f85d3900aad4bbb99fdfc389cd039eb4fc9840889284aba7d7c2cd754300d514

Sharing

Copy URL

Twitter E-mail

General

Target

CreamAPI.zip
Size

2.5MB
Sample

240614-pw69ga1dkf
MD5

afa4f19c381435908eeb5c93b0bd6817
SHA1

1621ed5e8c5cdbc47756cd69c88aa6b0320d1ff7
SHA256

f85d3900aad4bbb99fdfc389cd039eb4fc9840889284aba7d7c2cd754300d514
SHA512

1bd57d767f5f03fd72e236f17922eec5b5bd008e7e22b778f65bff19805da4f4dc16598ea5c09728f56cff977750d4f23bfaf8f3d57c2db61e4696e53feed7f1
SSDEEP

49152:0ApcsC0Wfz2mRm13cpm3C/lz5tHliw4w/uO1vB2HU8Jt+QBsCjX/d:4z2mRm1c0GR5tHl54tOortHXB

Score

4^/10

Malware Config

Targets

- Target
  
  CreamAPI.zip
- Size
  
  2.5MB
- MD5
  
  afa4f19c381435908eeb5c93b0bd6817
- SHA1
  
  1621ed5e8c5cdbc47756cd69c88aa6b0320d1ff7
- SHA256
  
  f85d3900aad4bbb99fdfc389cd039eb4fc9840889284aba7d7c2cd754300d514
- SHA512
  
  1bd57d767f5f03fd72e236f17922eec5b5bd008e7e22b778f65bff19805da4f4dc16598ea5c09728f56cff977750d4f23bfaf8f3d57c2db61e4696e53feed7f1
- SSDEEP
  
  49152:0ApcsC0Wfz2mRm13cpm3C/lz5tHliw4w/uO1vB2HU8Jt+QBsCjX/d:4z2mRm1c0GR5tHl54tOortHXB
Score

1^/10
behavioral1 behavioral2
- Target
  
  CreamAPI/log_build/linux/x64/cream_api.ini
- Size
  
  1KB
- MD5
  
  cc03f9a1827d1c8f2076c602947bc90d
- SHA1
  
  5b4649b95e9a9868f93c594a7e8f45f424eae588
- SHA256
  
  e12d288cb21304ac4c466b9796d3172d0267e6e9e3d8ed209937af9acc5bc94e
- SHA512
  
  b960a5245027fb9ec7a23f7892e153fe54cd60a85a075cb3f095deac299b682fb673a95129ee3545b5fe381755be0cbb4df7e663cd628504e1d2fc236cc5982d
Score

1^/10
behavioral3 behavioral4
- Target
  
  CreamAPI/log_build/linux/x64/libsteam_api.so
- Size
  
  656KB
- MD5
  
  c9e81e18945343b904732eba681fcaf3
- SHA1
  
  1a3a366a7493d02e7490e7d278832cbdeeb63d31
- SHA256
  
  029e73d73a190c8a59c6f445e97fcff6b2da82e3825496fb0126420b37b7172c
- SHA512
  
  e4192762ab9afc2f631403ce81ddcbc1ca301f785cf9b98ed496deed0ee6396003fb107a46d2c79754ca569a468a114eddda99fd61881caefd3fc2773d9b723d
- SSDEEP
  
  12288:AWC2nnhA7qpzFqacSzzMSD5kEq9sQSyJBCMdY:AWC2nnO+pzFqSD5kT9vSyJBCI
Score

1^/10
behavioral5
- Target
  
  CreamAPI/log_build/linux/x86/cream_api.ini
- Size
  
  1KB
- MD5
  
  cc03f9a1827d1c8f2076c602947bc90d
- SHA1
  
  5b4649b95e9a9868f93c594a7e8f45f424eae588
- SHA256
  
  e12d288cb21304ac4c466b9796d3172d0267e6e9e3d8ed209937af9acc5bc94e
- SHA512
  
  b960a5245027fb9ec7a23f7892e153fe54cd60a85a075cb3f095deac299b682fb673a95129ee3545b5fe381755be0cbb4df7e663cd628504e1d2fc236cc5982d
Score

