c5858cfab02aa549d06dce34aa05fe96438426a67c2f86fb0dd669f824e43bb1 | Triage

Sharing

General

Target

DiscordWebSite.zip
Size

2.6MB
Sample

220824-2hyfmacaal
MD5

a0438510450535d4d3b4c3c1f74a4bdb
SHA1

7d6c44f4bc9e2d42aeecdce3b0cfada3ca369dfd
SHA256

c5858cfab02aa549d06dce34aa05fe96438426a67c2f86fb0dd669f824e43bb1
SHA512

e31b2b625a2556e457bbb36e43ba388ba78169e6ef679a6b274b07929691ce2826166ddeb0a5b6d7c8f85f0a6f506c189831a4328b1f3ad6373b45a2028a604b
SSDEEP

49152:8OGvEmvgGm+pXkw33ArQxXHF0Bhbf3dSvFXcjxb9UMIi1RGQbwixSZG70D7WjmFJ:8OGcp+pXkw33ArQdCBhbfNEs7IiWQb4X

Score

5^/10

linux

Malware Config

Targets

- Target
  
  .git/hooks/applypatch-msg.sample
- Size
  
  478B
- MD5
  
  ce562e08d8098926a3862fc6e7905199
- SHA1
  
  4de88eb95a5e93fd27e78b5fb3b5231a8d8917dd
- SHA256
  
  0223497a0b8b033aa58a3a521b8629869386cf7ab0e2f101963d328aa62193f7
- SHA512
  
  536cce804d84e25813993efdd240537b52d00ce9cdcecf1982f85096d56a521290104c825c00b370b2752201952a9616a3f4e28c5d27a5b4e4842101a2ff9bee
Score

5^/10
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral1 behavioral2 behavioral3 behavioral4
- Target
  
  .git/hooks/commit-msg.sample
- Size
  
  896B
- MD5
  
  579a3c1e12a1e74a98169175fb913012
- SHA1
  
  ee1ed5aad98a435f2020b6de35c173b75d9affac
- SHA256
  
  1f74d5e9292979b573ebd59741d46cb93ff391acdd083d340b94370753d92437
- SHA512
  
  d6bb7fa747f4625adf1877f546565cbe812ca7dd4168f7e9068e6732555d8737eba549546cf5946649e3f38de82d173aaf9c160a4c9f9445655258b4c5f955eb
Score

5^/10
- Reads runtime system information
  Reads data from /proc virtual filesystem.
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral5 behavioral6 behavioral7 behavioral8
- Target
  
  .git/hooks/fsmonitor-watchman.sample
- Size
  
  3KB
- MD5
  
  ecbb0cb5ffb7d773cd5b2407b210cc3b
- SHA1
  
  f7c0aa40cb0d620ff0bca3efe3521ec79e5d7156
- SHA256
  
  7f9cacf1f7c8f791abfaa76171b951a55a9a2a11f1390b43cbc83995b4a91b33
- SHA512
  
  4f611b6fc08db7552a0eaca432c41d1114cd4daa066d9fc722f34f6de05ec3eed615286e8cfc5a27df0cbfb90887473beb0f859ba3edbcd1e829bb3b5050d2a9
Score

5^/10
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral9 behavioral10 behavioral11 behavioral12
- Target
  
  .git/hooks/post-update.sample
- Size
  
  189B
- MD5
  
  2b7ea5cee3c49ff53d41e00785eb974c
- SHA1
  
  b614c2f63da7dca9f1db2e7ade61ef30448fc96c
- SHA256
  
  81765af2daef323061dcbc5e61fc16481cb74b3bac9ad8a174b186523586f6c5
- SHA512
  
  473ad124642571656276bf83b9ff63ab1804d3c23a5bdae52391c6f70a894849ac60c10c9d31deff3938922ce83b68b1e60c11592bbf7ea503f4acd39968cefa
Score

5^/10
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral13 behavioral14 behavioral15 behavioral16
- Target
  
  .git/hooks/pre-applypatch.sample
- Size
  
  424B
- MD5
  
  054f9ffb8bfe04a599751cc757226dda
- SHA1
  
  f208287c1a92525de9f5462e905a9d31de1e2d75
- SHA256
  
  e15c5b469ea3e0a695bea6f2c82bcf8e62821074939ddd85b77e0007ff165475
- SHA512
  
  cb78aa7e9b9c146e5db65d86dd83f04e2b6942a06fab50c704a0fd900683f3b6ad1164e74afe2f267f6da91cdff0b9ab07713e12cefc6f8d741b5df194f4fda6
Score

5^/10
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral17 behavioral18 behavioral19 behavioral20
- Target
  
  .git/hooks/pre-commit.sample
- Size
  
  1KB
- MD5
  
  01b1688f97f94776baae85d77b06048b
- SHA1
  
  36aed8976dcc08b5076844f0ec645b18bc37758f
- SHA256
  
  12c723235131f1c5576c652ac2a0a007f261a93c0ddc445b1dcee6cd98e30788
- SHA512
  
  4a7ac2ed2ffe50d2a997c3477b5855c3d19423c295a82f7d660be3418217a183b0ce25f94ae2e350f4d93eda3b75a4bd62cf27f0685d8a837919bcc9e7e0962a
Score

5^/10
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral21 behavioral22 behavioral23 behavioral24
- Target
  
  .git/hooks/pre-push.sample
- Size
  
  1KB
- MD5
  
  3c5989301dd4b949dfa1f43738a22819
- SHA1
  
  5c8518bfd1d1d3d2c1a7194994c0a16d8a313a41
- SHA256
  
  4b1119e1e13a212571976f4aee77847cdbd40978546d6273a557e238981a40d1
- SHA512
  
  37cd20a090494acb16c2255fe93dadeb409f2553afddc409dad5b5e99c9f5612a28eba397c0f3ae771e17edbe0a6c2a3af311154285e6d9c43e4cc4f06ba5b8d
Score

5^/10
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral25 behavioral26 behavioral27 behavioral28
- Target
  
  .git/hooks/pre-rebase.sample
- Size
  
  4KB
- MD5
  
  56e45f2bcbc8226d2b4200f7c46371bf
- SHA1
  
  288efdc0027db4cfd8b7c47c4aeddba09b6ded12
- SHA256
  
  4febce867790052338076f4e66cc47efb14879d18097d1d61c8261859eaaa7b3
- SHA512
  
  00d21d5d72386c3d9b5a1c36ba85201f730556a8295d4353af54af7892ab81010d42aff209ec1fda61c54e4dda3737cea5fda64f09d40ce5004ae28239565025
- SSDEEP
  
  96:vJ7EgXasqXq6zaqK1ep8m5MDVUT2bTEwEWDhG38deyig9yhCLtQH:vJ4gXasI1zaqKwUTHhzeyil4tm
Score

5^/10
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral29 behavioral30 behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32