blackguard | e36962c7613c7cec9e09e4e20d044d59f48fd5b7f969bdc0251703f2dd0998bd

Sharing

Copy URL

Twitter E-mail

General

Target

REPO-SteamRIP.com.rar
Size

410.8MB
Sample

250319-s57s5syse1
MD5

8f37d082af95556e9de90ffad55e80ca
SHA1

49b4e1fd505b1c6d1188495487ce07bc51a26abf
SHA256

e36962c7613c7cec9e09e4e20d044d59f48fd5b7f969bdc0251703f2dd0998bd
SHA512

07410a2819c6778ae288c1f8678cf77c6bcd5060a7ee5614ba420bf2192e410d669a1ec11b740304fa22959810c52aecf952fc718a25bc71d66e26153cfd5639
SSDEEP

12582912:unSnXWmXdshrHNaN6Gxh8ocYQtixfiYY8h2a:unSnXTtshb48Ch8oimfiYIa

Score

10^/10

blackguard discovery

Malware Config

Targets

- Target
  
  REPO-SteamRIP.com.rar
- Size
  
  410.8MB
- MD5
  
  8f37d082af95556e9de90ffad55e80ca
- SHA1
  
  49b4e1fd505b1c6d1188495487ce07bc51a26abf
- SHA256
  
  e36962c7613c7cec9e09e4e20d044d59f48fd5b7f969bdc0251703f2dd0998bd
- SHA512
  
  07410a2819c6778ae288c1f8678cf77c6bcd5060a7ee5614ba420bf2192e410d669a1ec11b740304fa22959810c52aecf952fc718a25bc71d66e26153cfd5639
- SSDEEP
  
  12582912:unSnXWmXdshrHNaN6Gxh8ocYQtixfiYY8h2a:unSnXTtshb48Ch8oimfiYIa
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  R.E.P.O/REPO_Data/app.info
- Size
  
  13B
- MD5
  
  3f37a9d317bc925a4520e901142df2c2
- SHA1
  
  04fd39110585ec900788dbff200d5bba66bf971e
- SHA256
  
  bb1afac27e89993cd53392a0535427c23481a65d57f8b21d4bb3514b81d7d02f
- SHA512
  
  e9e4d6ed0f26bc95ec2f594ba8a43188beee8e78a47fd8cf176c015d515c9565e722bf9d506008a344bdf8b3337742c62e69f337731a3f843640e987976a2674
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  R.E.P.O/REPO_Data/boot.config
- Size
  
  164B
- MD5
  
  2bef265e5d91fffe55351a810fab3389
- SHA1
  
  1d64f1852a675ee4a770b50158934d8b72a5ec55
- SHA256
  
  23daea2865dfecba70fa0d5b156fed27a3ebbc3a12fd25af8130ee5bfb2771b7
- SHA512
  
  b25b83e5869d5bfa951a5cd06a225c484e6fdf26ed80a6c34cd38e87e11138bcf2f719220aad05890cc7f776dabf8351d69bc927530ca64a24d9debd6fd42567
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  R.E.P.O/REPO_Data/globalgamemanagers
- Size
  
  35.7MB
- MD5
  
  bdf923c56293c20d115abae825ebf7f4
- SHA1
  
  02c906c9dab4d9d7ac86bf642faaa08b4742bbb3
- SHA256
  
  f6c880cfbc3ad42eab82bd96f4021d72085f67b20266915b4d8e113e22218c80
- SHA512
  
  0ddafab9dd5ba3a419327d314521f06dfa6debafe95eefed06d5bd5bf0985514159816d2ae1178de1062ba2042c2f0fedd6c232853c8c751b981055ad8f0efeb
- SSDEEP
  
  98304:maMbdajPiRFt+9W/jU9+lNwwkZlrBdHuOwn+nphmAy+2kmwY1sFoNGYw/c1Ojo03:at+9W/j6ph/2SoNGYw/Lo0xGcC6
Score

1^/10
behavioral7 behavioral8
- Target
  
  R.E.P.O/REPO_Data/globalgamemanagers.assets
- Size
  
  368KB
- MD5
  
  57a1602d7a9e7751bb16c35b2ce13e5d
- SHA1
  
  9f7d83e74fbdc682be9ea23a5b70b38e47494d44
- SHA256
  
  e90724df8266ac4fb3d79805d4379f42e624e6711d432220c15dcce2d242a235
- SHA512
  
  6f9724896f068118c4830bfd598e950d70caba41b0586398fe73078ae4b0c638ed1e6c25869dbc14daf3fe2e9989ed87199a72902ddda4b041c56efbc19df855
- SSDEEP
  
