blackguard | fad398fd1100f4afa63068f3d41a7c9be46102b9229c8e43ea6335ad59ac55fb

Sharing

Copy URL

Twitter E-mail

General

Target

R.E.P.O.v0.1.2-OFME.rar
Size

386.1MB
Sample

250324-t58acasxfx
MD5

3272e8d6f9d92fdf583f26b047cd823c
SHA1

b539a3e69b8d92b2c48c935f3051ab4b68b3aa34
SHA256

fad398fd1100f4afa63068f3d41a7c9be46102b9229c8e43ea6335ad59ac55fb
SHA512

364c8d38f5d1b8323eb1bdc3d8548ca2630493e7982a9db6e75c21994979d9adeaba8575c114a78e9fc33d9738177f06c08bc534db27e4e3dd9d5491e334e0d7
SSDEEP

6291456:+WVq8Q31asIx4D31VWJTvRMmo5+YgdQAOYUazMVhJ34kYnsWD:rVkafyDoT5LYgwYehJ3lYnsWD

Score

10^/10

blackguard discovery

Malware Config

Targets

- Target
  
  R.E.P.O.v0.1.2-OFME.rar
- Size
  
  386.1MB
- MD5
  
  3272e8d6f9d92fdf583f26b047cd823c
- SHA1
  
  b539a3e69b8d92b2c48c935f3051ab4b68b3aa34
- SHA256
  
  fad398fd1100f4afa63068f3d41a7c9be46102b9229c8e43ea6335ad59ac55fb
- SHA512
  
  364c8d38f5d1b8323eb1bdc3d8548ca2630493e7982a9db6e75c21994979d9adeaba8575c114a78e9fc33d9738177f06c08bc534db27e4e3dd9d5491e334e0d7
- SSDEEP
  
  6291456:+WVq8Q31asIx4D31VWJTvRMmo5+YgdQAOYUazMVhJ34kYnsWD:rVkafyDoT5LYgwYehJ3lYnsWD
Score

1^/10
behavioral1 behavioral2
- Target
  
  R.E.P.O/REPO_Data/Plugins/x86_64/AudioIn.dll
- Size
  
  142KB
- MD5
  
  c761d504977ccb55c1b98b3d171c3620
- SHA1
  
  88c98ff7224b267bfa7a3b06f9186ee2c78dde7c
- SHA256
  
  50f8407d6cd5625d2a8811885a1917989c92186e8106b1dad8e39cc4f7f9a62e
- SHA512
  
  9ff3e033e1505f1e9926e254296fb7ca82c298b6cf3e307408a09ba6b2d884abc8646e2ae64ddea1c5ffe1b329fc2d2f9a5998fcaeef464bacf1d12ae7d909a4
- SSDEEP
  
  3072:PYjZNWehiHilHJfqE+9Qcm58uqiWFfdVGLMwVF:igHeJSEqQcmjZxF
Score

1^/10
behavioral3 behavioral4
- Target
  
  R.E.P.O/REPO_Data/Plugins/x86_64/opus_egpv.dll
- Size
  
  430KB
- MD5
  
  8b45c7ec84adc6a071bf5837f1038cf5
- SHA1
  
  6bf74519b96558dabaaa219a83e7ebb97b59ba8d
- SHA256
  
  4f74f4a21512f4cc13bee08c043cf98e0a4c92c02d265283058a19f7c70d7ee7
- SHA512
  
  f960fb5ac6cb50e1dc17f9e2553c4c6fe305c7eaeb83f3d4a742854bbeefb029f2b8c9e4e813fc47eaa6f5a928ac612c48d893841aa3d0c7dc4f6f19fb2ba403
- SSDEEP
  
  6144:YdcYMYMqHpMAAv8ukEacI/fbPiKvF3Yo5CSiHxqLeLtMdA8jotLvznklujtyFoAg:WFVJ3df7wP58AVy9GvIbYoFo
Score

1^/10
behavioral5 behavioral6
- Target
  
  R.E.P.O/REPO_Data/Plugins/x86_64/overtone.dll
- Size
  
  17.5MB
- MD5
  
  3f98bbaa0c5e2380cbf6170d5214e3e8
- SHA1
  
  82d1ed155198dea35d683f00fa58c9b85203ccb6
- SHA256
  
  edcb57be5ff410bbd847e4fc2417401a4b2ba08932a1aed88217f72421a4ee13
- SHA512
  
  47e0bbe99ac29537bf653cc226f16e322e0889a0fb88bac0e6c1beb8f9d7e8ce60f9fcaeff33d84a4c5f45d26b2318eddef190184de8e1efd5834e04920e730b
- SSDEEP
  
  98304:EplPjrvfjlt3+mZoU45yCUHH0sRupp5+6+1N03Sr2ns7/jn11olkObA2yobaokov:C35pymHHJu+6+I3Sr2ns7KH8
Score

