0c7f13d75cd6aedf9a95973a1e4b4e16f1e497d5032b4355d62c2365f2bd04a6

Resubmissions

04/09/2024, 06:11

240904-gxmmfsxbjc 3

Sharing

Copy URL

Twitter E-mail

General

Target

Balatro.Friends of Jimbo-P2P.zip
Size

57.2MB
Sample

240904-gxmmfsxbjc
MD5

0120b992c724c82c52b2620146bb9fcf
SHA1

93c6a1b594062e94a2a48e796057622a3ae3f7b3
SHA256

0c7f13d75cd6aedf9a95973a1e4b4e16f1e497d5032b4355d62c2365f2bd04a6
SHA512

e8176c3e81d5432f0a1ebbc189b05a8f28723ddc74bc9bfb8ae9eeb1d353eb555d5a315e27ef42eb6c86a5da7b9288e99ecf1743817596791665bd6033fd6ade
SSDEEP

1572864:VhyrCzzIf9LNBmCKCD39yXb1Dy9YqOsIhJme3gVPv:VhyrCXwWCKCAy9msI7v4v

Score

3^/10

Malware Config

Targets

- Target
  
  Balatro.Friends of Jimbo-P2P.zip
- Size
  
  57.2MB
- MD5
  
  0120b992c724c82c52b2620146bb9fcf
- SHA1
  
  93c6a1b594062e94a2a48e796057622a3ae3f7b3
- SHA256
  
  0c7f13d75cd6aedf9a95973a1e4b4e16f1e497d5032b4355d62c2365f2bd04a6
- SHA512
  
  e8176c3e81d5432f0a1ebbc189b05a8f28723ddc74bc9bfb8ae9eeb1d353eb555d5a315e27ef42eb6c86a5da7b9288e99ecf1743817596791665bd6033fd6ade
- SSDEEP
  
  1572864:VhyrCzzIf9LNBmCKCD39yXb1Dy9YqOsIhJme3gVPv:VhyrCXwWCKCAy9msI7v4v
Score

1^/10
behavioral1 behavioral2
- Target
  
  Balatro.Friends of Jimbo-P2P/Balatro.exe
- Size
  
  53.0MB
- MD5
  
  7f5559f0c9ecfd9db321a71565f27122
- SHA1
  
  88b1ae371f6f4489b724cc4f74b8748036647e5a
- SHA256
  
  5fbb7f4f79642e70f37b09669311e375e3c7fe1970a1a721b967e8502e27b5dd
- SHA512
  
  08b89b0d9887fea71f31ce636b308d59bfb67d32c49a72b4801cd2a2d17ae8b96f6f3001b933c1c3b8978ee6035247991ca621e2cc03a296cb9a8292b30912e6
- SSDEEP
  
  1572864:iRNbQO2JtEJJ8jCaMC6534f31nkuL2CeCCAwf:oNbQO2DqTaMRHuLGCCAs
Score

1^/10
behavioral3 behavioral4
- Target
  
  Balatro.Friends of Jimbo-P2P/OpenAL32.dll
- Size
  
  849KB
- MD5
  
  21e5da3d9e84546b7b803f09fdd082a7
- SHA1
  
  58269ee9c3a9fa2e5ff92d9a71c00213305b2357
- SHA256
  
  6c7aedeabf7dae8f130559b8db470b7c03080ed17d6004984073bb1e9b202e94
- SHA512
  
  991d2df9f635b548f623112a21a6518a6768a2ab37326b9a8f5b9b0c737849614794810766a8186cacccdac7868c081824167d233993586418d8173c2eeeb4df
- SSDEEP
  
  24576:dCbIWvjYAE5KvEdf6ORpuBuArgFpti33J:AIwjYAE5KsdfDCBuAWpti33
Score

1^/10
behavioral5 behavioral6
- Target
  
  Balatro.Friends of Jimbo-P2P/SDL2.dll
- Size
  
  1.6MB
- MD5
  
  c9d3f1ade7be5eb34921530073f5cbfd
- SHA1
  
  6841ee8ec757d705837cf2831c794cfa19ccd67d
- SHA256
  
  5ed623e3c310cf522645cb6588f30404e6ba6cdaf6219095a827a28d576603eb
- SHA512
  
  f7bcc9890502b99fea54d9f957184065cc33373738ce20483089f52207ac0842632629daffde9ee5b586aeb6312b275aab44386507f8dc0378d9e3aa205217a2
- SSDEEP
  
  24576:h9hsViTu4z6NooPj3Ng24EOhAo1MAWDCpOnn9whY0m0O+3hzpx9:psViTu4zYooarAoaAUCknnehY0m0n
Score

1^/10
behavioral7 behavioral8
- Target
  
  Balatro.Friends of Jimbo-P2P/SKIDROWRELOADED.COM.txt
- Size
  
  35B
- MD5
  
  55ee88c12d0e6049d551f5c557403c09
- SHA1
  
  241a7c01be61870b3638ebbc1cc9eda4aed04075
- SHA256
  
  8ba19254fad4712b14e30eea2ba902c6f81eb04c08e39be7d90da12d021816f8
- SHA512
  
  50d6f5208158b6a1083b42917456926e99e1a76855c62ea0e72b08450086088964075fa90cf89deefaf0a97be1b9ebbf911c52e794b082a15ccf2c69c5b036ca
Score

1^/10
behavioral10 behavioral9
- Target
  
  Balatro.Friends of Jimbo-P2P/https.dll
- Size
  
  63KB
- MD5
  
  d86732797537f128799f4753ccd39436
- SHA1
  
  b3b0e5e7eabc0ac9289a305be70ccc1351a39bd8
- SHA256
  
  8a704c903575c2dbbc109869d179e8213d2574885f3f429173869dd75620b39c
- SHA512
  
  0d76d319f6fac139185af7c9d843b3376bc7ad217c4aea41c8f8192a34d536cf8aced600bd7fecc764235bda176e51e8d031cb953def1135600e5c78cc281bac
- SSDEEP
  
  768:cWfyHGDlnwyEv91+AS2qQYpadRTXMX7RUPpKWsohqlGjtG9A0jVGUUXHwUo0J:cWfyHEmvA2SpCBMX7RUgpiGSHwUom
Score

1^/10
behavioral11 behavioral12
- Target
  
  Balatro.Friends of Jimbo-P2P/license.txt
- Size
  
  72KB
- MD5
  
  02cb6faf045e43e91ec308b066bee16c
- SHA1
  
  eab9ed94ce78b5b2f7a9e885900e0edd358fc48c
- SHA256
  
  4ebd1f337cc55f17f520004d6943f8d5d07f9647d329950b66bbd17cf0d6341c
- SHA512
  
  aad525db24fce27333a6f9a3391b2cf543e258cb600db03513598b61de8b0eccc368a6240fe37489ea7fe7d35894929e586f01b37b04fee2840701abd33ceba1
- SSDEEP
  
  1536:zfTbZ/Xp+28CRZwBhxzNvi3yYjV7oKxnraxaAelTPsCVItcxhe:bZ/Xp+288wXxZaCYjV7JrSZedPsJihe
Score

1^/10
behavioral13 behavioral14
- Target
  
  Balatro.Friends of Jimbo-P2P/love.dll
- Size
  
  4.6MB
- MD5
  
  db1d05295d7ad48180541aa2b962485f
- SHA1
  
  dcfa0ecc58087731b1d445ec676054032d45a5b7
- SHA256
  
  f8d5d7e976ecc0ecf1870b5fcf4d25cdf9bd3621445a8b8fea54cb4ad5d79816
- SHA512
  
  291b9b40cdbcfe4ede2d3899d30830a69c10d52663ab00d5b0a00bf0f2de4acddb0d2597248c37780dd5300caa3c22065c69c7a668cfca013f29c47c55f3a4a4
- SSDEEP
  
