Overview

overview

3

Static

static

DESKTOP-QN...96.zip

windows7-x64

1

DESKTOP-QN...96.zip

windows10-2004-x64

1

Discord/ALL.txt

windows7-x64

1

Discord/ALL.txt

windows10-2004-x64

1

Discord/DISCORD.txt

windows7-x64

1

Discord/DISCORD.txt

windows10-2004-x64

1

Executable Info.txt

windows7-x64

1

Executable Info.txt

windows10-2004-x64

1

Found Wallets.txt

windows7-x64

1

Found Wallets.txt

windows10-2004-x64

1

Network Data.txt

windows7-x64

1

Network Data.txt

windows10-2004-x64

1

User Info.txt

windows7-x64

1

User Info.txt

windows10-2004-x64

1

Wallets/Go...05.ldb

windows7-x64

3

Wallets/Go...05.ldb

windows10-2004-x64

3

Wallets/Go...56.ldb

windows7-x64

3

Wallets/Go...56.ldb

windows10-2004-x64

3

Wallets/Go...58.log

windows7-x64

1

Wallets/Go...58.log

windows10-2004-x64

1

Wallets/Go...59.ldb

windows7-x64

3

Wallets/Go...59.ldb

windows10-2004-x64

3

Wallets/Go...URRENT

windows7-x64

1

Wallets/Go...URRENT

windows10-2004-x64

1

Wallets/Go...sk/LOG

windows7-x64

1

Wallets/Go...sk/LOG

windows10-2004-x64

1

Wallets/Go...OG.old

windows7-x64

3

Wallets/Go...OG.old

windows10-2004-x64

3

Wallets/Go...000001

windows7-x64

1

Wallets/Go...000001

windows10-2004-x64

1

WiFi Connections.txt

windows7-x64

1

WiFi Connections.txt

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    DESKTOP-QNH2CV2_9b1e849c-65c4-4f48-b99f-47f21a30df96.zip

  • Size

    3.3MB

  • Sample

    221005-ld2z9aeahj

  • MD5

    7b1482dde13658f5a9fcbe06e9495bad

  • SHA1

    5491fae07657bd95e8f5159d367541cf0c870881

  • SHA256

    95c1da9ad1e59d60f70c922e23c8fc86bb8b08f8401cdaa9d36260a3dea34a49

  • SHA512

    5ddfb069a2c61e977d53d47d7d522c02f34ae23717f55bdf2358ff8ba87debd32bab1c25d09aba88bd47a6f989021be617e4a5a4775699a0814a9268bf9c4644

  • SSDEEP

    98304:hICgVCUh097JMklYy11/04HRt1sra+zFrpxv:hUxC7bCs0mRIW+Bpxv

Score
3/10

Malware Config

Targets

    • Target

      DESKTOP-QNH2CV2_9b1e849c-65c4-4f48-b99f-47f21a30df96.zip

    • Size

      3.3MB

    • MD5

      7b1482dde13658f5a9fcbe06e9495bad

    • SHA1

      5491fae07657bd95e8f5159d367541cf0c870881

    • SHA256

      95c1da9ad1e59d60f70c922e23c8fc86bb8b08f8401cdaa9d36260a3dea34a49

    • SHA512

      5ddfb069a2c61e977d53d47d7d522c02f34ae23717f55bdf2358ff8ba87debd32bab1c25d09aba88bd47a6f989021be617e4a5a4775699a0814a9268bf9c4644

    • SSDEEP

      98304:hICgVCUh097JMklYy11/04HRt1sra+zFrpxv:hUxC7bCs0mRIW+Bpxv

    Score
    1/10
    behavioral1behavioral2

    • Target

      Discord/ALL.txt

    • Size

      578B

    • MD5

      0affaaf72c2f2b7600c629ce7128b656

    • SHA1

      ee2a52f0deb036aa828ff319b1a757dbbe567265

    • SHA256

      bad807e67b6a12da0d55d1488f108f58b94523773e804628607cbcae4e2a754a

    • SHA512

      2160fe263de21034202f51a97e6cb272bd5a7b6a9a5c1197c1d18598eca31062637f07edf350ebe14f7c4f63bcec816a1e8941b96e28447da886b19b1b7ab6bd

    Score
    1/10
    behavioral3behavioral4

    • Target

      Discord/DISCORD.txt

    • Size

      578B

    • MD5

      0affaaf72c2f2b7600c629ce7128b656

    • SHA1

      ee2a52f0deb036aa828ff319b1a757dbbe567265

    • SHA256

      bad807e67b6a12da0d55d1488f108f58b94523773e804628607cbcae4e2a754a

    • SHA512

      2160fe263de21034202f51a97e6cb272bd5a7b6a9a5c1197c1d18598eca31062637f07edf350ebe14f7c4f63bcec816a1e8941b96e28447da886b19b1b7ab6bd