1^/10
behavioral7 behavioral8
- Target
  
  R.E.P.O/REPO_Data/Plugins/x86_64/overtoneruntime.dll
- Size
  
  8.8MB
- MD5
  
  0ad5cd502c78dd8c76821145cc2bb0e4
- SHA1
  
  6df40e952f1643837134873c8ca846a936a53472
- SHA256
  
  a630f67f4a82b6689e4178bf81d362d945522dd907b2a92cb43cebf72c83a06f
- SHA512
  
  39c4a37f18ea1fd9fb94a355afc3a33a8c8a901222a134fe447d03864830923a5d58165652feacac2c173bf59e7aa562ef1b2ac8655d73f2965567cb85ff6478
- SSDEEP
  
  98304:eae4eNAR5m5hKiKydHvb07GeDbSZpVVV:Be4eJ28Hvb3
Score

1^/10
behavioral10 behavioral9
- Target
  
  R.E.P.O/REPO_Data/Plugins/x86_64/steam_api64.dll
- Size
  
  256KB
- MD5
  
  8afde2d19c89d0bf1a9f6ec475aa0ebb
- SHA1
  
  7d1453b841dfb1101ab45f63d3b4294b6c5d0cb6
- SHA256
  
  473f5a312b56519f347741b63f3dea590946b96ea40ef3803d5f452c39af2f1e
- SHA512
  
  4166361eead938b1a01f110ae3acd3660f5123ccf97b4504ed0577b3eedbe57cee5222aef037524de6051a6727c88161a4aa250b4ae60fd84ccfb2591d1b2090
- SSDEEP
  
  3072:NfpmprkbwQzAVsCeOTdmTxMezfOLgSbew/N65lhTbC66rpFvwLdyN+Qe2UvMxCbh:mprksQUVsCeOTdmTxDSLGnpynxCbmyx
Score

1^/10
behavioral11 behavioral12
- Target
  
  R.E.P.O/REPO_Data/Plugins/x86_64/webrtc-audio.dll
- Size
  
  811KB
- MD5
  
  8f2df82b4285d5824dd9a46570b9e5da
- SHA1
  
  ca96ebf7c5a6cda3693ca565b8b09cf9aeb4b7c4
- SHA256
  
  589ce036d3e426597a785b9632dc08c1299e4d4455eb1d498787418ccb78687d
- SHA512
  
  0bad1649cab5b4bb5abd6ad667e2631e2e37d15f091de6541e7ea842f3a9347058c4f5e9368a7b3b5e47bdb7ffa9b093059cb70ffa35262b656fe646a5138a5a
- SSDEEP
  
  12288:0G3eyUE5galX3cvt2VUJb0kmKniTk13IR6bEqVG2oQhf:Dey33lXSCOPDqk13C6RG2D
Score

1^/10
behavioral13 behavioral14
- Target
  
  R.E.P.O/REPO_Data/Resources/unity default resources
- Size
  
  1.5MB
- MD5
  
  143dc232c9457e1bb787ca819754dd9b
- SHA1
  
  86c8eefd06d786c341d8f563c1b56899f09e7d93
- SHA256
  
  447caf3737cc58e2cf965f9829ae1c00c2c88505c055df2e8be0d8ede76b4da9
- SHA512
  
  de3d8771a43b0a0f584cd6d769dc0fe73c7279e3d0f19fb6975ce5f75430ce7312bc9057f8f2aaf2647dd6b07440f3b97f789e0ee0a6a51f8f8b56f0f764b3bc
- SSDEEP
  
  6144:MWJxVJ0aYR1CCVX8BAiZahS3YW+/OJ9WqCmKISHCkcCqw:L8TpQahHvOjdCTew
Score

1^/10
behavioral15 behavioral16
- Target
  
  R.E.P.O/REPO_Data/Resources/unity_builtin_extra
- Size
  
  380KB
- MD5
  
  2de09c359f13784642571dd68c96a794
- SHA1
  
  bd6b8cbb08529237c83ae1414e3f4db1566a8776
- SHA256
  
  fd732824d796f03cf903b142067723cf4875a9046de1edb1dc19e61e269a8f42
- SHA512
  
  955fcb27fbc34b12d47f5a9eb9cd9d97f75c4a3ff38a2af1ed5e3ba96787daabee8874d17fff654812ec5cf013d673e64f076c7ab950d5a39427cc6ea8afc7f0
- SSDEEP
  
  3072:a3mPrcs+xxNMDgKygkqfxS09ffl1uFEdOi76LP:imL+xx9fHqfxS09fmed77a
Score

1^/10
behavioral17 behavioral18
- Target
  
  R.E.P.O/REPO_Data/RuntimeInitializeOnLoads.json
- Size
  
  1KB
- MD5
  
  7bf541628c7c7d1df4343509052cde0c
- SHA1
  
  0ae274bab96092860ac37bbe053fee4f9970fae2
- SHA256
  
  60e5a14cbbf2f2e8d0fbda55ed936e91b1f4638666edaa3ab272caa516b74de8
- SHA512
  
  bc0779968ccdb7c5b20f2c0aec458bec4e537ad6a15a7f2eb23c4a1b01a3d3cd4e1afadfa1dddffa2b9af4539d03e95d9df80ff06d10f1ed751d6617a7b14ac8
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  R.E.P.O/REPO_Data/ScriptingAssemblies.json
- Size
  
