0057026e154e34a25f5a96a486d6abeb62306e730c6eafcb2683a79cbbb9fd07

Resubmissions

25/06/2024, 13:53

240625-q7akbawhjn 6

25/06/2024, 13:48

240625-q4fl6atcmc 7

Sharing

Copy URL

Twitter E-mail

General

Target

Free robux generator (2).zip
Size

362.9MB
Sample

240625-q4fl6atcmc
MD5

3b552373dc17319dbb044ea5cfb60bd3
SHA1

96f2b55ab1dacd2631f1fd3635a760f57280c557
SHA256

0057026e154e34a25f5a96a486d6abeb62306e730c6eafcb2683a79cbbb9fd07
SHA512

6ed86ca7414d8fc48bc486482ef367fe458421be9c603aff7ddaec6625bf0ace1681fd0511b7e1a570f4e66b283ed14b537111ce6f31aca616b2965c723676d2
SSDEEP

24576:pYTC8Nq87/c+dReQfTgihlS0jpGEj1SGnYZq7Mdon3WFUL6pofe3k2X0larIJ+/r:V

Score

7^/10

Malware Config

Targets

- Target
  
  Free robux generator (2).zip
- Size
  
  362.9MB
- MD5
  
  3b552373dc17319dbb044ea5cfb60bd3
- SHA1
  
  96f2b55ab1dacd2631f1fd3635a760f57280c557
- SHA256
  
  0057026e154e34a25f5a96a486d6abeb62306e730c6eafcb2683a79cbbb9fd07
- SHA512
  
  6ed86ca7414d8fc48bc486482ef367fe458421be9c603aff7ddaec6625bf0ace1681fd0511b7e1a570f4e66b283ed14b537111ce6f31aca616b2965c723676d2
- SSDEEP
  
  24576:pYTC8Nq87/c+dReQfTgihlS0jpGEj1SGnYZq7Mdon3WFUL6pofe3k2X0larIJ+/r:V
Score

1^/10
behavioral1 behavioral2
- Target
  
  Free robux generator.zip
- Size
  
  362.9MB
- MD5
  
  a57bd81c6f231fd2699aefcaff913481
- SHA1
  
  a9d66f56b1681dcd3ee6cd5c170d55626cdd3c8c
- SHA256
  
  c526ae968fe0da684b87d95f5ff8c80a1d3b82f61a9933d3f7e66a7e8dfb4dff
- SHA512
  
  4651f68bca5ae2ea58ab8662e4f50890c48ebba4f2f1ca7444e65bfd75aa2d3e7947c4463d256f294830fa475ecbbcd2ed9174c5b8e913f654ea6576197db328
- SSDEEP
  
  24576:6YTC8Nq87/c+dReQfTgihlS0jpGEj1SGnYZq7Mdon3WFUL6pofe3k2X0larIJ+/k:p
Score

1^/10
behavioral3 behavioral4
- Target
  
  Free robux generator/Free robux generator - kopia (10) - kopia - kopia.zip
- Size
  
  407KB
- MD5
  
  ef2317677819e7cb0ffb5aff063ae769
- SHA1
  
  aeaabe742f09dfe2da4de68dbf257ee69306ec87
- SHA256
  
  598ba75811e6638f6bd035c4efadf94f828c2f828c51adadf8a62f13e9616eed
- SHA512
  
  1ec67c556a9a92e0b6c85167269cccf38bb6f99951b26874d6e17505c381ccfbc038473012942ec1d4ff39baad157e614975f04fd242c08f8b77d408de5d7727
- SSDEEP
  
