b779246a9a6066b74a78b1d471c4cb87446a039a58032b5bc56656bf32c76e61 | Triage

Sharing

General

Target

Stellaris-DLC-Unlocker.exe
Size

49.6MB
Sample

250328-tahffazmz8
MD5

3f4e61ddc066987f9440ca400051ea2f
SHA1

5f9327271877632c90c69b39555d677858b30929
SHA256

b779246a9a6066b74a78b1d471c4cb87446a039a58032b5bc56656bf32c76e61
SHA512

972569c19df87a94cfb5ca3510e6e43bf11032d127fd0be7e254bf75622cb40578421438d98df7ab207c24c457a032952a16535f6e44ea33fc8699190f389a84
SSDEEP

1572864:MXGMK4XR3bLSCU/+6yPlhvh4y/LX60MG2WA2g/7:MgYRPSC++6y9J+y0dv2I

Score

7^/10

pyinstaller

Malware Config

Targets

- Target
  
  Stellaris-DLC-Unlocker.exe
- Size
  
  49.6MB
- MD5
  
  3f4e61ddc066987f9440ca400051ea2f
- SHA1
  
  5f9327271877632c90c69b39555d677858b30929
- SHA256
  
  b779246a9a6066b74a78b1d471c4cb87446a039a58032b5bc56656bf32c76e61
- SHA512
  
  972569c19df87a94cfb5ca3510e6e43bf11032d127fd0be7e254bf75622cb40578421438d98df7ab207c24c457a032952a16535f6e44ea33fc8699190f389a84
- SSDEEP
  
  1572864:MXGMK4XR3bLSCU/+6yPlhvh4y/LX60MG2WA2g/7:MgYRPSC++6y9J+y0dv2I
Score

7^/10
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1
- Target
  
  main.pyc
- Size
  
  1KB
- MD5
  
  8131bd8c1bba3a5aab8b56bdf699dae4
- SHA1
  
  5dd88cc5b414434dccbc7542fa811ccc55319177
- SHA256
  
  db59a884979be23cd294304eb3f4bc6c20b0159cb3e8bc6520c901201b556ffe
- SHA512
  
  b0dd8a775ec3c8f2b42faeaabb66e446f267d873fc3d9d136b40b68031c15def9461b364016707f61d210063005f7c5f050b36f6bfa2caebbe064090e6b8bca9
Score

3^/10
behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2