MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 7d0c328302ff3e8a56a4a91e7bc385772d18262eb37ff6502c7c9f5cbeb38e4b. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 10


Intelligence 10 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 7d0c328302ff3e8a56a4a91e7bc385772d18262eb37ff6502c7c9f5cbeb38e4b
SHA3-384 hash: 76f2871c76746754bcab0fae28ca7e002508064212ae07d7932e184679c98c39c51ca83a3b30ece387520da39ae47f14
SHA1 hash: f28cb041d5c101931c3eb435499c5d5a08781a6e
MD5 hash: 9291209260abd02fed26887eccd7120f
humanhash: michigan-avocado-grey-hawaii
File name:Game.exe
Download: download sample
File size:83'175'626 bytes
First seen:2025-12-09 09:14:21 UTC
Last seen:Never
File type:Executable exe
MIME type:application/x-dosexec
imphash 56c2f8c966897cdb64954ebc4c75c126
ssdeep 393216:ttbu6uPZI7nqYAERCJbE81AKlkUiB0uu+sIyNOnS0B4AycWMCYDMbLbTOwEJ7eVL:tYNrgsJYUKY6Shrsxwbvey
TLSH T1D3087B4263EA04C4F9F7DA759AE65617C673BC122F3095CF221C17291F736E08A76B22
TrID 63.5% (.EXE) Win64 Executable (generic) (10522/11/4)
12.2% (.EXE) OS/2 Executable (generic) (2029/13)
12.0% (.EXE) Generic Win/DOS Executable (2002/3)
12.0% (.EXE) DOS Executable Generic (2000/1)
Magika pebin
dhash icon 0717332b4dccc80d
Reporter lfr
Tags:exe


Avatar
lfr
https://www.patreon.com/file?h=145418700&m=577802252

Intelligence

File Origin
# of uploads :
1
# of downloads :
101
Origin country :
FR FR
Vendor Threat Intelligence
Details
Link:
https://research.acce.ciphertechsolutions.com/results/e60957f9-ed76-4679-ae54-786a69d58f19/
Malware family:
n/a
ID:
1
File name:
Game.exe
Verdict:
Suspicious activity
Analysis date:
2025-12-09 09:05:52 UTC
Tags:
n/a
Link:
https://app.any.run/tasks/be79987a-4c9e-4c25-b8e7-7a09d68734c5

Note:
ANY.RUN is an interactive sandbox that analyzes all user actions rather than an uploaded sample
Verdict:
Malicious
Score:
81.4%
Link:
https://cyber-fortress.com/docs/result/index.php?id=6937e8c3db58e1a2c22ba8a1
Tags:
malware
Result
Verdict:
Clean
Maliciousness:

Behaviour
Creating a file
Verdict:
Likely Malicious
Threat level:
  7.5/10
Confidence:
100%
Tags:
adaptive-context anti-debug anti-vm crypto expand fingerprint installer-heuristic lolbin microsoft_visual_cc nexe overlay overlay packed packed
Link:
https://www.filescan.io/uploads/6937e8b1ff25e40750d90416/reports/42a1120a-22d1-48f7-9a6a-0a85e8c080c2/overview
Verdict:
Malicious
Labled as:
Malware/Generic
Link:
https://www.hybrid-analysis.com/sample/7d0c328302ff3e8a56a4a91e7bc385772d18262eb37ff6502c7c9f5cbeb38e4b
Verdict:
Clean
File Type:
exe x64
First seen:
2025-12-09T05:57:00Z UTC
Last seen:
2025-12-09T06:14:00Z UTC
Hits:
~10
Link:
https://opentip.kaspersky.com/7d0c328302ff3e8a56a4a91e7bc385772d18262eb37ff6502c7c9f5cbeb38e4b/results?tab=lookup
Score:
79%
Verdict:
Malware
File Type:
PE
Link:
https://malprob.io/report/7d0c328302ff3e8a56a4a91e7bc385772d18262eb37ff6502c7c9f5cbeb38e4b
Gathering data
Verdict:
Clean
Link:
https://tip.neiki.dev/file/7d0c328302ff3e8a56a4a91e7bc385772d18262eb37ff6502c7c9f5cbeb38e4b
Threat name:
Win64.Malware.Heuristic
Create hunting rule
Status:
Malicious
First seen:
2025-12-09 09:05:51 UTC
File Type:
PE+ (Exe)
Extracted files:
8
AV detection:
13 of 38 (34.21%)
Threat level:
  2/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=pugdfayc747iuvvevephxq4fo4wrqjrown77mubmpspvzpvtrzfq._file
Result
Malware family:
n/a
Score:
  3/10
Tags:
n/a
Link:
https://tria.ge/reports/251209-k75skawndk/
Behaviour
Checks processor information in registry
Verdict:
Suspicious
Tags:
n/a
YARA:
n/a
Link:
https://app.threat.zone/submission/1d516fc6-0aba-4438-9228-c42a640c9ca1
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

Executable exe 7d0c328302ff3e8a56a4a91e7bc385772d18262eb37ff6502c7c9f5cbeb38e4b

(this sample)

  
Delivery method
Distributed via web download

Comments