9a4f371dafc70b6347dc125ec9803df96b2d77511e42bc1c236fbaf1c56be1ef

Sharing

Copy URL

Twitter E-mail

General

Target

OverwatchWebcam_Win64_v.0.4-97.zip
Size

189.4MB
Sample

241001-1lanaswakb
MD5

56375f1201879ad42b35fb8188c4b3ea
SHA1

fda0d3d93c877be59ca014b514dbfa6797b3946c
SHA256

9a4f371dafc70b6347dc125ec9803df96b2d77511e42bc1c236fbaf1c56be1ef
SHA512

b3d4c528e337c2f0321db05c5478c66b191e68fa27aa594caf73342a6007b820f1eec4dee5d4ff1683f9d7a8a416838323fd5d797467f895e3564df76da5cfab
SSDEEP

3145728:AVkOLNiyboqjxjAKi5MQ/BdmI/fS9UQ6gNAjV8pTMz0Heg4vWhd8i/ClXtW9cQAf:a9LoCMt5MQ/t3SxyGTCJg4vEqiql6cRp

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  OverwatchWebcam_Win64_v.0.4-97.zip
- Size
  
  189.4MB
- MD5
  
  56375f1201879ad42b35fb8188c4b3ea
- SHA1
  
  fda0d3d93c877be59ca014b514dbfa6797b3946c
- SHA256
  
  9a4f371dafc70b6347dc125ec9803df96b2d77511e42bc1c236fbaf1c56be1ef
- SHA512
  
  b3d4c528e337c2f0321db05c5478c66b191e68fa27aa594caf73342a6007b820f1eec4dee5d4ff1683f9d7a8a416838323fd5d797467f895e3564df76da5cfab
- SSDEEP
  
  3145728:AVkOLNiyboqjxjAKi5MQ/BdmI/fS9UQ6gNAjV8pTMz0Heg4vWhd8i/ClXtW9cQAf:a9LoCMt5MQ/t3SxyGTCJg4vEqiql6cRp
Score

1^/10
behavioral1 behavioral2
- Target
  
  OverwatchWebcam Win64 v.0.4-97/OverwatchWebcam_Data/Resources/unity default resources
- Size
  
  1.5MB
- MD5
  
  143dc232c9457e1bb787ca819754dd9b
- SHA1
  
  86c8eefd06d786c341d8f563c1b56899f09e7d93
- SHA256
  
  447caf3737cc58e2cf965f9829ae1c00c2c88505c055df2e8be0d8ede76b4da9
- SHA512
  
  de3d8771a43b0a0f584cd6d769dc0fe73c7279e3d0f19fb6975ce5f75430ce7312bc9057f8f2aaf2647dd6b07440f3b97f789e0ee0a6a51f8f8b56f0f764b3bc
- SSDEEP
  
  6144:MWJxVJ0aYR1CCVX8BAiZahS3YW+/OJ9WqCmKISHCkcCqw:L8TpQahHvOjdCTew
Score

1^/10
behavioral3 behavioral4
- Target
  
  OverwatchWebcam Win64 v.0.4-97/OverwatchWebcam_Data/RuntimeInitializeOnLoads.json
- Size
  
  2KB
- MD5
  
  0f53f5695521a1324677395209a9095f
- SHA1
  
  ce3a07079ea22befdc0eaaae54c389c759e5a649
- SHA256
  
  f9eac363e79a5052c2c5b8fc118b60aaa8de3e043c84ed7546254e6986964971
- SHA512
  
  5666b0aedff955287dd9c7b66eb9c73b6a7b50890325b8ab24d0ba55b24122f52b42cc9861f75c76598828fff69d1af7166011d0a5e5fba760a26f0a8702b90c
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  OverwatchWebcam Win64 v.0.4-97/OverwatchWebcam_Data/ScriptingAssemblies.json
- Size
  
  4KB
- MD5
  
  91623b423efe4b15c7824066151a4d10
- SHA1
  
  cf39e4d66a4688fd7a3587900269589525e055a7
- SHA256
  
  9b117f62d813ab84abdf94bd674ea78972411b3464de4bcad4d32d5240108022
- SHA512
  
  58b68dd1fafcd8b8481d7c6b4586fa250f86d67c5723d719b4ac4c147b40dbe0def5b4e79bc0b54cf075a7afb11566d485922973fe91d0895238ea8f045b4e26
- SSDEEP
  
  48:YXNAYrKXrjFRlClouNuQGoSfTG/fj5P7hHdmlhd9bmUFpDq7:G0jrlMouNtjfHdmbm/7
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  OverwatchWebcam Win64 v.0.4-97/OverwatchWebcam_Data/StreamingAssets/Android_version.txt
- Size
  
  2B
- MD5
  
  c16a5320fa475530d9583c34fd356ef5
- SHA1
  
  632667547e7cd3e0466547863e1207a8c0c0c549
- SHA256
  
  eb1e33e8a81b697b75855af6bfcdbcbf7cbbde9f94962ceaec1ed8af21f5a50f
- SHA512
  
  5305f867c631e8335813a103a4942a93037c3d3b1982eab342fb495047dcc79e13299ab65b5f4a34400f15af384eda2ed7144671e83996334c0669fc8377a130
Score

