dc365afe13be5a4b4d36a71ea0de5d06ae25a310abd05b30bc1341765b13cdf7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03-08-2024_znSOIqCUSuM9Fpi.zip
Size

855KB
Sample

240803-f9x4aavcqm
MD5

9f7976bc454421cef5b8d45ea83413ca
SHA1

94f38a6bd648bc6a3b00863169d33fd3803bdc09
SHA256

dc365afe13be5a4b4d36a71ea0de5d06ae25a310abd05b30bc1341765b13cdf7
SHA512

ec20b51c7db5b8696856c8ebdc57b490b56e78467ae6185a93a48e9d4f6a558302ebbf146df313a5537ff50c91b72a2a464b466cdbea871df94107c12d0affc6
SSDEEP

12288:3d7HVAReiR+/xtGFg8vnndpoZdbYyTNUBHLFps08yf5J/hKXtLzyehi8mY3wkAO:35He2tp8vnAZNDTyr3sJyjhmNXAQ

Score

6^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  03-08-2024_znSOIqCUSuM9Fpi.zip
- Size
  
  855KB
- MD5
  
  9f7976bc454421cef5b8d45ea83413ca
- SHA1
  
  94f38a6bd648bc6a3b00863169d33fd3803bdc09
- SHA256
  
  dc365afe13be5a4b4d36a71ea0de5d06ae25a310abd05b30bc1341765b13cdf7
- SHA512
  
  ec20b51c7db5b8696856c8ebdc57b490b56e78467ae6185a93a48e9d4f6a558302ebbf146df313a5537ff50c91b72a2a464b466cdbea871df94107c12d0affc6
- SSDEEP
  
  12288:3d7HVAReiR+/xtGFg8vnndpoZdbYyTNUBHLFps08yf5J/hKXtLzyehi8mY3wkAO:35He2tp8vnAZNDTyr3sJyjhmNXAQ
Score

1^/10
behavioral1 behavioral2
- Target
  
  CS2ESP77CHEATER.FUN/CHEATER.FUN.url
- Size
  
  46B
- MD5
  
  ff08f90a8c84c9a07e3a9f99225852a2
- SHA1
  
  bef8efaac1e01dafd8951f7ceca3adcc2152eab2
- SHA256
  
  016e97e28f1b9dc53eec83bff19b249682dbc695f40840261c1f0f42b08f3c32
- SHA512
  
  475bc83262577b2adc705150555af298fe60f85468d0b210202c43a6b1f7ccf7aed3c7a0aaa154caf12e655035ad94ea17ed00eae05aed948e312d8289c30144
Score

6^/10

discovery evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral3 behavioral4
- Target
  
  CS2ESP77CHEATER.FUN/cs2go.exe
- Size
  
  2.0MB
- MD5
  
  4847c81a02753c1035b3e79a8336898e
- SHA1
  
  a44103fc0b941a2e32df4ae5c4ea647627ffeead
- SHA256
  
  c2d1f2a32a49b9b5432d783c627cb0bfd17fafad4b55a39377e659d032b21d2d
- SHA512
  
  4276affc21b5c40e184685dd17f52270f607e3b425f8899d078f6340cad6c1606d5c2aae5acf69dc9bec53f6e142a17043fbad8f0bf45d35cf0ddd56e9ea130b
- SSDEEP
  
  24576:FP5vSkbLNsz7AmAAwjjxVqzMRoR02jdhhUZtkEpKWi:vTbLNS79qjjx4A+/hUXw
Score

1^/10
behavioral5 behavioral6
- Target
  
  CS2ESP77CHEATER.FUN/offsets.json
- Size
  
  346B
- MD5
  
  dec659b2008345fd3ffafd0f0924ebc0
- SHA1
  
  925e4d8a3dbce5a8e45ad975327928d7e9bd856e
- SHA256
  
  f519366dbdd276b024666d2b1d79d4000d9e63727c51fc134732d6b17432ab32
- SHA512
  
  01d4f004c2028ec95ede925ce60d8b210b49b406ddd0185a011feeb3198bfa447454013f122005794642e6abd89620617605e9a2ca3b2ddc2a0f4a1bf8aade44
Score

3^/10

discovery
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

discoveryevasiontrojan

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8