58e4e05551a8e06da396e985afc28dbb77eebcb6f744d764145ba78713ef5e77

Sharing

Copy URL

Twitter E-mail

General

Target

Pixel Worlds (1).rar
Size

127.4MB
Sample

240711-tft2eswdrb
MD5

5a70986be06c87cd82942328400c93cc
SHA1

39a6060d46d5441ffcdd8f6892490fdcdb6d0595
SHA256

58e4e05551a8e06da396e985afc28dbb77eebcb6f744d764145ba78713ef5e77
SHA512

f2b62c033b812c3b949297b33d3fa733ad3723dd268d12981991fa6dbdf950b3d48082d1953adeff7bc2c747ab78a1b98df9ad0c067beafb0ffba838a851fed5
SSDEEP

3145728:CzzQnW1AQ+zyNxzYQe2x7N6lMnlJjNg2LV3l3/:CfQ3A5Nvnlp5V9

Score

3^/10

execution

Malware Config

Targets

- Target
  
  Pixel Worlds (1).rar
- Size
  
  127.4MB
- MD5
  
  5a70986be06c87cd82942328400c93cc
- SHA1
  
  39a6060d46d5441ffcdd8f6892490fdcdb6d0595
- SHA256
  
  58e4e05551a8e06da396e985afc28dbb77eebcb6f744d764145ba78713ef5e77
- SHA512
  
  f2b62c033b812c3b949297b33d3fa733ad3723dd268d12981991fa6dbdf950b3d48082d1953adeff7bc2c747ab78a1b98df9ad0c067beafb0ffba838a851fed5
- SSDEEP
  
  3145728:CzzQnW1AQ+zyNxzYQe2x7N6lMnlJjNg2LV3l3/:CfQ3A5Nvnlp5V9
Score

3^/10
behavioral1 behavioral2
- Target
  
  PixelWorlds_Data/il2cpp_data/etc/mono/4.0/DefaultWsdlHelpGenerator.aspx
- Size
  
  59KB
- MD5
  
  f7be9f1841ff92f9d4040aed832e0c79
- SHA1
  
  b3e4b508aab3cf201c06892713b43ddb0c43b7ae
- SHA256
  
  751861040b69ea63a3827507b7c8da9c7f549dc181c1c8af4b7ca78cc97d710a
- SHA512
  
  380e97f7c17ee0fdf6177ed65f6e30de662a33a8a727d9f1874e9f26bd573434c3dedd655b47a21b998d32aaa72a0566df37e901fd6c618854039d5e0cbef3f5
- SSDEEP
  
  768:6CEPutHjvpMgMwP9h5Ij7khsp/6JtEZwMXVtkUI3t3CXyEyk3VbNbqDvJ4oT1y:/r6CdsCOZwMX3k5dWyklh+Dvbw
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  PixelWorlds_Data/il2cpp_data/etc/mono/4.5/DefaultWsdlHelpGenerator.aspx
- Size
  
  59KB
- MD5
  
  f7be9f1841ff92f9d4040aed832e0c79
- SHA1
  
  b3e4b508aab3cf201c06892713b43ddb0c43b7ae
- SHA256
  
  751861040b69ea63a3827507b7c8da9c7f549dc181c1c8af4b7ca78cc97d710a
- SHA512
  
  380e97f7c17ee0fdf6177ed65f6e30de662a33a8a727d9f1874e9f26bd573434c3dedd655b47a21b998d32aaa72a0566df37e901fd6c618854039d5e0cbef3f5
- SSDEEP
  
  768:6CEPutHjvpMgMwP9h5Ij7khsp/6JtEZwMXVtkUI3t3CXyEyk3VbNbqDvJ4oT1y:/r6CdsCOZwMX3k5dWyklh+Dvbw
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  UnityCrashHandler64.exe
- Size
  
  1.2MB
- MD5
  
  1b2b5aab8d60fa4e197a7a4b01194487
- SHA1
  
  c8add1a54e05f06e21bce7cd19115b09ad41fbb0
- SHA256
  
  52670ddd26937dedc4f979f9012d02da32e9c350f896a9bcd20379a0d6a219c8
- SHA512
  
  100de82d22e5abc7be989197cec810425877455f4362d6559b9077758f89ab2faa2abc35618f5abbacf546fc8d2daf20733faf3c24d46448c08fbc06a2ff4cd3
- SSDEEP
  
  12288:Ew6X/r3k5JVYe1qIE/s8/YYQZim2UoNoY3hfxf78aLWchV:Ew6X/I3Vt1qjYpZ9oNdj5bhV
Score

1^/10
behavioral7 behavioral8
- Target
  
  UnityPlayer.dll
- Size
  
  27.2MB
- MD5
  
  6df13d6c5a4fd23c047f2af04d29f0a3
- SHA1
  
  b6aba044dceee665f3a5d33cd9e92ed3612f2e8a
- SHA256
  
  8b457114af608690521afb6d3770a27ac54197411efbd184ded833dd38db2686
- SHA512
  
  efe7044001a83f2bb410720c3dcd98ceedb798b53b511ab4eac41255d9d4114f0dc6b2fda9f84d4dad54ccceb6908e7b0a60c137add9b6009d23b787f130b6ea
- SSDEEP
  
