bb76d76af8aeb847aa6ba37f3eed8cd71a5c3824d624e7115ca1ecd56a3d68b7

Sharing

Copy URL

Twitter E-mail

General

Target

Lethal company.zip
Size

916.6MB
Sample

240601-rmtccsee2x
MD5

1b49280980f5be618142af4149489d65
SHA1

51b60aeb1e9357dc33bfae406aa3d2aba14ba7a1
SHA256

bb76d76af8aeb847aa6ba37f3eed8cd71a5c3824d624e7115ca1ecd56a3d68b7
SHA512

085ce6b5b348917e4afb90e0d22f83920cd0324eb62f6391ba83775cbc4b8e139e8811ec6027adc8b427b19d53e52adc326d2d5e7086f732b932600a02dc87f1
SSDEEP

25165824:3m5NiVP5Zlk4m5NkVhkZRCa6QH2YDYabMmHvDJrOcyMMkezOqEwnASi:3sN4PO4sN0kUa6QHUkHLJrOcozOqEwn8

Score

7^/10

pyinstaller

Malware Config

Targets

- Target
  
  Lethal company.zip
- Size
  
  916.6MB
- MD5
  
  1b49280980f5be618142af4149489d65
- SHA1
  
  51b60aeb1e9357dc33bfae406aa3d2aba14ba7a1
- SHA256
  
  bb76d76af8aeb847aa6ba37f3eed8cd71a5c3824d624e7115ca1ecd56a3d68b7
- SHA512
  
  085ce6b5b348917e4afb90e0d22f83920cd0324eb62f6391ba83775cbc4b8e139e8811ec6027adc8b427b19d53e52adc326d2d5e7086f732b932600a02dc87f1
- SSDEEP
  
  25165824:3m5NiVP5Zlk4m5NkVhkZRCa6QH2YDYabMmHvDJrOcyMMkezOqEwnASi:3sN4PO4sN0kUa6QHUkHLJrOcozOqEwn8
Score

1^/10
behavioral1 behavioral2
- Target
  
  Lethal Company/Fix Repair/LethalCompany_Fix_Repair_Steam_Generic.rar
- Size
  
  9.6MB
- MD5
  
  c6974d01ebcc0fab46aba9ac18b18c93
- SHA1
  
  47f6671f56e04aa5b81e525edf8f7a548f3fb01e
- SHA256
  
  8927feb379fc01054122913c6aba17dfda0fc4ae2a2112b069ebcdd5ea7a41f0
- SHA512
  
  ba1074d1c32ac38387f7c2f9a826aafbd4fa8dc89a1ecf0101e88c97d0c06279ed4eee771ab780dfa1bd50f79ebf6bd3c9e577e4e702d4953ceaa6d41d43a538
- SSDEEP
  
  196608:9IvdYuIFKnmJtywc/mTLn83/U9MzF0j2tJzbwJjsuMqFaSwHLYdjtlA:aOuIFFbOCT83/iMzF3JujsuMqFVwrYzS
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral3 behavioral4
- Target
  
  Lethal Company/Lethal Company/BepInEx.zip
- Size
  
  231.6MB
- MD5
  
  cdc80e6ad7cd3ba67976f01b0040ca03
- SHA1
  
  bac09414f9ccf0648b8c439086e674f5c5d4c8b6
- SHA256
  
  767320f55e61ae98403573095c00d65888e34316a34abfd733c50ebafdc809ca
- SHA512
  
  22c953f554da2b1e48934f4a3d6ad8dedc382a740328a0c554b9cfe85ed33546e9632b5fde347d5dee9f56e1e930c0813f9247418a2330124eaa83b637ff31e5
- SSDEEP
  
  6291456:O1Lzkx5Nzy5VjygKpsoKJEqgbhjCmBzIBAmoTksL1047N/FzE9uA:8Lzm5NMygMiVgoZBAmEjRCh
Score

