e5d505c73c5fd049526bf82dc848c5d6f65d6a56f7fcfd7628e293ea4bd16854

Sharing

Copy URL

Twitter E-mail

General

Target

e5d505c73c5fd049526bf82dc848c5d6f65d6a56f7fcfd7628e293ea4bd16854
Size

8.4MB
Sample

240805-zpzk6asaja
MD5

452d9ea05d73e501f19cee15db81c4ab
SHA1

1b459b3afd98e3911d5ed280f816920e0f51a6da
SHA256

e5d505c73c5fd049526bf82dc848c5d6f65d6a56f7fcfd7628e293ea4bd16854
SHA512

b84371e88017643ec1172e077869ba08e38779ba849b7924321c85727a4621b7f89a3bc8e896279b0a04018df3dd54cd5ba74bf92c7d24d32eb5db30d7f10100
SSDEEP

196608:rqQLO0ebrMp6Ol9tVNpXU/Sc4Y1K32JVEuWVPlltQNf+U+:rqQCf6XVLkqUlfWVXtQQ7

Score

3^/10

Malware Config

Targets

- Target
  
  roblox/AMD-ASPFW-main/fw/psp_bl_uapps/sev_uapp/src/sev_scmd.h
- Size
  
  3KB
- MD5
  
  e833f50e4e9237938e2a1b7c4c8f5f6d
- SHA1
  
  5a171dfde19a70d9c8f927d606b7b29914a5b240
- SHA256
  
  d75e6d058ac652c6a7b309269f9e779ada78835658554ea503973f05cf951317
- SHA512
  
  531e835e713787eb4b1c9f882caa6466b49435193d25c046063fd59df048c1ca8b4d07d3372e80fd3ffdf79d26c6e9505a291d9112689f5b2accc09ae866c306
Score

1^/10
behavioral1 behavioral2
- Target
  
  roblox/Nethereum.JsonRpc.Client.dll
- Size
  
  35KB
- MD5
  
  65ed65ff3f87b3f418d4bdd2d05ce25f
- SHA1
  
  04f2312f59e706a422985e26e3f1b922bd52dfc5
- SHA256
  
  afe31f1b16c1d87b133bb3ef0dafb3435fd68a303b21b221ac1c98c40c3ba53d
- SHA512
  
  de451a4611b646d1e5b01a6f0bbbd5f70b4cd453dfa5c5077ac69114429998b93e2b82349c602dbcba4bbf2c4c02c2cc7877c0a592c51a5fc0393426ad3dee35
- SSDEEP
  
  768:UT4brRdyQBo6TaedRkPzxcp7h0zgG76CdEHrhmiCIpYF:4Wdwzxcpd0zN76Jw5II
Score

1^/10
behavioral3 behavioral4
- Target
  
  roblox/Nethereum.JsonRpc.RpcClient.dll
- Size
  
  12KB
- MD5
  
  e964d8af5543d99a88920d370963f309
- SHA1
  
  48c8ad2c71868b1ca1aa470408377abcbdb9217b
- SHA256
  
  2dffbfb5d57710ac4d5cfcf4ebc6b777c1476509f865a4cab76ea0e9970a6c10
- SHA512
  
  bbacbfa74618547151e24cd905c8bf12268e5af2ede02ac6b820387ec5ab6331546aa17381183897a830ab50f7f8e3d03791ec6e51246e4f62773ccd2e49c26d
- SSDEEP
  
  192:jwAMmH3cXwQociKcZTWUonjVMMBg1EbL0YnnCInwVBQj:j3H3cvoBZiU+M/1EnnCInwoj
Score

1^/10
behavioral5 behavioral6
- Target
  
  roblox/Nethereum.Library.dll
- Size
  
  214KB
- MD5
  
  f1daa52fa024d4c7d974b51246bb2d5a
- SHA1
  
  5b9de58076ef3f45e48a1436b96a5ef93da032af
- SHA256
  
  01c43e69015b166aff3b01c810589fa2f2f5aea46082730c93656fb61702c20b
- SHA512
  
  382e66e52554da5d2b35f56d31254c3f027e1f63d76a8797a15e78ebf4f6bbadbda95edd481478a40883cfcceca02af192b9140a32c60895a5109b275514f584
- SSDEEP
  
  3072:2TcvuXmyOhY+p2hiAUOFvZzZx97Vey3ngmPPEPoc0e6jqnGe5eZ1cHStqQYGJOpx:ymFLp2hMOjZnRlc+eFH4ctRPLaZ/Qv
Score

1^/10
behavioral7 behavioral8
- Target
  
  roblox/Nethereum.RPC.dll
- Size
  
  127KB
- MD5
  
  732e818c57e2cb2cc5ca303021188e55
- SHA1
  
  6d4dc2c9ba854d704dac635c42da94225f2ab19a
- SHA256
  
  0dd4b8f9f3753f16544e85f1f37d79a5a192d6958a5f9649867dbefd68854e62
- SHA512
  
  216e38eb0cce778b1cd9e70934f822e11e23001cb93917ef4d8acdbfc48d251831ab314c12f00131af8505e7870282fa82d3a6068a47880dd30236ecc3997c83
- SSDEEP
  
  3072:htRPbjIkvKMK+eFt/+6BCO6yNALWukA26vLWO68Hcoy:dKMK+eFt/rbPACuWYLW58Hh
Score

1^/10
behavioral10 behavioral9
- Target
  
  roblox/aocl-roblox-main/cmake/CompilerLinux.cmake
- Size
  
  6KB
- MD5
  
  420b7ee4c59e339ead007c28624a697b
- SHA1
  
  3157abf0bd3c89568808e85d49ae44bc735a3cac
- SHA256
  
  122bf185654b92de18c2a503ac4417a1ae96f3d8bbb8d7b71f8aa287670b99ef
- SHA512
  
  869ed721ba14905b4a9fbc44fcd5e3bd906591801f4fe0a159d885d39762a0a0428e138adc8c77a3c0ef171d1420d031f62b1a3dce644c33a53046f2ef1660c8
- SSDEEP
  
  96:xcJZLJz+ju3y73YvF+kjMxwDiMmpCKCCdCKamslmO3MmssMmOhM8utCmsLHmORM7:xQbaju323c8SuK3lIhlBRjIb9xeDlm
Score

1^/10
behavioral11 behavioral12
- Target
  
  roblox/aocl-roblox-main/docs/compat/ipp.pdf
- Size
  
  34KB
- MD5
  
  64312c81a1abd0f2557d6a1e7081aeb7
- SHA1
  
  d26fe816501b0e8c8ef77f1a666edd948940bc70
- SHA256
  
  38e1d50f6105cc86158990be57ee511df28c20242319b934337e39e65df9cd7f
- SHA512
  
  b227ac758003da98e0885f181f768349f55f008bf09c8b5acbb858839a29c553a39c5c149d1eaf76578e0ff88ee39aa6847339e8be50a4aa692b18a9e25eaafa
- SSDEEP
  
  768:O1rOg66r9HrvdFzE6pUnIqduKbXduWT1eI4U7dUtY8INobaFVbI:O1vjr9Lvd26qnBdnLU44Yd18soT
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  roblox/aocl-roblox-main/docs/compat/openssl.pdf
- Size
  
  35KB
- MD5
  
  dd27d72b048fd2edb24d5d98b4feef16
- SHA1
  
  9837740085a3120fc070f63d203de049a480a4a8
- SHA256
  
  6c4eaa8fc1f5bf485bedb2010cb61e975d9ba0ee4289c3533e2582f17442ee86
- SHA512
  
  90df1e10d2c352e1ce20d3da1ef8299f850380067050133d24005f3acd193c6ef60666f68b1f29bda881efc7821f4d9dbb896463e2ba490b9436c635b9635ddd
- SSDEEP
  
  768:I1ZnWKf0xLpZGmcJkX09MrH1D4hD2wSsew6HIOtRaZMRX/JHcknozs7xYf:UZTfhmcNSHV4egkaZUBnUf
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  roblox/aocl-roblox-main/docs/styling/doxygen-interactive-toc.js
- Size
  
  3KB
- MD5
  
  0fc5fd65ac3a67c3b1a7374ffdc78b49
- SHA1
  
  e46500cc79d0215b05d54c0af433ab6f10aef4c1
- SHA256
  
  de0f23f4d1aa085f0a133417f8aa28ba78f4d325cc45b083ca2acbab65470d8b
- SHA512
  
  149aed11f5ff54de86f6cb27b3701b81a99b76082d0e9924781bf3a8e4d8715a6ec24dd896a77deaae9c5a72bd3d75df51d97ed6fccf332218379205ebae23e8
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  roblox/aocl-roblox-main/docs/styling/footer.html
- Size
  