  393216:J737MBaMIIyto+GFXG/MFQ+bjdwjh9RYTQPJFqaWRvnPtvxq:JL7/ZCqqNPtvc
Score

1^/10
behavioral10 behavioral9
- Target
  
  baselib.dll
- Size
  
  489KB
- MD5
  
  2329062f7fbe009d718b80d6a1a955f6
- SHA1
  
  b465740bafde38c29502b939aefd6fd5fe48901d
- SHA256
  
  ef0b7fcc0720d8087c33daacd79f8ad8d05eabd0830eaa708580860e4f534f05
- SHA512
  
  e7b0bb557be218c2c09c80c618e9761397da053848871c6de491221257102a6ddc05ba1ed4ba7d104e57a95097b74777d9c28bd2ce9ac6be15bc958f3e7ebbd9
- SSDEEP
  
  6144:jJp/ok+IMufGAIxyn9Mv3wNQd9CuATwOGzuqE4ffO57udYohSore5g87NHMq7:rok4Am3eQd1OAubCOgCo+NHME
Score

1^/10
behavioral11 behavioral12
- Target
  
  dotnet/Microsoft.Bcl.AsyncInterfaces.dll
- Size
  
  15KB
- MD5
  
  8074b0eeb2d4cf9b1a6b26865bf91aa5
- SHA1
  
  2e438aef830795b2d240cf3160a3353bc6cb0232
- SHA256
  
  5705d245072d3eb78400547b32147dbb6e2c8b02ba8bda76729798f5efdeaecb
- SHA512
  
  05f7d9003427e611f011018844fb8180403cd6ca807e4c5a8beeed03e4cd7fd8babd89dec51a14510eef7c266ba4505b731eb065606d066b061751c89a1d772a
- SSDEEP
  
  192:mzuPwZ40ytyqjaWeb/WIWOL8/pCuPHnhWgN7aAWDr/MqFCfvXqnajJ72h/j:7G40ywqjaWeb/Wg/uPHRN7yM9Xl172hb
Score

1^/10
behavioral13 behavioral14
- Target
  
  dotnet/Microsoft.CSharp.dll
- Size
  
  1020KB
- MD5
  
  e4ae12a37c000be48ab17ffc779a2328
- SHA1
  
  0944549a72d13aeaa1fb1ea837bb096f72bc4876
- SHA256
  
  316a247fd993e03f0a4d1e7acb89dc5bc602555b7078bfb60e11ba2e24d960c6
- SHA512
  
  78bce2e512d2751c4cbcda4a6c6d9fbc08c967a134c44062f17bd0cad2a7b1d648b14c384dfa3d6e91ccf57bd072c8936fb3e7fd42b8c77c8eed873594705838
- SSDEEP
  
  24576:IIhfl0yk3tfO992KgvANnG1T+Vu9yH+Lj2K2H4:Fhfl0yWtXvE8T+Vu9yH+X2Y
Score

1^/10
behavioral15 behavioral16
- Target
  
  dotnet/Microsoft.DiaSymReader.Native.amd64.dll
- Size
  
  1.7MB
- MD5
  
  ee5a55bf0d399ef09502d486aa1c6242
- SHA1
  
  2e882ee6cccee6e5c0ee5e13eb40dae98e2b6f07
- SHA256
  
  3aecc22ececf784182883ebd2c2bf60bcdb25cc209dd64c32800b845ee8966e0
- SHA512
  
  dc4a73d3cee381eb4cc524ed2a0b9facb1cadd72768eda0215ea17600ab1f3d84aa1af01f5b22b0cb3574ea5dc9256cdba9e463205116cf31adb579106276cb6
- SSDEEP
  
  49152:i5urR4U/p7Zak9DVobQPx0ktMokJH1+bV2GAT:j/pcLexRMoOMb
Score

1^/10
behavioral17 behavioral18
- Target
  
  dotnet/Microsoft.Extensions.DependencyInjection.Abstractions.dll
- Size
  
  42KB
- MD5
  
  d6cfda4e1c948aeb3e5d57376334375f
- SHA1
  
  cb8c35306afd15358104ecfe70e724ad9c753e6f
- SHA256
  
  9ccd830351aa28bc683d4f8d1cefd9e724161f972d25bfb64eee5bf55c48c5e3
- SHA512
  
  93a7571c4d186243d78641630b8997fdb69d411df307d95c86aed556102369a98b9a13ca5c7ca8d593244cf0b0f039bc37d330b86194b07b2c9f0bcec3c06b2e
- SSDEEP
  
  768:o8+cxuPn//hpz2XCkCkCdvAb4b4qox06OoV0F8l0HCTpw0wo0emDMtj:/+cxuPn/bvvE0Q0HCNfBsDMZ
Score