1^/10
behavioral5 behavioral6
- Target
  
  Lethal Company/Lethal Company/BepInEx/cache/chainloader_typeloader.dat
- Size
  
  7KB
- MD5
  
  5044be3081b06dbdc0b9306e3b87dc07
- SHA1
  
  94ab84f113c677edbfe363c68318f2fed55da189
- SHA256
  
  73287f62ad31c516d2ed93ddbd0455421b514f4b74e4b33d62fe88f9a3777014
- SHA512
  
  99b875289edf9304795c85a053406b28a1255cf347ae41d5a9f7c4b8d97b5aac29f23a04e98fa8c91b92568759ebc772cf066e173d2f67cd7fc905f4f8cb8e1a
- SSDEEP
  
  96:WhYf+RK3ZlNlKUxPi4L1MRQQXMnbMup3/mKG6ZIeFQ8SMVmEx6Cn:3fCKJPQUxPlMGPnb5pOK5FhSims6Cn
Score

3^/10
behavioral7 behavioral8
- Target
  
  Lethal Company/Lethal Company/BepInEx/config/BoomboxYT.cfg
- Size
  
  235B
- MD5
  
  f6492d91f87445fcf2cf68b2434f285b
- SHA1
  
  b50530a39bc683c49da8a3e57fd45a7560f7aeaa
- SHA256
  
  c4fc850fdaf4d5122dcfcce2f03aeb0f8ad366b017ab20ceb6c71cbb2f957478
- SHA512
  
  901a536bbf2eeebde6e41ec8b88725a272f85a0a148b82c4944952641925c0f1bf668ae499dfc4b2a303b98b4fd1841fa9ea7364bf72a4d6b1b0b4a45d94a88f
Score

3^/10
behavioral10 behavioral9
- Target
  
  Lethal Company/Lethal Company/BepInEx/config/ControlCompany.ControlCompany.cfg
- Size
  
  2KB
- MD5
  
  3f62af1f29a14505451531b463c2b037
- SHA1
  
  e7995dbfb13bc7d38906f2feea07e23c51bb83ef
- SHA256
  
  6294afb877f9712ceaea4f0060a460e32ad99eb418bd476277f85d4dbe183658
- SHA512
  
  ae0b4860a31418f3da8d55e2de88e8bb4b5070dc273a776ed69a00e61592fc20cdcc52c5a498710bdcc460c108872884865da884fd6a63d6f958fdda8764d655
Score

3^/10
behavioral11 behavioral12
- Target
  
  Lethal Company/Lethal Company/BepInEx/config/FlipMods.ReservedFlashlightSlot.cfg
- Size
  
  1KB
- MD5
  
  bc585efa4947b2506c7967d506c241e9
- SHA1
  
  0c33370d04a579d1f0b131347f242698f1f04a38
- SHA256
  
  bd125f7167caba4317f03328465b3e4216c6c94a44ce32f3585496a05d0356de
- SHA512
  
  9448ebffbe8a1bf0135e4580f7ace32d61a0da645b90e7b4de395e3c427ce7b499b334dbff1704b2f473db89237ca634a5afb6607c1cc496f8ff79d1ea02e327
Score

3^/10
behavioral13 behavioral14
- Target
  
  Lethal Company/Lethal Company/BepInEx/core/0Harmony.dll
- Size
  
  200KB
- MD5
  
  4705aa1c7a9795d2787722bc8c419ae8
- SHA1
  
  aa1552cf0311f27ca02d34df0558a718d16fb660
- SHA256
  
  1a21cc03424fc82c3dd1346905d16494536b9595ae4162228d99fb7c285c1031
- SHA512
  
  2f2bb761d21d7288c2b373958a5eab228797d1a348147f8ff0ea603611c6d79e938a4ccf45f23ffc82500731a68bce8feafcd26a5264d79fd5d7435e6ba69b93
- SSDEEP
  
