51e6208785ce4ff72f8b8bd0425df171262ebf3345d8939f81b6aaabd2ef8367 | Triage

Sharing

General

Target

Vintage.Story.v1.19.8.STABLE.rar
Size

439.3MB
Sample

240711-qz7j3s1dmc
MD5

e393e9b122c418e88505717facb718a6
SHA1

aa3178055776161bab73fbc31104009bd3d5885c
SHA256

51e6208785ce4ff72f8b8bd0425df171262ebf3345d8939f81b6aaabd2ef8367
SHA512

66c5d3f2ab8e1aaa1b5b4d6f799c6b5b20fe2bb38d06860793f31671549e79698f15d759de3a0c789070e6789b144fd16b8ae7eb89feec5bdd5c8b9cca041847
SSDEEP

12582912:BF7yrwis5dhcbmwVbXV7lyDzBZG6CaNZuYaVqpm:BF7yrDwqbFF7cBUEPaT

Score

7^/10

Malware Config

Targets

- Target
  
  Vintage.Story.v1.19.8.STABLE/Vintagestory.exe
- Size
  
  247KB
- MD5
  
  33c5d96a4bb5ae0c6e40e293873dadc2
- SHA1
  
  9096c9797c1642914f1066ee57f28426ecb9e41f
- SHA256
  
  6c755792ddaef99fa1c7cd4bafa017920dce253225d901e576a4de4aa5c2c67a
- SHA512
  
  16b7643bdd862ec3ea57f016cc0ea3d9ed01c2b9510ab6d3d6bd67b4c4e4c82171ffe35c835216ca853449985832f76ce432790ce420ebc8aa7db0020de5d319
- SSDEEP
  
  3072:J7LW6Pr46prwG2k5GlI1JWE9QVsxyvJyn4NTZQf1VZlAWhr46UQs59L+tOsgE8if:JXWJ5kICW3Jyn4of1VZCiIz5kIfQ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2