1^/10
behavioral19 behavioral20
- Target
  
  dotnet/Microsoft.Extensions.DependencyInjection.dll
- Size
  
  79KB
- MD5
  
  5db27bdd3d6a9a225b88b12293382f95
- SHA1
  
  eb7d6d2250bf2509b89166bc22c07423ac9c2d91
- SHA256
  
  2aa8182b5356a8cc5c35fc3641a87e814857d8d9be399ac78f260343754d09e0
- SHA512
  
  4ed559768d1f1a405203f1e2d6a72dddc4c7b485461979a14d22566236e169f7e2652e9b3d85f0205c296bc4d705a30519a5f292aa6eda26137b7f2923660b3d
- SSDEEP
  
  1536:iNLmvi666OjIX0h9zMPvHBWCaRweUG4DynjEZnBaMH:Q66fjLb8vH0CiUG4DyneBaQ
Score

1^/10
behavioral21 behavioral22
- Target
  
  dotnet/Microsoft.Extensions.Logging.Abstractions.dll
- Size
  
  60KB
- MD5
  
  a2544f077d57c4ea44a4694efcbea30b
- SHA1
  
  02ec010722bbd1740782b502df30d4475aebe5f2
- SHA256
  
  d575c9d1543ca726ce14dbdffd103e93ea527cd46bb28316da1f4122dbc55d56
- SHA512
  
  ded82fdc0cbfd644a6368b9776eb9d5e0899c61373599d8c3485a47140850bba8b7b448ce4bf276fdf1d4b2ca24745a17ceabcbea793255e34d625fb3db68b0e
- SSDEEP
  
  768:N+UfRQY8PGNWovMLJYBjtLgnuAAAAAknwd45FnrfMq1/yJuoiYblHJg6GOmDu3MN:N+tY8PIiq51wcFnDMsno7jRma3MN
Score

1^/10
behavioral23 behavioral24
- Target
  
  dotnet/Microsoft.Extensions.Logging.dll
- Size
  
  43KB
- MD5
  
  037fa19d37892f003cb18c3f4f070b66
- SHA1
  
  7bea9201a90f69ff958f5bf64e959d1e4021f252
- SHA256
  
  183650081b551dfad967a7cbf79946a229cb79458b8d04a12db7c44b03bb9ab7
- SHA512
  
  04dd786ae74827dc3e8c417e1da3cd2603618b4a57a8aa861eba2a96b4e1c795ac27b2aca9f9fb886ae4791af1b356e0243e11bc2b5a3158ecea2cbdfb449391
- SSDEEP
  
  384:kX8pDPkAvn3sac7bhN6hym/DEdwe9Kc78uwAiWMTGLWIMM1uGxzHjzg2DfsZqQOG:kX8pDT8XP6hA+wMaLWCzAVLOPneM0I1W
Score

1^/10
behavioral25 behavioral26
- Target
  
  dotnet/Microsoft.Extensions.Options.dll
- Size
  
  57KB
- MD5
  
  950440793a182cc76ffc7f7280e55daf
- SHA1
  
  6ec0c1fe1332912086247080b55b06623c78326e
- SHA256
  
  786112cb2f6646ef1170219a8c0bb813c9f14a6781e67c6266414f55a679565d
- SHA512
  
  132280392e9c60cb764f6f5d9b24c01abd2bdfff4e66ab4ca8dbb7d52150954df02277d49083754df2f2bca82660622c39f75ff80eb4cf9a2bd52dc0292943a1
- SSDEEP
  
  768:sCD3yk2B8+9PwwOxC8wZLq6J4q2r0qafouRVPvW3aMgi:DkB8+94xxBmm6mqaBafouRdiaMN
Score

1^/10
behavioral27 behavioral28
- Target
  
  dotnet/Microsoft.Extensions.Primitives.dll
- Size
  
  39KB
- MD5
  
  a53d11973f75b15bef19c16a35ffb432
- SHA1
  
  376636c20cee083da54d4146479032170ec7231b
- SHA256
  
  8ce9a85927ec7507b11ffe90080e7a811d51304a9e8b1da20c350159ba403902
- SHA512
  
  99d6a73c8bcd4de86e877c0e5c37960f9bcc5bf40ce2f8fd5ed2ec37650c91d123c29bb254fe6e81fc5aa25749eabdbde9a64352d497eddd862ca10c154f43eb
- SSDEEP
  
  768:slx+oQSHqk49NI0OP7NWEfDkkuiEk3LViOM+1zy:WVQSyI0OP7NxfAkuiEkbwOMX
Score

1^/10
behavioral29 behavioral30
- Target
  
  dotnet/Microsoft.VisualBasic.Core.dll
- Size
  
  1.2MB
- MD5
  
  3361666dfa355d77de379e1fe5fa5d2f
- SHA1
  
  fe2ea2792d7ad4e606fa5122a9b5d0f3e521c4e3
- SHA256
  
  5897c9fc711aeb67f0c0cb1dcf205035cd48ea6aa6e8c9a9dfd99874e7ef9eb1
- SHA512
  
  87b337f3b67698c5e03815a5cc3dc0230d268ffeb7a872e3d83d04a77af7e786bf14acfcd32d226656c1e5ae1be4075382891f3f2ed5866dcef38670fe5b060d
- SSDEEP
  
  24576:5ZACvS0b5H7FN0Ja7/HfW8Fg1YlcCimIo+nI:zvSQ5bF82/HfWMeCiq
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32