  49152:QOo0+OeZdwU+wnY7ZIh16+rdrKyW92YelbtDbEatI4Pd6237GMcKSLgfTuGRSalC:zI39xbDg/YSR3L0w/C
Score

1^/10
behavioral15 behavioral16
- Target
  
  Balatro.Friends of Jimbo-P2P/lua51.dll
- Size
  
  503KB
- MD5
  
  64333a8fd053eeb8f59ea03812b59a1e
- SHA1
  
  6a5eb12118790d13d39d97b93836a8a16709839f
- SHA256
  
  d0039528d0c48acf9e4b93e39f929ecd8def2b08c429971b809d8751aae49fb2
- SHA512
  
  f1fd5d6115b2f94cca1c815d0288a6c7068857ca83199df4c7561190510159257ea09ffcf19b1615565d9b39ac7feeb150e9e1c341dd1e3de9d838d715055f27
- SSDEEP
  
  12288:gpfXORux/pn2GNUGMuh6G9Y+j2VnqXWER:gpfqux/pn5UGMI/Y+S1qXWER
Score

1^/10
behavioral17 behavioral18
- Target
  
  Balatro.Friends of Jimbo-P2P/luasteam.dll
- Size
  
  189KB
- MD5
  
  3a9684714ccd9f25a9a6d94de9972f8b
- SHA1
  
  694380cc1b4fe03d6d7def8384b9ec6c62ae2949
- SHA256
  
  737d63541c206e5f88298022c48c7205b0fc72a07cf051a354a6fae2bcd88f49
- SHA512
  
  d227eec2d8bfca1afef5bc89a5b6a1ee81edc731793fa4bf91edfd824f3b3bc969bf663b18de97aa0ee2d3b999ae40e2a81a1d9a828f0324c5a0880fc5a037a2
- SSDEEP
  
  3072:WXEgpcnvT+hGh9D9z3rQ4Glx4XHz/Y0kyDp1VhfYfPkuZMgRs:8OsGh9DhEHlqD+E1wkCJi
Score

1^/10
behavioral19 behavioral20
- Target
  
  Balatro.Friends of Jimbo-P2P/mpg123.dll
- Size
  
  193KB
- MD5
  
  8117d0efb10f06c61320701d6f1ffcc3
- SHA1
  
  de424f4f2af03fed2fea306b6d32384fb21eb1ed
- SHA256
  
  e13adb64607c3cf29669ef03cbddcc922096874890043047de1d19886babbdfd
- SHA512
  
  b8f76ef0693b74a005a6bed4393c2cb4cfd6b8cd5df97428e42cd8a21c33dcd040909223ec7eb444293c94308afecc0005e72573bf605ff0d6df838ed1c41d26
- SSDEEP
  
  6144:mZp1yn8vwQDw2MxWsIv2wIu+xxM1BwuHql:oEwJcppyzQR
Score

1^/10
behavioral21 behavioral22
- Target
  
  Balatro.Friends of Jimbo-P2P/msvcp120.dll
- Size
  
  644KB
- MD5
  
  46060c35f697281bc5e7337aee3722b1
- SHA1
  
  d0164c041707f297a73abb9ea854111953e99cf1
- SHA256
  
  2abf0aab5a3c5ae9424b64e9d19d9d6d4aebc67814d7e92e4927b9798fef2848
- SHA512
  
  2cf2ed4d45c79a6e6cebfa3d332710a97f5cf0251dc194eec8c54ea0cb85762fd19822610021ccd6a6904e80afae1590a83af1fa45152f28ca56d862a3473f0a
- SSDEEP
  
  12288:N2fus43uu43Ry4GHlT4xH2K+M+/i+WSpY+7YOzCaK9A3gS2EKZm+GWodEEwnyh:muJzCaK9AB2EKZm+GWodEEwnyh
Score

