pysilon | b5748bdb4ab2a7132b1bec0c0e421e18d71b8ecb73351c6ae1ce6239c9c55462

Sharing

Copy URL

Twitter E-mail

General

Target

Exodus-12.20.rar
Size

107.8MB
Sample

241221-p4a61azmcy
MD5

0eb1d9d05ecf3fbb9fc61fbc2bb98db4
SHA1

095aaa4f949a5b8c98b9042916c6feaed77ee4ad
SHA256

b5748bdb4ab2a7132b1bec0c0e421e18d71b8ecb73351c6ae1ce6239c9c55462
SHA512

f2655ed4b339e70fac6c5962332869807edec9d761df9f68cc2419b1ee7fd786bb370b9e3ab35cbd5d751f9a5df3778895a9e977acf9b7749155c71d97c7aa11
SSDEEP

3145728:/+YDA1+OhPQKFip4i2rZ78kHDyKwuHloqqtrwNVO:WIa+OBQKFY4N0P0lo7B

Score

10^/10

Malware Config

Targets

- Target
  
  Exodus-12.20.rar
- Size
  
  107.8MB
- MD5
  
  0eb1d9d05ecf3fbb9fc61fbc2bb98db4
- SHA1
  
  095aaa4f949a5b8c98b9042916c6feaed77ee4ad
- SHA256
  
  b5748bdb4ab2a7132b1bec0c0e421e18d71b8ecb73351c6ae1ce6239c9c55462
- SHA512
  
  f2655ed4b339e70fac6c5962332869807edec9d761df9f68cc2419b1ee7fd786bb370b9e3ab35cbd5d751f9a5df3778895a9e977acf9b7749155c71d97c7aa11
- SSDEEP
  
  3145728:/+YDA1+OhPQKFip4i2rZ78kHDyKwuHloqqtrwNVO:WIa+OBQKFY4N0P0lo7B
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  Exodus-12.20/Shaders/BasicPS.cso
- Size
  
  10KB
- MD5
  
  a1c1b2a3ad9673938db2f5b45d678e3b
- SHA1
  
  3cfbbe2f50d53043c58aa618a383806ef2bdb143
- SHA256
  
  0484861c3430c42f660cd3af9e43807a7ae810b4d7f3cbc659b5924ff3666ce8
- SHA512
  
  7c55fb6ec92876fe6e13677e691e162561d5470794d12491aab6d5c4e217db650ab0549005827577454b763c73d72ca67c7598f07ba23978feb296d4fc35dcbb
- SSDEEP
  
  192:dR1Ie10Yl2OkhkRtG0/jk/3pJIFJ0sH/UBtF8aa4FUPPfUQkDDOZUUEUjVVYBrA9:dR2e1t9R446FlcC
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  Exodus-12.20/Shaders/BasicPS_Deferred.cso
- Size
  
  6KB
- MD5
  
  0559cd1ae8efcb68a517791b4c90a897
- SHA1
  
  661d7122952e6c8afbb39db6961bf63f36a28ca6
- SHA256
  
  c757edb4fda126d67e873fee88e5c415c140855527b19f301aff45b113bd89c7
- SHA512
  
  0da780d4fb1eb19f538bdcffeb88b0796a4fdb882f94720bc0f64196c69d8d55f2dc202a4cdd5dfe4b0819d180b2df483f80f8bcb2a11a4ce3a77414071fbaa1
- SSDEEP
  
  96:b35xGVE0mlpK1AY0VQIYS1CSWeJ6uUhaK:ViE0ml/Q41CSWeJ6uU4K
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  Exodus-12.20/Shaders/BasicVS_Box.cso
- Size
  
  4KB
- MD5
  
  cafc3f97947736e34dc88ed8b1afd4a5
- SHA1
  
  0c98ffc41f320684fe3e2c2d5750f6c4e10171c1
- SHA256
  
  26e5e2cf9272b6399db5ef662ad42704c17d1a3d5c68baf3f4a2a73e47a8d5f6
- SHA512
  
  a9d19adcd07f930587ac02fbe889e2b9fb4b65e9f94ad85ce549f5da459b24d19e8be41a1cf50d81330fe5f6abae3fc8a1224647a2cc232aa61b4e4b2d23174f
- SSDEEP
  
  96:NBTHRClJjDAKQAmD/nHCcGLczxZokWdMHw:XlCLD0D/nHCcG4zf7WdMQ
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  Exodus-12.20/Shaders/BasicVS_Capsule.cso
- Size
  
  5KB
- MD5
  
  75c5ba8ea2ea5cf5cc48a9a8b945e7b9
- SHA1
  
  71dd2a2e7d9c4ba05d457cbdbbaa8297ac90db09
- SHA256
  
  908223e28a22e05621f35bc7c6f3bec9c531b0030ab9ba233af43d281cf53e68
- SHA512
  
  f4acaf509a11b5bb5816ce1cbf3ba5213b731c73ef5e01998929805afad8fc376e23cc24080977a92254d090cc553659f82afee113ef3d0dc0a7fc9e7581c4ec
- SSDEEP
  
  96:3icBTHRClJRCZUKoAmjFnhZdUDDeZT8MfACoMOAMoSsPJcI:XlCEZAjFnhZdUDDeZT8MpoMOAMPsPJ1
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  Exodus-12.20/Shaders/BasicVS_Cylinder.cso
- Size
  
  5KB
- MD5
  
  82dc5f21710f20a7c2a963eeb24d5638
- SHA1
  
  0678f9935b6be1737838629fd4f6343aebdad3ec
- SHA256
  
  a8883c8daf07738f82b65cd2569d15171d9c4eb85b34db050f5d0e6b78cc0e2b
- SHA512
  
  5d265c563c2315633639fc6e71e2a20d10b36a6503e15710933374f42acc4f907e7db1c071bac6ded1d394f05a291e34c9021adcdd022eec39589b7af6f07078
- SSDEEP
  
  96:quFlJMzLNmYw3NIdTOvCqyYKYAmCPnyQcUDDeZT8MfAObnMe4AMoSsPJcIh:s/83NIdTDxkCPnyQcUDDeZT8M9bnMe4s
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  Exodus-12.20/Shaders/BasicVS_PBBNCCT.cso
- Size
  
  11KB
- MD5
  
  78603b509e71c1fceee72b1b8df7d3ef
- SHA1
  
  fb39c45aa7a646989d1f7b3183e6b27719b1b5be
- SHA256
  
  d9709a768f7056eecc0f28dde905cd1a83c9f091d582fe4223fba244070cdd68
- SHA512
  
  89e11e5c963eb44d369e830ce57d320f2d423c7cc2a65a221dd308f9bb64776471e164a6d51deec5b05268471cd238c771e6b5156aeade7bc725686f275a9340
- SSDEEP
  
  192:oRA3axRVvgbeK/p+CzzBnL2EnWYMMVRFSTB2SsLFssIrPkqP4ENE2hUOUEcE97ZI:oRA3axRVvgbF/p+CzzFLnnJbb
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  Exodus-12.20/Shaders/BasicVS_PBBNCCTTX.cso
- Size
  
  12KB
- MD5
  
  e8fceb48809206ffa2190926bd94a26b
- SHA1
  
  26f008f2887a5dc67be1314a9fc53a3c8895c4e5
- SHA256
  
  080dcebbf8a610b6d88311f051f9c12415dd955f052cb8a7bf0f75ad84594421
- SHA512
  
  3ea35c400f3e15eb3989d4435618ca640418a74026b7aca8de7f1ed5d6423c8b27b7143b9077f8c67c7784a3caa2ae427dd322800c0c6edbd9aae05c3da6eab1
- SSDEEP
  
  192:cRA3axRVvgbeK/p+CzzBnLA7wnrYMMVRFSTF2NMvmv4Wk1PbUCUMUuUD7NU3kUD8:cRA3axRVvgbF/p+CzzFLtneH0
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  Exodus-12.20/Shaders/BasicVS_PBBNCCTX.cso
- Size
  
  12KB
- MD5
  
  47fd23bc94a8b7b3df268b21d943149d
- SHA1
  
  1816930696640dd453d509199de7dcdebebe6eab
- SHA256
  
  bf7b25420714c89890a57724ecb55ae90a009e2a72f8908b25d9e5e8f0e36ad2
- SHA512
  
  e7f4b1e8d56f9323f5cd159951d2cf52451b843fab613f1e8724d85908cba474c961b503115f878245bd1b39e593477f81439e99299bf7ee88b39cc7d8e06f7a
- SSDEEP
  
  192:WRA3axRVvgbeK/p+CzzBnL9PnrYMMVRFSTFrQMvmqhck1PbUCUMUuUD7NU3kUDMj:WRA3axRVvgbF/p+CzzFLtnTHTk
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  Exodus-12.20/Shaders/BasicVS_PBBNCT.cso
- Size
  
  11KB
- MD5
  
  64249b35d9878307a22562d9c3350187
- SHA1
  
  fd7de3ddea3529f6ccde5a489862210f8fdcd18a
- SHA256
  
  57003ebcdcb555bc7ded3d6f8a9aac994980b55c5a2e245ddc67e73ea02bbb2f
- SHA512
  
  acff4428ac215b52ed17150343b7faf1e5e38bc26738ca8c0b74d95fc1af23f9a2c9d7b9d6e0d17843b2c289cb221a65a23f1e9d98f5281b41ff76ef69d39947
- SSDEEP
  
  192:GRA3axRVvgbeK/p+CzzBnL4jnWYMMVRFSTB2SsLFssnPkqP4ENE2hUOUEcE97ZEs:GRA3axRVvgbF/p+CzzFLqn9wOZ
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  Exodus-12.20/Shaders/BasicVS_PBBNCTT.cso
- Size
  
