73d7e56ee8f71ba3c0834fb7c2609d255991adf8cf3e6bfee7df1ae81dc871e1

Sharing

Copy URL

Twitter E-mail

General

Target

Beholder_ Adventure_2.6.260_APKPure.xapk
Size

386.4MB
Sample

240914-cp9d2asepa
MD5

2c0477e8945b2a4b16de65707138a8af
SHA1

b86086564e83a1557023ebde0109b34e96abf8ce
SHA256

73d7e56ee8f71ba3c0834fb7c2609d255991adf8cf3e6bfee7df1ae81dc871e1
SHA512

9f64e92586684c505b7933c29cf89c361167e6d90632fe63784f8ea89ba0565c62b878231b458cf3255d16630976391604aeab1f70be1fdbc8b76e153984fb71
SSDEEP

12582912:XTP6Dxyx5ExTLKZf2uq4WmPcml3vxH1YCKjCUtERQTMeo:X+DxyKUf2uqpmPcm5vxHOCUkn

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  Beholder_ Adventure_2.6.260_APKPure.xapk
- Size
  
  386.4MB
- MD5
  
  2c0477e8945b2a4b16de65707138a8af
- SHA1
  
  b86086564e83a1557023ebde0109b34e96abf8ce
- SHA256
  
  73d7e56ee8f71ba3c0834fb7c2609d255991adf8cf3e6bfee7df1ae81dc871e1
- SHA512
  
  9f64e92586684c505b7933c29cf89c361167e6d90632fe63784f8ea89ba0565c62b878231b458cf3255d16630976391604aeab1f70be1fdbc8b76e153984fb71
- SSDEEP
  
  12582912:XTP6Dxyx5ExTLKZf2uq4WmPcml3vxH1YCKjCUtERQTMeo:X+DxyKUf2uqpmPcm5vxHOCUkn
Score

1^/10
behavioral1 behavioral2
- Target
  
  Android/obb/com.creativemobile.beholderfree/main.260.com.creativemobile.beholderfree.obb
- Size
  
  335.8MB
- MD5
  
  9e884a3fe692fd068c2899146906f0ef
- SHA1
  
  2f94234cd3377fa83781f5d33e121abcce57c13a
- SHA256
  
  0b6d7cccc785946a5138cd6aa5d6e0d62c3a37cd817ef9b084b70b2c1541f9e4
- SHA512
  
  bd596118e09bb5eeec70eeb2361d5969fdcdf468c2e8b392d1886403ac154ad9fe2cd826893f54322630c6bd1d7575cdad9fda3ae3c4c103a2963f56d9988871
- SSDEEP
  
  6291456:XQLR3DyD1BnExTLmnZtZf2uic42jbWmUmcmlytpIHrrxH1YCNkjWhUkAHElDq9Tl:0xyx5ExTLKZf2uq4WmPcml3vxH1YCKjx
Score

1^/10
behavioral3 behavioral4
- Target
  
  assets/Logo/logo1.mp4
- Size
  
  1.3MB
- MD5
  
  7dade903ec1d5adf3599b99fd419ddbc
- SHA1
  
  790aebf6ef1ba0b0b72fb4256e88ec4de771d9cc
- SHA256
  
  8ee42d18a101f3fa6b189f528009dea40ce3440477154015f0d75aeb82f02aa0
- SHA512
  
  0f4294139eb32b26c44548451a9330ff54ab138cd12119533db7f618b42d03a22e1964e6f5ad1d18ff560319baa67ee1622691c0426606240a77d2df971de65a
- SSDEEP
  
  24576:za0BU5sqc6ZTtDu6HvFFoUZB01a37IAwDIaZte34G0ulgORGL0Z9UDNUA5ueX:zLmhd7HPFFoYZ37IAwDmomxGoZ9qOA55
Score

6^/10

discovery
- Drops desktop.ini file(s)
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral5 behavioral6
- Target
  
  assets/Logo/logo2.mp4
- Size
  
  1.5MB
- MD5
  
  e4313411208de6204df61a5e318255e9
- SHA1
  
  a6285e81e2daedd2dff19136a58c9e4dfdf2f128
- SHA256
  
  0636cff51545ad4a4a65d763d75b5f243e2fa228ccfbc205b1423df10c453665
- SHA512
  
  9a0fc0aa94428ec3540cf7fbfcbeb3f799dfffb6a0dced68b9f876a9b42863074bd3c82c4d7b016bddd0488b36f37650c04215183412e1c7f8a8b0842e143a98
- SSDEEP
  
  24576:cfOp3QWeWXns6RpzVwwJ7wNxPL+OX/wH8PQtlIfaSjJ:cmpAins6Rxq+wrPfhEIj
Score

6^/10

discovery
- Drops desktop.ini file(s)
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral7 behavioral8
- Target
  
  assets/UnityServicesProjectConfiguration.json
- Size
  
  1KB
- MD5
  
  a85adb8e0ad365088af7cc299a6a943d
- SHA1
  
  e7ade8ec72808117611d4a3ac15534194eb015bd
- SHA256
  
  4ce427ee94deb124e9b9ad68fc91b37787cb2e2dd4446e4650b3d660c67ce521
- SHA512
  
  29cec5cb034418557e91aff196b6333565a34ee320b40a51df9eaf32bb1c16477eed25eed8e298633023274fedd64527271fc74dd9b72d19ea2e8e9e698667e8
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  assets/bin/Data/0000000000000000f000000000000000
- Size
  
  795KB
- MD5
  
  c095909a309b2827eb04d89a80b52eac
- SHA1
  
  2047748e82db64be06c7c3433b8c28b8ce501a66
- SHA256
  
  acbfd08d92af54310e153536ed7daf68d1c936dde2d175bcc37ba6f21d57a188
- SHA512
  
  b0d61fc9f09027688a95d481eff4a93d0c297221998b9ab36895dbcca98de3f48475afe8d6e5fe5f3c65c2452764d2b999ec9f3ee96f36a9e298a40572cb2df5
- SSDEEP
  
  12288:JVDjlEtrWNqohzP5CoVah3u6xEF9kiZ4Kcl1ZWYXeUcoiAoTO:JVDjmKxhBRexk7ZGHLpNi4
Score

1^/10
behavioral11 behavioral12
- Target
  
  assets/bin/Data/000f5b1515d06f1449968c77136cd535
- Size
  
  69KB
- MD5
  
  2778eebb0cf73819bd3b458900a9a2e2
- SHA1
  
  df107163d73e9f8c347b690fc45e283416fe2deb
- SHA256
  
  1cc6acfeab50ea911f5b2cc477e9744887d8bfe3289fe59f779aad44ec02ec8b
- SHA512
  
  9a9186ba60c5145a73aa60aa52a59e8d0d984a041457ba5407c95eea3ee52f04f06b64177879ce8f87b4e0c632f052f04c6a761a63d8ff1502cce6e60daa2376
- SSDEEP
  
  384:JKCQVX6ccgV9+LnvzVIeWlk+va1/3xspQekbIPvy5F:J6QNvzVR0k+vb7yIPvy5F
Score

1^/10
behavioral13 behavioral14
- Target
  
  assets/bin/Data/001a40d38db2e2e45af7fe681123b72b
- Size
  
  147KB
- MD5
  
  f8fe56f803b5ebfa8514daf7e6154223
- SHA1
  
  a76ebe48cfedf4a0a06dba75f1c682f987a4974c
- SHA256
  
  16db2dae05d2a44214a449cde5534992210b14963cbd0e978b121c68d8b827c5
- SHA512
  
  cdd3d639585131131fa3cd01822917bac0247473c18aa174204ffdcbc5d8ce3f6274bbf2c9087d5fc884b4b7d450d07a03db079c75cc9a665af0166e56afbf70
- SSDEEP
  
  1536:Dp/6rGalWWMqb5bUpeyPqFSVxrBbiiZ5h4L:DUSalqWyewX/rBbiiZ5h4L
Score

1^/10
behavioral15 behavioral16
- Target
  
  assets/bin/Data/002130a1018259c40b40ef305d247a10
- Size
  
  146KB
- MD5
  
  4728c7eef8175222b60681189e736542
- SHA1
  
  26ff1448276aa3b90e971b8af1219f69fe158c19
- SHA256
  
  bd11dc6cf8ddb77521138e8bb2c7312e4ecf39116f19f1cc945d205c9b69a74a
- SHA512
  
  879e4467eeba06ae33f2d59d0405f208ccdcbcf16e20536b45b14d44994e36f2e4bf981b583dd624cdbe5eaae4a9749f7a2f44bc533fba360c5e5f493b2e7d66
- SSDEEP
  
  768:JM67RS2W1fyGgwO7r9tRA1NXvjqO0hvrs6RW3GvKSqa8BtrI9dHWqikGmegf26ce:JM+RSxVydw27RAD7qdDsVQ8s
Score

1^/10
behavioral17 behavioral18
- Target
  
  assets/bin/Data/003041528ced7e9489f9c9d8dc45cca7
- Size
  
  5KB
- MD5
  
  460ef41009384c95eaf5cd282ad10dd2
- SHA1
  
  3652e4f4999645040755f42da42495d8bd2c0341
- SHA256
  
  39809bb1508f04ed372a281cea5941e68d56bc5181493104769fee7aaf469165
- SHA512
  
  06ba1f25466ce2e22b38c1894010f51b3cd6e390831b2b08f5c8094452e9a210d31f91501db382e2d2a719a2b5a75da44e11c1332a8ba56bd96c7a6b976f7aff
- SSDEEP
  
  24:CiiPblijTC1GaNWLXxlEJ7tZOhw+gSwlAwYgaM:CPBi+vWCttMhMSqu
Score

1^/10
behavioral19 behavioral20
- Target
  
  assets/bin/Data/005e69c442679cd43814f2cd5c65105d
- Size
  
  69KB
- MD5
  
  ed014b80564de36ebebfe4746c3a702f
- SHA1
  
  9e2f4eb4f56a99d8d147c4abbd03427b56c6e3f2
- SHA256
  
  493456f337ac7c302d522f9edfdaee7b33f6a7ab84f24fc7aeae1a3b8b46fe35
- SHA512
  
  ea6b795b0ced4d8ba063def2cb525d25503d819cdf5c96d275c9e5904efeafdfba17f7a916ec006eb26d4f40e208dad4e5a5b99a9815af7f119975fb11a734ba
- SSDEEP
  
