eab4cafe9a157aa8c98145cfc5744f3807ecaf0c74502de3240a518577ecbd58 | Triage

Sharing

General

Target

54b42e9cdd7cd34337e87afbbd15f591_JaffaCakes118
Size

185KB
Sample

241018-brlkba1ckq
MD5

54b42e9cdd7cd34337e87afbbd15f591
SHA1

421fb209daef3a1acd521c7a01daf4f2c452fc85
SHA256

eab4cafe9a157aa8c98145cfc5744f3807ecaf0c74502de3240a518577ecbd58
SHA512

2a52cb5b1cc1afaf80027da4918cf80e747d6fde077adc431786c497482afd28827b55ee01d37f2c352b47cee25e1e0c390c033436fb6d151945f4bb5e2cf51c
SSDEEP

3072:TnJHX5jmMqGZ+ydIx+pmwgPVH/RveLFz0mZD4UBplLJjN0pudm8DKBQ8G9ht7J7J:Tx1mM5Fd3gZkz0uDXldSYt22F06

Score

7^/10

discovery upx

Malware Config

Targets

- Target
  
  Metin2 Levelbot 2011/ExpIsEasy.v2.dll
- Size
  
  83KB
- MD5
  
  5d3a2ce928a3b9fdcd7cd7a3e7abc663
- SHA1
  
  bd560179016ac5b042ebff325e136fddecd14f3b
- SHA256
  
  349402a99ec317ca3ef4f5f331c9241cb1cb08d8834b06c07b9fb953fd27de6c
- SHA512
  
  ef60da51b788a2809898e1ae2f67f65b1727e191fdc7636f788c8603cba073d68c546b7e331375f0809effffd292e2befe94d44791874f4bf8ca4417092f1bde
- SSDEEP
  
  768:0Io5J0bjN6eDwM3bvlat3X47cN0l+unrqR5p0hdC7rBf3ePb7NHnsBJXRjokELLS:+0bFDw+Q1EcqbqREhaDzCBO0k3M54R+
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  Metin2 Levelbot 2011/HackShield Bypass v0.3.exe
- Size
  
  32KB
- MD5
  
  913fb039c44f99e1567cc7d402bc4b53
- SHA1
  
  e484336197dd324ed822e969a42a41f863fb15ed
- SHA256
  
  60f4952c254df17ff67b9f646bc8c68e8b02bf3e13e17a6f6d0f2dfa7ee0626b
- SHA512
  
  cec02103414dca56ecc210f1ea77ce811a6a547c6c52e0565b913a111d14ea25ba1bc41794318f4934e6ec43ecb081f56a0e0394e9d6c216c21ccb2b4865db76
- SSDEEP
  
  768:8mOhplcsHvKWzX6HJmFqda7koFcWynbcuyD7URqnD09:pOhplcsHv1X6n0fsnouy8RqnD09
Score

7^/10

discovery upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4