21babac91b607031d6e0d7642918bcdc5b62d1ab409838b62adc63c00ceece88

Sharing

Copy URL

Twitter E-mail

General

Target

Mehlwand.zip
Size

29KB
Sample

240705-bxzn5a1gld
MD5

0e9f6c7c6f2c83535fb10ce7e7551416
SHA1

e8ce9fb87c2fb768aba01b6576d88547c1ca3142
SHA256

21babac91b607031d6e0d7642918bcdc5b62d1ab409838b62adc63c00ceece88
SHA512

c120e263d884e7fb0b90cc2e5a3ebe6a24c14bcdcd9a75483d5f96d6186cb4a33f0a8b22195e756afc35337a809f9b3f706c9aa2977e6924b838266fa17341e2
SSDEEP

768:3WsOok8sWymeKJZT8oRhiH/x/D+82/mGsdJY9v:kVMhiH/x/D+8C39

Score

3^/10

Malware Config

Targets

- Target
  
  Mehlwand.zip
- Size
  
  29KB
- MD5
  
  0e9f6c7c6f2c83535fb10ce7e7551416
- SHA1
  
  e8ce9fb87c2fb768aba01b6576d88547c1ca3142
- SHA256
  
  21babac91b607031d6e0d7642918bcdc5b62d1ab409838b62adc63c00ceece88
- SHA512
  
  c120e263d884e7fb0b90cc2e5a3ebe6a24c14bcdcd9a75483d5f96d6186cb4a33f0a8b22195e756afc35337a809f9b3f706c9aa2977e6924b838266fa17341e2
- SSDEEP
  
  768:3WsOok8sWymeKJZT8oRhiH/x/D+82/mGsdJY9v:kVMhiH/x/D+8C39
Score

1^/10
behavioral1
- Target
  
  -Discord.sk
- Size
  
  2KB
- MD5
  
  8d767452fcded4bcc02b272c3269f786
- SHA1
  
  767d361aee902e475a697b688495f9017738788e
- SHA256
  
  eec67eda021056a2aff4a736ca64d70276e918988f3fbbc844124dca9cce9c0c
- SHA512
  
  1d7f86767bd03fc1bc3be0180da51a6608996d0dcb02c6f1e6f9c21bde1ee46a8a7bd1c61f694d12b49cb8feafa3f69797c7e916b74ef56a2130f21021b4dd85
Score

3^/10
behavioral2
- Target
  
  -Tab.sk
- Size
  
  1KB
- MD5
  
  690f03162d680fb4a23e3eec9dfcb89c
- SHA1
  
  ff4f2fbd91e6d9f0c65f2c3ea19383019d1d5ff7
- SHA256
  
  4c06eb2a7ef2dd14c89cffd9d9fdab2331cf0ff68d8319deb647e06a3dec5171
- SHA512
  
  9f68f0560ea4ef446141980265fa55f7971d352999aab772d4d65555e42aecc5838d33ff5e2ac0ea97e3c9d3f18eff1652a555d73a474847e8a37ce0b06c76e0
Score

3^/10
behavioral3
- Target
  
  AMS.sk
- Size
  
  7KB
- MD5
  
  b171218e08353c1a98030ae49cf0af46
- SHA1
  
  3400fbd5380417890cf42be43578f6323980551e
- SHA256
  
  15d877ebf8825ec574a63aa5f18ecc8dc8f9bba283ce8c9c2e8a617f8101031c
- SHA512
  
  a1e318b4feb85ad5d86f5723580b13f59d9bb883c31596faab3b1eb9ff8cc5db1db902fb10ffb5c50c6be625e6531e5449e357d7481963959ec3fcc60edc9746
- SSDEEP
  
  96:N6ahFubPbWFWp4kQjvkQ0Q4CQbT4OK20WjPrIu5cjmxNPrINqq:AahFubDWljflobT5d0ETIuOWTINqq
Score