1^/10
behavioral6 behavioral7
- Target
  
  CreamAPI/log_build/linux/x86/libsteam_api.so
- Size
  
  798KB
- MD5
  
  93fa07073586f30f8a7708ce726d12d6
- SHA1
  
  ba067f306f869ca63d746390fc3b777df2ace764
- SHA256
  
  cb44fcf8a196fb18fd4fe78ab8d15a9da8823eb338ef9fca63e9a309d06043e4
- SHA512
  
  abc89c9609b0c3a716be8414ca07331f3b23b661ce0a3fb305e7c577534f20e4d601bbf02635c6222a20f36284ad1df8b26ac20892133302b97fe24e6e1bd4ef
- SSDEEP
  
  24576:QTC2nnSBrTOtSWjR4642w3FHj5cQfdumf8nIyJBCZ2cm/VQih:ynnSBujR4642wx5cQ23BCZ2cm/Gi
Score

1^/10
behavioral8
- Target
  
  CreamAPI/log_build/macos/cream_api.ini
- Size
  
  1KB
- MD5
  
  d3ee562e56d9043bcaca83d7da337a2b
- SHA1
  
  b30c4b539ea792d3c5c49bbf773eb9b68dd7b3fb
- SHA256
  
  12cfb3cbabb8b49a398f80f916b64edbad89aa47441000281f01d90e1c142de8
- SHA512
  
  a06d05d5ee4a340628337bfc0275712d0ff3df1d739257cd4254c1bc4011a5b77ad02b3a447e99e5f00d8a017af7e8106f247f44bfe54834583b9e7fb7660eac
Score

1^/10
behavioral10 behavioral9
- Target
  
  CreamAPI/log_build/macos/libsteam_api.dylib
- Size
  
  1.0MB
- MD5
  
  5fbd763de1b3b8bc0d05e871ea7f5b23
- SHA1
  
  4a9a8355c5b18166c4a932de4f03e8e4eb3b6aca
- SHA256
  
  29413c50bf86cfd055a90f924060bef2c387d8258e4de5d84f01f3d1beb183cc
- SHA512
  
  fffa047754876eea02a368dfe5f7d8b64f1913df1c22e581a50e6c5d496385416ce92ee54e50fec9097946b1cc9b5becbe991fc5b45415557e0a7e67d9dceba4
- SSDEEP
  
  24576:oxuuqyHyJBCcsdISVZbS5OOEgH0/yJBC8sj1eqZbS5G:oxPqywBC5IIS5vhHBC3bS5G
Score

4^/10

evasion
behavioral11
- Target
  
  CreamAPI/log_build/windows/cream_api.ini
- Size
  
  1KB
- MD5
  
  60fa6d807b754e7fc8cf70741639fce1
- SHA1
  
  981a3783a24ddb988ef1e07e06b933c3c6f9aab8
- SHA256
  
  55d26d746e7ff0f1c625cf536128e20227afb97d9aa8ab4cda45c6de9d01cc39
- SHA512
  
  c4dd1b7d19595b239b36999379275261390d35b5b52fb6ba09cea3253b02e0f0f394affe9407e33287d4d3a34dae30a03a4bb326602fe9b3adf8d4aaba5d2973
Score

1^/10
behavioral12 behavioral13
- Target
  
  CreamAPI/log_build/windows/steam_api.dll
- Size
  
  756KB
- MD5
  
  bab060e3fb98bfab60003089eff3714b
- SHA1
  
  cc4da99649d45cc0c4006aa6b45cea82118521c2
- SHA256
  
  8d237dfa23c199ad04f586a9ef2b7221e96fb697daf09987b638663b9a20aa9d
- SHA512
  
  ed73a594e1d48a65e5efabde53fc17bc5078300954362e7fa08d97cd23350a4d37216e5185e7565ba71a450f4cdcfc044a57e9f1c6704808414725077b7066d0
- SSDEEP
  
  12288:6Ejiwk6sIPT5RKquFpFpweznWYNfkBcTPodKMWApWof6dN6eZ5thy8fCzKzC7H:NiwkXFGezWIfkBcPowMWApFf6dN68xyT
Score

