9ccb0bc19f24b694a4129cc387279457e57671f8109937550258ffc40173423b | Triage

Submit
Reports

Overview

overview

Static

static

3

GrowtopiaI...2).exe

windows7-x64

6

GrowtopiaI...2).exe

windows10-2004-x64

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

Growtopia.exe

windows7-x64

1

Growtopia.exe

windows10-2004-x64

1

MicrosoftE...up.exe

windows7-x64

6

MicrosoftE...up.exe

windows10-2004-x64

6

SecureEngineSDK64.dll

windows7-x64

1

SecureEngineSDK64.dll

windows10-2004-x64

1

anzu.dll

windows7-x64

1

anzu.dll

windows10-2004-x64

1

sdkencrypt...64.dll

windows7-x64

1

sdkencrypt...64.dll

windows10-2004-x64

1

steam_api64.dll

windows7-x64

1

steam_api64.dll

windows10-2004-x64

1

ubiservices.dll

windows7-x64

1

ubiservices.dll

windows10-2004-x64

1

vc_redist.x64.exe

windows7-x64

7

vc_redist.x64.exe

windows10-2004-x64

7

vc_redist.x86.exe

windows7-x64

7

vc_redist.x86.exe

windows10-2004-x64

7

zlibwapi.dll

windows7-x64

1

zlibwapi.dll

windows10-2004-x64

1

Analysis

max time kernel
121s
max time network
133s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
04-08-2024 17:36

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

GrowtopiaInstaller (2).exe

Resource

win7-20240704-en

defense_evasion discovery persistence privilege_escalation

windows7-x64

18 signatures

150 seconds

Behavioral task

behavioral2

Sample

GrowtopiaInstaller (2).exe

Resource

win10v2004-20240802-en

eternity discovery evasion stealer

windows10-2004-x64

27 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/InstallOptions.dll

Resource

win7-20240708-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/InstallOptions.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/System.dll

Resource

win7-20240704-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral7

Sample

Growtopia.exe

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Growtopia.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

MicrosoftEdgeWebview2Setup.exe

Resource

win7-20240705-en

discovery persistence privilege_escalation

windows7-x64

18 signatures

150 seconds

Behavioral task

behavioral10

Sample

MicrosoftEdgeWebview2Setup.exe

Resource

win10v2004-20240802-en

discovery persistence privilege_escalation

windows10-2004-x64

15 signatures

150 seconds

Behavioral task

behavioral11

Sample

SecureEngineSDK64.dll

Resource

win7-20240705-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

SecureEngineSDK64.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

anzu.dll

Resource

win7-20240704-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

anzu.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

sdkencryptedappticket64.dll

Resource

win7-20240704-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

sdkencryptedappticket64.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

steam_api64.dll

Resource

win7-20240704-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

steam_api64.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

ubiservices.dll

Resource

win7-20240708-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral20

Sample

ubiservices.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

vc_redist.x64.exe

Resource

win7-20240704-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral22

Sample

vc_redist.x64.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral23

Sample

vc_redist.x86.exe

Resource

win7-20240705-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral24

Sample

vc_redist.x86.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral25

Sample

zlibwapi.dll

Resource

win7-20240704-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral26

Sample

zlibwapi.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Growtopia.exe
Size

39.8MB
MD5

eaca97167873094e5561a7a8c270edb0
SHA1

039be5d64c9fed35ba20e3bc049ff7a80d8bd69b
SHA256

ef525f5c3ae61a24e99fa290043e6a41b4bbe73fbec799addf7545538814044d
SHA512

912ea2fbf9e85f4828424d86535f3f86275b86865cd861ce7709321cd29cfd7828f32478e00b5cd938e3131f6f0fc2c7981d7c7fa7e2d90255f289dc91f0e6bb
SSDEEP

786432:yWsP/oCA4HUE6DZOKsBA8S3ldS7sfLGTJr+PBlK905c8Hm9:JsPQe0Ps28cdS7WkJrC+h8G9

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\Growtopia.exe
"C:\Users\Admin\AppData\Local\Temp\Growtopia.exe"
1⤵
PID:3884

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=3840,i,8231329449558834090,4540802069600791165,262144 --variations-seed-version --mojo-platform-channel-handle=1308 /prefetch:8
1⤵
PID:1944

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy