99817292612231b69c5a485714d549628cc635b841a634a58a3bf44cc3a945f8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

funkin-windows-64bit.zip
Size

535.2MB
Sample

240614-gybata1hnr
MD5

4a1159efac2c2c1958aaa3370ce23bba
SHA1

b6cf72ea859a7bac800185ae451dd4f6c31001f7
SHA256

99817292612231b69c5a485714d549628cc635b841a634a58a3bf44cc3a945f8
SHA512

c466e813767db6f44c144022bb96dac8b795438b90670f960737edb92ec036fc07ccd3df74ebdae363f9a52777045894917a84d629d3dec56cbac4ce9dd07014
SSDEEP

12582912:8avFQBO//t3I86hewFG6xrykSm7ix94ctlqrw1J3ukcxxFnC9nmNia:wBWtX6he+xry1x+cGMhELVV

Score

3^/10

execution

Malware Config

Targets

- Target
  
  assets/scripts/characters/nene.hxc
- Size
  
  9KB
- MD5
  
  6901ea4ee8c26da86a283e3437c4da02
- SHA1
  
  b2028a1db504b59fb3e228164006d37a1e273485
- SHA256
  
  c07f5ed34edddea55a4476474c58a061add4763a94a2f5171075f023f1a67fb5
- SHA512
  
  6251435c168665803deaef568fca5bb8cd7a8116162135b6d76169e3bb03f2ede35100053948d7215fa387aded64d0e5b69baa47e86e3361bdda1387b7740df9
- SSDEEP
  
  192:PH51eDfxcL7TswRa4S8TZcSXNQ2MsjDBwIoCPXv124oM6vNPmiDFRIiiarpHIeTF:PH27GvTja4S8ZcS9QeDBwTeXvYM6vNPb
Score

3^/10

execution
behavioral1 behavioral2
- Target
  
  assets/scripts/characters/pico-blazin.hxc
- Size
  
  10KB
- MD5
  
  4597e52a5583f97e323fcb4d83924742
- SHA1
  
  cab62b44fa2bc82bd725795b1458283f3d57b034
- SHA256
  
  8e80a2a9208421c6844229c89596b47c659932bbfd574930f6e17d823ca3b110
- SHA512
  
  15b5d136fab6e58fdbee40f2d77c80c2f6abcc32c8704e487418d4e8c1c5a58dd6ad522bb23bc33db14af817107bfb734b808746e15159db60b78b0dc7c1dd29
- SSDEEP
  
  192:CeJB1JH0hdH/W1rJyz9EFtExY4RxpoJcK2ISEO1eYNZOHHoJdhKXeaLCLWLkLjLq:CeJBEYyz9E7mY4TpoJcK29POnoJdhKOS
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  assets/scripts/characters/pico-playable.hxc
- Size
  
  9KB
- MD5
  
  bbaaf7fefdd6afaa0e35d3329890149d
- SHA1
  
  e952517dd41ab3bc2eac8bd3a86ed0e6cfd81cf8
- SHA256
  
  9fc0ab7eae9ea05db12eb4b03f16bd0a446a0f55773aa7442ab5e51af0fc3967
- SHA512
  
  ffbada4852515e5267100a335741b585e4cde4d50d685621c5a50bf020545a0cddb2ff06fbec3a14cf1893e2995cd029b0b7c4601916b4718149488cb0856c2d
- SSDEEP
  
  192:sZE+6RsLbOwX3sOIzrqx3J0AZ3Hn1knOaUVALt4DbNwpwcp+iZ8uV/eekAGn1:sZE+6Rs/OwX3sNzrqx50AVHn1kOaUVAU
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  assets/scripts/songs/2hot.hxc
- Size
  
  10KB
- MD5
  
  f7cda93dbcebdb57e7017b7284fa9e50
- SHA1
  
  d398e07c9186faf250a7a1952a69e68ab489fd51
- SHA256
  
  5968d3d9d109f0ec72b0d312a035357bbd2f67952c2c0da486e34811bc185ba9
- SHA512
  
  5d8a8f766772120958a5ec3b0f3cb9e9ad60644569fb566373461f1fbda3651dbb583639ceeae3730fe22182e1e3f6b034429077ad1ecf007b2416e8ef0327ca
- SSDEEP
  
  192:aXsVnMonecOPeWv45CUf6d17FwD868GusZiSYIJTp0Wag8hHJD79UBTgZyquRaGO:RnMonecOGWvACUid1ZwD8BGusxYIJTi5
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  assets/scripts/songs/blazin.hxc
- Size
  
  3KB
- MD5
  
  89c4fee026a6b69c7ea6239851ba9cab
- SHA1
  
  52cdfaa68c8a65e82bdc0b72a82eeccdd81eef5e
- SHA256
  
  6911b6a7e0ab54f0b0b538846f0ad027751d3cd21192211e8702a20325acfc48
- SHA512
  
  7286869d32f71aa75ab55d3ff8d2c76e21138e3aa26e643aaff1791abc308a79c7925c8c67e0cc8ae780bc21fee09b99487f781990f083326623560a32cdf785
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  assets/scripts/songs/darnell.hxc
- Size
  
  10KB
- MD5
  
  13bfc8261ed866ab6a6806775532a081
- SHA1
  
  c4440212d4bc496e6c9b7588b3643f2bcb56e178
- SHA256
  
  4f45c9cf380776a4ab9726de098cdfad453beb571be6121c3addaa581fee19b4
- SHA512
  
  1e3f48eaec7a80e066525fedd516232bfa2ae5944e5a60535e1495eb85574f1ff68d9002dbe9bf1c82738b44afa26e4ae8dd8db6f54327cbbcf26e105e23a756
- SSDEEP
  
  192:nf/msnMo49O0c/AT404z8nReyGKrgHM6PPnkPU8pMXfyL2t41SLFggAEBf2PKRUq:/nMo4EW6z8ReyGKrb6PPkM8pMXqLG41S
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  assets/scripts/songs/eggnog.hxc
- Size
  
  4KB
- MD5
  
  8ed60f1e8c8f061da0b3bf6008cb3786
- SHA1
  
  fea341d3dbbbc440ae7d49d4fcdc6f6048c70862
- SHA256
  
  5333b707388263fdb479851185c5a38e87f4d3db3660af69400f7c09aff3e3bf
- SHA512
  
  1726c178fc3d51976bc18153f197d1e75413dae01501e50d5528234d8a3f4568663e4a2f88b21718f0f8d27d123a3ef5a1464ee23441edfdf62d8ef6e613bee5
- SSDEEP
  
  96:qVo0pBMWyb0YXXHD+JQd5ZBox582iOu8N+lj0qq8XfL2MjL22PH7d+iAX:axCWypX3DkKZBoP82iOus+ljvq8XfLbk
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  assets/scripts/songs/roses.hxc
- Size
  
  2KB
- MD5
  
  b0006f94193c6694e2bbe9390ff5d6d1
- SHA1
  
  2f1498fe8fe35749d24e9e77801e247fa31bceb7
- SHA256
  
  b7d715b69b0b37c74d84d28439217e108f8cc6d5947da2fd6967502a5a4a2a15
- SHA512
  
  320bb09e688fbef9ddfb7f1f14e9daf1e07e5fef5861b51cfc0cf4415301b37235f187ec0d5806e2b86cc66b8011167348cc68b47153072870b20d4bd21eb8f9
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  assets/scripts/songs/senpai.hxc
- Size
  
  2KB
- MD5
  
  da40415f6d744159cfdf46d80d6f87d0
- SHA1
  
  8c9f17f2bb2ac8cc0350513137b6cd7cc1619313
- SHA256
  
  3fa7701cacf89561d605fd8833a712b2b4b66660703b78a2ba5ade9556e42204
- SHA512
  
  8f501e0a33e77f17dc1f30dec2ac3167962e69542b9bc60dde2c6699761f7e96373f514ace0e4c8786d4dda34915eb527492e081879eb779ddc0c6e48298224c
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  assets/scripts/songs/stress.hxc
- Size
  
  2KB
- MD5
  
  715e3a523ca16ca3e2bd1f707b21d5dc
- SHA1
  
  eed2dea62238da4fe483313cb6912eaf6d5fcc2c
- SHA256
  
  c885aac3ccd2728d23e7d4b5ce168438b7d3d9e197d88dc9b44a09bc15395bac
- SHA512
  
  31acc3e776bdb8b9a7d943350d12abc2d5deb1d5b313a638d4c1de6365ee577c58484774c9b660ba6d47c90072f70bde4275db7da284fcacdef96eb43bdbaddf
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  assets/scripts/songs/thorns.hxc
- Size
  
