Overview

overview

6

Static

static

3

Steam Libr...er.exe

windows11-21h2-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Steam.Library.Manager.zip

  • Size

    5.2MB

  • Sample

    241016-wbl65asflb

  • MD5

    635c0ec340f578f8c2abd6a16a903bc4

  • SHA1

    04686f0107c52d5aba5b0ca3ce06d28365f1a65e

  • SHA256

    dfcf9cff89b7d0c682f3b895a64397bff307eca853d340f8dac4d58c2c0f70f3

  • SHA512

    641181975cbe333ca00ed5e148da9c12bf881010d2401c30d238b54c60da6a3af1879cb1ee6c4a5e5b0701d6b50e6dcbf8136461e50bca79690b954ad2d2e79a

  • SSDEEP

    98304:K2oC8oImMRmtJVcbt3DP+RH8oYWZdzx2e3LoslPNuqzDwCkavc:K2ofoTMRmtglWRHwKNtPNug3kavc

Score
6/10
steamdiscoverymotwphishing

Malware Config

Targets

    • Target

      Steam Library Manager.exe

    • Size

      6.8MB

    • MD5

      38c68cdb85162a87b69e7b84b07a627c

    • SHA1

      f5fb5de75c1e2a141e83f74d11db77b291b931df

    • SHA256

      1f80a98005c26a90319dfe89539edf8096cb90608fcad39513d96f5a4b805715

    • SHA512

      ed4c4f562d7c9b82a55c333d3d75116cd29e837c66395938953f466d4549c6a245cbef5499e20bd4507f919b5360ccf4ae5b08b4631b659fe8e31f5e00ee0aba

    • SSDEEP

      98304:FpW8ix8ucPxktJteuTKdhAD69l7/4DMDtz6mtZ72lBdLHEzRD8b8W8V898V8M:W2xOthulODLiKBdLHWR

    Score
    6/10
    steamdiscoverymotwphishing

    • Legitimate hosting services abused for malware hosting/C2

    • Mark of the Web detected: This indicates that the page was originally saved or cloned.

      phishingmotw

    • Detected potential entity reuse from brand STEAM.

      phishingsteam
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks