0486391c3b7fa7320f3582d71a31a418a69ed400bbddbfe8125d1f1ab465f73c | Triage

Submit
Reports

Overview

overview

7

Static

static

5

lOl Cheat.rar

windows11-21h2-x64

7

BUTTERCUPM...er.exe

windows11-21h2-x64

1

BUTTERCUPM...ol.exe

windows11-21h2-x64

5

out.exe

windows11-21h2-x64

3

Resubmissions

05-01-2025 11:38

250105-nr4gcasrb1 5

05-01-2025 11:35

250105-np6hxssqgt 7

Sharing

General

Target

lOl Cheat.rar
Size

1.6MB
Sample

250105-np6hxssqgt
MD5

f871378b60c0c278671a626d1f0be795
SHA1

1ad82b915d1c1ac73ef0cd7b64b5da34f917d989
SHA256

0486391c3b7fa7320f3582d71a31a418a69ed400bbddbfe8125d1f1ab465f73c
SHA512

96c40a87136688e2846ed913957db198f6d28622763b9e05c01dbface4ffc27553fc7dd909b6bad86c9fe71be9ce0dcb19ba549a929cef2e2ce1729aaabc7d14
SSDEEP

49152:nfKkv5gjc2l+KCyBOxPKZrSonVju2slouxCrv:nfv5kJlB84rbnVjxsl9xWv

Score

7^/10

discovery upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

lOl Cheat.rar

Resource

win11-20241023-en

windows11-21h2-x64

11 signatures

300 seconds

Behavioral task

behavioral2

Sample

BUTTERCUPMAİN/SkinChanger.exe

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

300 seconds

Behavioral task

behavioral3

Sample

BUTTERCUPMAİN/dControl.exe

Resource

win11-20241007-en

windows11-21h2-x64

12 signatures

300 seconds

Behavioral task

behavioral4

Sample

out.exe

Resource

win11-20241007-en

windows11-21h2-x64

1 signatures

300 seconds

Malware Config

Targets

- Target
  
  lOl Cheat.rar
- Size
  
  1.6MB
- MD5
  
  f871378b60c0c278671a626d1f0be795
- SHA1
  
  1ad82b915d1c1ac73ef0cd7b64b5da34f917d989
- SHA256
  
  0486391c3b7fa7320f3582d71a31a418a69ed400bbddbfe8125d1f1ab465f73c
- SHA512
  
  96c40a87136688e2846ed913957db198f6d28622763b9e05c01dbface4ffc27553fc7dd909b6bad86c9fe71be9ce0dcb19ba549a929cef2e2ce1729aaabc7d14
- SSDEEP
  
  49152:nfKkv5gjc2l+KCyBOxPKZrSonVju2slouxCrv:nfv5kJlB84rbnVjxsl9xWv
Score

7^/10

discovery upx
- Executes dropped EXE
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1
- Target
  
  BUTTERCUPMAİN/SkinChanger.exe
- Size
  
  3.9MB
- MD5
  
  19191825d5c9bf167d3219c25da0f987
- SHA1
  
  4bbcdd49e5ffb5452d0e1437961a0e88b5730233
- SHA256
  
  7cf7a3021a7142fbc77e82b6315040c746021706cd92b6ee1f124b2f7b6423f5
- SHA512
  
  6625d9c5d3c5926374d4fd32cc70dbc020fc7ccebadb4c498631f2579bc253e394d5d6c8336ab120c6433adfbff75a98a0d7117bb8b15b9a611bc257c5c86c6f
- SSDEEP
  
  49152:JrCARmOR2K4BX/xesdDr+M4WV3Dcn+MF7XXRPnD12aWFi2k2PF3WUikmoOL:bTrWfNYn17Xt12/VjFGzk
Score

1^/10
behavioral2
- Target
  
  BUTTERCUPMAİN/dControl.exe
- Size
  
  447KB
- MD5
  
  58008524a6473bdf86c1040a9a9e39c3
- SHA1
  
  cb704d2e8df80fd3500a5b817966dc262d80ddb8
- SHA256
  
  1ef6c1a4dfdc39b63bfe650ca81ab89510de6c0d3d7c608ac5be80033e559326
- SHA512
  
  8cf492584303523bf6cdfeb6b1b779ee44471c91e759ce32fd4849547b6245d4ed86af5b38d1c6979729a77f312ba91c48207a332ae1589a6e25de67ffb96c31
- SSDEEP
  
  6144:Vzv+kSn74iCmfianQGDM3OXTWRDy9GYQDUmJFXIXHrsUBnBTF8JJCYrYNsQJzfgu:Vzcn7EanlQiWtYhmJFSwUBLcQZfgiD
Score

5^/10

discovery upx
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral3
- Target
  
  out.upx
- Size
  
  653KB
- MD5
  
  6970ea0b6597dcd5b4f5f19f28e958a8
- SHA1
  
  a0130bb7ac03ec4799c90781ca93fd1392c6d54c
- SHA256
  
  481e03978ca339ce697252895efe89b09fefd3098ad247d24eeb6cca9969f553
- SHA512
  
  bc95cbe9a050e3d3b713745ef399bf2817d38f8e019f6edffdd2bf755badbde766e434e39a7f32356125bba0692b694c18da8dd0762aac0c9430d45acb215e01
- SSDEEP
  
  12288:nkxDoouVA2nxKkhEvdRgQriDJOIlW+yBGQowlNCWS:RRmJkioQrilOIc+yMx
Score

3^/10
behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

© 2018-2025

Terms | Privacy