  768:TE/gQ9MZz5g4jUZPYZSlUYafV0TaQkNX4RL3INd:lQ9MZlqlUYayTJIX/
Score

1^/10
behavioral5 behavioral6
- Target
  
  Free robux generator/Free robux generator - kopia (10) - kopia.zip
- Size
  
  407KB
- MD5
  
  ef2317677819e7cb0ffb5aff063ae769
- SHA1
  
  aeaabe742f09dfe2da4de68dbf257ee69306ec87
- SHA256
  
  598ba75811e6638f6bd035c4efadf94f828c2f828c51adadf8a62f13e9616eed
- SHA512
  
  1ec67c556a9a92e0b6c85167269cccf38bb6f99951b26874d6e17505c381ccfbc038473012942ec1d4ff39baad157e614975f04fd242c08f8b77d408de5d7727
- SSDEEP
  
  768:TE/gQ9MZz5g4jUZPYZSlUYafV0TaQkNX4RL3INd:lQ9MZlqlUYayTJIX/
Score

1^/10
behavioral7 behavioral8
- Target
  
  Free robux generator/Free robux generator - kopia (10).zip
- Size
  
  407KB
- MD5
  
  ef2317677819e7cb0ffb5aff063ae769
- SHA1
  
  aeaabe742f09dfe2da4de68dbf257ee69306ec87
- SHA256
  
  598ba75811e6638f6bd035c4efadf94f828c2f828c51adadf8a62f13e9616eed
- SHA512
  
  1ec67c556a9a92e0b6c85167269cccf38bb6f99951b26874d6e17505c381ccfbc038473012942ec1d4ff39baad157e614975f04fd242c08f8b77d408de5d7727
- SSDEEP
  
  768:TE/gQ9MZz5g4jUZPYZSlUYafV0TaQkNX4RL3INd:lQ9MZlqlUYayTJIX/
Score

7^/10

discovery persistence privilege_escalation
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Event Triggered Execution: Component Object Model Hijacking
  Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
  persistence privilege_escalation
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks system information in the registry
  System information is often read in order to detect sandboxing environments.
behavioral10 behavioral9
- Target
  
  Free robux generator/Free robux generator - kopia (100) - kopia - kopia.zip
- Size
  
  407KB
- MD5
  
  ef2317677819e7cb0ffb5aff063ae769
- SHA1
  
  aeaabe742f09dfe2da4de68dbf257ee69306ec87
- SHA256
  
  598ba75811e6638f6bd035c4efadf94f828c2f828c51adadf8a62f13e9616eed
- SHA512
  
  1ec67c556a9a92e0b6c85167269cccf38bb6f99951b26874d6e17505c381ccfbc038473012942ec1d4ff39baad157e614975f04fd242c08f8b77d408de5d7727
- SSDEEP
  
  768:TE/gQ9MZz5g4jUZPYZSlUYafV0TaQkNX4RL3INd:lQ9MZlqlUYayTJIX/
Score

1^/10
behavioral11 behavioral12
- Target
  
  Free robux generator/Free robux generator - kopia (100) - kopia.zip
- Size
  
  407KB
- MD5
  
  ef2317677819e7cb0ffb5aff063ae769
- SHA1
  
  aeaabe742f09dfe2da4de68dbf257ee69306ec87
- SHA256
  
  598ba75811e6638f6bd035c4efadf94f828c2f828c51adadf8a62f13e9616eed
- SHA512
  
  1ec67c556a9a92e0b6c85167269cccf38bb6f99951b26874d6e17505c381ccfbc038473012942ec1d4ff39baad157e614975f04fd242c08f8b77d408de5d7727
- SSDEEP
  
  768:TE/gQ9MZz5g4jUZPYZSlUYafV0TaQkNX4RL3INd:lQ9MZlqlUYayTJIX/
Score

1^/10
behavioral13 behavioral14
- Target
  
  Free robux generator/Free robux generator - kopia (101) - kopia - kopia.zip
- Size
  
  407KB
- MD5
  
  ef2317677819e7cb0ffb5aff063ae769
- SHA1
  
  aeaabe742f09dfe2da4de68dbf257ee69306ec87
- SHA256
  
  598ba75811e6638f6bd035c4efadf94f828c2f828c51adadf8a62f13e9616eed
- SHA512
  
  1ec67c556a9a92e0b6c85167269cccf38bb6f99951b26874d6e17505c381ccfbc038473012942ec1d4ff39baad157e614975f04fd242c08f8b77d408de5d7727
- SSDEEP
  