3^/10
behavioral4
- Target
  
  API.sk
- Size
  
  14KB
- MD5
  
  c24330b30a02fe31ac94168956e7d78a
- SHA1
  
  89d5b2ad6910c065a5060240331f99a88c8a23f2
- SHA256
  
  e78b79e35fc104d00d8dd78efc62d2d799d4d622bf0ab4b293d9e22bc80d124e
- SHA512
  
  9d43d4941e32b38dbc58f9aa8bff05c157b056d0ece9fc3c2e76d7be5003ffdf58c565acb016aeb0a15c0330ead555fe0252db6f0dd97c3c075c6dc15df5ce29
- SSDEEP
  
  192:2VVfUio/lX150LfQfLfWe8tLMr6fyVwUn1zuv9GxfLf/58E0yYByuZrDcZaWQE/i:278912L4jB5n1zu0Df/58E0yU
Score

3^/10
behavioral5
- Target
  
  Anti.sk
- Size
  
  7KB
- MD5
  
  5df2a93c25c07a36fe50c1fe1c06a06b
- SHA1
  
  8e82de5b95ec8cf7e4e424400eebae63bea4c303
- SHA256
  
  0b99e48c109786f023ae6ecef759e5b2ac4d87af3c7355790583ebb15bd2ae55
- SHA512
  
  a8cfc26be5d6abd9c0a37bd99b3c45950498b4cb322bb521551931c823f954379e6ee1b953cbb1a16f7b9c20ed561ecaaf0367221e5d0a0d6e06be53d44dc565
- SSDEEP
  
  48:NFzF79tWTuJfA/810cGvt4psYiYmQAoshuAdbCiBtPGZnTbA8ohxJxKFCbjuZuOb:RwW4/82cGvQo/VuWDiZnTHM7RfEHNR
Score

3^/10
behavioral6
- Target
  
  AntiCheat.sk
- Size
  
  12KB
- MD5
  
  f7236387a1dabae723613aa135ae0e98
- SHA1
  
  d1a9e9a22dff65f8bd90799e65e16358e8eef9e8
- SHA256
  
  ab5113f3e61ff5c8a5f778fdc80a544789425ef7b5ce653cb4902b970cb6e398
- SHA512
  
  c2e96b577780d12921fe0c09d53f48f63af89bba1ad4551607ab2be301f35805b741846738d7da4a404f75c77d9e0fe9f178d57847cf61c13fead5f8c299cd88
- SSDEEP
  
  192:aeTtaP+CgkpJNEt7YJNEt7DTywP+8gkU7pd0U3X8/6TNWBzx+yKW:dTNjkDGt4GtnT4JkcLzo3n
Score

3^/10
behavioral7
- Target
  
  Ban.sk
- Size
  
  25KB
- MD5
  
  a7c1bac16cd1f7c22c867c1be756a09b
- SHA1
  
  39ff7be9f2ef81187ec96a7f1199cba25f7b9519
- SHA256
  
  146d4034ff583fc5585b54a4ea87bf109a7e03dc9249762b33e2ac22fa16baae
- SHA512
  
  706ef5a76b674e0c5a5ed14f56e28751076a053a62e12fc28c306485cf49e25b4a27f5c5fc9170a83353a13cd515fdcb087484a54daeba024ba66959ca0908d7
- SSDEEP
  
  384:KtIrsUhUCDBGkjInRnqnOnBd/kd/fd/JTo:KtIrbyGMOu29PTo
Score

3^/10
behavioral8
- Target
  
  BitcoinClicker.sk
- Size
  
  8KB
- MD5
  
  9268f0587b80b11211630a49657e20c0
- SHA1
  
  107ba3bf2a23be63137cbbe91c83769cb1b9ffe1
- SHA256
  
  eccb503a0590518397e69f6179528ca16325751f7bfa5fe77d466f854e27bb53
- SHA512
  
  7f097427aed270024020b6d88e7ad82e976e054d87f5f05fbda51600444344687d8b5f28430b4107c44b4d7a2f18220eb4aec582e453fd05a28aff01234b72ac
- SSDEEP
  
  48:8Hj33tWT94h8oWb8JLs8MyV825HVe5oOInQ3QOTleJmbQOlcolVNQAxl1v7IWM0U:AT9w9Omz4VE+5yec5D7dsoklhv
Score

3^/10
behavioral9
- Target
  
  Buy.sk
- Size
  
  3KB
- MD5
  
  8463d657a561b56615a22e1d7197627d
- SHA1
  
  6cbec98c522f80d0546016c3d9f0b41b283dc222
- SHA256
  
  df5dac057f209e6510a07c35b481bcd61e9dc56dc2958b0a5f1b0395823dcffc
- SHA512
  
  5da837c7009711fb1a0986be2be089878df2c50d95a4e35391d125011b0ecd43a3aa600be34e7b35273c0197b4d43fed444467d72c3ef3568379abee677408a5
Score

3^/10
behavioral10
- Target
  
  CustomRecipies.sk
- Size
  
  422B
- MD5
  
  eb4eab17905d05b16134aad38de6a9ac
- SHA1
  
  4e6b48625255bff8578943c9a123000537267c2b
- SHA256
  
  ae320881e008ca294cdd7ce891699ead6d607e5b5f6678a3d99115be8461f3a6
- SHA512
  
  ca99869be2d5769789e27fb9e68c906126234bc8ee885e1576512810bda57f8f44c99a5ad6b668c28fa4cf794b4a9ef4097b176e9614dc0b7ed6c98489d0d363
Score

3^/10
behavioral11
- Target
  
  Enderchest.sk
- Size
  
  960B
- MD5
  
  d4fb5efd1ca1b941992d6e032abf5764
- SHA1
  
  2cd93c9f8d417733fbafd39a37211760e0d6051b
- SHA256
  
  17a86740605dd7a9e460a68977285017ca545dc1da941749135f07ff72962bd5
- SHA512
  
  d581c6bd9843f437ee340faca03d13f9f501ab1d09da494e2a1297b14c206aff10ef61665c546a010c82757005c1f8f102d106852b0d81a2b2b8bc05b342bcab
Score

3^/10
behavioral12
- Target
  
  Event.sk
- Size
  
  8KB
- MD5
  
  40a0f388369e5a6abf46680a56254d90
- SHA1
  
  b57faf040ede301b20006580f334bd83ce6817ba
- SHA256
  
  aaa51a8931b58b4755338ba270c9118767e34ea2e33ff2208da2926ec6c41273
- SHA512
  
  191cc5df7a141522d9ed7a46b0aec6dfa8a97680a023da44b8b2c7d9140751b6c732017ac562e5c545ef4063b6f217aa392f17cc404bb22f728ab7d9260a6646
- SSDEEP
  
  192:wKoteMR1KleMRttAeMR0RsMtXKKzIrb02WzqNYEeG:LRsMtXKKzInv
Score

3^/10
behavioral13
- Target
  
  ItemDB.sk
- Size
  
  736B
- MD5
  
  7644c4af5f780522510887a3784ffd15
- SHA1
  
  994a5983c92e17f243ff5fd3eaef3b5f4b5f7ce4
- SHA256
  
  3cae8bbfb7e0b7ed9ff25fcf0039157da8e626f9600139e0ff690abdde49e33d
- SHA512
  
  82db69e4f360d007ac8838076e07c2f2454756e32c7c7bcf95af282d04131810ad71453e376e571f1bf751a2bab1847ade21b4e1f33fa54258ee4af4ae35ec28
Score

3^/10
behavioral14
- Target
  
  Join.sk
- Size
  
  682B
- MD5
  
  bd3c89b0d713d39c6d4c6d6a026be2d2
- SHA1
  
  ab90ec6997e9bf86493f13691fb1225a6f13a2df
- SHA256
  
  5834927630927161ea668005321cec3554edf954bb36f6eb8bd9fe65e1c37b57
- SHA512
  
  97208e50a4a9fe5944f5d8a3ac413db8b0537d4a321fca7a43d87b9ba04ca246d8b8f3795b5233a772657b1356ff47917b457597154fb29f34ce9f9a571beb00
Score

3^/10
behavioral15
- Target
  
  Lunar.sk
- Size
  
  1KB
- MD5
  
  b25d09061a8652552831c2c17d404b55
- SHA1
  
  dc6979c049c8ebcf5afe772c70c059d4774ee81b
- SHA256
  
  b2c562087e66172322b0d9e5b99e70ad574f7dfc1b0fc63e6fa32fc75ddb89ff
- SHA512
  
  f7f31a407c9e1291d32020a4bd27b91f3678e462c5019744f782f975d4ccd5a7cdb06048c10d7b6daa7915fd16709963589d5e377018c44dd9ec7ecdca1285db
Score

3^/10
behavioral16
- Target
  
  Mine.sk
- Size
  
  10KB
- MD5
  
  67a44926a0c586fe3eed82dacf290295
- SHA1
  
  e532bcdf0d0d494826cb0eccbd085d308c31c6ca
- SHA256
  
  431478bd55434200b101e304d55be0ec1e72ae4d80af80eef289bf073a055f58
- SHA512
  
  55e4faec3ccd1915b6ad5632a64b4346f3f22d2aef199ca0bf585128cbcc9add89cf6e5832dafdde8c497ae74cd0419ff50ffed024de4eda56f7013398b912b4
- SSDEEP
  
  192:AgcQTXwzGP6W5M1Mtt8R+XMusIwGlc0VtzY:DzwzGP6WCGte9IrY
Score

3^/10
behavioral17
- Target
  
  NPC.sk
- Size
  
  2KB
- MD5
  
  c2c93fc1be43819594b5b09f953a4476
- SHA1
  
  eb93627cbf96eb27a3e4bec1f76a51d8b86386ce
- SHA256
  
  4b3cfb0c5510bec8c86e1965b2fdb73324cb1af8643cbad5806cef675a599c8f
- SHA512
  
  2dd58da6014049ddff2d802af80fe18e86e08a17737638d1412689c3dbf1c835e530a78f27170c97467923ff1d394551b10d83c092d03964042275ffea695b31
Score

3^/10
behavioral18
- Target
  
  Perks.sk
- Size
  
  15KB
- MD5
  
  18e721677ce626c57358e061b3b7e650
- SHA1
  
  7fccf6776d7ecbb9f6e844268664377a5d66229d
- SHA256
  
  61e31c709e01ed6ddb46e1cf23490f5c2efbf029190077f9bbe5135c3bc69d2a
- SHA512
  
  b8c3b4206f61855aa77c89a04f1c0420991322db3fbf26d6f002ef365201c7fe10df7a44d340051371a920c711ded258ecdc7d898b9574998eac4437a7c3b62f
- SSDEEP
  
  192:mPQgEehIGFiRvaht6SiuPSI2OhIkHIlhqrht/S2tSIRXIupItD3glhtZSXg1SITP:mPBARC0V3GlfVlr0sRnfL1c2zrR53K+Z
Score

3^/10
behavioral19
- Target
  
  Playtime.sk
- Size
  
  2KB
- MD5
  
  68ee86d47a5a19cf633e6a9b3ee71c71
- SHA1
  
  0c1c5293ba1928f08a6563515a1d1c2f4e89fd34
- SHA256
  
  232f0f6334a5c7b5a893337f629f7ccab14afcf1f4ac0b546b39ef7fd6b60be3
- SHA512
  
  86d6c21e30e237826ef4a48f96bfa22998aca2502fabeeca9a2de195fbdda5fb52a73aa9453ba0670c3317db1e1c90e8744b6351ebfcad6bb4203a5f22b12fd6
Score

3^/10
behavioral20
- Target
  
  Ranginfo.sk
- Size
  
  2KB
- MD5
  
  bdd35fd9aa53e8f7f95a924dc9b484da
- SHA1
  
  d766ba52b400c0d2cd2f2a4296d128d5d5c1d9fe
- SHA256
  
  3f5ac3d73b748bd479f1817af39790ba087850d224ac8c8fbcd9706099aab5be
- SHA512
  
  9e26ac4f7ee22387216b6f9efa441590df99acf3e98ae15422fa920216fffd1571527bc267749a3652ae73de9c4b84203f09b811294bfa372c09a5c32abb9435
Score

