4355ff63b7d79c659fa159a25f8f1d5d77ae0c2816f1e6e12241ef3e1d3a2443

Sharing

Copy URL

Twitter E-mail

General

Target

LovelyCraftPistonTrap_Win64_v.0.1.zip
Size

96.7MB
Sample

241201-xewqeaykgs
MD5

9c0382e7ffb95e1368cbb001d7e2f2ea
SHA1

3772667c6e327504b30b5abb2d129d60577ade43
SHA256

4355ff63b7d79c659fa159a25f8f1d5d77ae0c2816f1e6e12241ef3e1d3a2443
SHA512

6adb174c37ba9910d53074ec0136c180e8b86e62a76d35df65188ab2068641d9ab60458d8c8be24d6ba407b339909bae0ab4bb8fba90ba2f30acd1a4c28a0bbc
SSDEEP

3145728:uIS8wrHUXPME/MhBoxnQA8H9JflfJGBwpg1Hx9U+dmQ:w8UUfME/MboxwdJflheHsdQ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  LovelyCraftPistonTrap_Win64_v.0.1.zip
- Size
  
  96.7MB
- MD5
  
  9c0382e7ffb95e1368cbb001d7e2f2ea
- SHA1
  
  3772667c6e327504b30b5abb2d129d60577ade43
- SHA256
  
  4355ff63b7d79c659fa159a25f8f1d5d77ae0c2816f1e6e12241ef3e1d3a2443
- SHA512
  
  6adb174c37ba9910d53074ec0136c180e8b86e62a76d35df65188ab2068641d9ab60458d8c8be24d6ba407b339909bae0ab4bb8fba90ba2f30acd1a4c28a0bbc
- SSDEEP
  
  3145728:uIS8wrHUXPME/MhBoxnQA8H9JflfJGBwpg1Hx9U+dmQ:w8UUfME/MboxwdJflheHsdQ
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  LovelyCraftPistonTrap Win64 v.0.1-175/GameAssembly.dll
- Size
  
  34.1MB
- MD5
  
  ac4e3699718eeef7d816b68f1d38a7cf
- SHA1
  
  7adfb85d25af47b5664061aa3a5a75a02309fccc
- SHA256
  
  68eb99dd14dc69b5b701af27edfd95219ee214a5b10351cce339adb79e262f54
- SHA512
  
  04e1210b3f85346a0b2aa597e83779ee923192262e11389bc3aac9558eee3a30a70dfa61fe1d721755ec7f8e8077fedda5ab9a5ebd536ece2414fdf3cfb15187
- SSDEEP
  
  393216:bq6A7TO25dw8IbQ6tiTsds/Jx6XvtK7h/ozSZfJwLXRI5d/Cl4T5cDd:DAjdkwTwDo/Cq1c
Score

1^/10
behavioral3 behavioral4
- Target
  
  LovelyCraftPistonTrap Win64 v.0.1-175/LovelyCraftPistonTrap.exe
- Size
  
  651KB
- MD5
  
  904e8e2171d7ad133dff57a9ff4ab264
- SHA1
  
  90d9b7dd2fe73e5bc88fecd4c4b7059dacc3efd1
- SHA256
  
  871d6b599a13b1ddc45ae0ed7bad20e024200ad01701b53aa208263ffb76d925
- SHA512
  
  cd4ead406b4f0dc0c04b214e0b6d5a709e471c0fe2747eb42b9ce159bd8fd57bbb4f8fcde1d50516504dc898c6b7b8c86540ec3f4f552bc0a0f2ebaef8a2e4eb
- SSDEEP
  
  6144:C/7FG9mpcJ/OD8kU88bWrCPmGr00/O+Du1ksKbkPqQ9nVCHp:C/744aOD8NbWrDGr00/Oo+HPqQ9VCJ
Score

1^/10
behavioral5 behavioral6
- Target
  
  LovelyCraftPistonTrap Win64 v.0.1-175/LovelyCraftPistonTrap_Data/Resources/unity default resources
- Size
  
  1.5MB
- MD5
  
  143dc232c9457e1bb787ca819754dd9b
- SHA1
  
  86c8eefd06d786c341d8f563c1b56899f09e7d93
- SHA256
  
  447caf3737cc58e2cf965f9829ae1c00c2c88505c055df2e8be0d8ede76b4da9
- SHA512
  
  de3d8771a43b0a0f584cd6d769dc0fe73c7279e3d0f19fb6975ce5f75430ce7312bc9057f8f2aaf2647dd6b07440f3b97f789e0ee0a6a51f8f8b56f0f764b3bc
- SSDEEP
  
  6144:MWJxVJ0aYR1CCVX8BAiZahS3YW+/OJ9WqCmKISHCkcCqw:L8TpQahHvOjdCTew
Score

1^/10
behavioral7 behavioral8
- Target
  
  LovelyCraftPistonTrap Win64 v.0.1-175/LovelyCraftPistonTrap_Data/RuntimeInitializeOnLoads.json
- Size
  
  2KB
- MD5
  
  859078fed0db39d36215495e653fe4a8
- SHA1
  
  bac43c655f9d91caca25598c2fd9aa8e2739a9e1
- SHA256
  
  1b06bffb1524d403c515c55337d760f227234d95024edbb12d24eae3ce7831e1
- SHA512
  
  115c5bb91f6f6590d97c1d4120c06b5bf8313935ce84321d9796a5bae1bf7c4e973ae325bbd774e43b05cd04452f25637950e86984f66b5d4507c77bc00934f0
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  LovelyCraftPistonTrap Win64 v.0.1-175/LovelyCraftPistonTrap_Data/ScriptingAssemblies.json
- Size
  
  4KB
- MD5
  
  197b8d2cd994f478f38672be181dddda
- SHA1
  
  871699cfb1d1ae56c7a7f07077408921dc44d28b
- SHA256
  
  b224ac0452b9aa6145019da297c7a56938e45271858f5190d17aa5dd566e1bea
- SHA512
  
  5cd0ec22113aaabfda5bfd34ae8154a368a355f8b1abf3446b67d4e488976a0be48caf572cffc8d5787cc231dddbdd4dfe1ec413d068340efbec489574373c0f
- SSDEEP
  
  48:YXNAYrKXrjFRlClouNuQGoSfTG/fjTPichHamlhd9bm4FpDe6nf:G0jrlMouNtjHHambm/6nf
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  LovelyCraftPistonTrap Win64 v.0.1-175/LovelyCraftPistonTrap_Data/StreamingAssets/Android_version.txt
- Size
  
  2B
- MD5
  
  68d30a9594728bc39aa24be94b319d21
- SHA1
  
  be461a0cd1fda052a69c3fd94f8cf5f6f86afa34
- SHA256
  
  44c8031cb036a7350d8b9b8603af662a4b9cdbd2f96e8d5de5af435c9c35da69
- SHA512
  
  cffaba95edd5423edc8f53a99927111e78647ba60c4c891ecf91a0b3d0ca61a8550fd75c20d4df22268bdb680d341cc5fb4d232c26c076c01a26911acb0b10ae
Score

1^/10
behavioral13 behavioral14
- Target
  
  LovelyCraftPistonTrap Win64 v.0.1-175/LovelyCraftPistonTrap_Data/StreamingAssets/UnityServicesProjectConfiguration.json
- Size
  
  1KB
- MD5
  
  ae7b42d887960485453f5c1089d14c0b
- SHA1
  
  e83af71e4ac0d971f77a0362ee44c7e50ea92219
- SHA256
  
  56d63edcecd2c75f08f22583a3033fca7cedb02aa3f7022f65322718586da2d0
- SHA512
  
  dddad9372d25b5aad9d3ab612b991c5c4792a54fa2de10bd1fe7260944e78e8f6802ddfea9de3471639f104dde448d5f56edef2c6bf333dcdb721e295eade3a9
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  LovelyCraftPistonTrap Win64 v.0.1-175/LovelyCraftPistonTrap_Data/StreamingAssets/WindowsEditor_version.txt
- Size
  
  1B
- MD5
  
  c4ca4238a0b923820dcc509a6f75849b
- SHA1
  
  356a192b7913b04c54574d18c28d46e6395428ab
- SHA256
  
  6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
- SHA512
  
  4dff4ea340f0a823f15d3f4f01ab62eae0e5da579ccb851f8db9dfe84c58b2b37b89903a740e1ee172da793a6e79d560e5f7f9bd058a12a280433ed6fa46510a
Score

1^/10
behavioral17 behavioral18
- Target
  
  LovelyCraftPistonTrap Win64 v.0.1-175/LovelyCraftPistonTrap_Data/StreamingAssets/WindowsPlayer_version.txt
- Size
  
  3B
- MD5
  
  bf8229696f7a3bb4700cfddef19fa23f
- SHA1
  
  d094700e379f0fb3b543e25c77f8e4b3e068f057
- SHA256
  
  41e521adf8ae7a0f419ee06e1d9fb794162369237b46f64bf5b2b9969b0bcd2e
- SHA512
  
  decd1011d7d1e6d9622d3f22a76b385fa53b1fb7deae229345a83da90f292999a135d588144faf42a369b1f719a4705bd884575bbebb9b57f9ccb6ce52501b52
Score

1^/10
behavioral19 behavioral20
- Target
  
  LovelyCraftPistonTrap Win64 v.0.1-175/LovelyCraftPistonTrap_Data/StreamingAssets/aa/AddressablesLink/link.xml
- Size
  
  24KB
- MD5
  
  a786d29ac2eb4c5aa8a3795bf0b2d369
- SHA1
  
  6cef4b6e0241a36ef8b092faece8fa9856b96319
- SHA256
  
  2f94f75de37e65d238988b1ce2905db1f088ab50705e885258923367b6d0f6ab
- SHA512
  
  3205adf5787d1c886fbad02864561cbf3a4681cc223971ca9b86da983a0fb69a351dfd1abcd254f57c35187b174c5112fe27698c43a27b837f051a8f964b28e2
- SSDEEP
  