  2KB
- MD5
  
  eb0d8c4cc76836c92ec83afcc706d2f3
- SHA1
  
  3cecda5e1ed4eceda0d8dbc23a0454639d726d65
- SHA256
  
  9f715cf0fd981f04e3728af040a6850f2d098c02fff263165527454bc68648a1
- SHA512
  
  1a476a61d7fc3a3020b86fd918ec290d95ec76cf77f533d2f3f625059503d35c42f4d55b4b26e2a415feb64289e83b6dc40420074c38134e8b0b87b1b158aa87
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  roblox/aocl-roblox-main/docs/styling/header.html
- Size
  
  6KB
- MD5
  
  30db13ef1b10d8480963848b88327537
- SHA1
  
  e33b9a8def55cae36456bd3f62f4bf9db5bfaf72
- SHA256
  
  9d8ddfd345e873219800c4661b50ed095844e9d2ce1f9bf1305c82e4e8cdacb9
- SHA512
  
  4ec4844e3cc5d5e84336e71f66d5cf921d336ddd60afc56ebaefd3455ad5d7921d90c520e00b72c6c326373b143f8b6f4b0d5cd2c5156a91ad87271c0ce7c059
- SSDEEP
  
  96:wdJxJzEkQ/3M3VWLJFTlGWJYxqQbp0fSBwNtFAg+/SQLte4P9Xsobv:wzHQx/3M3s2xqQV0fOIFq/LA4VX1L
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  roblox/aocl-roblox-main/docs/templates/default.latex
- Size
  
  13KB
- MD5
  
  a7ba4d696d54b02a750e7f4563c0b0a3
- SHA1
  
  c834d814ba4823d1338e5f41db8778e71238b43e
- SHA256
  
  0f98973e958e8b545e54cf813c0fd05c0d957034fc1dbb83789ab5df98bc16eb
- SHA512
  
  8c8a74fa812fab2875e910e9e62157c7e9e6328be960fd387af5290bc50cf66c30f48bc24b61623abdbef371df668d9eb19585cca7b85c7c119c950044773818
- SSDEEP
  
  192:AdVgvU4yBMHentDCwndoze8hlAMX9fBIEY3e+KQP1IpCVjsn/8eMC8HStVINXYgZ:kVg8foHH9f1Y3e+JSCVjsj8A2Yg8Mn
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  roblox/aocl-roblox-main/examples/cipher/aes-ccm.c
- Size
  
  12KB
- MD5
  
  f8a60d918d45ed84b9a49764e6b5345c
- SHA1
  
  082cd851551a355489961951b2fb7b97fd0e10fb
- SHA256
  
  b423d09117d5018fb62e3db6a2c42a7717432aed703fdc2d5fad40336bd8c9ac
- SHA512
  
  9a62c2429dc0fce4dfb6dbd03863ff9085711755717335c0f6e4de863510ad09922925b23dae0eaf851cc9bda9bb04f607092056d562ba6f0842a3cc6bb1ba16
- SSDEEP
  
  192:NZ34lt3g3SASfDq0Q3ttKZsj3zLBQVCivn+RH4s0vQhkjzZLN30s0fcQ+AKLCNXu:f3kV6Yv8kJYLJ0J
Score

1^/10
behavioral25 behavioral26
- Target
  
  roblox/cloud-esp-main/.github/workflows/EnterDevShell.ps1
- Size
  
  1KB
- MD5
  
  67a6cb6d6f50c8bc8b36439a7d54dd9e
- SHA1
  
  7ba4bf3a512aeafd46717f466f740320599591f4
- SHA256
  
  1fbccf84d41ccd54329f7d23fca96771db3f0b8d286a9cf34d62bc359bdd495a
- SHA512
  
  9010e777b08650622e13edfe95e39943b4329538eea67cf713f4b8d6808b33eed6906ba2082b1b57777412c3e4ec8943beebb9cba8edbb3d8da57b2a5d2d90ce
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  roblox/cloud-esp-main/assets/demo-alive
- Size
  
  768B
- MD5
  
  37c769a6f0b3a3424ab8a1a4d0d68faa
- SHA1
  
  c27f1499cf8d30430c4c24aae02e2a0f5f452fc7
- SHA256
  
  a2490c38a0960bf5273f26a1024d51873478f2d4617c3fd08ce622913ac78fb7
- SHA512
  
  e1e9cfbe5caa2ad626f483faa1fc1c0b6cce82d845e97481180f82f254b93eca948f68629ecff46a72bc78e6a81e8f161e5496c3fc61633471fdd4e9fc6330cc
Score

1^/10
behavioral29 behavioral30 behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

PowerShell

T1059.001

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32