3^/10
behavioral21
- Target
  
  Ranking.sk
- Size
  
  9KB
- MD5
  
  08774edaff0042a304f0bcd4f9fa5745
- SHA1
  
  f2f9c82afb33f0d3bd66c04c931b972ecc26260b
- SHA256
  
  69f1a80f6ea32f19b1b9cd386022da8e9c3996a9d7a74be5f241cbe4e4311f31
- SHA512
  
  a7e406ab217e0247e2d506f1a4f6a50323c30beb4754c070e2e69a7f6a4e2419fea86a0007e529cb9be3954a8f6a713876d6ea4cf29ae7b8bc92290604d5e0a3
- SSDEEP
  
  96:vT9w5dYePdYe1mfh5mfgXmfVFmfo8mfX0mfzv:xhsg2VQoJXBzv
Score

3^/10
behavioral22
- Target
  
  Scoreboard.sk
- Size
  
  1KB
- MD5
  
  fb04e25c9f70d20f561d769f8f758ee6
- SHA1
  
  cb5ff16a4be5955c996e2e9caf9e1d2506a20075
- SHA256
  
  d210062a40bcf903ae3aa6e442789c5aaa131ff92abdec173f1dc15babd22f74
- SHA512
  
  cbef0c3446021cfa0a7cd37987c6414427438e5391a1d7082fdbe89a92d3a869fdcec15a88d58bcb567903f9b489b8203eb0b4989df67e873fc98b19b481913d
Score

3^/10
behavioral23
- Target
  
  Secret.sk
- Size
  
  3KB
- MD5
  
  e4a30da096b4dea10340cd3de1b7c2cd
- SHA1
  
  2773945774334977a5aadf5f5fca577bb1138316
- SHA256
  
  608860255651a81d6baa367c1c0d4e968307bd7f8d9d944176f0ffbabc15019c
- SHA512
  
  90c0194d339a11e2ef3f8a033f5d0dc7b6b46b54a215bc40a05dedf384d760a14b63d062b07e3a2a47d534a51442010f0037c82f70b222aeb273a969c7348688
Score

3^/10
behavioral24
- Target
  
  System.sk
- Size
  
  7KB
- MD5
  
  281e0bdb184e03527bdecfc5d5df52da
- SHA1
  
  f6edad712b3a63a99db5c1275d941209e4440530
- SHA256
  
  dcee2b3ec4872c4ea73dba6f26ea819a1b4e46b57526d2c95327506897d83c47
- SHA512
  
  59dbfb663fd0395ff2f8043b2d56214df2b731d1571649854130f7131215adf27673f05b31f213507c783c74f005757cf7f6df1a986b9a6701a082512202b621
- SSDEEP
  
  96:MwZ+4pwF5rJbXMdB9ZUeGBgr4ELgtFpAf1xAXZAvUYU9Uj4U9kjSKocX5sBXfXBm:wNMwBgrcyxU9UEU9k2K/5G5PqntD
Score

3^/10
behavioral25
- Target
  
  _INVFIX BITTE BERALL EINBAUEN_.sk
- Size
  
  850B
- MD5
  
  0aef054c6d2a0d2504ba3fdf1590fd97
- SHA1
  
  889e8ed55de4ec84bdbc5ffe86503aa7f8672dba
- SHA256
  
  f73cb89186edfd53d6f0aee427718781d217252f926ea0932e87363519ee1a89
- SHA512
  
  c91ec6fbd85aa07eebec2a9faaa08b1b322b7e93233e5c884df9ec78d236ead8b6c6b3bcd63a6ba5fa3fb07f1b7a1dba07b601d2714a59f1a6c8b84f656bdd4a
Score

3^/10
behavioral26
- Target
  
  ddos.sk
- Size
  
  1KB
- MD5
  
  8d13f4c4b315109c5b6583bd7ca4f0bf
- SHA1
  
  3b4356d5cdfbe1573aed313ba29bee3420621458
- SHA256
  
  da31047c96625f000ec00293366d0a3d7d995cdb51b31c77099082591a74d5a1
- SHA512
  
  c811aa4a73b6cc47ae5a29490ee06f83e6f8d8ac86cc19fc1cddee80a298122311c0e97f4e0781d81345700696e6cf429873ec34b3a9ab87061fc5c8bb45feb6
Score

3^/10
behavioral27

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27