  768:TE/gQ9MZz5g4jUZPYZSlUYafV0TaQkNX4RL3INd:lQ9MZlqlUYayTJIX/
Score

1^/10
behavioral15 behavioral16
- Target
  
  Free robux generator/Free robux generator - kopia (101) - kopia.zip
- Size
  
  407KB
- MD5
  
  ef2317677819e7cb0ffb5aff063ae769
- SHA1
  
  aeaabe742f09dfe2da4de68dbf257ee69306ec87
- SHA256
  
  598ba75811e6638f6bd035c4efadf94f828c2f828c51adadf8a62f13e9616eed
- SHA512
  
  1ec67c556a9a92e0b6c85167269cccf38bb6f99951b26874d6e17505c381ccfbc038473012942ec1d4ff39baad157e614975f04fd242c08f8b77d408de5d7727
- SSDEEP
  
  768:TE/gQ9MZz5g4jUZPYZSlUYafV0TaQkNX4RL3INd:lQ9MZlqlUYayTJIX/
Score

1^/10
behavioral17 behavioral18
- Target
  
  Free robux generator/Free robux generator - kopia (102) - kopia - kopia.zip
- Size
  
  407KB
- MD5
  
  ef2317677819e7cb0ffb5aff063ae769
- SHA1
  
  aeaabe742f09dfe2da4de68dbf257ee69306ec87
- SHA256
  
  598ba75811e6638f6bd035c4efadf94f828c2f828c51adadf8a62f13e9616eed
- SHA512
  
  1ec67c556a9a92e0b6c85167269cccf38bb6f99951b26874d6e17505c381ccfbc038473012942ec1d4ff39baad157e614975f04fd242c08f8b77d408de5d7727
- SSDEEP
  
  768:TE/gQ9MZz5g4jUZPYZSlUYafV0TaQkNX4RL3INd:lQ9MZlqlUYayTJIX/
Score

1^/10
behavioral19 behavioral20
- Target
  
  Free robux generator/Free robux generator - kopia (102) - kopia.zip
- Size
  
  407KB
- MD5
  
  ef2317677819e7cb0ffb5aff063ae769
- SHA1
  
  aeaabe742f09dfe2da4de68dbf257ee69306ec87
- SHA256
  
  598ba75811e6638f6bd035c4efadf94f828c2f828c51adadf8a62f13e9616eed
- SHA512
  
  1ec67c556a9a92e0b6c85167269cccf38bb6f99951b26874d6e17505c381ccfbc038473012942ec1d4ff39baad157e614975f04fd242c08f8b77d408de5d7727
- SSDEEP
  
  768:TE/gQ9MZz5g4jUZPYZSlUYafV0TaQkNX4RL3INd:lQ9MZlqlUYayTJIX/
Score

1^/10
behavioral21 behavioral22
- Target
  
  Free robux generator/Free robux generator - kopia (103) - kopia - kopia.zip
- Size
  
  407KB
- MD5
  
  ef2317677819e7cb0ffb5aff063ae769
- SHA1
  
  aeaabe742f09dfe2da4de68dbf257ee69306ec87
- SHA256
  
  598ba75811e6638f6bd035c4efadf94f828c2f828c51adadf8a62f13e9616eed
- SHA512
  
  1ec67c556a9a92e0b6c85167269cccf38bb6f99951b26874d6e17505c381ccfbc038473012942ec1d4ff39baad157e614975f04fd242c08f8b77d408de5d7727
- SSDEEP
  
