9fb513490dc49eb923a9f28680efda33d22209b60099b27f4996d44707e3d64d | Triage

Sharing

General

Target

BeardLib.zip
Size

300KB
Sample

240802-16rgjssfql
MD5

384fabe387df107af0599276d1094129
SHA1

67ea639c3f32730e06628f448cc23edc046a261c
SHA256

9fb513490dc49eb923a9f28680efda33d22209b60099b27f4996d44707e3d64d
SHA512

fc0b4ee2e29d7df98530fcc2adbdb384d03e5713f780eed516f8588e15f58a5fcec3e938367cb541572e96c87fea43bfc910ab40f077976b7a133f5ee957b6ae
SSDEEP

6144:CH5CJOafaxy5FtJKS5uD1J/BvYqOb0v9BrvfVBFaa//6SU:a56Oayx4FtADr/Brvcpt

Score

3^/10

execution

Malware Config

Targets

- Target
  
  BeardLib/Classes/Elements/ElementAIGroupType.lua
- Size
  
  1KB
- MD5
  
  5a301fcc2d348f5936322b52f62a765e
- SHA1
  
  bbb5bd3637bb213ce6848e7ff038f0c7b683bb9f
- SHA256
  
  a9f154867ac7dd4bfcbf04415094e83f98f18633a9cef696cbef1f2c113b2996
- SHA512
  
  c65f176fed92838515c4fb7dbe2f71acdb7dea30b8c1faed8d00aa275959a14426db719b31464aac01d3c862c75e86f7a81d41770ead42770e1c16d92934d665
Score

3^/10

execution
behavioral1 behavioral2
- Target
  
  BeardLib/Classes/Managers/FileManager.lua
- Size
  
  8KB
- MD5
  
  b4275e9189f0545adcc57491da711281
- SHA1
  
  5acf3567b905bba61f3e1a1529e593ae60d94f1a
- SHA256
  
  ea821553d3c12042a4283a4506cc1f0134c3f79f8e1c1e5f5e519efb035c903a
- SHA512
  
  c2b178577a4d656f516321ae9adc838ee2c173a40fb0c060dccf1b44025fb6506c5edcf8eadb88087ecbbf73c8a85d1f0f7c2e02bdf5af8dab92ee46ee53fdb2
- SSDEEP
  
  192:c7+wX4no5t55dRqRx76c5BZV2Cue+v6urCgin6k:Eon6t7a6g9ujv6cAj
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  BeardLib/Classes/ModuleBase.lua
- Size
  
  4KB
- MD5
  
  7d9c029483f933305cf275918dbc04d8
- SHA1
  
  37cc418839b22f29905a0a1d2f6b7dcda5ea8aff
- SHA256
  
  9f5cc56fe2ee2fa471fd4788be241908432eb38a10b6b436283ea6d3d9af3208
- SHA512
  
  44eb6de29455059fadd026720dd8096fd5a1abdb0745d6cf15039ccd585f1a1245a42a36fcbb9daebf015d0c43d430ca8180f6a0f8f9ef511a6e77f020b270cd
- SSDEEP
  
  96:pcEeR4v9SE7cZGTRsXYgEbsYuBYOvo74G34X4aL8Er7j4az5X:y6v9taIgisYu6Ovo7484X4W8Er7j4o5X
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  BeardLib/Classes/UI/AchievementMenu.lua
- Size
  
  14KB
- MD5
  
  9cadf3fc5eba51a90fe7e39d152e8671
- SHA1
  
  7befbf5be82d44b5f4ecfb33cb8cac73d4898b4c
- SHA256
  
  244ee894afe8047988e769401f4073911ad5fab85b38f889242047a4ade33bcd
- SHA512
  
  190dcb0ba7f6982a21d4eda485e5db01fb5022795d838bd72d4b20b8b29478142bda0308020db5d249d24be445bad4296448d0ccc295d47f34b2e574ac5b5988
- SSDEEP
  
  96:KKD8F/KGxoQkdXCb0eHtvyh8ke7h/0N+67F72nq7+6UC7RrmxGwyDYArpafDkd7f:KEGciL4SHwd7eDUQjbbbs
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  BeardLib/Classes/UI/Dialogs/FileBrowserDialog.lua
- Size
  
  8KB
- MD5
  
  5843b4e87aee42bd8442b17325b83e67
- SHA1
  
  11fbbe2c4c585b4feaf16ebff38f03d95a63a55b
- SHA256
  
  36bae91dac17f45d181407814a2de5ca5498d29df621bd200b34468e62cbc346
- SHA512
  
  a27c20927d1f56d7c6ed01fcdcafcf27b3e8d143842e800c4fd59b32c2b59426bb6fef2c4f7c2465eae621197d6ecd52407cfa490a82f654be2cc3753b7c4b06
- SSDEEP
  
  192:abgdB9PezFULDMsrJAryywUeDfmhABdehFSotMlX:37LDMsrJAry/UeqOX
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  BeardLib/Classes/UI/Dialogs/ListDialog.lua
- Size
  
  6KB
- MD5
  
  aa6af5898b15c3eb7acffb1af3f5a38b
- SHA1
  
  316253368e31ee15d3e107051ce9ea13d9ef4884
- SHA256
  
  175ab6acb248e457d7ec937f9457acea238b37f058cf4753586b46e294626ceb
- SHA512
  
  354ef0a16780a374a3ffdfaaa112e15f82e27c5c581ce9a43f1e7d56f6a2e55581e925fb2ac680ef3c9019bb3a59e96d80012703b696201315c783bb763e6170
- SSDEEP
  
  96:FgqOiYcZP8iiB1Y4oEjRSJURQMjEROBcYv6OxDhq7PFjg6aBs3Yax+y3JC:FgJ+7C0OBJhDCFjg6G2+y3JC
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  BeardLib/Classes/UI/Dialogs/MenuDialog.lua
- Size
  
  6KB
- MD5
  
  59e7547c8c45872c8e8a5791a699a739
- SHA1
  
  1917b41dacd947ac20875daee4fdf88ce2b075d4
- SHA256
  
  a57317123ba913e4d975e95e6c85549ea15d4787600d2acc4d267b168c3257f4
- SHA512
  
  fe6dc867d4d1b49990188adfec4a8acd9560e5b52c8d801fef1ebabc2d932635df844bc55231f71f4c8bd01252d0576b8d4d65c7a39d39f0833e4f4b73d7cfd5
- SSDEEP
  
  96:jUi23Riibxltbb4GwbvQ0SbLpY6fzimRi998frUTfPArjuj6tfJ1b:jQbxLcGD0SnpR7k98frEfPArjAiR
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  BeardLib/Classes/UI/Dialogs/SimpleListDialog.lua
- Size
  
  2KB
- MD5
  
  3415c8a964864050e1e7e1b21549cdd5
- SHA1
  
  587fb64bfb138305165f21c81b102a88f1095457
- SHA256
  
  3edf49591c74e2b95ed1af51266227d77237541f6e690c736701c94aa1aaec44
- SHA512
  
  3e5313017e39070ccaac231f82449e9b1dc40eeadeb4b5b767f6c43890e3f641d2f05cc8f52728b0cd5fd5a5ebc922b9168e60f18879ba6d640613b1339c7321
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  BeardLib/Classes/UI/MenuUI/ColorTextBox.lua
- Size
  
  2KB
- MD5
  
  89d5d04256a012c36eb8c9c24b31b94a
- SHA1
  
  18647f42c3b5c1e3347fc1a5ee0c21e94f58b7d6
- SHA256
  
  79eebeb24a1cb84f58d132b5ad4c857a11a491790b29c82e8e69d34aa34163f2
- SHA512
  
  26030079d6969175302aaf477a3cf50110fac56f9184a3e4a643822c9c204d3a2b871517c0eb52bd5b0d88008f0e10f8ec6a2960f457d7951252023d8a3a1c68
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  BeardLib/Classes/UI/MenuUI/Item.lua
- Size
  
  45KB
- MD5
  
  ebc1caccdd4f357a17c3134fc8eaac38
- SHA1
  
  fc09e164f4b1de99fc593e26d912985ee7fce01a
- SHA256
  
  6ebd3914df60f9fb0593f7d6ba7a92ba55c1da8ae9f981d44c2a7d51b05cb88e
- SHA512
  
  6774a2e69317833539559ba2d2991e8ddc5163b61d5494d805596f2b74c9f99faf6eb7081b42396577820077c7234be3366a268f89cb7d10e9aac8086a50af22
- SSDEEP
  
  384:CMtoYbbMSLdKzKTcIsfc7XD6WW21aLk4JnApkcaHU24WQ3:Ltom1D8crD6Ec8lbtWQ3
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  BeardLib/Classes/UI/MenuUI/Toggle.lua
- Size
  
  2KB
- MD5
  
  7d7dcfe275b651ad13157219d60b069c
- SHA1
  
  32f2eb701f75e0606781772c621650c2455ff51c
- SHA256
  
  c3ef88fa8614646a5d6fc15380ab009a7ef1de0aab38b00e8fa1133d9db91dfc
- SHA512
  
  abd4d215681c466a1dee9f28b63133a52cd23dc13de5d510889805c3aeea22234f4b9bff34c06de1d466371ea8a315360fd47c8d835f443800cc2cf01e219bcf
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  BeardLib/Classes/UI/ModsMenu.lua
- Size
  
  22KB
- MD5
  
  34fc39935ccc8cfc57f88346ef509c76
- SHA1
  
  f8bdf34178e4f4b752c6ab2d2406ed590a72b740
- SHA256
  
  f81493a96c71de956e651103238e1d5f372866abe3bbb134e0973fe2f181faef
- SHA512
  
  68b0d5643a2816d6626c5959d81aeaf017f8a50397ab5f1a1c648cc4afb866325de9d7929ae565bbbbf431b07125fecfa6ffe213948e8d90b6b2d2afc08bfc10
- SSDEEP
  
  384:8z3ahfDSXFnNAEi5cwlZZBTfXT7T1n9LY87sssrEUYrcaluxUl1eY3iwyaFZR9g6:KasnNAV5cmZZZHsdQRP
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  BeardLib/Classes/Utils/Sync.lua
- Size
  
  17KB
- MD5
  
  34e9884bd290539563f708f045669542
- SHA1
  
  0e3e8b755734c1cbea78439979c067c043454bab
- SHA256
  
  217f525ccc3df7a32c2b1b00455fd3a6570fad749f73462399e15c58cbc17014
- SHA512
  
  4580b23788fa6906ad5ee1b69b7ccab4c556c126cefa5a3a09bed5b7cd210f51646487262ba0e09975e5fb540ef29441030da9e22934ddcb3ce8efd0a7e56739
- SSDEEP
  
  192:P9sXtcI4YMlXO7Ka18h7/5yWIbiwqY8p2aQTnkwkJXxWYomQTxeo1Hrtv+oQ:yefPXO7BxaBpqpv+h
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  BeardLib/Core.lua
- Size
  
  13KB
- MD5
  
  b58d1e946b53fcd736d39509ce8477d0
- SHA1
  
  9a113ac2f839bfda2fb3b4b171dac9f6757742d9
- SHA256
  
  f4e578f294a5cb542215920975f78de68d8f41b14ded9f3f2f1e79aec95f6a10
- SHA512
  
  2dd05e94bbba7b0f95efa0e26445b3991366ff50650dff3e83b3243f099d78dec7c9314bc66b44a3759ac0848f665d728ef278f704267e22b456b2332f8d00c1
- SSDEEP
  
  192:g2Isg9e3aUfYhcG1mehLjUpF7oqkKfQOoOwQoAm/A/huxseLsI45ZBlKxyA6ZBLy:Hg+pYhhm1pzls/4edTyAf7N7
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  BeardLib/CoreLoading.lua
- Size
  
  1007B
- MD5
  
  ad185e8e665207af7c3c4e6c2cd8e599
- SHA1
  
  a6243ffe874272ab9a2c706dab9a5011e07f2e23
- SHA256
  
  a4b87dfc818ddf999ddd6bb3df97dc0b20d2ec2f367bd9f47102cfb64b033156
- SHA512
  
  187aa9aeb3f139c4369093ef43ae57a380910291232d0e1e3330fe182cad358ea2464adc1bbdbf421e68c47123cfab4b845022d6a4f406181f3ee0f2bd1fc7a4
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  BeardLib/Hooks/Network/NetworkMatchmakingSteam.lua
- Size
  
  6KB
- MD5
  
  989cc4adeb0b3d36757955ba786ba422
- SHA1
  
  5dcbac7c731acf29adda173d3324c97ce0abd74d
- SHA256
  
  8a0eb55653b3765e3f076fbd9e8e23536a93888bd37a9a4c83e9f5c7fea45d4e
- SHA512
  
  41da15dcbcd9d58c4fae1957618bdd4d19e30ca1afad433385d805d0ed5cc6f6efca7ea1090f9cd19d8ab429a4ee9c0f436def02b4efe8d31c9c310957beeef2
- SSDEEP
  
  96:uY9JqAQv5vTv7z1GLjYvGvih4fovl2vwRRWbJ0fnzb6Jq/B0HW1bEyK3hWVv0UXo:uYDq1xLWjYOed28/6JW0GbcAF0PTpQk
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32