1^/10
behavioral14 behavioral15
- Target
  
  CreamAPI/log_build/windows/steam_api64.dll
- Size
  
  822KB
- MD5
  
  218dc783a7e274494517f3a55ffca225
- SHA1
  
  4be095c1dd3508c22d3b06c4a748c65271d0a2de
- SHA256
  
  74265bc073b2a0f834e751d79d67eaba0f7474399453efd1a0b9bc05e3fea7ac
- SHA512
  
  a7b45bb1c5818046e7cc38450db15243cf349110eba7ff9becfbc39dc5cd8e71ce1efbab4c686c2efe27fcc166a84873f477183cb29d9e6f71e9c7b94aeeb568
- SSDEEP
  
  12288:KL6NSvUcvmmq2TebwdfYpqhZOXy5ADFYMIHUbJsKt9qSC46y8fC4H:KL6NSccBq2pngy5OYYJsKt9qzy8fC4H
Score

1^/10
behavioral16 behavioral17
- Target
  
  CreamAPI/nonlog_build/linux/x64/cream_api.ini
- Size
  
  1KB
- MD5
  
  cc03f9a1827d1c8f2076c602947bc90d
- SHA1
  
  5b4649b95e9a9868f93c594a7e8f45f424eae588
- SHA256
  
  e12d288cb21304ac4c466b9796d3172d0267e6e9e3d8ed209937af9acc5bc94e
- SHA512
  
  b960a5245027fb9ec7a23f7892e153fe54cd60a85a075cb3f095deac299b682fb673a95129ee3545b5fe381755be0cbb4df7e663cd628504e1d2fc236cc5982d
Score

1^/10
behavioral18 behavioral19
- Target
  
  CreamAPI/nonlog_build/linux/x64/libsteam_api.so
- Size
  
  608KB
- MD5
  
  46c0fad4bfb5bc157d562290c79f4a27
- SHA1
  
  857c15fa55bdc30074df994e3bc56d7350ad5512
- SHA256
  
  9d342f7906256f4fcc3360ff9173a6e43b0acefdf786db0954a40ed9cad9fec2
- SHA512
  
  b96c3c03e81738f1901629e70ddfd01c708adc4b3132c7d634c7e63680293d5de655036819a10d994ad120b5ad4861d149ea6f4a033671c7f41eabd6500cc57b
- SSDEEP
  
  12288:xHC2nntQmZS16IVlAtjIfRnAWOyJBCajhN:xHC2nnRQ166XnLOyJBCav
Score

1^/10
behavioral20
- Target
  
  CreamAPI/nonlog_build/linux/x86/cream_api.ini
- Size
  
  1KB
- MD5
  
  cc03f9a1827d1c8f2076c602947bc90d
- SHA1
  
  5b4649b95e9a9868f93c594a7e8f45f424eae588
- SHA256
  
  e12d288cb21304ac4c466b9796d3172d0267e6e9e3d8ed209937af9acc5bc94e
- SHA512
  
  b960a5245027fb9ec7a23f7892e153fe54cd60a85a075cb3f095deac299b682fb673a95129ee3545b5fe381755be0cbb4df7e663cd628504e1d2fc236cc5982d
Score

1^/10
behavioral21 behavioral22
- Target
  
  CreamAPI/nonlog_build/linux/x86/libsteam_api.so
- Size
  
  738KB
- MD5
  
  e4dcebe48e09e1cff8b2c5965251e70b
- SHA1
  
  59487a0bc7f38c2c1da51c7ada9080acbeb8e19a
- SHA256
  
  58fd86065f219dd4400825671d977c127c39b398d4ff73e2f46364e876ab0f50
- SHA512
  
  60d01d63f140f6c3d2ea5e788b807c397ddb620f496fa6d2bbf8971c6b9ffda8b7822eebe151560415285ba24992f0927a266a65e0e6cca46b40d6ef832c4eac
- SSDEEP
  
  12288:Y55C2nnbVsph4TJb+75nM7o0omThaHsTm5H5YyJBCINVJvL5y:YPC2nnbCp+TJbE5nM7o0omThaHsTm5HB
Score

