General

  • Target

    Gamesense.exe

  • Size

    21.1MB

  • Sample

    240615-mj23waxcmf

  • MD5

    036eea42ca70592d545c4e6a7de9e1bf

  • SHA1

    6fa07594a1890c0ac2a1361837e7341465b8bfb0

  • SHA256

    d5741fce8ac62c05c52b28669bd697a68879315eb4a5adf0dd3e7ee8e7c7cd1e

  • SHA512

    2319efedf5aa961604b03f890570b765cb6b392f1ace93addefb28f14bbcbe929eed399659524c1944e611c19294539953213d79ffbd2e7e7b751da5ece5a405

  • SSDEEP

    393216:V+2rrHV4+04TBzeTeb9Z2RDf90lHN5Ev6CjKnRsa4pDtVHdY8jU+p:V+K5/LtUeT2RD101IRjK+a4pD/d/

Malware Config

Targets

    • Target

      Gamesense.exe

    • Size

      21.1MB

    • MD5

      036eea42ca70592d545c4e6a7de9e1bf

    • SHA1

      6fa07594a1890c0ac2a1361837e7341465b8bfb0

    • SHA256

      d5741fce8ac62c05c52b28669bd697a68879315eb4a5adf0dd3e7ee8e7c7cd1e

    • SHA512

      2319efedf5aa961604b03f890570b765cb6b392f1ace93addefb28f14bbcbe929eed399659524c1944e611c19294539953213d79ffbd2e7e7b751da5ece5a405

    • SSDEEP

      393216:V+2rrHV4+04TBzeTeb9Z2RDf90lHN5Ev6CjKnRsa4pDtVHdY8jU+p:V+K5/LtUeT2RD101IRjK+a4pD/d/

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks