203b08d3dbb656e718c39f3339ebdff45c7f94624e67b1041fbd929fed164e39

Sharing

Copy URL

Twitter E-mail

General

Target

sc29204-WorldBo (1).rar
Size

365.0MB
Sample

240819-pdagsawhjl
MD5

9f1d8816ba79572a703ad3a02ee5f979
SHA1

f3069b3d988d0cd21ef8aac341e1267de9c92500
SHA256

203b08d3dbb656e718c39f3339ebdff45c7f94624e67b1041fbd929fed164e39
SHA512

017e601b1ac96bb2637071f2daa0249a18a735270aac99034cce62811832bfbd83195343ce68952053c7a0f4b4af6da0ae881d479f40cbce53f26a2a50d707f8
SSDEEP

6291456:wt9h+U6apZZ2cSaYqA/iNMqxRAbXLVebcYZDLOg3AQnT7Pl38hlRJIQyRMIKDsbC:K9h+1apZIL8YbL0bzya7nTz6wQyRymWr

Score

5^/10

execution

Malware Config

Targets

- Target
  
  WorldBox God Simulator v0.22.9-Early Access/worldbox/MonoBleedingEdge/etc/mono/4.5/DefaultWsdlHelpGenerator.aspx
- Size
  
  59KB
- MD5
  
  f7be9f1841ff92f9d4040aed832e0c79
- SHA1
  
  b3e4b508aab3cf201c06892713b43ddb0c43b7ae
- SHA256
  
  751861040b69ea63a3827507b7c8da9c7f549dc181c1c8af4b7ca78cc97d710a
- SHA512
  
  380e97f7c17ee0fdf6177ed65f6e30de662a33a8a727d9f1874e9f26bd573434c3dedd655b47a21b998d32aaa72a0566df37e901fd6c618854039d5e0cbef3f5
- SSDEEP
  
  768:6CEPutHjvpMgMwP9h5Ij7khsp/6JtEZwMXVtkUI3t3CXyEyk3VbNbqDvJ4oT1y:/r6CdsCOZwMX3k5dWyklh+Dvbw
Score

3^/10

execution
behavioral1 behavioral2
- Target
  
  WorldBox God Simulator v0.22.9-Early Access/worldbox/UnityCrashHandler64.exe
- Size
  
  1.2MB
- MD5
  
  5565de788cb65805138913e70177c39c
- SHA1
  
  390ae39ec9194dd72a86cbbd93e56afa931d1895
- SHA256
  
  c6cd9ff4564328d47c20aa39a52bea21bd6c66ea865826e380d6a7c24d564042
- SHA512
  
  fc6c61bcc67207148333f729e689247cade9d3a719f2089648497cbd6c3855406bd128863d2c5a9eda7836c2065a01d6e933945f0f807cf803cf836b0752fe8a
- SSDEEP
  
  12288:Ow6X/r3k5JVYe1qIE/s8/YYQZim2UoNoY2hfxf78aLWch8:Ow6X/I3Vt1qjYpZ9oNIj5bh8
Score

1^/10
behavioral3 behavioral4
- Target
  
  WorldBox God Simulator v0.22.9-Early Access/worldbox/UnityPlayer.dll
- Size
  
  27.2MB
- MD5
  
  3cc7c63b18a0af30cad961b756ae78e3
- SHA1
  
  3f8738a136c513ae25a48538da06996785df9a81
- SHA256
  
  21dad450d19abb6e2dda1593ceb654e97156196a01434d4615504d39485cafaa
- SHA512
  
  c363e9e46ae4e2f82a72d024c317e8126dbefa3c4a8eb848793ebb06bd29d502bf353e2194402f6be9d309a52106f6210e8d235292d0973362bac10981058288
- SSDEEP
  
  393216:dLup6xWYsLUr8kl+6STvp8NvPqj6ELz6UYIbVFKeW:dL8LECF3W
Score

1^/10
behavioral5 behavioral6
- Target
  
  WorldBox God Simulator v0.22.9-Early Access/worldbox/discord_game_sdk.dll
- Size
  
  3.7MB
- MD5
  
  d8cc567718550ae35c1566c3315b90df
- SHA1
  
  e5d8120a8a8583fe7e3177ae7d8fe797c002f263
- SHA256
  
  527768710ddb0953fce5eb1700c2566b6451135d76f1d0610b63907cd5ba94c5
- SHA512
  
  5e1d72bbb466d032596147dd1a90f5ebcaa82d3d56ee7a0b1aa3a37d4bb42e1fcb510b269451a1b9c7f3b8a1c18b1c5f530b200f2fbbe2ec990b4e1c12e6f5e8
- SSDEEP
  
  49152:cxytJCv8RbSimYQSaKCZhYtOVt7CPjitem2vUkcWDnVf6OuBimHdXopJErae4/KC:lD400amm+8m4
Score

1^/10
behavioral7 behavioral8
- Target
  
  WorldBox God Simulator v0.22.9-Early Access/worldbox/worldbox.exe
- Size
  
  638KB
- MD5
  
  3c4f1e12277c21f2c58ff0499bb0334b
- SHA1
  
  3ccbc8febb2c32e2c50f40632f0bc4c752b331f9
- SHA256
  
  c662058aaa67a28679305ec1419a7f1c341cf5741e94255891f12d86e782e30f
- SHA512
  
  9e203586c645aac195bc789c018c921f94f9be187bd96c4bba9109dd56222739800e341d84c2b7ade0123a846fcf1b5010e30703fdb86d273af153a96ab0dc38
- SSDEEP
  
  3072:HgXpJozm2lkCspYDbMwqrWunCrKQJgHm3RV6ESwMvGj5a5vSHE:epC62lkCTIWunOKQ4m3RV6NwcGASHE
Score

5^/10
- Drops file in System32 directory
behavioral10 behavioral9
- Target
  
  WorldBox God Simulator v0.22.9-Early Access/worldbox/worldbox_Data/Managed/AWSSDK.CognitoIdentity.dll
- Size
  
  119KB
- MD5
  
  974ec3eb40cad66911ab72ff84527d87
- SHA1
  
  da1dc02feef485e72e91d86357e2a8c77f3ec4d1
- SHA256
  
  b50392c751b66279da1b4506b73b50d37fe13d7c89a8ca7dc731baefee1851e5
- SHA512
  
  477adaa810943c26b5b24f68e0df33d63b898c69d03d0dc3e2f41f712031f8c6b0cf399f33ca180d6105416bbfb62b1eb002f548dbe52102df2acc15e34f3a1a
- SSDEEP
  
  1536:YwTG5sxp8VTg7e34kaiA2BREakmXPYw9ALGi:YwTG5sxp8VPtACEaDXZ9Av
Score

1^/10
behavioral11 behavioral12
- Target
  
  WorldBox God Simulator v0.22.9-Early Access/worldbox/worldbox_Data/Managed/AWSSDK.Core.dll
- Size
  
  881KB
- MD5
  
  c35e276f2c85104c2b276fa6491fc5d7
- SHA1
  
  641664bf4a36af82be9928711273229ab4467dd5
- SHA256
  
  59d6a9feb2a863e34c1c9955ff89cb4f68aea49ceb89d0abcc10fa6d2a0a17d8
- SHA512
  
  2a4906c2e8cbd7fe683063d410fb856aec23bb604caf3e9b4e0211f2e5cf939d7a0ffd9a9eedda08c42c62b441fa6412e7e0d0220f13bb22994d8990a121e83e
- SSDEEP
  
  12288:T/I2qtk7dhcyb+BQebGbmkSs1P0FT/gsh2FWlCRgIaLm7:fOQeGajI6gsh2F
Score

1^/10
behavioral13 behavioral14
- Target
  
  WorldBox God Simulator v0.22.9-Early Access/worldbox/worldbox_Data/Managed/AWSSDK.S3.dll
- Size
  
  554KB
- MD5
  
  d3bcbe58609c2912efeb2c3cd1b15e5a
- SHA1
  
  b29979474561f461456fdfd7e57fed609e636422
- SHA256
  
  ce17a01eb928452be8216f2b554cf16f39e14ad8c142600139a5f61590173f18
- SHA512
  
  a5baeaa00a8a66d7ba221b231d3f631a1cad4116f0b617da3052480017e3b075cdd50d343906fbdf4276dd9610c766a58f862b0590c80888c4e80f20032cf37c
- SSDEEP
  
  6144:K8lD8fPy8Lu9hAoKAGz3+7DmZ1lDVzzDAaSCsYsuVdIH/fEe9LXW5u5K8b7ctRQ2:DlDNGzu7qTDfrVdIH/0RQK
Score

1^/10
behavioral15 behavioral16
- Target
  
  WorldBox God Simulator v0.22.9-Early Access/worldbox/worldbox_Data/Managed/AWSSDK.SecurityToken.dll
- Size
  
  54KB
- MD5
  
  d132a6c1420ced670864bdc09cb09c70
- SHA1
  
  9fc67900d80d619d8781edc2ebfd5053ee4666ed
- SHA256
  
  7c13238555f96bf2bde0db5ea26141c9a5e564f5820269c252a7a969248b83be
- SHA512
  
  e884cae3dd35d9e7aa28913fa893648ed5675eb95d59740799aeba2626b36ec2a291e54b45cea7249d1f55ec47fdffcc6a01f67beab040001eea038972afcba8
- SSDEEP
  
  768:36dQr6JAF6aHCBzeQFYBVtz59noJ9ZRyePqf0jJBO64ryES4627mofoGZ6+IAQA:iQr6CRC/e5nMZEqqMj+64a26CCTG
Score

1^/10
behavioral17 behavioral18
- Target
  
  WorldBox God Simulator v0.22.9-Early Access/worldbox/worldbox_Data/Managed/AppStoreSettings.dll
- Size
  
  4KB
- MD5
  
  412b46dd4b8d38fce9014db1dc179aea
- SHA1
  
  0ebf8695ecd865f888f5f91f9176a847d89f41a0
- SHA256
  
  c94ea6661b3282226445bd1978ea097bb965b6f8ae3b1a495c3ff71ac4f401ad
- SHA512
  
  cadeab2e7cddd30ad72f7694d72a0838295849531e512b29e0cf6e320a9cbe7a390753d48ec663e475617ba491474d6fb7c34d98859ada7e24cafd3766e73c19
Score

1^/10
behavioral19 behavioral20
- Target
  
  WorldBox God Simulator v0.22.9-Early Access/worldbox/worldbox_Data/Managed/Assembly-CSharp-firstpass.dll
- Size
  
  302KB
- MD5
  
  5bee5f03c9b577e86e5d74423277b67f
- SHA1
  
  c55550a2b565ede17dd181461d7bc9935be19abd
- SHA256
  
  97e0f89b4026d3d93b379e7d9ee7893f7dc2d94b7f92a403766ea22bb6273a48
- SHA512
  
  1eeafcfcfc946b5ca03d59bf1dca1321dc19807ec4526119729ef72cf7444c5d9d9dd5290a247e74d0acfdddbac1cb855d20183193512438c410562ec0d70cb9
- SSDEEP
  
  3072:YOjBIN3749F07xY1B6k0z7Mr2xu2ao/f5CezHNXQPYs1njmyWbveA/JGrKrv9V:J907QYk/+/fMezHNXQZjmyIvz/ksv
Score

1^/10
behavioral21 behavioral22
- Target
  
  WorldBox God Simulator v0.22.9-Early Access/worldbox/worldbox_Data/Managed/Assembly-CSharp.dll
- Size
  
  2.1MB
- MD5
  
  6329c581fa02d899ce254f92f1f68ea9
- SHA1
  
  909d37b0b7743a14eeeb7bdb368c86428bed3e1c
- SHA256
  
  0afcf0453819f3cef824566017cca2fb84b89c324614c88bf9b8a059d0ee3622
- SHA512
  
  c282934b558fa2b670967d279e031e8d6d9b97a4d456b50ae8b221428e9f39f8ca9fe0b6cca6fe3e5cc63dc5f0f91d78181597410de35580161a03473359879d
- SSDEEP
  
  24576:u3Eznz1sdlsQdSwTSF86b4DvlooOpC04YjnJF+Mg37CBKX9RjoE0i2A:u3Vd3b6kNovpRL7JFO7CBKX9R0Eh
Score

1^/10
behavioral23 behavioral24
- Target
  
  WorldBox God Simulator v0.22.9-Early Access/worldbox/worldbox_Data/Managed/C5.dll
- Size
  
  290KB
- MD5
  
  a9fe26d48230c9fa851adbab820ebb5c
- SHA1
  
  1014740160de7db173e465d3c51a3c5be78a3b81
- SHA256
  
  9be1068913d8c9311e04f91ae33a2d7c582b35926c15209a5cabbe0d672ed531
- SHA512
  
  2e43ee0f0f66ded606a422bc30554f2c4454e339a4127600c445a0b5f8f1a9ce13a21f3667af009577a7066ecd26afde5218301d15bbcd655b2a58bdfb67238f
- SSDEEP
  
  6144:2mCK3klElkdP68S5JHfaHXplkwRvVuUUWLbXsuN7OS5edVV:2mCK3kqlkt680JHslkwRvVuUlF
Score

1^/10
behavioral25 behavioral26
- Target
  
  WorldBox God Simulator v0.22.9-Early Access/worldbox/worldbox_Data/Managed/DOTween.dll
- Size
  
  167KB
- MD5
  
  5a3f2e043e7047041a4938037ba5bd79
- SHA1
  
  74165c2eb79b36951fd8f71a5a5e394b589e094e
- SHA256
  
  a754a3cf4c4519dcb6baded15dd5164d63ae93b5f1fbbe91891ba14ad719eb61
- SHA512
  
  2fb89708ce4f0649b9739580c6b546b2c36bf762dbe60f3b5589f900433dbe2c729a406d972f615a83f2c0e6f51417a813431f3df6185801cd2f1dfea278bebc
- SSDEEP
  
  3072:pVbfkYfxHqCZqXTuf/kjMLZcviv2jpUg8EvnALq7lQl3miXbrOc34:pVbfdpHqCZqXTuHkjMLSqWvnAClQl3bJ
Score

1^/10
behavioral27 behavioral28
- Target
  
  WorldBox God Simulator v0.22.9-Early Access/worldbox/worldbox_Data/Managed/FMODUnity.dll
- Size
  
  210KB
- MD5
  
  1c8052b2195aa74a61d8647514eb5c24
- SHA1
  
  59be87b2efc2e9c676c7ceea151720d8c3c3f34f
- SHA256
  
  11a59d87fffed5649198c24d996ea316afcefb5a799b7c16a01b2941e28d9f9a
- SHA512
  
  ddcecea0463cb0e49232eb25def98b6eedc05a0881b20bc2e5a42fa0a35d515f07d1f1c6bb7871f356bec35dcd4d7b2ca8da5da13e885be1f10ee8b98d78cfbc
- SSDEEP
  
  6144:i5o3reZS6CL7zopxTOEiV1xnoxsnj5Hi:i5myA62zopYEi
Score

1^/10
behavioral29 behavioral30
- Target
  
  WorldBox God Simulator v0.22.9-Early Access/worldbox/worldbox_Data/Managed/FMODUnityResonance.dll
- Size
  
  9KB
- MD5
  
  44d76c62e80a1c46cdc3533649fc5355
- SHA1
  
  068470aa44f078bf197ae3b027756384e1520955
- SHA256
  
  a84515672477c2f9c77d359de86ba3e46c625220f1a4ce9de1716d6cee7e3c54
- SHA512
  
  aa13f93ad7c8058e67c73c5b1b0406af19f05eb047bcf29aa00a879ce3efa15c9793f2fd0ff7221cb39df853e7cc04c05087cfb6a1abc2b69d1421c0276be632
- SSDEEP
  
  192:uEGktEKC6D3S2C5FDed8l9RFECFwGT9dR2M9EN:HdE/wSJned6eena
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

Install Root Certificate

T1553.004

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32