43581d3f0fadd3829c5dc244fe66b9216991b55b854343fdc5e2ff620d383041 | Triage

Sharing

General

Target

Hpp Hook v6 NOSTEAM.rar
Size

549KB
Sample

240915-kk31fsvdkg
MD5

464e568996b188c24d49adc1d420c144
SHA1

1148768640485a34b35ba00c843341d080339b86
SHA256

43581d3f0fadd3829c5dc244fe66b9216991b55b854343fdc5e2ff620d383041
SHA512

5fc3441901105007dfc5c4b4c14cb936fb6c6f9dc9b4dfd4b72930e51a28d03bb94cabadb90aad45683a9f0d0b215fbe39741d586271b9fb594df185d1d1b8b8
SSDEEP

12288:h0ipTXXJyCJxCW6JnxcIEHhqjzG/v2nzCbhJfnMY9Jn:hJbJyKx96bcIEnEebhJkOB

Score

7^/10

discovery upx

Malware Config

Targets

- Target
  
  Hpp Hook v6 NOSTEAM.rar
- Size
  
  549KB
- MD5
  
  464e568996b188c24d49adc1d420c144
- SHA1
  
  1148768640485a34b35ba00c843341d080339b86
- SHA256
  
  43581d3f0fadd3829c5dc244fe66b9216991b55b854343fdc5e2ff620d383041
- SHA512
  
  5fc3441901105007dfc5c4b4c14cb936fb6c6f9dc9b4dfd4b72930e51a28d03bb94cabadb90aad45683a9f0d0b215fbe39741d586271b9fb594df185d1d1b8b8
- SSDEEP
  
  12288:h0ipTXXJyCJxCW6JnxcIEHhqjzG/v2nzCbhJfnMY9Jn:hJbJyKx96bcIEnEebhJkOB
Score

3^/10
behavioral1 behavioral2
- Target
  
  Hpp Hook v6 NOSTEAM/hpp.dll
- Size
  
  1.1MB
- MD5
  
  7de6c028bd939619f8b714cb384fad4f
- SHA1
  
  f56dcd352701eaf1e157d974c1bf3a593ea27fec
- SHA256
  
  b86503eb3de92de1edbb9bdb4c3d31e9d2a114ce392a6961b8bc374b2824913f
- SHA512
  
  56b553e3209bde43b26c8096c0982efac06937019fca7e5adf89d285bbc2ffb135e63c57715cd7dfb615736e998608c743f8f680e55cadf048a8e3f6ddee6962
- SSDEEP
  
  24576:S0fzv8xtKlwjZbOngTo5IlfjTNLzsTGhvx3O9Ss68J:doxQuZ82BXsTA3O9Sv8J
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  Hpp Hook v6 NOSTEAM/hpp.hl.exe
- Size
  
  179KB
- MD5
  
  12b9674d5a68f829f20214644e67baa3
- SHA1
  
  9f2681173105f628c7cb14b57540121c5dc667dd
- SHA256
  
  88132922084d88a606d4430b1903c2c7d2b48e4b1467253c3a51ed00b05954c6
- SHA512
  
  c1c47d6d7f2ec3d2cf6a50fe85acab653a4e81d7c56a2f1972f7de0b686272c3cb03f59be9512acb4530b94bbe90d4b81b00682d4413ed62bc69b6033a43a073
- SSDEEP
  
  3072:O2qkbSLWyjCkRtc8lsAR8Z4GkZypFuX6HNwTBf0aeEus/aL:xH+ayW8fWOCDRY0ouAK
Score

7^/10

upx discovery
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral5 behavioral6
- Target
  
  out.upx
- Size
  
  190KB
- MD5
  
  541fcba91b4381411b2b28754e82bed2
- SHA1
  
  3eac669a3dd83faa6a03e5fc4427fcb510cc8e78
- SHA256
  
  fae8c3960b919221e12d8b5084732e0188d4a5eec8bde1429564925ee80987fd
- SHA512
  
  bb90ec63fbd87989057d57b9203a516fa47c48be5ea681d3032806e4ee32b1893cb8bb8eefaf95a81038cd7e865b93cbbed1432faafce7a7d4b8f3bb52d2717e
- SSDEEP
  
  3072:ppiebSLWyjCkRtc8lsAR8Z4GkZypFuX6HNwTBf0aeEus/aL:pYe+ayW8fWOCDRY0ouAK
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  Hpp Hook v6 NOSTEAM/injmthd.ini
- Size
  
  1B
- MD5
  
  cfcd208495d565ef66e7dff9f98764da
- SHA1
  
  b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
- SHA256
  
  5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
- SHA512
  
  31bca02094eb78126a517b206a88c73cfa9ec6f704c7030d18212cace820f025f00bf0ea68dbf3f3a5436ca63b53bf7bf80ad8d5de7d8359d0b7fed9dbc3ab99
Score

1^/10
behavioral10 behavioral9

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10