1fa070861f155953e4acb71ce3691a2278e5f7fb04b147bc33553420f114f670

General

Target

incocknigga.rar
Size

43.3MB
Sample

240613-llmkjatalc
MD5

fad482671c42cf3d1a10fe360722e516
SHA1

8a80373e2ff68da605ea0db6d7f990485ba1bb68
SHA256

1fa070861f155953e4acb71ce3691a2278e5f7fb04b147bc33553420f114f670
SHA512

fb5f1dd8eac9ca991de34493a9ff1c2f523bbcd6cd6ee9b137038f2b3f3f7b2cc3b5c211fde72b9c14142498d48ef73bf26e5b2f0f9212370a3248a5917ced0c
SSDEEP

786432:TilR5YHwH4rP54kIqEFo/1xYGKP3WsQ8wmk3iW0AUaf9iK64IOkFzC:Tiz5fw+hqEyH1oXQ81k3d4af9iXVFC

Score

7^/10

execution

Malware Config

Targets

- Target
  
  bin/incognito-luau.dll
- Size
  
  1.3MB
- MD5
  
  157fd035b2a344a94166d7db3756df0e
- SHA1
  
  f221d28c1deb80b4e8d9201226435aefce6b0f75
- SHA256
  
  8716c75aff75941711aff8770836f47eb9a254416089ef3571c6fc9a338b3009
- SHA512
  
  fad0174fbd22f58dd4fcdaad8378c214270b4faeaca64d9cb306f50e9316072a4c417c5723c4123b8bf94a3dba6ef4e3303ec60f4a2cf0c3a54d8ab375ea717d
- SSDEEP
  
  24576:ZqBSLRktEBl6blwTUMD4zB1VU2bFjYWR0pMQUAqLRAovh4bSAXVVRNRfMXZO:ZqBSLRkt8l6blSU//+2bFfvA1SQVVRNk
Score

1^/10
behavioral1
- Target
  
  main.exe
- Size
  
  20.8MB
- MD5
  
  a18229feee8fd2a2d11caf3334962724
- SHA1
  
  4c1a078607d9cb97103bfb3122be3b45bdeff817
- SHA256
  
  b9c4ebecf944e0e9955f86a7581b3b02187ce64e78011035dedab40377ee3001
- SHA512
  
  fc35eb60b4ab3014c680e4fdb2c54eea08ee7480c6c765402985be532d3465bd28317482b0e4f4cd2e69b4691a5a19974e2e8229b1001269fbd189d14b82c37a
- SSDEEP
  
  393216:qdjJmE6NrDREnCE8odCMiqwmtD/BFZTFjRUpLHfKg4NMaTSzmGg37P:6JmE6hDOnCE84CMMmt7XepL/KQajGg37
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral2
- Target
  
  workspace/luarmor_compatibility_test.lua
- Size
  
  8KB
- MD5
  
  1f256596bbcde8ed0506e008e9d02074
- SHA1
  
  4d9ff37f8bcd5fbc3ea6929792565575baf69122
- SHA256
  
  84d347276debd97eda22b5f408b0c50baf48d3be103ce941e74f3af5b6583907
- SHA512
  
  8476d5430f161a0201bdbd1a64cff2f17412e614a558cf80beca5ed3deac394d3b53e9c48964bb64197e38e347d385f125bd1734ab74de0c27fc1e31d4073f02
- SSDEEP
  
  96:O4cGBg1Xs6/v/qLVZtVp4qxwqOqxeaYqqxHqCq3RLNx8x97V0ojS8R/f87URbUer:OHGe9e77Ln1YDKDk97KojS8R/oLWKm
Score

3^/10

execution
behavioral3
- Target
  
  incocknigga/main_2/bin/incognito-luau.dll
- Size
  
  1.3MB
- MD5
  
  157fd035b2a344a94166d7db3756df0e
- SHA1
  
  f221d28c1deb80b4e8d9201226435aefce6b0f75
- SHA256
  
  8716c75aff75941711aff8770836f47eb9a254416089ef3571c6fc9a338b3009
- SHA512
  
  fad0174fbd22f58dd4fcdaad8378c214270b4faeaca64d9cb306f50e9316072a4c417c5723c4123b8bf94a3dba6ef4e3303ec60f4a2cf0c3a54d8ab375ea717d
- SSDEEP
  
  24576:ZqBSLRktEBl6blwTUMD4zB1VU2bFjYWR0pMQUAqLRAovh4bSAXVVRNRfMXZO:ZqBSLRkt8l6blSU//+2bFfvA1SQVVRNk
Score

1^/10
behavioral4
- Target
  
  incocknigga/main_2/main.exe
- Size
  
  20.8MB
- MD5
  
  a18229feee8fd2a2d11caf3334962724
- SHA1
  
  4c1a078607d9cb97103bfb3122be3b45bdeff817
- SHA256
  
  b9c4ebecf944e0e9955f86a7581b3b02187ce64e78011035dedab40377ee3001
- SHA512
  
  fc35eb60b4ab3014c680e4fdb2c54eea08ee7480c6c765402985be532d3465bd28317482b0e4f4cd2e69b4691a5a19974e2e8229b1001269fbd189d14b82c37a
- SSDEEP
  
  393216:qdjJmE6NrDREnCE8odCMiqwmtD/BFZTFjRUpLHfKg4NMaTSzmGg37P:6JmE6hDOnCE84CMMmt7XepL/KQajGg37
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral5
- Target
  
  incocknigga/main_2/workspace/luarmor_compatibility_test.lua
- Size
  
  8KB
- MD5
  
  1f256596bbcde8ed0506e008e9d02074
- SHA1
  
  4d9ff37f8bcd5fbc3ea6929792565575baf69122
- SHA256
  
  84d347276debd97eda22b5f408b0c50baf48d3be103ce941e74f3af5b6583907
- SHA512
  
  8476d5430f161a0201bdbd1a64cff2f17412e614a558cf80beca5ed3deac394d3b53e9c48964bb64197e38e347d385f125bd1734ab74de0c27fc1e31d4073f02
- SSDEEP
  
  96:O4cGBg1Xs6/v/qLVZtVp4qxwqOqxeaYqqxHqCq3RLNx8x97V0ojS8R/f87URbUer:OHGe9e77Ln1YDKDk97KojS8R/oLWKm
Score

3^/10

execution
behavioral6