c3046e52912de9995b52ed1a171289b8d48f16a2de11c960eb289ca069c5347f

Sharing

Copy URL

Twitter E-mail

General

Target

FullZone.rar
Size

37.4MB
Sample

240817-rlfpwazdkb
MD5

bcc6d2e7ba2b94547ede44ba77f0917e
SHA1

aadcbdaa233cf22e656cc484d195d87a660b4a0d
SHA256

c3046e52912de9995b52ed1a171289b8d48f16a2de11c960eb289ca069c5347f
SHA512

06793e3b875b2e1510f47f3297e04a88957685a588874539ce386ddc03877a973ac9465d0844f66de7a3c4c5ad618d4d6712b6dcf7eb34f2a6d9939c1b47adcf
SSDEEP

786432:DM8ZIHePyiNK8SfKSFdrpXbevCoQExiqjONS823HR:DMP+PthSCSFhpXa6ICIB

Score

7^/10

discovery upx

Malware Config

Targets

- Target
  
  FullZone/announce.exe
- Size
  
  40KB
- MD5
  
  b4fcc1c57c10b87427fa1ae3e02b70c6
- SHA1
  
  46f4c41bf2f6aa2e7e9871e733f632b4aa73213b
- SHA256
  
  2a0270ee3766ff09dfcb2aa70316c4076c6c713154784c9b324509d66c019a26
- SHA512
  
  f769a656a69ab6b5ba2313c60949aaaedc33a4934b821102a584d85942d096267cb01abc8b0f1abd898c5b5f2d199559c669df4f430e93a42bb47a92ac4626e9
- SSDEEP
  
  384:VzIa1qY2wCLK5LkyAZAhmjaJ5iXwCI6RUbiBkOTeZpPxyjO9viZAeouqEolmoLJ9:ya1qGZIyiZjaflAkOCpwjWviZKB7JD6
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  FullZone/pawno/include/Double-O-Files_2.inc
- Size
  
  39KB
- MD5
  
  0330040b5bce5471cfd37f8d6482e64b
- SHA1
  
  d1dc5356296eda2d73bdb10e39343c1c12dc32e9
- SHA256
  
  af5156db8491fc3271d087045601a93d41aa3f3804f32bcfb3190444a69d404f
- SHA512
  
  25ab01f249416a6aed04c99a621bedf8bb0fa12b4c85acdd3e19c680b12466961dc1021281d8cef7dece9d13ccecac4b02aefc31fb50839022135910b9793574
- SSDEEP
  
  768:Y56WIU/WSiA3X4fzJn81BkbWJXlvLsUaxXTFMLKO9oaoQ:Y56WIU/WSiA351ibWJXlvLsUaxXWLKO1
Score

1^/10
behavioral3 behavioral4
- Target
  
  FullZone/pawno/include/YSI/internal/y_inttest.inc
- Size
  
  3KB
- MD5
  
  96b38a8f337d1561cdf4da25ce680cc4
- SHA1
  
  29d9fda439bb07514ddc9076c669b6604cce70d0
- SHA256
  
  6a9fe7913c80f74148653ec7ab8d1d007e05ce6f2336d327abde0a2ee00f4f69
- SHA512
  
  a569ceaadefc6a6c793babbc7d91b48db41b45098a75b7e665c8bbed7d864556ad221c7a8648127008ea8d2d308d2b864d17c700cec3192b1d480f269a1c2d5a
Score

1^/10
behavioral5 behavioral6
- Target
  
  FullZone/pawno/include/YSI/internal/y_inttest2.inc
- Size
  
  3KB
- MD5
  
  d87aecb72a4b8c23ff07d1bb49abba2f
- SHA1
  
  58fb67b65e05eaaa981cb559865d506e6f22c853
- SHA256
  
  1b14b391ccf083046bb37678c5d727c2c98d71d73f38b7f225d65600a41161b8
- SHA512
  
  8c0bda5a00c026ec34a875969aeeec6584ce058befaa72e1f55f1f81dcf2e3220a72036121f16a001faf70603638a166a4ae97c67b10584fe891deaf1cfaf180
Score

1^/10
behavioral7 behavioral8
- Target
  
  FullZone/pawno/include/YSI/y_areas.inc
- Size
  
  86KB
- MD5
  
  0a7384d4fa4428aaef127370fcabb543
- SHA1
  
  ae1ee9ad66feb16fae0a15bbfa4ca2e581a2c767
- SHA256
  
  42a5253a86c78ffcecee5204516d3649db9025e2bc2b9f0df65fdb4f8331afdd
- SHA512
  
  7ab406fd45fc26bc267a3c33fa85c36cd30c19f69ca505d93a6c1e12cd4a29d33c4ccda31b610b05a7b358f9800b7c9057646be82ee0a427c16f0805376bf3b1
- SSDEEP
  
  1536:7wGitfSYX+FgFkFFFYeqsFWTPVpqn+QcpbLgJ:7olOe+7XRghon+QO8
Score

1^/10
behavioral10 behavioral9
- Target
  
  FullZone/pawno/include/YSI/y_colours.inc
- Size
  
  11KB
- MD5
  
  d07b9255f4d3f3eb210e134b8209cc4e
- SHA1
  
  197f4ca77727f20b0698d7f10bdf3c7727923f89
- SHA256
  
  2d8f26d9ee5e17ec45418206da4e4ce3c3b0d764e374a3225c4c5e4d84cf9a7c
- SHA512
  
  46d3dc6175d55ff85d2b8d0f43613a479c4f321ab56de3e2698efc8e94d3160fa0ab86e295d61d968ff2c2a8ce497c950be391969de9b7311e75b75b1beb5454
- SSDEEP
  
  192:UdtxHqeiAHQuSMdbGhOuWJ/oxQv91x35Uj3XrhX5uLxUyCWrdjtHbgE0Igr5AuiW:M7zJkQEu9jRHcoQAup
Score

1^/10
behavioral11 behavioral12
- Target
  
  FullZone/pawno/include/YSI/y_commands.inc
- Size
  
  78KB
- MD5
  
  bf1418173e8788d48ca3e502d5d17713
- SHA1
  
  8719eceaf22c63619e968ab10f2d5fb66bc03811
- SHA256
  
  d669606b277a9a44b9d466e2bdf90f2feebfbf8ba2bec0a720d75572f7e456db
- SHA512
  
  ee07f38125754c2ca1d046aa287e08901dcee70413f71fb28484c959b5a9591f931e003024c9b54dab7cbcee97002241fd20e9f480e45143c87998b1a5f47a52
- SSDEEP
  
  768:5FJl4G/E2EtECEOGVEVE00EHEv2EXEveEXEvVE4EV3EWE1EPEDEbEBE1EhEBEMdO:5v5nzRGT534
Score

1^/10
behavioral13 behavioral14
- Target
  
  FullZone/pawno/include/YSI/y_master/_impl2.inc
- Size
  
  50KB
- MD5
  
  355d067f7a151f3ac518c2937acb1767
- SHA1
  
  e82eaa44da3bcb5012295345cb01c4ca63e22f2d
- SHA256
  
  c2898ecbeb51591706c54a6258c5717ad3ae34d8cb1e639a363ed0c9b53579d7
- SHA512
  
  d0f141176edfa824136bf30f05acbc8364b70ffe2f3f0001da6db170152c48f88907a87729834cacecac5499b17f73550393774d468ed43598f1a2b9a71d34c9
- SSDEEP
  
  768:x7Zl8l5xPrUljeuUX7v2VMA0CD1eH7ED2liWCcSXdi:ko9eXX7vidT2liWCcSXdi
Score

1^/10
behavioral15 behavioral16
- Target
  
  FullZone/pawno/include/YSI/y_playerarray.inc
- Size
  
  5KB
- MD5
  
  d0ce0dc268f7af8c12182b3fcb2de48e
- SHA1
  
  9e00ad64e002d6628c098c5d9ea6462846214dcb
- SHA256
  
  f475494d0ab273d148f1424136ce01b9702edd77d237fe3882f0b9a930184aca
- SHA512
  
  d09c8d9d89d236d9b81daf1f9c004c10c77496c10ca59f7a948a53a81835ec7a1ae22330cdb27d4d35512effe3e0172b2fd8a27904900d4c9ae96ecbef62420a
- SSDEEP
  
  96:Z4fK4xHqqeiyH0hQeRKcCeQISW8DObmiZGN5nZtemhdmrlUOdf1SL:yxHReiyHQJmeQvtqbmiZGLZcmXmrlPdk
Score

1^/10
behavioral17 behavioral18
- Target
  
  FullZone/pawno/include/YSI/y_races/impl.inc
- Size
  
  41KB
- MD5
  
  0dbaa469f8c2c60266ffc9f3ae52277f
- SHA1
  
  22b13211bf087d3ed1fffc4ba3e7ee14fc11b8f0
- SHA256
  
  0289d18d0bd691cb4b280d6f813504933d6e24b25989258f1bc893671fd0ccc6
- SHA512
  
  8b0d8a15bb0a3f3c9b10e0cf9fc040491b0c589fb7fa301d56deacb05925d543088d8c0d607caa0f50b68a19e98fd7408710bdf7cade3ba25ec1ee491f61ad39
- SSDEEP
  
  768:23P389oj8OnjrBXDYHZ0mvf5Z4wIiP7iQd17fQFMwh4P8AOpEJLS:23P389oj8OnjrBz2vf5ciG8c7ha8ULS
Score

1^/10
behavioral19 behavioral20
- Target
  
  FullZone/pawno/include/YSI/y_td.inc
- Size
  
  67KB
- MD5
  
  1c424562560e6289c250bd8cc2074d89
- SHA1
  
  09b0ef845df812c7f12069bda56f9f5e7c3f5dec
- SHA256
  
  81b455268b6b2e7d5eacef0eb8fafc0cd624692805e33d5297eaef8ed1b5fed3
- SHA512
  
  b3bee6f9952883393f646eff93e15b8e0a0a51921888f45aebf1dbc2402ca89c4ba206b00552dead57d173efe73e1b3cd51a1aef698cffd8a4607d2e31b45a37
- SSDEEP
  
  768:YeryprJrODBsBM63mHMT9TF3iHjPWJeu/D5VOhFhS:HGM63mHMTbiDPWHP
Score

1^/10
behavioral21 behavioral22
- Target
  
  FullZone/pawno/include/a_objects.inc
- Size
  
  4KB
- MD5
  
  0e3e6228ed73b6f5f08d1b0afff3f837
- SHA1
  
  e4b34a27ebe52cfb6550908c4ddefc8c1c58f758
- SHA256
  
  4ed8d7ef6e1fdb2aa393eeb2861ba730f3e87c1c219c30df314d2acdcece96f3
- SHA512
  
  086697422a9c4dcbd0d97d51e13dc6bb0f4f51dd955c4bd2bdd1f0ab4fb2caff31e8db94a297b3b0167af3a9cb3d97c342c3cef7035c4c0d60a7fb92cf7f65c3
- SSDEEP
  
  48:I4LaUQaUFxaMSNBczpFBxILLIBdfX2Y4FNi1FNiMp:I4mU3UFcIpTmLLIHfaF01F0g
Score

1^/10
behavioral23 behavioral24
- Target
  
  FullZone/pawno/include/colandreas.inc
- Size
  
  47KB
- MD5
  
  19389fa30a2c7ca201b2c5f25d7cd892
- SHA1
  
  02f5baf83f5032debcd74f2bc788a4b351db9895
- SHA256
  
  cab5f6b0f82201e9d01b859218052e033be264645060d4409abfcf744f259dfb
- SHA512
  
  7b7dd172ad48ab057cd0fd0a0c556a6fe091cf907dc6bbae30b4acdb836db40ec8d335ccc1e097ee48fce6d4fdc4be25d190f19c39ed813b52786a38c29f0412
- SSDEEP
  
  768:5VH8dejJK3gjC9uD5ulhWu/l/yhWuCQgw3SZoiYa:5VH7JK3huD5ulhWuN6hWuCQgwiBZ
Score

1^/10
behavioral25 behavioral26
- Target
  
  FullZone/pawno/include/dof2.inc
- Size
  
  51KB
- MD5
  
  1db53470579f4a7c51790e7563c6f1f4
- SHA1
  
  71dd9e0fe57708252ac8511e875290a722a4852a
- SHA256
  
  53bf68cf3f793591ae42cd2edb72673509f92b981a28f8c0ebede9fbeba12303
- SHA512
  
  e4b4cd40f2475de4015811bacb74ef56c64bb2cd5896cc0551ee2a2eedac4dd700c265940a3e86d0cb8f0c4de570fa8bb883a1755274f4bbbab861e09d0da227
- SSDEEP
  
  1536:Y56WIU/WSiA3/FtJAbWPXlvLsUaxXA2hkYKO9oao+:Y56WIU/WSiA3/FPAbWPXlvLsUaxXHKYd
Score

1^/10
behavioral27 behavioral28
- Target
  
  FullZone/pawno/include/dynamicobject.inc
- Size
  
  8KB
- MD5
  
  8dcf7a8a54f0ce3ff7b0c346b504905c
- SHA1
  
  07237e985e08d153b120e67f5395121b330cd232
- SHA256
  
  0bc5c237dc299f7c8f6848837549cf0faa7f638e8ed5a3f830a598adc3436e0c
- SHA512
  
  29ab0731c7675c706a60c6274ef276b6560d031321deb51f3a27e5b037bc7aca09653178aa25e7231a808787d7e4886217f7c9d96f0274c44b742b5715080a92
- SSDEEP
  
  96:+aPFa8CNFgSsxzm2fViOT2dvLbeOHhTJK6SEFMnqaf:7atjAq2fViOT2dvLb/BTJK67+jf
Score

1^/10
behavioral29 behavioral30
- Target
  
  FullZone/pawno/include/player.inc
- Size
  
  38KB
- MD5
  
  3a6a74cdda2eb98d1b3a5c14aefb75fa
- SHA1
  
  f11fd611083e612403dd6b72e17fe645e54ab02e
- SHA256
  
  06bf4949aecdd8bf7e274f368b36b2a29e6e1e27ed7c81dce2265515f41ea1af
- SHA512
  
  82df93bd41a27fd1694aa810ac8419e1e19b5c7b68e3bf5476d49772911e639194e5aedfa26224d7eec987a09e32852b00b4f3f09612bf9c985d3926dffa29e6
- SSDEEP
  
  768:tkP4Ng6FqYSA+dTZnGcr5COv+7f1Ojsxw42Mwsa0R2uHaCx7G6DGSKxBQ1tvME:tk2gCqYSAYT/r5COm7f1OjpxkG6DGSKo
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32