  3KB
- MD5
  
  33eab0c1ca81bfb31395225603a46967
- SHA1
  
  3ffd0597bc9b01e3efe696ec0ec1a86f4b2f06a7
- SHA256
  
  26c440c2f8814316d3de91cb1f6cf032dbfa03264739792be29172008fd751b0
- SHA512
  
  cc44b32f691efd744eec1db8ab19eaa5863ea632f044eeec7598da6e0fbe2db58a09d76b7fb7768a2fca248fd80a6b1594978177d95caa25cc01d72835b0a588
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  assets/scripts/stages/limoRide.hxc
- Size
  
  2KB
- MD5
  
  e11120406342b41dd3c9576d9ab8c79e
- SHA1
  
  58fdf45c4c77bcdd850532d183b04a60c9b9eb66
- SHA256
  
  00dae4cc6df4c78e1343aeb31e1326cf66f8a46210a02a62907e9f3064a2653c
- SHA512
  
  b018c055119839d36c209791e60c675a1e55a7ecaa58e112286ee09eb14eeffbf8259d1694823f7aa7bc6290220ca761a46f37a97e7c777175ef18d5615aa53a
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  assets/scripts/stages/phillyBlazin.hxc
- Size
  
  6KB
- MD5
  
  c8f184eb8734fdcc24a786a11518ca4c
- SHA1
  
  9c1e5b5676ad96f46bf6f3693d80b2a89598d7f2
- SHA256
  
  b356aee97eabe372bbaabcf8c66892e81225bdb6d6641d2df6a87fc6c8625f91
- SHA512
  
  0d3d8659e99556c270040b9b6d26c8bb046cf3c9c5453f970be9241635bc17de01cddf45cd57d0a9e4efbe0dbdb178941076bb0192b75dac49fbe4c54304097e
- SSDEEP
  
  192:9w3DajjpchrFuHzvAs8G+97K8hUm+2mcydrFUNTReCxhK/jXivddrFU6ckUAIUxq:9wTajFcVMYs8G+97K8hUm+2mcyh2NoQa
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  assets/scripts/stages/phillyStreets.hxc
- Size
  
  15KB
- MD5
  
  578810c6d389abc36686ebc81868bbb0
- SHA1
  
  c211dd5fbe0eb272a8c77c2c48f5bf419bbe0436
- SHA256
  
  2262903c3098a0ffccd32792edb49cc039c80820a4899423e854348051a1af85
- SHA512
  
  ca17498d48fd9f129b5fd1e08488b4a24d97e670ad91b200c82e5e57444396708b885d6a321ec29829b56cc4733cb5e998ad0a5ea143f6d229a7773b6754367b
- SSDEEP
  
  384:OUurXtRRX6PA8D4fsDcUJDLjrpWDSgjOWlBDSgjORl3t0uye5c944Gam:fuX6I88+RLjSBjdBjhuyFP+
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  assets/scripts/stages/props/ABotVisualizer.hxc
- Size
  
  727B
- MD5
  
  b21e52a26217a195432f65ce8fd23183
- SHA1
  
  a9b2815acd02261c64e883a82f6c9c8170b8400f
- SHA256
  
  6e7f420c42d541177cda45543bb652127726443b44ff98379c919f27209b5d8a
- SHA512
  
  e3661ba5ce3e0969f1a819b4f1abea4531d6078e14c21efdd0e865ab23d1fdd3d11f9bbfa4df05b1c712101b323aff8f3f187cf6e9512f68ae3b32d12f81cc9e
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  assets/scripts/stages/props/CasingSprite.hxc
- Size
  
  1KB
- MD5
  
  10c9dea2de1ffd940e672c4474b2b5aa
- SHA1
  
  7c66d71c10d971185222023cd70cb2b0d3beb4fe
- SHA256
  
  67ef5b95588247f0d97a171fefb751b262146873d7aa261f2a1a9c2806773a06
- SHA512
  
  96b7dd06990d957b162d192b61a930184791285c96863ff132a4e1d172501f9fded7a852c4cc934e16d2d8a730eacc49ab76b733995e81d5725aca2c53a96e87
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32