  3072:VQsxAaNWfZKtIZWTr7MDiIVXQ9PsMIuvq14e3Lvvv9L2yZKDVkNCuwMTfyQV:GBa+UWi2XCH7s3RqyZ5NCuTeQ
Score

1^/10
behavioral15 behavioral16
- Target
  
  Lethal Company/Lethal Company/BepInEx/core/0Harmony20.dll
- Size
  
  109KB
- MD5
  
  b7116e8c024f51fe4bf5e425f0f495e3
- SHA1
  
  f44249b08cb7825e170938a462d8d84128430365
- SHA256
  
  4b2fa06106044896e84d0a739a646333d98a34fa2c61c4d1eefc0bf96f964211
- SHA512
  
  ca702eb764aeacfa8891b9b8565332c11091430946e4ee3a0de92dc804a0b7faefc6164a415ab4fd65b763de702012d64203bc704b34bc9ef9a56114e6f16080
- SSDEEP
  
  3072:Em7Ygs3s0FIIashShCJJwW1dEknAh1SvSE3zZ7:K5s0UsAQJzLEknAhE
Score

1^/10
behavioral17 behavioral18
- Target
  
  Lethal Company/Lethal Company/BepInEx/core/HarmonyXInterop.dll
- Size
  
  23KB
- MD5
  
  c969b761bc13e019523c01be8a04eed1
- SHA1
  
  b986e0add3fdbc92ef9edb9b019d69043bd92cd1
- SHA256
  
  21222a7c25a2ddea5e53e9390a693c9b9858fc824b38f9cfe4a5049648c50b6d
- SHA512
  
  343ae988a183cee5dbd5ae1d89d5b86f9e01433aa134fd567557fe132c1515860c9024ef33704bd8c56e79a2f2f2c3865ac5f1f9ea9418277157ac964e394124
- SSDEEP
  
  384:znZ+u8rdpVwx6ycbCvVOnjhTyO5P2F2KqY3DB/ZU2CamZM2/DVejhUFffC/bUAGp:znfqVBlC8VyePqrU2nSHC/oAG2xj6
Score

1^/10
behavioral19 behavioral20
- Target
  
  Lethal Company/Lethal Company/BepInEx/core/Mono.Cecil.Mdb.dll
- Size
  
  42KB
- MD5
  
  5a8b48fcf5e445095799e2c9149ff932
- SHA1
  
  d4c514fbac7a30ddee7d0f597c3eae23a32ccedc
- SHA256
  
  5896d1898f616701fff18f3b2c71e6b844d2390ef9f41e1c5fccce8cb27c698e
- SHA512
  
  b99b02f296e5c817b8f984317e67c885099a3cc1198ee1808a0033b48ef60d27866719f0986d7f9a1ad547939bf6dc1886e858b9db7ba4375013b96db31957b6
- SSDEEP
  
  768:XgjgMVEdS09ayuzjF/RwmanXdIiO1nqP+7y4CRIJZTMRTIzcRuYhpzt:XgUMn09ay6jF/WmcITIlITMRTtuYnt
Score

1^/10
behavioral21 behavioral22
- Target
  
  Lethal Company/Lethal Company/BepInEx/core/Mono.Cecil.Pdb.dll
- Size
  
  84KB
- MD5
  
  427e0464246b1e364c5a1a898db2ecf4
- SHA1
  
  dc968ab6e3f9202b5550efb04c0e17c1df04d7d7
- SHA256
  
  174db44a067f58561510af746f3caeb032037762c57a31c8d9ee32db25174984
- SHA512
  
  02ef1f9246e6117e6e958f019333720f07ff13feb5778b343e69d6e27e74e8ef1e6f122b486ce12b1e1eed546b17499ce906e8660babf281676bd8c6405f0dd6
- SSDEEP
  
  1536:qguHKU52yKfwZyrw03xFjeylsP+ndKFi94lNSex6SU:qguHKU52rwZyrw03uZ+Um4lZ0SU
Score