1^/10
behavioral10 behavioral9
- Target
  
  OverwatchWebcam Win64 v.0.4-97/OverwatchWebcam_Data/StreamingAssets/UnityServicesProjectConfiguration.json
- Size
  
  1KB
- MD5
  
  ae7b42d887960485453f5c1089d14c0b
- SHA1
  
  e83af71e4ac0d971f77a0362ee44c7e50ea92219
- SHA256
  
  56d63edcecd2c75f08f22583a3033fca7cedb02aa3f7022f65322718586da2d0
- SHA512
  
  dddad9372d25b5aad9d3ab612b991c5c4792a54fa2de10bd1fe7260944e78e8f6802ddfea9de3471639f104dde448d5f56edef2c6bf333dcdb721e295eade3a9
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  OverwatchWebcam Win64 v.0.4-97/OverwatchWebcam_Data/StreamingAssets/WindowsEditor_version.txt
- Size
  
  1B
- MD5
  
  c4ca4238a0b923820dcc509a6f75849b
- SHA1
  
  356a192b7913b04c54574d18c28d46e6395428ab
- SHA256
  
  6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
- SHA512
  
  4dff4ea340f0a823f15d3f4f01ab62eae0e5da579ccb851f8db9dfe84c58b2b37b89903a740e1ee172da793a6e79d560e5f7f9bd058a12a280433ed6fa46510a
Score

1^/10
behavioral13 behavioral14
- Target
  
  OverwatchWebcam Win64 v.0.4-97/OverwatchWebcam_Data/StreamingAssets/WindowsPlayer_version.txt
- Size
  
  2B
- MD5
  
  26657d5ff9020d2abefe558796b99584
- SHA1
  
  6fb84aed32facd1299ee1e77c8fd2b1a6352669e
- SHA256
  
  7b1a278f5abe8e9da907fc9c29dfd432d60dc76e17b0fabab659d2a508bc65c4
- SHA512
  
  891014f3aa311091ca567206aa98adf7d0395b10e39c5dc51fd2cec15e0732fa0d24a725cbfa5435e8973e2d2e4786c28c204bcab6c2c43c284fe08996be6b77
Score

1^/10
behavioral15 behavioral16
- Target
  
  OverwatchWebcam Win64 v.0.4-97/OverwatchWebcam_Data/StreamingAssets/aa/AddressablesLink/link.xml
- Size
  
  24KB
- MD5
  
  7fd1b8ba1f988493a45ded42e44edeaf
- SHA1
  
  457caed3f67b6bd723ac664d1b05dc57e5c38be5
- SHA256
  
  87bd2fbab92657c0100108d3be918e0ebc4a50d9afc9c8c2100c583798075cd7
- SHA512
  
  346c59a77f3ca34543eba9bb1d495d49cba32bff3b7a8c46c1447d63335e1a8cbec81d313ad0b9542eac594183164c3c43b3e55dbc94d354182723882759fc3e
- SSDEEP
  
  192:FecuoJvsuTakc762HCQKSP4DfahKoEKbOrurTFTfTITL1RAQ50s:Fe0siakc7LEfwKoOe+j
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  OverwatchWebcam Win64 v.0.4-97/OverwatchWebcam_Data/StreamingAssets/aa/StandaloneWindows64/_unitybuiltinshaders_34ee23b107d57e68e8da5959cd25d819.bundle
- Size
  
  37KB
- MD5
  
  87a31e963824f487771312cde939623b
- SHA1
  
  baf56dab9e8fda1ed6e6f70c7e54d4970a36b3c8
- SHA256
  
  9d4eafc1c11f3808bb114818640b3cadbb7986556e035261a7ec34e1c3e605c6
- SHA512
  
  1207d48a11967bfd51b35afb87713840367df32241525bf832873f91c5ffbbd3cc13f3d5214a4ab5cefcdefb43f9e0886398d19cb1dc22544c6dfbe9c8104fd6
- SSDEEP
  
  768:bZm5KbbwXoR1Dt78rWm9QTUrU9u17YFr7KrbACX+lRMYTrQBOIsDcm:b7cw1tcWm2TTu1uOrn+lWYghsDcm
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  OverwatchWebcam Win64 v.0.4-97/OverwatchWebcam_Data/StreamingAssets/aa/StandaloneWindows64/actionscenes_assets_19_ridingpov_dva.bundle
- Size
  
  17KB
- MD5
  
  a906580c3bb6ffda507a2215e5f82d13
- SHA1
  
  c032cdc0d4bf8578b7fd955fabea8f5f901a9312
- SHA256
  
  5567802d0f0f9c65cedded03efc2aa9cdaddf8c5b9695c8a0f65b96237bf355b
- SHA512
  
  ed0dc8dee0e59698f06107c7837dcf2c07f858e7e05ff249d619ed3b8fa866670183b12954863f33916b3f86510099b5cb0e0bf7d882d5dd46d807ad9fabe9c1
- SSDEEP
  
  384:pntkN8wIHA7Vt5+wxHKz859FnNfE/Dfw+PpgUF:ptk+wIIJ9HvPpNoY+B1F
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  OverwatchWebcam Win64 v.0.4-97/OverwatchWebcam_Data/StreamingAssets/aa/StandaloneWindows64/actionscenes_assets_20_facesit_dva.bundle
- Size
  
  5.4MB
- MD5
  
  6c0eaf6b583c696bb4e7718570b5e2cd
- SHA1
  
  da7f8e37861b950ee20ef792d7dc43ede855451c
- SHA256
  
  a6ba446fe68129240f6432888cfd3b7051dbb0ee4456a78cc79c5d1f6c272280
- SHA512
  
  b4445f1f4ad9874f9dc106341220bcca2ef12035c77c07172d52e7c4f375b7b59789889bac67e2a8d96106e2c2b6a4064d9debbbcca53c544db065242511cc5b
- SSDEEP
  
  98304:DXSkqfRyhtt8zC6tN4Ug13NY+MRVlyJMihnXlm/TqrgNwj3Gkgyi0npi:Xhtt8ZQUaMXahn1ET/p1yli
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  OverwatchWebcam Win64 v.0.4-97/OverwatchWebcam_Data/StreamingAssets/aa/StandaloneWindows64/actionscenes_assets_23_stretching_tracer.bundle
- Size
  
  5.9MB
- MD5
  
  610d130e22a49c1a0e153a2a4d1ea158
- SHA1
  
  8b78b7126a36d84571130e4537f9fa2a2f8da442
- SHA256
  
  bef9655845b9f423e1f4cd7e518ae8407eb4af2cfd62a3841b1c6d43e552e372
- SHA512
  
  0dd43efc435ec64b6f3c6454af62aa932b074402f5eb3acfd5f4806af2b3c05b6fdda924299fd7e71554c90f8548ea5137a90bd30b6f1ac6d32fb66c3208151d
- SSDEEP
  
  98304:vQXGUpep0SmvndHjuobejVDfo/8aX+QEZI8WQ00vj2HbRrbYhu/KUMs7LR8kCe8v:vrs/Tx7warBKL9ggq2
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  OverwatchWebcam Win64 v.0.4-97/OverwatchWebcam_Data/StreamingAssets/aa/StandaloneWindows64/actionscenes_assets_25_sandwich_dva.bundle
- Size
  
  16KB
- MD5
  
  ef5ff9aa32dbfab3ca059b1369b4b21a
- SHA1
  
  52ff0075462c223338c44dd0f423698af1ac8444
- SHA256
  
  c3039a764f1b20d52b1cd58067713612ce81b39fe9510cdd8e6dbd2811158cd0
- SHA512
  
  301c59c0405e69ea90891acce599414173fa8aeaab904169e1e54c5e9e55674f67a71c28d257c1de23bf6c8474b6243c5e67d5a93ba59c2bf084861d1565ae07
- SSDEEP
  
  384:A1Bu/+vi+9/AsBOJVEgdrE3isV0NCEHajRyW5QCRAUFBDjdB:AnKcie/AsBjgRaXV5EHwRyUBDjdB
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  OverwatchWebcam Win64 v.0.4-97/OverwatchWebcam_Data/StreamingAssets/aa/StandaloneWindows64/actionscenes_assets_29_slap.bundle
- Size
  
  3.4MB
- MD5
  
  6ee3e2c65cc8824990a74f3915cdc2ee
- SHA1
  
  ce43d51420a4dda9349e1aff657412ba90b4cec2
- SHA256
  
  7b3a153f106930bc6422ae1654bf2b70cda08c23e157c57ede5098e1c6f774a7
- SHA512
  
  b06cbe960701adcf7b99d2759bf0548f049db38f2ac3b8c7062b8b0f83e7d2d18b7a5275922a7800893bbb9fc1f2815e8c11f274e3381adfe22a78017efaefae
- SSDEEP
  
  49152:fwpVLheokwv+p4qR2miu/gAdvGv2TxZMC1TxNi:nVwW6/ZuoAhGvCxKSFA
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  OverwatchWebcam Win64 v.0.4-97/OverwatchWebcam_Data/StreamingAssets/aa/StandaloneWindows64/actionscenes_assets_31_missionary.bundle
- Size
  
  2.2MB
- MD5
  
  1ca62a30d1dddea72d24ac266e4cd314
- SHA1
  
  06a4f015d00976bd5fd594032d53ef918c605cfc
- SHA256
  
  01ed2bd7f8c56febacc9bb756a4e2ca357c04169c814a9f6d674bb4ee1f86287
- SHA512
  
  8c54ba6a0259325bfaa6bb6321f35aca099aa8614fcbb32e1f7c72aefa2d27784d594e0dd2e6ae49365d72b16c8b222b5203a2070e913e139ff5c9755cdf9b7c
- SSDEEP
  
  49152:SFZhBD4+PyLl/k1QIOv9tJDOkZthZQJiccE03:SjjDlk9dIOVtJikhZmcp3
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32