d5e9ccf1171f5f24addd7f454eb758f4b0921b94da3097ce540d9f9f25e6f5bd

Resubmissions

05/10/2022, 13:11

221005-qfb9tsedb9 1

04/10/2022, 16:13

221004-tpg38abgep 3

Sharing

Copy URL Twitter E-mail

General

Target

Flux.zip
Size

2.0MB
Sample

221004-tpg38abgep
MD5

265bdf355391eef45533491abee7de07
SHA1

795114130e4e075a06e4d672354aec469e146374
SHA256

d5e9ccf1171f5f24addd7f454eb758f4b0921b94da3097ce540d9f9f25e6f5bd
SHA512

d6a1812a1360d389b2d1fcd5758b590f381a61a32ca323a7d45da1ce74ec4c897d3ded9402c871adc36f76d1c8c5c117f705106275bb3f3db7b6d5a19592a9aa
SSDEEP

49152:65naxw71S/F2at1xYFX0tAPHW0ngAUYxBsa5OAX3i9dz+3Q5:6hxo//65mEW0gvYx6a5OAHiHz+W

Score

3^/10

macos

Malware Config

Targets

- Target
  
  Flux.zip
- Size
  
  2.0MB
- MD5
  
  265bdf355391eef45533491abee7de07
- SHA1
  
  795114130e4e075a06e4d672354aec469e146374
- SHA256
  
  d5e9ccf1171f5f24addd7f454eb758f4b0921b94da3097ce540d9f9f25e6f5bd
- SHA512
  
  d6a1812a1360d389b2d1fcd5758b590f381a61a32ca323a7d45da1ce74ec4c897d3ded9402c871adc36f76d1c8c5c117f705106275bb3f3db7b6d5a19592a9aa
- SSDEEP
  
  49152:65naxw71S/F2at1xYFX0tAPHW0ngAUYxBsa5OAX3i9dz+3Q5:6hxo//65mEW0gvYx6a5OAHiHz+W
Score

1^/10
behavioral1 behavioral2
- Target
  
  Flux.app/Contents/CodeResources
- Size
  
  1KB
- MD5
  
  4f8b589cf4f5418bf98c200529f2b9d2
- SHA1
  
  90e4b5b14543768beca9ab1881e610cc4abb3536
- SHA256
  
  9d3b691eccb92d01a0c485bb0a10544aff31b3a59fb61bafdec586a7df040f2f
- SHA512
  
  d01aa769b01e98852aade4a4eace69067ad921a78e4f1e777cc58e5cf55ae21d0355a0d9d699a10e5eaa44587a92cd3cb360615990324ae9eb39b1dc382d90d8
Score

1^/10
behavioral3 behavioral4
- Target
  
  Flux.app/Contents/MacOS/Flux
- Size
  
  1.6MB
- MD5
  
  b61ed6e1ee0caa860afebb91767d41a0
- SHA1
  
  8da04b4469770ec9714bb0eefeeb52998e5cbe94
- SHA256
  
  c848c3f7730b111cfd93bf9b13afe95139e906b915296245bc404a4d23db3ea5
- SHA512
  
  b1b5ee50adfbe5d678c4aa84dc1686c4ed51dcb74cde2b1bffe76865595880bcdf14400a06088a8ccb695d97b335e0c63de63e85daf09b446a4db38e7ac9d0a4
- SSDEEP
  
  24576:RhGjnSMq1Ne0OL+2jkKbNuFS046SwANk0OL+2jkKb9uF:RhiNqi0yhuFnVTj0yhuF
Score

1^/10
behavioral5
- Target
  
  Flux.app/Contents/Resources/Base.lproj/MainMenu.nib/keyedobjects-101300.nib
- Size
  
  59KB
- MD5
  
  7ba8e52e4067f4d56b617af3c3d4ed30
- SHA1
  
  bed7b90694e906314681c1dd9c5a3d9fb31934e4
- SHA256
  
  87c4fec46e1b01e791ff25ed75b6dfb0e19e43661c86bbe40a89fc8a9400721c
- SHA512
  
  04d70d3ccaa0a795aa931d8cdb6b5fd81178425d7cd287bfb5e7f6143c38800b329cb40c74a043cd44e3fb20133380e8890ddd8580d478f67fb9c01c557701fb
- SSDEEP
  