1^/10
behavioral23 behavioral24
- Target
  
  Balatro.Friends of Jimbo-P2P/msvcr120.dll
- Size
  
  940KB
- MD5
  
  9c861c079dd81762b6c54e37597b7712
- SHA1
  
  62cb65a1d79e2c5ada0c7bfc04c18693567c90d0
- SHA256
  
  ad32240bb1de55c3f5fcac8789f583a17057f9d14914c538c2a7a5ad346b341c
- SHA512
  
  3aa770d6fba8590fdcf5d263cb2b3d2fae859e29d31ad482fbfbd700bcd602a013ac2568475999ef9fb06ae666d203d97f42181ec7344cba023a8534fb13acb7
- SSDEEP
  
  24576:FkZ+EUPoH5KTcAxt/qvRQdxQxO61kCS9mmWymzVPD:FkMAlM8ixQI5C6wl
Score

1^/10
behavioral25 behavioral26
- Target
  
  Balatro.Friends of Jimbo-P2P/readme.txt
- Size
  
  4KB
- MD5
  
  05cb183078280382adf73bfc14ad9c02
- SHA1
  
  a3b8f8c84bc7a12514f5521958bc5e43b9abf4cd
- SHA256
  
  9cf6172876b85771d0dd6463bd92786b77bd40510d817eceaf5ff459611ce225
- SHA512
  
  332ce80a0c78bb2123af189be75c1d6b984a5ee7ce5c5f0c9503ccd17e2d61c9b8870d3ca34277460c6a1f3502dd564cf832a9d0b95ac8d384bdb89a6c838add
- SSDEEP
  
  96:Ltg9ZT4kpgOq7veiE9aHoemrjDtAG1GpGT2QGTHG85/GTHG8QJOuf1:LSZUzvMaIekjDtAwgy2QyHT/yH6JD1
Score

1^/10
behavioral27 behavioral28
- Target
  
  Balatro.Friends of Jimbo-P2P/steam_api64.dll
- Size
  
  403KB
- MD5
  
  e98e357c5712d35fcf1ae53c99cbc6a9
- SHA1
  
  78a4d5818965d4386eca0adcf00ee81788d271ec
- SHA256
  
  c269ef26736f907c637ba33f146a318d5e154824c47d3fc8937781ea8829dcc8
- SHA512
  
  a3de98def4cf9b1c7c97c0862342b96a3b9c809e8710bf9c265f3a419c009a79f3b2864ed32bd1f98461ac6079a36143bcfda6a3715098f66a89c37ae9e13fe3
- SSDEEP
  
  6144:cXdX/P531mK22HF7FZi7JwLBVH6LRXLhcR4W4zCRGqJUZnfsDnssTvYySbfCvRJ:6zIh7+LLwXOuZSGqJCiTAywfCZJ
Score

1^/10
behavioral29 behavioral30
- Target
  
  Balatro.Friends of Jimbo-P2P/steam_api64.rne
- Size
  
  256KB
- MD5
  
  8afde2d19c89d0bf1a9f6ec475aa0ebb
- SHA1
  
  7d1453b841dfb1101ab45f63d3b4294b6c5d0cb6
- SHA256
  
  473f5a312b56519f347741b63f3dea590946b96ea40ef3803d5f452c39af2f1e
- SHA512
  
  4166361eead938b1a01f110ae3acd3660f5123ccf97b4504ed0577b3eedbe57cee5222aef037524de6051a6727c88161a4aa250b4ae60fd84ccfb2591d1b2090
- SSDEEP
  
  3072:NfpmprkbwQzAVsCeOTdmTxMezfOLgSbew/N65lhTbC66rpFvwLdyN+Qe2UvMxCbh:mprksQUVsCeOTdmTxDSLGnpynxCbmyx
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32