  3072:B3k7lUPNDzYwhI4kyVVaKilnXgiGh0zwk2YzXBTfMaEg5SwRUDY:BUs/YIkyVVAXTG+wk2ANMlg5SwRUDY
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  R.E.P.O/REPO_Data/globalgamemanagers.assets.resS
- Size
  
  2.7MB
- MD5
  
  69e2e2540ec11fb3a7360dd7d55fea50
- SHA1
  
  f02660bdd32e8a5c079f06e0a0ac0485b75c17ea
- SHA256
  
  ebf0f91664c0aa69e3b92e93d4d4e6feae1a9152529b0efeac047e3c9c3b0fc0
- SHA512
  
  81403c86c0373acbbb36df528b259dc72e58a7233eb18c15709a0640f4ec688dbd1cbddebdede40ae36abf08fc2e6c7071ca997d5e5646ebd1394731df15fca6
- SSDEEP
  
  1536:8nCugW37Qc/WRI5YYt3I/cTj3PzZxwWDPoAw5LoWx:4UW3stRLuxv3PQQQAK
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  R.E.P.O/REPO_Data/level0
- Size
  
  193KB
- MD5
  
  2f319ae7ba1677cf68cde342033c6621
- SHA1
  
  64968c9c114bef3d3b9028bebf5b4634a3fc3f10
- SHA256
  
  58a21aff46178ea0dd65809e278a0a3aa767f238f51eeb7e363a281bd0cd6803
- SHA512
  
  44bcfc186562c0506bb2726f5fc6d4e8406102b04055b47be3fdf2f6f096dd889c185e766043ca4cee0f92fb520846bdb5143e7f83802d7b15dabd5d3bbaf292
- SSDEEP
  
  1536:1MOkx7RVQQKkoWbZT5xz+j5m8g4tHxQRkrWomMHigorqQwTivc9W8Izym5V2ZCFL:1MOO/V7yHTpEQSKI
Score

1^/10
behavioral13 behavioral14
- Target
  
  R.E.P.O/REPO_Data/level1
- Size
  
  111KB
- MD5
  
  c71ed452d0e04a1730b363e2fe16038a
- SHA1
  
  2b972dd57df139ea6f5c9cf4dfb8708fa7028b1c
- SHA256
  
  a0ba7d76266e29798779935d5c213925b7f6981e934c8276bd36175370372fd4
- SHA512
  
  16cbb8f460859cf7fdc127969316fbb9668f968752cbbba3a029af8ea29bb299e04f808e5a6981ac245ea7d3882714142f14e874b806d378945b3df179ddbcdb
- SSDEEP
  
  1536:ZRh5TFoBE5vzk5qVWtNdXx7DWTDPq53nRZn2xIgKafZ2t7yqQ1/b4iVoZEA7:ZH5Cavv4
Score

1^/10
behavioral15 behavioral16
- Target
  
  R.E.P.O/REPO_Data/level2
- Size
  
  111KB
- MD5
  
  14bafe7388adc5f9ec104c4203af52d4
- SHA1
  
  92e07fdb02596b90196273af661d569a2f1265d1
- SHA256
  
  9dbdb60cf514cfa4aa3d3fb5a1972c47766223b07abb7d0c8f746d946ffbc107
- SHA512
  
  f8c2a009eb7f6195f4ff8b682f8abe138731e9da6bafe49463944da2b2f3ce68b85e2c0dade5e0ddc49a32848c2ab6e657495d816d9d9d8fcb9f1f207c384de6
- SSDEEP
  
  1536:5QcyVaL/n0wk1uxc+PZMGQ2x6IJkYM7o08u0e22nhdh8wZS+L75CubB/mbU3A0:59D/egc+
Score

1^/10
behavioral17 behavioral18
- Target
  
  R.E.P.O/REPO_Data/resources.assets
- Size
  
  84.5MB
- MD5
  
  29315edd911ba37ed9a8c314d495e276
- SHA1
  
  4c8e29d72fd09e70d1ed91e543f0079e3f8b0c2c
- SHA256
  
  509e60e4a98acc088a6e5bcb8f983142d1aff8de1542b430b5df1979351af7fc
- SHA512
  
  ae575ec44e0b5b730462bb6af4e76756a35572d74240f4b288d9d911b22923eb685c666d4fa0c9ce35b2a3bae7339fa42157250ec1aa60814b0acab25b9277b3
- SSDEEP
  
  1572864:pw7beeOEv600OUDxZrCyxmdyOpLl0tVFBBFUmarsswNCqR/WHjhcQEZgkoK8rUN6:y7be9Ev69OUDv9aLl0tVDBFU9IswMU/8
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  R.E.P.O/REPO_Data/resources.assets.resS
- Size
  
