cadc5b7b6cd59e6
- SHA512
  
  48d707de8c002d5003b309ebe3c106052e0b6e07a2820db6e6bb665998199cba90332f2e11445d17ffc0efd970eb8d02f442e0cf265a3b290aebdc10e6020b39
- SSDEEP
  
  1572864:cFcS3HC38T9272SMZre/DFPOAO+kwByheY3g37DRufPhAdLw9C2:qcsi329272SMZsDFRO+BMhj3elunhdC2
Score

3^/10
behavioral1 behavioral2
- Target
  
  .minecraft/bin/md5s
- Size
  
  310B
- MD5
  
  9504444f4f4bc8884357f218c18604c3
- SHA1
  
  b7a72e43e54c41c0454e1717cfe9187df23631f7
- SHA256
  
  3e7fa9b59e718f836281cfce3d5d6389cf1ff1aaa65839d70c32e72a96617511
- SHA512
  
  396b999da957b6f212293596c973dbb899c036a0504b6b9fcf9ba8e4450f3c8edd8bc2dc01d1fca86ff0ee78ab36cb123e9b6a207f92ed898c21347b64b89394
Score

1^/10
behavioral3 behavioral4
- Target
  
  .minecraft/bin/version
- Size
  
  15B
- MD5
  
  7686e84db0816e3b927634df8e6bccb9
- SHA1
  
  5d9a8e588a12a27285708c6c4fe99c171b9d35c9
- SHA256
  
  6f850cab20086e61d4644aa75c01cf1e17201de0b9e4982c1195867b66705d2f
- SHA512
  
  69fbf335b9b262b25a0af3afd2026b7839bba12b1205203d55337619fdea78cb62cfa4d9596a539190be9be6baef51205163fdd605f5371f3291475029fa8066
Score

1^/10
behavioral5 behavioral6
- Target
  
  .minecraft/options.txt
- Size
  
  494B
- MD5
  
  43b204cf9f5086c1d2056332a66076d3
- SHA1
  
  81c123434ad52a5e07a00903081b7c14d9d6d551
- SHA256
  
  e1747cb8c6c03a757417b602766509bd461a5da6befb6ff4725b3fe8a45f97ce
- SHA512
  
  8d20081273e2a0b6abd1e6a63cf0b3946e9ae854e78e4c31a63b0a10a2c0064901e8bb3bfc0a5597f49de3631a0ef18343ab0b054904e7e44816f806619c530f
Score

1^/10
behavioral7 behavioral8
- Target
  
  .minecraft/resources/music/calm1.ogg
- Size
  
  2.4MB
- MD5
  
  3c5b792652b43e9876b7e7b19c0b376b
- SHA1
  
  50a59a4f56e4046701b758ddbb1c1587efa4cadf
- SHA256
  
  e4a8945cceea9765b5541617423404cc48069cab2bce34bb44e76c1413ae26e5
- SHA512
  
  09189f6a40dcb15253d0290b1ad5906134af3300d0a9accea1efd9ac7b23c2ebc0ac5415d02d9afae4762c749dc8adbf97757581e0aec07c552c57b4d1a2436e
- SSDEEP
  
  49152:TR5hdNOndHp00tBoFquscNANpe71EwCRxCpJndHNJk5JBrp4AQBrZvJvqtwiGX:TR5hdNOdHp00LoLCpe71EfxwdH45JBrk
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral10 behavioral9
- Target
  
  .minecraft/resources/music/calm2.ogg
- Size
  
  1.9MB
- MD5
  
  056778e3465b292531ecd952a0cb555d
- SHA1
  
  74da65c99aa578486efa7b69983d3533e14c0d6e
- SHA256
  
  1627b63a2529370b5fc87fe8a6faf16c364d913ec78e748827ae9b57f138ae5b
- SHA512
  
  4d5df518eed11c48cfcb9a02f9538243b1744d2db347536ac0c52c0b5322a8fbd1174a884b6ffa02ca3bc3d1f89d58c4d15d670f5b66bd765d2dc8128e117ca4
- SSDEEP
  
  49152:YC7xS2twwZaXYCBPXIO3Ph803JKVw0PH2:YwIiwWaoCdXIO605KVw0O
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral11 behavioral12
- Target
  
  .minecraft/resources/music/calm3.ogg
- Size
  
  2.1MB
- MD5
  
  ff32c2bfea9a23555713ca1d0739ee06
- SHA1
  
  14ae57a6bce3d4254daa8be2b098c2d99743cc3f
- SHA256
  
  25984ac6655998148d10ab249ef2724f4cf1638aa67dbd0471fde0939d8db368
- SHA512
  
  ff36276de70d5de1c9dc7834515d10e7acc7d0b29ffb62dfbce7657097ebc9c6ae07c6599d28863ba86230d85dfb7c4efe7864ad5d87de1aafa26afed4c2cbf5
- SSDEEP
  
  49152:PocerAt7KkuE9j2nGDLffkHEEj+iZP8ZaXXsxfCSMctZ7EgBiOoNnnVv7lJTQYg:PnGABKkuE9jcOLffkORZSsBMct6+InVw
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral13 behavioral14
- Target
  
  .minecraft/resources/newmusic/hal1.ogg
- Size
  
  1.9MB
- MD5
  
  dc9b5348e613189736447b92b3f991ab
- SHA1
  
  df1ff11b79757432c5c3f279e5ecde7b63ceda64
- SHA256
  
  8ccf58af8af93a6dc97ac0f8c05dedaee0b7ee7e555cf4f75d973c47bea4994d
- SHA512
  
  bb9108ec6ab88a487cec2219a7528e8c51b948f755064a85dd36814fb5f310ad9eadb9a3fb36fa178767d29fdd82a1963ab022363b5dba9f53929d8c32e30058
- SSDEEP
  
  49152:urCCCBpz4gTt8pKph81td9DJGVDQrIhrJA7O/UwF4FnRyNYHIHX+2zX:BCE4y6Sh81t5GZQr0AiMweRnHAX+2b
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral15 behavioral16
- Target
  
  .minecraft/resources/newmusic/hal2.ogg
- Size
  
  1.7MB
- MD5
  
  7b491f17cf6098030e26204b6ecab322
- SHA1
  
  ceaaaa1d57dfdfbb0bd4da5ea39628b42897a687
- SHA256
  
  ef489e0e0f6d2b38c5a7ce77a5aea8a6513872bdd0a1421a5bca94474c6620e9
- SHA512
  
  e6cc3e2b90c61b17924a05928a34aa515895d156b3b17a7c8334228a61c74ee15dab986128b8041eb5f414950ba338a0531bee488b550ef53929719cc7571b65
- SSDEEP
  
  24576:vkJKaPFpy+MbSVsYqBECbrwaNZN9BRpXPJFLEyz093dloDrQ2FZDK9HkJ3IZnZx9:ozx9LqBRXNZN5pXPQyAldSr3D0Hk1EH
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral17 behavioral18
- Target
  
  .minecraft/resources/newmusic/hal3.ogg
- Size
  
  1.8MB
- MD5
  
  6745db3dbf029bab122985e98a2c44b0
- SHA1
  
  dd85fb564e96ee2dbd4754f711ae9deb08a169f9
- SHA256
  
  2642662e7fdd7ecea15c59d8f48e012831317a075b8ac4cd3642cf5415a2fb1e
- SHA512
  
  13d2c1d3bece596f88de1ae06ebcb763d956a53e70b2b34c9754fc7818023e11bf5a34c15cc9e08d5844be9c916cca7d48563baf9275da2cf4343e077d82e036
- SSDEEP
  
  49152:+m/bwhUP88XojnBo32WI3b4Qn+J/J+ULJZqjgnV2Em:+m/UhUPBo1oGTkQ+J/J7L3m
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral19 behavioral20
- Target
  
  .minecraft/resources/newmusic/hal4.ogg
- Size
  
  2.4MB
- MD5
  
  f04c3aa89e0a6fe3e3b7ab89ff871288
- SHA1
  
  5e7d63e75c6e042f452bc5e151276911ef92fed8
- SHA256
  
  7cd5e5908c5c06ece08336742e28921130cf0fb6cffc4968309509b945de236a
- SHA512
  
  f148c42e7224c8098f72a19689c3ea1df5ccd860a409107353abc8f620bfe654f2746f3b47f09ebde5ca00dbf12c2eda7feddd42332d00cfbd3a20bd0d69e67d
- SSDEEP
  
  49152:9USAEq7PnaDotGgBMR/bo40g5Z5RfB5EMbxw8YR3MhXMkcYsWtTuyK:9Af+Do0F10g5Jf/E4xyMtdntiT
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral21 behavioral22
- Target
  
  .minecraft/resources/newmusic/nuance1.ogg
- Size
  
  152KB
- MD5
  
  c56f9d01105e759126dcfe26ff2fa82d
- SHA1
  
  cc1a80b6becfc6d6489c069f053d0a8adc71c339
- SHA256
  
  0ebe569d1356041e77250e8aa325210df4bbe6eb3170b7ee2fe959cebf2071e0
- SHA512
  
  2552e93191085e498c4436c679fc5a99e5aec43c574e7864214bb7485c7917aef806fd39a1aae1e4c986b986b7ddf1d50fe0152643faced1af3c0f469469af0d
- SSDEEP
  
  3072:Mqee6jxL1Gb4UyjHULDA9tyyHFwtLstPqqICe1g:VgxLkb4DULDA9OStPqjF1g
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral23 behavioral24
- Target
  
  .minecraft/resources/newmusic/nuance2.ogg
- Size
  
  213KB
- MD5
  
  7bed95b9e0d3287eb63a4d68e1d72ce4
- SHA1
  
  78152dc42b036e0de7616e6e669ce5a81d17f82a
- SHA256
  
  2133f1bf1d04d0fd3ca22fa29096571294e275d3d304bc1cb3318d3ac903433f
- SHA512
  
  b0aec655102f8e60e5f44a589258288c0ffd998ed39657868ccc65907e3be7aebd3c6d0f96e69269c49d408cb01913e9406896566b9873efb359e6d048398835
- SSDEEP
  
  6144:m/hNaBdg1gKr0Ivot6Pkir6ufjilqE2lRf:m5Navg15r3vot6PkQ6uLilI
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral25 behavioral26
- Target
  
  .minecraft/resources/newmusic/piano1.ogg
- Size
  
  530KB
- MD5
  
  23eb40576faa108751c379f72e555d99
- SHA1
  
  0f374764aafba398f4ba90dba05a53a9e6166138
- SHA256
  
  0bfc170ab3395cbd55307cb38314713c3eed442fe35acb7299d052a11c967387
- SHA512
  
  7be045580ebdc09fc5f1f13481a5568d43068dd63507d660bfd82f4514ab22781a988e7059b30efd63aedf281c17e69dd5b8a090702af827eaf8901e5d1bc080
- SSDEEP
  
  12288:/14STAEM0SSpEaWJPwesGCEdn86t2wRQzHj5:/Qwcweskd8C2wO/5
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral27 behavioral28
- Target
  
  .minecraft/resources/newmusic/piano2.ogg
- Size
  
  805KB
- MD5
  
  013c85f341b9f11f757cb670046e9526
- SHA1
  
  98a918eb2694defd19726436d4b9dca9e7dd6a65
- SHA256
  
  349da439a36b5285e9162c6d300d76d1db9028f4d5048fd5f912af177e2663d1
- SHA512
  
  8de1b8b38e64dbfeb2a2f8dbd50a0f642231fcd325f0d06720ad52d07a375b8e891d325ae892b043b822ab8ae5eaf12620eeba75ae3bbb29e6629949b73a6103
- SSDEEP
  
  24576:fZHy6iovjfgrPu657+6nF4+Oa0hb6f3I/:fZHy2fsu87+6nFxtJ3W
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral29 behavioral30
- Target
  
  .minecraft/resources/newmusic/piano3.ogg
- Size
  
  2.5MB
- MD5
  
  9c6f5ff238d09572a8c17a1618f323ce
- SHA1
  
  9528b6a76e7bac64ca1145cc682e8a8448cc04e5
- SHA256
  
  a47cf88c0fdfe5de1e3f2cd8a1f1b955b474622e1b3b07269783f9755f902b05
- SHA512
  
  d48a57799f26d544e0df874ddadbf4732726d5e8942e6a17ce923df58cd7c759373db1023bfe8bda9346be6b3d389a99634d406f017623e1093daa4bd18c85bc
- SSDEEP
  
  49152:9owEaU23xox8M6BYZWo62vZWN2V/ymCcOhage+bVvJFx6r3uT8TlEmc5G7x2QwCC:75p3xoxtC0JvZWNCymNOhbFx6++lDVlg
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32