r77 | f3f0f6e0193c215323d1b0ace60c6bb0befd07251b91ad8497473f426aadae4c | Triage

Sharing

General

Target

f3f0f6e0193c215323d1b0ace60c6bb0befd07251b91ad8497473f426aadae4c
Size

12.5MB
Sample

240926-fndshssamg
MD5

5aca1dc09b4098dd6b9393b818ff8147
SHA1

b2c160fed8991f582bc26a765be6935851f75d9b
SHA256

f3f0f6e0193c215323d1b0ace60c6bb0befd07251b91ad8497473f426aadae4c
SHA512

31ff6ffd183e799ef0daf6251a4b7877861318cb99dc2e031bec64577c990ea12344b0af9daf363c00a9e5f8b02e0160c787c365bb2ec4198d059a9c1aef8a56
SSDEEP

393216:8vM8ZCIM5EC5u6syCsBe71/5EC5u6s3wchB5rBl3n:8vNBM5ECMsBe7N5ECgwi

Score

10^/10

r77 discovery

Malware Config

Targets

- Target
  
  100%游戏存档/双击我改签v0.5.exe
- Size
  
  37KB
- MD5
  
  d7c6e7d592db6f4766f360098c1a3edd
- SHA1
  
  48457312af8c5398cb36272044e0707edd82776c
- SHA256
  
  237405750ab7d78c1db9f51d4eae7a4a46147bf064a9be61de41fe8aa91ca581
- SHA512
  
  1e9b2bb79ad73297becdbed2cb35fe5f08932bb144c54e7469bde50a891e0f973b8d173d8a44c38f56cdd043d31b982eb4a901e01b9d845906ba9f2aa170b122
- SSDEEP
  
  768:GnN9dODsbW1WechF6g7K2hnxQhjLzPaKmhznlEIJ3TUuV:G7omW1shg9aQKnLU8
Score

1^/10
behavioral1 behavioral2
- Target
  
  修改器/Nioh 2 The Complete Edition v1.25-v1.28 Plus 35 Trainer.exe
- Size
  
  1.4MB
- MD5
  
  2e584ae1d797c1abcba6d816bae112cc
- SHA1
  
  2aa3a7d0cb0979f552ee409252db027300d423de
- SHA256
  
  5e402b9863dba15f4224dad633dad20f6ed38f69ad1f46fe9980484444a79ba1
- SHA512
  
  61519f6804aa43d1033ade845552170795d2e9f7da86ad1e3c96ff0d8f6e667dfe76a078f0960849171fb82134c6aeced3b5699fbf29219d8e85c2006688748b
- SSDEEP
  
  24576:endojDi6JdAEcWIP+7b+8Yq7OFiICUBZzbPbJ7bDSo9R:Q6J6XL+nYqkiRUBtV7Ff
Score

1^/10
behavioral3 behavioral4
- Target
  
  修改器/目录.exe
- Size
  
  1.4MB
- MD5
  
  e3cd2eed47f07bf91c14fc407f96f0ef
- SHA1
  
  fc9b233374fdbfb3b6f83aa6d685b983112a82f6
- SHA256
  
  f962bc3f919502b67584fe153b101f5bdbdafe25abd315b0501a8ee03e2d15c6
- SHA512
  
  309d51567a197aceb632094e31e0738991433daee54c46dd7a4ab80da63e01ab0d4cd67bf1984387e1b024759c29dbbfb2702e1a25183839ddefa075c2d87eca
- SSDEEP
  
  24576:YMjhpmn+KkK2lpAwyTYbGrc38qqR82srDEMIcV1Dw3VyX5BZBX4LbKhIOYKcrZaV:rW+KX2lpAbYbAcMP82sPPVW4BBX2bKhr
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6