Overview
overview
7Static
static
3GooberWasH...er.exe
windows11-21h2-x64
4GWHLauncher.bat
windows11-21h2-x64
7PLAYERDATA...r.json
windows11-21h2-x64
3assets/NOTE.png
windows11-21h2-x64
3assets/PAY...OM.exe
windows11-21h2-x64
7PAYLOAD1_COM.pyc
windows11-21h2-x64
3assets/PAY...OM.exe
windows11-21h2-x64
7payload.pyc
windows11-21h2-x64
3config/cfg.ini
windows11-21h2-x64
3mods/INSTALL_MODS.md
windows11-21h2-x64
3Analysis
-
max time kernel
435s -
max time network
438s -
platform
windows11-21h2_x64 -
resource
win11-20241007-en -
resource tags
arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system -
submitted
10/11/2024, 21:15
Behavioral task
behavioral1
Sample
GooberWasHereInstaller.exe
Resource
win11-20241007-en
Behavioral task
behavioral2
Sample
GWHLauncher.bat
Resource
win11-20241007-en
Behavioral task
behavioral3
Sample
PLAYERDATA/player.json
Resource
win11-20241007-en
Behavioral task
behavioral4
Sample
assets/NOTE.png
Resource
win11-20241007-en
Behavioral task
behavioral5
Sample
assets/PAYLOAD1_COM.exe
Resource
win11-20241007-en
Behavioral task
behavioral6
Sample
PAYLOAD1_COM.pyc
Resource
win11-20241007-en
Behavioral task
behavioral7
Sample
assets/PAYLOAD2_COM.exe
Resource
win11-20241007-en
Behavioral task
behavioral8
Sample
payload.pyc
Resource
win11-20241007-en
Behavioral task
behavioral9
Sample
config/cfg.ini
Resource
win11-20241007-en
Behavioral task
behavioral10
Sample
mods/INSTALL_MODS.md
Resource
win11-20241007-en
General
-
Target
assets/NOTE.png
-
Size
40KB
-
MD5
ad492c717eebaafd4ff79c8af03fbe3b
-
SHA1
f87c132981f377645ae7958cc388f59fae9609ad
-
SHA256
60c7d275fa83f484fe525e8fef3be560af89c13a15b5046abf742078a05a158a
-
SHA512
9bd58f6ba71545f8a6231000725144f6d30c9d8b05ea9d1103a505e0bceadd64a781d60e54a2bd169395442b4bd25e4391fcb7b5b5f63339cffc9d474a2c5c43
-
SSDEEP
768:wRAzO8FhAwQAzNmrrrP57YKS1LA1gw+iw66qVeT+raxNRhDtD/yDtDtDtDO:wRAzpFe/AY5kKuUa66q46mx3VZIZZZO
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).