  768:3/f6b50o90/EfD8S0U1xRUYyuJ0OfnwYyIcXlq1T2YCJSly4We2rgzERV7f60V2z:6N0o90/H4xK1kCqge2GERVD60V27mCv
Score

3^/10
behavioral6 behavioral7
- Target
  
  Flux.app/Contents/Resources/Base.lproj/MainMenu.nib/keyedobjects.nib
- Size
  
  77KB
- MD5
  
  ec2285fd7aad6740e6bcb7f76bb8f068
- SHA1
  
  fd877648eaddf156192f861327ec69490c52578c
- SHA256
  
  19eaf4a1cf98b8b38fc962ae9771fdc2975542c88d10b4f16682385846317c3a
- SHA512
  
  619691265519f59f2f0b93b7d0afce60eff00b59f7185cde96292dbd25d8f019ce29024807a458823544f5a26f9240895fb2ea4b2b0a8cd8e1ce2ec9251658c6
- SSDEEP
  
  1536:WswgQacKzR0BAIUjvKd5T5QYJSQIB/6L5sCrOZwFhox:WJXKzeBAl+PdQYoB/UqQ0
Score

3^/10
behavioral8 behavioral9
- Target
  
  Flux.app/Contents/Resources/English.lproj/InfoPlist.strings
- Size
  
  92B
- MD5
  
  51ef59b60e5b41b91519cc662a9fe886
- SHA1
  
  3222ca0c39eb50aaf8126baf852e55430c4718af
- SHA256
  
  39cf2ee07b7b333e7c179d0bf4d798a5b72af6a4e584f51e642703bbfa4fc828
- SHA512
  
  3952a908b72d44040f5072f6344f6327fc78981c3aa55e931acae84c0c9bcc0d148991cd564af4803765c328cbf5f7efe9eb558fc56e47e8206b7b706026f30a
Score

3^/10
behavioral10 behavioral11
- Target
  
  Flux.app/Contents/Resources/Localizable.strings
- Size
  
  2KB
- MD5
  
  a84aa72f00ecf6725ef1e832c55f2b0b
- SHA1
  
  71a76ed706b757a03e64590e1e761f241596e5ee
- SHA256
  
  cb10902530a3d62f8c008fbe637c25e94d3740a96f03170b19d141d78d4ae7dc
- SHA512
  
  35158840abd6e9b981080c0e5f3b3ff9a76a4ed6ebc8913aff86cdd73f7ca7c43a5b969cb2a2eb0fa1b8af9758aae55fc4cc3157bb1aec7bbf73e4962df711e7
Score

3^/10
behavioral12 behavioral13
- Target
  
  Flux.app/Contents/Resources/darkmode.scpt
- Size
  
  118B
- MD5
  
  a23a281a433e5ffb12d7eeb677f09553
- SHA1
  
  d960b7014638e5d9dd7b9fa0f7b23d9f4992d7a4
- SHA256
  
  8e95376239bedf7d1be2fa442ad9b389275a0c2c5f3de4807c1a64fd84f99174
- SHA512
  
  b6f6b02876b4d3f633835ce79dd4eec229d6f621ce2ef46b769d29d587388ea116b2b382923355e4f3b9f4e040a539cc78bedade0bc20c575ff813be9f6ba996
Score

1^/10
behavioral14
- Target
  
  Flux.app/Contents/Resources/flux-grad.png
- Size
  
  8KB
- MD5
  
  690606305a5235912387f5a5bfa2c1e2
- SHA1
  
  0db7cb795f2f24689ed1977fe5481071713bac22
- SHA256
  
  df005b63ed4289119a1c240c91d6e27b0b1cd5133c5f5eaaf56fa7eff6212ae8
- SHA512
  
  88b6e9c5c0eaa2d25f1f8010722148f47fd33666e953c62f01e902133d009f520fd2db2d27e5739a5093b3ef8e6159dbd249412e7d44c493039db4dbcee10536
- SSDEEP
  
  192:jSDS0tKg9E05THc/eW+K3ph6Q7oiQRfD4Ob/dJafI2PF8fFnz:WJXE05g/eWT5h6Q7o1f0Skg26fFz
Score

3^/10
behavioral15 behavioral16
- Target
  
  Flux.app/Contents/Resources/fluxicon.tiff
- Size
  
  8KB
- MD5
  
  d23932946d3a1132401fd48d4b9decad
- SHA1
  
  92ad71f53fa3cff0cedc8f2f289d5cbd46bba23e
- SHA256
  
  b779637069a73ac70e9ae419ba4bf53d6a893200887e6eacc674c6858292bb24
- SHA512
  
  d4010644c7de36a20aae76498defc1d73ad5b40ff9b026dc0bfb934626342a2f67c60b4fcdf344e5f67efd17667bc4fd792bd8c685e6f47d2529cdc6777bcb7e
- SSDEEP
  
  96:0unDizN26MT0D5MdtbZPAVwzVZ90fHVA69RTZZ0TjNSYIN26MT0D5MdtbZPAVwz2:bnDfYNMtKwvmHhRTwTBSMYNMtKwy
Score

3^/10
behavioral17 behavioral18
- Target
  
  Flux.app/Contents/Resources/geoloc-arrow.tiff
- Size
  
  7KB
- MD5
  
  63528f3ba49d8f42ddde36bbe350ad44
- SHA1
  
  e704dbf1cc980a0b8826488dbd2c254237d7597a
- SHA256
  
  0813af1849aa2ae37950f6bdb135a6f0e2e6044072e712e271b6bdf847542c28
- SHA512
  
  a601d828a176e6d8d4660fa71d43fcce8cc3a4a13d32eb24f34eb7b50ee9cabf64f7726affb2f406ba5e62c3b09ca92f9064bec9c9c452c0418a03b91e585ca8
- SSDEEP
  
  96:IcI5N26MT0D5MdtbZPAVwzVvdNdgEcN26MT0D5MdtbZPAVwzV0:IcvYNMtKw5dTHbYNMtKwy
Score

3^/10
behavioral19 behavioral20
- Target
  
  Flux.app/Contents/Resources/lightmode.scpt
- Size
  
  119B
- MD5
  
  3e771c9e3205cbaad0330b3094759bc0
- SHA1
  
  99d1cb6b9b51f1ad32003b5bfc96e7283c39ae0b
- SHA256
  
  c5e55be5e00e1310409722e485889eb1e957f4b4921acbbba02aca3e39e2fa41
- SHA512
  
  61b530eb12323b3394ebb1de3d4a0e89e5c8fcc5645ae13ece078501b24164e2e27b2f821d389cfe4c5ad6dcc3a2243c1c43a3b1a93053d718cc5aabd8f1a67b
Score

1^/10
behavioral21
- Target
  
  Flux.app/Contents/Resources/macflux.icns
- Size
  
  122KB
- MD5
  
  81b9584d1a1d0ef80c56dabeaef3e2f1
- SHA1
  
  e7b326bfa200c014a31587d9179a846aa58c403d
- SHA256
  
  5e8725ac0a9d00dfe3d063ec1d939db357203a1a6035a1d6824e79cad0b59add
- SHA512
  
  78c933b3797cf4dfd28d0c7084acc401d16c01ff011f0cec773e38bd1f9cbd73df721a7c260934463fd594a90ecaa0bfc41a5f1f229cd137bcf846ae2715a877
- SSDEEP
  
  3072:aq6aD3jC6szSoJH8APl5XxOmp92RXwr0ENFFy:aq6avC69i8APHxvNr0ENFFy
Score

3^/10
behavioral22 behavioral23
- Target
  
  Flux.app/Contents/_CodeSignature/CodeResources
- Size
  
  5KB
- MD5
  
  e45fba328b04e544a15cf00ca5d40170
- SHA1
  
  b3596a5a241de79eac6835f648a3df2c7f5ce548
- SHA256
  
  67907f27649cf253b805359f638a6f572b7350316275c92cd8c63bc3a7306713
- SHA512
  
  cc20de14d30f74b4fe8b7830ce3e27abb9e06fee4a4bd412df1c3941562362a4bcfb7b040f91045b454ea4ab72250e697423bd927d4700276d7bfc4fcad9c29f
- SSDEEP
  
  96:Cycfzhxc7/Nq/zmpVtC+sRE46aMYfSfhRDcTxM9NcI4RB9pvQzTLtIZzekYT2BL9:XcbcI1RWAEzYil2pkEDzko
Score

1^/10
behavioral24 behavioral25

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v6

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25