  10.1MB
- MD5
  
  bd03edc7ac125ac55c0df9d3c2c4b233
- SHA1
  
  847715584b62d2ecc318bb2887191290e68a68b7
- SHA256
  
  11d2c8c4ac5abfb999aa9019c7de7ea01d50fea6d2b29f64aba18a076957fc22
- SHA512
  
  5620c7b62866ad89de2c3f08ae90407c686209043691926519c3b9be776cc17c79a9734a75de93e1cd015d597d0cdcf7fa11e29c283e1945883ffb9739eae87e
- SSDEEP
  
  196608:rYTPyGhYIeM7Z8kOvklBfTEof6GibcolOOn:mKGqw7SvOBfT/ibcolOG
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  R.E.P.O/REPO_Data/resources.resource
- Size
  
  5KB
- MD5
  
  527d0c644b75693cebfe9a393914e518
- SHA1
  
  45332a7e317f0ee9c0a9503dc4ebb460b3ede23a
- SHA256
  
  d83137dcc01876b68f98a40f4f77fb5a6335f824f94e49be804eabfdeed3b2b6
- SHA512
  
  add0211f9e02cb185ad57c2b4e9e9c5b985e020dd1733e8897bf0488db6ed78c12ddd55211dc62c5e00861621a15deabeec27ccbf13973d45b577951c2512c01
- SSDEEP
  
  96:FucM7+NERI8PIs11QR760BwI5jn9uNo5tZOLmp0GL/lejnl4Z9CQJ0Xy3/Kz:FGuERI8PtPI60Bv5jh2A9L/lgeQQJ0iy
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  R.E.P.O/REPO_Data/sharedassets0.assets
- Size
  
  111.3MB
- MD5
  
  2de3a2dacc011d156ac4206003d4d5af
- SHA1
  
  80758e4fd9f818b9188e499b7aa56c8cd4b3facd
- SHA256
  
  77a02a3281fcff3ca6fefb2799bdc3dec30dc61d517a640fa1ea37a35370f19e
- SHA512
  
  3b86d81bbd3e9714692fe654ac1d147a1500ace6080918af3c04952bba1c8a1a85dc01d28e623691bc146d2c8aa17dfe616b0bc878e374f8647871fd68fefbba
- SSDEEP
  
  393216:hmvmfR3zNJBLMpxW53UVF2aiElnG3eSFfq:YW3MSkVa7u
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  R.E.P.O/REPO_Data/sharedassets0.assets.resS
- Size
  
  441.6MB
- MD5
  
  d36ad600a70c1413624eff78a63b6fc1
- SHA1
  
  74af1b45d49e5c210c63a8adefd4b1e7078dcfb5
- SHA256
  
  3ab69c52ed58d7609c12494bab6837788cfd79caf22ced88de5b28e583baaaf9
- SHA512
  
  0839a43ae4aa31345386b1eae7840dd1cc893e8c6794bb7fd8ee2362a02eeba58a7d40831d7d3111b3476feea2a79571bde50f7b92c57c8a3c17d37d6c8981b7
- SSDEEP
  
  6291456:YZwnvLwcQD+gOGlO2Z6SEx4l0ZU1rLosC5Fl0NNUb:akDbwTRQS6JxZSleFO4
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  R.E.P.O/REPO_Data/sharedassets0.resource
- Size
  
  111.3MB
- MD5
  
  361f1f999482f6a8bc476c9df3cb4c73
- SHA1
  
  70262fee7b6d35e8b322406f3bd60ae9a8328b73
- SHA256
  
  b4401e32bb7067c84e4a611806a03cfe99720b2b4e68dac352e13047a9d287d0
- SHA512
  
  2b0454b84b33a8b739bca6d28fccb8f7cc97f7f75e9527d6b8ee16c51ca7d94184b07420175c39e205afe61549ed170c8ec3f1f5cc097546af7542e4403609fa
- SSDEEP
  
  3145728:tFy9qVVMJ6Q7nWN0LjvFC0TnrOWAnjcW1ceiLjTzAqW6FL:XeJ6Q7n5/RnynjcGiLb5x
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  R.E.P.O/REPO_Data/sharedassets1.assets
- Size
  
  5KB
- MD5
  
  db60a677df35d5dcbcb6195c96414b3e
- SHA1
  
  460f8f6de421a66abafdfce086b8a54b1bb3c0e4
- SHA256
  
  e2cc2c8cef5f41ddf553cb033ec11c95d952f5be55e097dc542311e37f7e66c3
- SHA512
  
  4d6c0ac2046f0657740ce7711945bf75c0cc0750d4573389410e94910f2a5b9615e6f3a6db56c70ea27db3e939adadb4686df61cdf8cb20572821862d0e598ef
- SSDEEP
  
  96:ldtpt/l70tcaa88mSe7KtwwPQSeg84cXNzyjmRlr8:9lI83vmeyXNzPK
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Executes dropped EXE

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32