  11KB
- MD5
  
  16f0aae227b19534fe9a98f86b884732
- SHA1
  
  4b830345b2572696852f2d5c5f66cca86dc0217c
- SHA256
  
  5c3ade24814c02b8ac5a7657b7e3d400babb84c25c6769cbf3f4357371562326
- SHA512
  
  1dbe05eb1b19ab9d0a873e5e722ad584c4b07eb993bef98f03b198f09f31240e9baa15ae9ea9d07ab850fd5b6acf654d92b9cc164fff08d74485a7f2523eec65
- SSDEEP
  
  192:y2XRA3axRVvgbeK/p+CzzBnLkSnWYMMVRFSTB2SsLFssIrPkqP4ENE2hUOUEcE9V:JRA3axRVvgbF/p+CzzFLznJwl
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  Exodus-12.20/Shaders/BasicVS_PBBNCTTT.cso
- Size
  
  11KB
- MD5
  
  57078a396efcc39724e3f3b4dab216f3
- SHA1
  
  afcf336d273745ec629ef901091f28d85e2a6f51
- SHA256
  
  cfc052998b773bd386d70b23effa94f4ffdabb65fcd75b805ed5c28628b650af
- SHA512
  
  d3704bd19c77c14121e3afa12bb669927f2a9f5c6f027406696a5eead0313d0138d342800eb5d46ae62190d1b908acdbeddf5b66686a81d2e9f4fd3862b2ffb1
- SSDEEP
  
  192:YRA3axRVvgbeK/p+CzzBnLay+nWYMMVRFSTB2SsLFssdPkqP4ENE2hUOUEcE97ZW:YRA3axRVvgbF/p+CzzFLadnFwh
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  Exodus-12.20/Shaders/BasicVS_PBBNCTTX.cso
- Size
  
  12KB
- MD5
  
  2629d4bf47252272657abe73647d0332
- SHA1
  
  baef40dd271c501803e9279041481f70623a46ae
- SHA256
  
  3df478034e74e9336b34d74434a9cf9466d151919c075d7760078e9962bd6418
- SHA512
  
  ca56b0eb665dafe6a97e74e1c47edf4f443863df091b114507320a49ba4e45b45e31a324cb88dfa709ef81a463538c2463c414b1cf1a71dbe78b033ca163e957
- SSDEEP
  
  192:TRA3axRVvgbeK/p+CzzBnLvpnrYMMVRFSTFrQMvmqhck1PbUCUMUuUD7NU3kUDMj:TRA3axRVvgbF/p+CzzFLRn4HT
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  Exodus-12.20/Shaders/BasicVS_PBBNCTX.cso
- Size
  
  12KB
- MD5
  
  1106debb88f3e619533f3ddee3c02885
- SHA1
  
  f7fe97a42f560fc1c5e28d6dece0f586d5a531b4
- SHA256
  
  91935b49654fc122539eca1949aef723d0d8f205d131e994ddedccba96af4e12
- SHA512
  
  644f38df7bc59639b9cd56f3f15815c9fdb315c71fa6a7b4d44b9a1eb3127efa15d2865daec224ba0ca466d035c8e1e948b544fcd687138b797042f5514b94a9
- SSDEEP
  
  192:1RA3axRVvgbeK/p+CzzBnL2VnrYMMVRFSTFE/Mvm1GVIk1PbUCUMUuUD7NU3kUDf:1RA3axRVvgbF/p+CzzFLmn3HCt
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  Exodus-12.20/Shaders/BasicVS_PNCCT.cso
- Size
  
  9KB
- MD5
  
  d5e5655ba6048f0042c97df9ee070f2c
- SHA1
  
  557cb72d0a08f662334096dc807708d6ab922ae2
- SHA256
  
  9886888bbc3d1b308a178f8de0bca3dfcebfe28aa94968e14455bbad6019f447
- SHA512
  
  98af7f23232a13e6794b0cbba27ead5fb61dd4373d5a294ab8411f15e154db28185713478f70c6e3f536ec675cc07a459ff1700eb147f1d168c2657c5e9cbbf8
- SSDEEP
  
  192:ppi7nLgialn9SsREDMdubu2plMh/OwCxkk/uBrAqgMbX60E7VTqgMbSpxx1G4:ppuLfynvID
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  Exodus-12.20/Shaders/BasicVS_PNCCTT.cso
- Size
  
  9KB
- MD5
  
  b189a684c4b7a332da168995a9909edf
- SHA1
  
  3b5c4dc5476f34e9db13f711a825abfd6ebd488c
- SHA256
  
  d7d1c4d67814902b1b5e6cadab639840f39f8f7bca853e13ab2ce8e1432b8f37
- SHA512
  
  10ac5891a8a31fe131199385eab884ced234ba4958ba45fe9c2b443f6478039c2432a9ecea1fcbbbf9983fa39c7fdfed1de585f70483d5f7813985b273c89278
- SSDEEP
  
  192:tpi7nLgiJjnsSsREDM4Nbu2plMh/OwCxLk/uBrAqgMbO0E7VTqgMbSox24:tpuLfNnnC
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Executes dropped EXE

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32