  384:mfDr7mXtDGCtS4T5chR3aLopTYToOW7wuL4Df:mbr7mX1zTaR3lJO/u8Df
Score

1^/10
behavioral21 behavioral22
- Target
  
  assets/bin/Data/00691a9df77177b43a7767a4826d79f6
- Size
  
  4KB
- MD5
  
  b3632768ffd31e992542e9395634da91
- SHA1
  
  53ee2d3155e301e8fd15812b5039fbbf5a8d8cb0
- SHA256
  
  f1cbc7277b768402e695d7e35bca0b2c1479c295d8527ac90b9ada392ff14f7f
- SHA512
  
  e55b3c37663386a9c981af248ebe761b8b87417dc7809cb877efe6ec622e4d231ef4edad90241d03d4e2854666e15c0c2b3c83ac18225d37d1c8159878b54c4a
- SSDEEP
  
  12:SY39JqWPXXM9HzDiXXp6t4knTHUJ4StY5LmcwhHUJ4StYeJlt:xJn60ZbknjQ4SzHQ4Sb
Score

1^/10
behavioral23 behavioral24
- Target
  
  assets/bin/Data/0078594822131ad49b77961bac9897ac
- Size
  
  4KB
- MD5
  
  d721588b9022f05e259a2b9fb2aa67a4
- SHA1
  
  c004d794444b3fb601e85aacfa0c887130ff4d93
- SHA256
  
  c054ff8e4ac5aa1fe2e3c489a3e2a15949eb5837203429c677af3d5d02158913
- SHA512
  
  965f1d97acf9dee1330adf9d6d5808525ee5daa8e5cd3f5432d5fce0ffc932e707362ac4cb33168dc909840f53129acc1234e3b9386b7e5444dc901051e268ce
- SSDEEP
  
  6:uLWuv1gWEHFhCjONPXqshu/hKqAQtqu5IdIN:/Mc7CSaf5PMuWdIN
Score

1^/10
behavioral25 behavioral26
- Target
  
  assets/bin/Data/0080368375c37164e9e7f29b7b7bf85e
- Size
  
  4KB
- MD5
  
  25a1ef97b78cc7b5b7feb7da5bcd8192
- SHA1
  
  3bf32d23ce86edba44a837da8698beb7faeca86d
- SHA256
  
  3b83405ee15d6206d9b5699808b57b8abcf68492deca806d09985ba75b368439
- SHA512
  
  cb69c9d0f2b67db18e5ec307db2d430982d2729148c336258f5ee8e4b51d7deefe29f5060052c605d3d1c2a9dca18a662a446e63bd4f71fd6a77d553eb6e8528
- SSDEEP
  
  12:85XISDA+KtQWcSzf8Bv4/AxnBHcszUFM+TujU0EOWH5FUwfbKOcH8ce0ggooX:iFiQWcS7dAxxcZFDT0O6H
Score

1^/10
behavioral27 behavioral28
- Target
  
  assets/bin/Data/00c6d7022de18f046a9dfc212129fc78
- Size
  
  903KB
- MD5
  
  e1ffb17741aadb576233947e0c963e3e
- SHA1
  
  5ccca29413633469f8e4aa44205f901a1eb8588f
- SHA256
  
  68a2acf41554322d64b56e20f69d198a3ef03d8b632c11e04e3d7716ea32f7b3
- SHA512
  
  fd4da6cf661b35bd66f424f14be2f2b4928eb16d9dee2e5f9f89c9be6cb7c6bb1293789b38898117f58e8ffa808e101da72551ee594ad39f666ad736f365dc44
- SSDEEP
  
  6144:bZIgbqG66NFl75P1CI2mayWCSaBeaO9Q/ncx+oWtP2JPTrtmsVMvtBZR0hA6T:bZcF6NFl75P1CUFp4Z+NsZVsYP
Score

1^/10
behavioral29 behavioral30
- Target
  
  assets/bin/Data/00f43663d5dcfd7438bc2ec14904a31f
- Size
  
  4KB
- MD5
  
  694a243831b0f9c7b1c5f5cdefe7bd3a
- SHA1
  
  799d98adda38ae767a9808bf103734e9b1f0fae4
- SHA256
  
  78d46e9a612c8da1a6e84f8522485e0e2413279a1003eaedce6e93c14cea51a1
- SHA512
  
  d0d677cd48247e51199b06c1cb62ce0103f72ae47861aeb3d3b25b89b1cd5d6929375cd4de898a801ce5fa65396a68e7069022012230d4717eab6caec2e5a17d
- SSDEEP
  
  12:SY3p/cK2LSXp+C9tsv5ztlL/Y6Ye0cX7OfYIatNmX:mLSXpZYztZg6Y5cGYIat
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Drops desktop.ini file(s)

Enumerates connected drives

Drops desktop.ini file(s)

Enumerates connected drives

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32