  3KB
- MD5
  
  9d1dc0480600e0856fa2ee863d55c62e
- SHA1
  
  2f4382b0d108803185b26eaa0012823548db8d70
- SHA256
  
  d862c065cb0544ca5fda9f28e7a4d02df507a81af739efb28a0cc007431481d2
- SHA512
  
  fd39f910bfb9a406d10af6693c295c445e0882e151e8015ea642f5744f4ec234999c39e42e681b0f6e033f58c9651a4694fb0a49c118f4a0f332f5d7e9b2e0f5
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  R.E.P.O/REPO_Data/app.info
- Size
  
  13B
- MD5
  
  3f37a9d317bc925a4520e901142df2c2
- SHA1
  
  04fd39110585ec900788dbff200d5bba66bf971e
- SHA256
  
  bb1afac27e89993cd53392a0535427c23481a65d57f8b21d4bb3514b81d7d02f
- SHA512
  
  e9e4d6ed0f26bc95ec2f594ba8a43188beee8e78a47fd8cf176c015d515c9565e722bf9d506008a344bdf8b3337742c62e69f337731a3f843640e987976a2674
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  R.E.P.O/REPO_Data/boot.config
- Size
  
  164B
- MD5
  
  2bef265e5d91fffe55351a810fab3389
- SHA1
  
  1d64f1852a675ee4a770b50158934d8b72a5ec55
- SHA256
  
  23daea2865dfecba70fa0d5b156fed27a3ebbc3a12fd25af8130ee5bfb2771b7
- SHA512
  
  b25b83e5869d5bfa951a5cd06a225c484e6fdf26ed80a6c34cd38e87e11138bcf2f719220aad05890cc7f776dabf8351d69bc927530ca64a24d9debd6fd42567
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  R.E.P.O/REPO_Data/globalgamemanagers
- Size
  
  35.7MB
- MD5
  
  bdf923c56293c20d115abae825ebf7f4
- SHA1
  
  02c906c9dab4d9d7ac86bf642faaa08b4742bbb3
- SHA256
  
  f6c880cfbc3ad42eab82bd96f4021d72085f67b20266915b4d8e113e22218c80
- SHA512
  
  0ddafab9dd5ba3a419327d314521f06dfa6debafe95eefed06d5bd5bf0985514159816d2ae1178de1062ba2042c2f0fedd6c232853c8c751b981055ad8f0efeb
- SSDEEP
  
  98304:maMbdajPiRFt+9W/jU9+lNwwkZlrBdHuOwn+nphmAy+2kmwY1sFoNGYw/c1Ojo03:at+9W/j6ph/2SoNGYw/Lo0xGcC6
Score

1^/10
behavioral27 behavioral28
- Target
  
  R.E.P.O/REPO_Data/globalgamemanagers.assets
- Size
  
  368KB
- MD5
  
  57a1602d7a9e7751bb16c35b2ce13e5d
- SHA1
  
  9f7d83e74fbdc682be9ea23a5b70b38e47494d44
- SHA256
  
  e90724df8266ac4fb3d79805d4379f42e624e6711d432220c15dcce2d242a235
- SHA512
  
  6f9724896f068118c4830bfd598e950d70caba41b0586398fe73078ae4b0c638ed1e6c25869dbc14daf3fe2e9989ed87199a72902ddda4b041c56efbc19df855
- SSDEEP
  
  3072:B3k7lUPNDzYwhI4kyVVaKilnXgiGh0zwk2YzXBTfMaEg5SwRUDY:BUs/YIkyVVAXTG+wk2ANMlg5SwRUDY
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  R.E.P.O/REPO_Data/globalgamemanagers.assets.resS
- Size
  
  2.7MB
- MD5
  
  69e2e2540ec11fb3a7360dd7d55fea50
- SHA1
  
  f02660bdd32e8a5c079f06e0a0ac0485b75c17ea
- SHA256
  
  ebf0f91664c0aa69e3b92e93d4d4e6feae1a9152529b0efeac047e3c9c3b0fc0
- SHA512
  
  81403c86c0373acbbb36df528b259dc72e58a7233eb18c15709a0640f4ec688dbd1cbddebdede40ae36abf08fc2e6c7071ca997d5e5646ebd1394731df15fca6
- SSDEEP
  
  1536:8nCugW37Qc/WRI5YYt3I/cTj3PzZxwWDPoAw5LoWx:4UW3stRLuxv3PQQQAK
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32