  768:TE/gQ9MZz5g4jUZPYZSlUYafV0TaQkNX4RL3INd:lQ9MZlqlUYayTJIX/
Score

1^/10
behavioral23 behavioral24
- Target
  
  Free robux generator/Free robux generator - kopia (103) - kopia.zip
- Size
  
  407KB
- MD5
  
  ef2317677819e7cb0ffb5aff063ae769
- SHA1
  
  aeaabe742f09dfe2da4de68dbf257ee69306ec87
- SHA256
  
  598ba75811e6638f6bd035c4efadf94f828c2f828c51adadf8a62f13e9616eed
- SHA512
  
  1ec67c556a9a92e0b6c85167269cccf38bb6f99951b26874d6e17505c381ccfbc038473012942ec1d4ff39baad157e614975f04fd242c08f8b77d408de5d7727
- SSDEEP
  
  768:TE/gQ9MZz5g4jUZPYZSlUYafV0TaQkNX4RL3INd:lQ9MZlqlUYayTJIX/
Score

1^/10
behavioral25 behavioral26
- Target
  
  Free robux generator/Free robux generator - kopia (104) - kopia - kopia.zip
- Size
  
  407KB
- MD5
  
  ef2317677819e7cb0ffb5aff063ae769
- SHA1
  
  aeaabe742f09dfe2da4de68dbf257ee69306ec87
- SHA256
  
  598ba75811e6638f6bd035c4efadf94f828c2f828c51adadf8a62f13e9616eed
- SHA512
  
  1ec67c556a9a92e0b6c85167269cccf38bb6f99951b26874d6e17505c381ccfbc038473012942ec1d4ff39baad157e614975f04fd242c08f8b77d408de5d7727
- SSDEEP
  
  768:TE/gQ9MZz5g4jUZPYZSlUYafV0TaQkNX4RL3INd:lQ9MZlqlUYayTJIX/
Score

1^/10
behavioral27 behavioral28
- Target
  
  Free robux generator/Free robux generator - kopia (104) - kopia.zip
- Size
  
  407KB
- MD5
  
  ef2317677819e7cb0ffb5aff063ae769
- SHA1
  
  aeaabe742f09dfe2da4de68dbf257ee69306ec87
- SHA256
  
  598ba75811e6638f6bd035c4efadf94f828c2f828c51adadf8a62f13e9616eed
- SHA512
  
  1ec67c556a9a92e0b6c85167269cccf38bb6f99951b26874d6e17505c381ccfbc038473012942ec1d4ff39baad157e614975f04fd242c08f8b77d408de5d7727
- SSDEEP
  
  768:TE/gQ9MZz5g4jUZPYZSlUYafV0TaQkNX4RL3INd:lQ9MZlqlUYayTJIX/
Score

1^/10
behavioral29 behavioral30
- Target
  
  Free robux generator/Free robux generator - kopia (105) - kopia - kopia.zip
- Size
  
  407KB
- MD5
  
  ef2317677819e7cb0ffb5aff063ae769
- SHA1
  
  aeaabe742f09dfe2da4de68dbf257ee69306ec87
- SHA256
  
  598ba75811e6638f6bd035c4efadf94f828c2f828c51adadf8a62f13e9616eed
- SHA512
  
  1ec67c556a9a92e0b6c85167269cccf38bb6f99951b26874d6e17505c381ccfbc038473012942ec1d4ff39baad157e614975f04fd242c08f8b77d408de5d7727
- SSDEEP
  
  768:TE/gQ9MZz5g4jUZPYZSlUYafV0TaQkNX4RL3INd:lQ9MZlqlUYayTJIX/
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Event Triggered Execution

T1546

Change Default File Association

T1546.001

Component Object Model Hijacking

T1546.015

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Event Triggered Execution

T1546

Change Default File Association

T1546.001

Component Object Model Hijacking

T1546.015

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Checks computer location settings

Event Triggered Execution: Component Object Model Hijacking

Executes dropped EXE

Loads dropped DLL

Modifies system executable filetype association

Adds Run key to start application

Checks installed software on the system

Checks system information in the registry

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32