  192:tru/B9z7p2n1ZpE9mdiOsuDakA7yeLwGfvfAKoObOrurTFTfTITL1RCUaPf:UMRsoakEmYfAKoXgTn
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  LovelyCraftPistonTrap Win64 v.0.1-175/LovelyCraftPistonTrap_Data/StreamingAssets/aa/StandaloneWindows64/_unitybuiltinshaders_79da802d0512b6bad292d399878c0ece.bundle
- Size
  
  36KB
- MD5
  
  5672cf1ebe78d11159937934f7576fc4
- SHA1
  
  6a884273fd11cd2acc14e5592605c3ad9543bd43
- SHA256
  
  e9c5a2d9ad9cbc9f37d8bb8bac8df6e14d584f41f27b2ce41d3e40092bb84d98
- SHA512
  
  88e2adbd0fd2d9978bfe00f5f25d1fc1ec97605da8d9f08fe9557b3457beb69b2c51a32f5ba911041832452cbe425c6e9159374cac951a5c4e360d204e725cca
- SSDEEP
  
  768:9ZM5KbbwXoR1Dt78rWm9QTUrU9u3t7YFr7KLbwew+4RMoTrg+OofaY+ew:9Ncw1tcWm2TTuduOLg+4WoQ2R+ew
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  LovelyCraftPistonTrap Win64 v.0.1-175/LovelyCraftPistonTrap_Data/StreamingAssets/aa/StandaloneWindows64/appinitial_assets_all.bundle
- Size
  
  62.1MB
- MD5
  
  c74372ff53f82106da8adfdb0ec30c4e
- SHA1
  
  b2f27871bb75681b63219fb98cfb2722b17ea98f
- SHA256
  
  0bc4d4cc2b58c8a5263ba29ab943f6157915c5bd35b3e07998174fd85fad3816
- SHA512
  
  20fc13b2e579650679be2dce7da2ad843f1f39dbed581d34556298a883e73f490e454cca7ae2ee64cece13b827cf4bf699b90c38705b72803886fa8168ac9cd0
- SSDEEP
  
  1572864:XgmFjPj8TnnmmXML3vhjeYgdes4FhD0lsQ7ad9AItr:w2b8zmmXS3vhjenesUxf1Hvr
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  LovelyCraftPistonTrap Win64 v.0.1-175/LovelyCraftPistonTrap_Data/StreamingAssets/aa/StandaloneWindows64/fonts_assets_all.bundle
- Size
  
  1.4MB
- MD5
  
  39c8becd86ea19acf8e902f5f2540ef6
- SHA1
  
  8500de0056db12380ca0b6b06662788a89ddc856
- SHA256
  
  a8695523177f9613e04085df60ac0f3421143a1e1597cf7817ec79a83e095f83
- SHA512
  
  b98fae45c31980c6601631ab5d72b3c84d4e4f4f15c40866436e93fb4ad9b904394a296293a3e9278976fdf0e90acbb5ec4f9bd4d28e0356c3dcdd1f3d983f01
- SSDEEP
  
  24576:OJ1loLVknWMV0uNoXFBhvVLQ3YVyb4N4Z7/7DkZedzRE2ILTATpf0N1C:41Kq3ILhKAB4Z7/uClJeg
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  LovelyCraftPistonTrap Win64 v.0.1-175/LovelyCraftPistonTrap_Data/StreamingAssets/aa/StandaloneWindows64/frameworkinitial_assets_all.bundle
- Size
  
  1.7MB
- MD5
  
  cc173f6678c9ca4612088a830f53717a
- SHA1
  
  39453ea6920d700dc48a4b795db7683f9fe588a0
- SHA256
  
  5f361236cb836ca6582481854354ee9854ebf339524043c02c846e52f964e7e1
- SHA512
  
  a5382fe788dbc433aa52541191e0b0f4208ba2e70738f4994f276f451ff22bfecf990e477243492de28c05543fd08b618b111dec3d4de7ef36db5477494c0b11
- SSDEEP
  
  49152:dpI0v/hVB15WebJcroe6HBTQ1kLeCsJYMU/:dRZVB1YGmf+TQ1Vvc
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  LovelyCraftPistonTrap Win64 v.0.1-175/LovelyCraftPistonTrap_Data/StreamingAssets/aa/StandaloneWindows64/shaders_assets_all.bundle
- Size
  
  101KB
- MD5
  
  75aa4a541f7afa5e5fd77ba5194775a7
- SHA1
  
  bffff3369cd21a1a77ae8be72edadeae29ed2f92
- SHA256
  
  9dc863bfe0673e6d8b68804a77ac9838c7f51081be5a9e34044984121b278f43
- SHA512
  
  37f067d378d31f8eb54eaea08ca1fd8eeb4b5082eaef47ca6063eca3704b50dbee5627423727f86b1164f9dad0d98ff4fcf0f577ffb48a4ecacb6c1cf5d22421
- SSDEEP
  
  3072:ZNn1XunPQAWUtRaiIOHh9I3mXY6OEbkMJIt4:r9oQAW0aXOjuyXXIm
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

Install Root Certificate

T1553.004

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Executes dropped EXE

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32