1^/10
behavioral23 behavioral24
- Target
  
  Lethal Company/Lethal Company/BepInEx/core/MonoMod.Utils.dll
- Size
  
  183KB
- MD5
  
  96c7b1340105a3b86f3e8d19a844903a
- SHA1
  
  bc258633aab1a2a1839dcc44eed944d865fd6038
- SHA256
  
  9d1495f147ac93c4f81f84538c1a326e8f8a6aefc78d6289d798f3ce1162c5e9
- SHA512
  
  36706eb655c995d81aa731c067912452a566ef5b752effdf212603aa0099e28de56588191acced82fb97aeae33df06f229d8cbed969c92cf9b8d439d04c223de
- SSDEEP
  
  3072:ojh9XBmF8HjDrQlDSKNcTD3dAC49Uock8dey4DAYxRDA8:oXUF8HjDrohO3KCllAAYD
Score

1^/10
behavioral25 behavioral26
- Target
  
  Lethal Company/Lethal Company/BepInEx/patchers/BepInEx.MonoMod.HookGenPatcher/MonoMod.RuntimeDetour.HookGen.dll
- Size
  
  23KB
- MD5
  
  cedeb2d79ce46b05ef9cda878c61c447
- SHA1
  
  294eb246e76fe87d3a4fb87fd86a343605067d25
- SHA256
  
  79b2c4cef86328a482f4edc9a5973895f19d3f59566d4b57b0080bdf1872e802
- SHA512
  
  9abae10a828e6348cdd04029264df82fb07262318a79b0dc19822651afaf17a506a09158c706773feaf28b5b300b3b9f673164b8e018b4b565566bc3f5ddcb11
- SSDEEP
  
  384:aDqsgskJ/x0q6IJB0R3cCVIp/66pcThCsgAOeTs1Hblknp7A9tnncnOMuKriLq1j:aDqsgxJZzJyRcbp//pcmcs5bFtnFMuKB
Score

1^/10
behavioral27 behavioral28
- Target
  
  Lethal Company/Lethal Company/BepInEx/plugins/AlwaysHearWalkie.dll
- Size
  
  11KB
- MD5
  
  7d4de393927424fecf66bf9dc624e6d9
- SHA1
  
  a49ffe907b77c32b7d82d67ab9d8a2fcee648251
- SHA256
  
  ea8558bf10f2d935f6b8eb92120a09afaf9e5d45124f4a0ed735ea4caa155b29
- SHA512
  
  d3bb0d1a7c3a8942a697537cd4ca3a4b8c478e579959835c3f7e4bdbbd5f33457a86ee6a8bfafbc547579ef41c75d7b89de4cbb36a70f3b18e5be79cec6b0f6a
- SSDEEP
  
  192:3IYnxc0X9Zl8+gS1nmIvvNBkG6iEtxOcb5nJsZ3HeWw8g2:Fi0i+gS1nmIvvvmJX6Z
Score

1^/10
behavioral29 behavioral30
- Target
  
  Lethal Company/Lethal Company/BepInEx/plugins/AssetBundles/ui-assets
- Size
  
  102KB
- MD5
  
  817ed82ff5ab04bd29229495f6dbd379
- SHA1
  
  58a7298d97d0260138ff703c5332010fa307481c
- SHA256
  
  cf6b76910f76ecba66d7fe75f980d702ae329ed23b8018612ef0fda58b1a52ce
- SHA512
  
  2ac375077ee27038def6ccb41ccadcfd88888aa7571fab28bcfa5ecf6381c6daf747fcf0a63fd641e6de3f3eefa55c1260434107f72995d51047891f9074f424
- SSDEEP
  
  1536:QqlRLdgHKruzLww9Wtq5vqUDOxebeunCm8sSq1FmfRrVtWOLe4B5dL5rz:vLdgqruIyWtqwJxebeuV8sSqkRxFSY1z
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks computer location settings

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32