f75fe37a3ed52d29bbb3bd6f5ffba37a0b9357bbff153dc6df5c5e72b0b98f32 | Triage

Resubmissions

07/06/2024, 17:13

240607-vrtqgacd85 7

07/06/2024, 16:22

240607-tvl95aca32 7

Sharing

General

Target

LayetuGame.zip
Size

79.0MB
Sample

240607-tvl95aca32
MD5

9ec45f7f9fef197f09e55e7d4858ea16
SHA1

aa2ee8b6ced7c63586fa98f61f82b503d1caf73d
SHA256

f75fe37a3ed52d29bbb3bd6f5ffba37a0b9357bbff153dc6df5c5e72b0b98f32
SHA512

c545078eb6cde6e07b252e0c04a3bc9570cb35ce643102f8ef551159606f27f17f17e5473c47678d7e6778c9d29155051b0ddeb19a0d0fa04de2a4f257978123
SSDEEP

1572864:wnwcyiUFNDSxdpriMkoZNwgAMeh6phlCTcPex2UP2J:wnbydGYMkFUCTcPEn0

Score

7^/10

execution

Malware Config

Targets

- Target
  
  LayetuGame.exe
- Size
  
  79.8MB
- MD5
  
  644ba5e819a7673ec9a473e601cfade0
- SHA1
  
  1fb16af0cbcf1847440daf25de047119b65f3c51
- SHA256
  
  409ab8f29e464a8dc29473e3698f5c5a5aeb9e7e00c235814903d31f65a045b2
- SHA512
  
  46f3a59875a9785908f074fe2d8dc513428a6a34e2abfbf8afa03e987f90c7d9cd54cd92b161c1665d5b963927d58ea8e9ffa694e0f42e18589392fe8e0f616e
- SSDEEP
  
  1572864:m6LBYLq5hfYQHaZHBFdNYZvpXuyp3uOtWqw8:Nu+jRHazFCHYAnJ
Score

7^/10

execution
- Loads dropped DLL
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2
- Target
  
  Installer.exe
- Size
  
  152.8MB
- MD5
  
  04381c4cf5aec314ce1d6a1a38590ade
- SHA1
  
  a78a0e9bc8f002d4fc53428e5b2c6ec346fa3dac
- SHA256
  
  6428aeaf90c857ce6c77f39f2c5c2186e7d54a5909657bcf953ffd1b344e501b
- SHA512
  
  2f29d7e76550f1e284cae7acd660b108495c6456e2abb398a49d036ac50399dc734bcff096f79abcc06002b5a01aff508c8239e843aefcdfca3e700a35933aec
- SSDEEP
  
  1572864:CLBZB52nvuZ7wVuMbgR7Sp6kYdEctmhoLsPagBsgkx52HYhwj+vfIBUdoJnP9Dj0:CypCmJctBjj2+Jv
Score

7^/10

execution
- Loads dropped DLL
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4