a9b3e1a86a6317650881c9c631410482521c130de594bcbf91ef1f5f24d038a9 | Triage

Submit
Reports

Static

static

MANQUEDB_8...66.vbs

windows7_x64

9

MANQUEDB_8...66.vbs

windows10_x64

9

Sharing

General

Target

MANQUEDB_829028353025266.vbs
Size

36.2MB
Sample

200619-6w5t5l3tzs
MD5

35f91ef6a9f5cbba47555ed092cda0fc
SHA1

b2df8023f4821752020a73a6095e4790abd9d86f
SHA256

a9b3e1a86a6317650881c9c631410482521c130de594bcbf91ef1f5f24d038a9
SHA512

6039715f0b0a92dd6babf65c4fe50c1cb82531f9d60154ca3fe8cd371c31bffca0fbbc064b23de712fca9556e0e5e7ba917fd519cc27607e2d692820c7b9e940

Score

9^/10

cryptone packer

Static task

static1

Behavioral task

behavioral1

Sample

MANQUEDB_829028353025266.vbs

Resource

win7

cryptone packer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

MANQUEDB_829028353025266.vbs

Resource

win10v200430

cryptone packer

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  MANQUEDB_829028353025266.vbs
- Size
  
  36.2MB
- MD5
  
  35f91ef6a9f5cbba47555ed092cda0fc
- SHA1
  
  b2df8023f4821752020a73a6095e4790abd9d86f
- SHA256
  
  a9b3e1a86a6317650881c9c631410482521c130de594bcbf91ef1f5f24d038a9
- SHA512
  
  6039715f0b0a92dd6babf65c4fe50c1cb82531f9d60154ca3fe8cd371c31bffca0fbbc064b23de712fca9556e0e5e7ba917fd519cc27607e2d692820c7b9e940
Score

9^/10

cryptone packer
- CryptOne packer
  Detects CryptOne packer defined in NCC blogpost.
  cryptone packer
- Blacklisted process makes network request
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy