General
-
Target
MK PUBG Mobile Tool v1.0.7.exe
-
Size
41.3MB
-
Sample
240528-t8qjpscb4v
-
MD5
5ae79f746c94fecc7bfa726392fd84bc
-
SHA1
f6578649d7a5893830cb8b0cb8a65ec8af125b05
-
SHA256
8b8fda7c1529afd4dd2d5e3688f0cc14555a0567af9c713b4501d87f001bfd8b
-
SHA512
e7eca5dd1d0f74e535894a72d07070686d8f4419e55c0a1f495344b231e709a2e6ca8b82f8ee706c62a4f742ab5a37d9225bc1e360e1b365905bcf6b9d96cd0f
-
SSDEEP
786432:3OPc65XA4pi/dG6hDUey3bDVyPVLtCQ/bwdbIrD2oF3zMLdq:+PJxAqi/E1hLpyPlwQ/bwds3zMxq
Malware Config
Targets
-
-
Target
MK PUBG Mobile Tool v1.0.7.exe
-
Size
41.3MB
-
MD5
5ae79f746c94fecc7bfa726392fd84bc
-
SHA1
f6578649d7a5893830cb8b0cb8a65ec8af125b05
-
SHA256
8b8fda7c1529afd4dd2d5e3688f0cc14555a0567af9c713b4501d87f001bfd8b
-
SHA512
e7eca5dd1d0f74e535894a72d07070686d8f4419e55c0a1f495344b231e709a2e6ca8b82f8ee706c62a4f742ab5a37d9225bc1e360e1b365905bcf6b9d96cd0f
-
SSDEEP
786432:3OPc65XA4pi/dG6hDUey3bDVyPVLtCQ/bwdbIrD2oF3zMLdq:+PJxAqi/E1hLpyPlwQ/bwds3zMxq
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-