1^/10
behavioral23
- Target
  
  CreamAPI/nonlog_build/macos/cream_api.ini
- Size
  
  1KB
- MD5
  
  d3ee562e56d9043bcaca83d7da337a2b
- SHA1
  
  b30c4b539ea792d3c5c49bbf773eb9b68dd7b3fb
- SHA256
  
  12cfb3cbabb8b49a398f80f916b64edbad89aa47441000281f01d90e1c142de8
- SHA512
  
  a06d05d5ee4a340628337bfc0275712d0ff3df1d739257cd4254c1bc4011a5b77ad02b3a447e99e5f00d8a017af7e8106f247f44bfe54834583b9e7fb7660eac
Score

1^/10
behavioral24 behavioral25
- Target
  
  CreamAPI/nonlog_build/macos/libsteam_api.dylib
- Size
  
  966KB
- MD5
  
  1c713ae4d8cdd6c4200d84ed2acb17c6
- SHA1
  
  9c61921bec29ff38544bc33b02c3cf06b3201c7e
- SHA256
  
  ded3acb47469355dbf821c7939eb393d5113de73d77cb781a44942acbe067ec4
- SHA512
  
  d6118210c5deb4aa7b5e1359f1d92c86db04ee8ba3c06b8abfdbca4bdf2021496f514c00adc329391c4d658bdef7ef4fa43d681a7702738c80d69010ebbf4b96
- SSDEEP
  
  24576:RaXQCyJBCts3SfAZbS5GVfMyJBCVsPNfUZbS5K:RaeBCqnS5GRBCu+S5K
Score

1^/10
behavioral26
- Target
  
  CreamAPI/nonlog_build/windows/cream_api.ini
- Size
  
  1KB
- MD5
  
  60fa6d807b754e7fc8cf70741639fce1
- SHA1
  
  981a3783a24ddb988ef1e07e06b933c3c6f9aab8
- SHA256
  
  55d26d746e7ff0f1c625cf536128e20227afb97d9aa8ab4cda45c6de9d01cc39
- SHA512
  
  c4dd1b7d19595b239b36999379275261390d35b5b52fb6ba09cea3253b02e0f0f394affe9407e33287d4d3a34dae30a03a4bb326602fe9b3adf8d4aaba5d2973
Score

1^/10
behavioral27 behavioral28
- Target
  
  CreamAPI/nonlog_build/windows/steam_api.dll
- Size
  
  666KB
- MD5
  
  3dd6f774b64ba9f1c12a0caad801e4cb
- SHA1
  
  b03b9b02942d9a9503017ba2506e96499a2bbc25
- SHA256
  
  2a2d381efb98e63e6ee42fe4e430f1556b70bd5542c0f7dd76b6413660c9b393
- SHA512
  
  881157968bc713d2ec69d8450114e96031e95bcc00b13e55e5e621aff6a0ac6ac55d1d5b0efbdc867d9118a67e0a89ad6a9db82cd320bd744d8e7ebb36a7a59a
- SSDEEP
  
  12288:XEXNTMX74WDONZ+n6hb3XluzLhAy1H2tSi0x7OUPKQJDg26dN6QWNMOxy8fCSvp0:XE9sw+6hbluzLhlhyS5x7hyQJDg26dNV
Score

1^/10
behavioral29 behavioral30
- Target
  
  CreamAPI/nonlog_build/windows/steam_api64.dll
- Size
  
  722KB
- MD5
  
  562f62c0aa6244397b92246c6c5a778f
- SHA1
  
  4e20d2ec7cfa4ac9684732d211c603001e26a072
- SHA256
  
  cfe1ebf89ef800c2c86cbee02395d518b7f3ddc194f9be1a9f093afd218a8202
- SHA512
  
  a55d67b655cad34751b6a961910e99e933057c15146ea37afc8077b329d7e884daf5f81e0f69abc606f3513e9d2bca540282ac87449e40d31fd3cdabff54d7bb
- SSDEEP
  
  12288:eBHW3FmKEg/oSmA8TQqNFI5yXqoIHNKt9qHVHy8fCfVH:eBHWVmcLr5cuHNKt9qH1y8fCNH
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

T1564

Resource Forking

T1564.009

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32