    Score
    1/10
    behavioral5behavioral6

    • Target

      Executable Info.txt

    • Size

      237B

    • MD5

      a8079044c308a7f1f044d8ba84daa99b

    • SHA1

      7b1468643bd8c4529fab9221edd26c1f4f03f6fb

    • SHA256

      1f52aee1ee6f5c17063e6035e3f433d634ba877a47c2a229f750f1fe1a0568c1

    • SHA512

      39d3f15f86b1aae2ad21bda60bfb8a1604fcb6ba0186eb4adee15b29cc8100fe8537e419817cb7e68b8de60d1768e9f0b5d64c2b502ec7d7bad95ad037f60985

    Score
    1/10
    behavioral7behavioral8

    • Target

      Found Wallets.txt

    • Size

      231B

    • MD5

      cb2ee133728f09dbb887502783d1f580

    • SHA1

      39be9e83850741579ea69f9cdbd566cd97f8a12a

    • SHA256

      d0830b58b3ec9c39d5ce4b75da07aa4383ddf2e9b3be43cba36b3bc6e450f984

    • SHA512

      1d26e333acdb074c95775eeb5aef560e802effc8cfc1486e55a6729771f7e28032387b636a8ac61469e79a2800bc17fc40c2a4e8a04b2771aef540d1f7de18bc

    Score
    1/10
    behavioral9behavioral10

    • Target

      Network Data.txt

    • Size

      154B

    • MD5

      77815b2b2c87d2ac86907d8dc1b7404c

    • SHA1

      047d20e253400fa3a8b881063c9139dce13d1ad0

    • SHA256

      f02d262f8649e2e9c958eb311805f231b9ed5db8fa99b1e5998627adbebecf56

    • SHA512

      3604fe47646ec5dcd403f4e2c4b680e485ba23e17d1621a439ab76dc834010b538b85cccdaf0a02fdefa289a0156bcafcded69a673bb257a3685989968ae748d

    Score
    1/10
    behavioral11behavioral12

    • Target

      User Info.txt

    • Size

      688B

    • MD5

      e18b6d1746fee51e76f2ca696b602878

    • SHA1

      850c989d2e35fabbdb2ac83e5748b3fd454179e8

    • SHA256

      6452844e983dfdc587fb633aa8539037e00108bbc5ab073b0a4abcd922a30342

    • SHA512

      3f5ff4e42bbfed8b5f3cda8ff42929e3a077ce2751309f0fca7dc124dba84277eb329f9ad14fa2fd25647d8952058cd22fa8a2e2b58c86b62f5fee05a6ec34d7

    Score
    1/10
    behavioral13behavioral14

    • Target

      Wallets/Google MetaMask/000005.ldb

    • Size

      1.7MB

    • MD5

      f111b5d31d4cc1e8f1163d4c6eb990d1

    • SHA1

      cd5155ca0f41c8e209c9089f2f8d2bc4c3c42445

    • SHA256

      88439ec8853935f1d140ee6c0d3be084693918ffdfbd20d2b6dbd8d85c50d17e

    • SHA512

      4a478b43e7019cce0cfecad79712518129458ba20e1f398986be6954ed4c9d23ce08591580f779df256fcc68e5aaa0d6feea7ff3089917d2ba91367428198c12

    • SSDEEP

      24576:KWOZXaz9J78HBs2utRrW9TAzPj2rK2DxWt6SXjaOnDLW3ll8xN0rhxNiaHa5XDae:3OZXazBuTBdiwTRV0

    Score
    3/10
    behavioral15behavioral16

    • Target

      Wallets/Google MetaMask/000156.ldb

    • Size

      38KB

    • MD5

      cbf4362921bbc2521b553b58e5864521

    • SHA1

      93135503c5995dbbd6ebfad514744eb0cb888246

    • SHA256

      1214867094d764adc8c723a15ad60c502cc61e96125980bb68b1abd7c99e83de

    • SHA512

      c6c413b429db3a323beb77009bdc2231579a2db1e98bb9fe25eba4962eedce3911df895c61b87ad122b4393ce0cd4705d064c9f9cc55175c850e5301750ba063

    • SSDEEP

      768:7v6FNJ80PAYjy+yiYlIVZuIRjpApT67jWYdAHZBXxzfchwuCWHWa7a4tty+/fgpy:7vYBy+bzVhRdA47AXwbhg4bAE

    Score
    3/10
    behavioral17behavioral18

    • Target

      Wallets/Google MetaMask/000158.log

    • Size

      2.5MB

    • MD5

      3a3b1f67c93d93ab01511e7f73d14e31

    • SHA1

      94f1df8965e80cf590a57236eecfc6c984f31117

    • SHA256

      b6e2248b155c9e7830c16b97b1008597c363fb730051366c6651ca0efac5839e

    • SHA512

      4833917d7223ad70a581b0d3790b63237c347573d9e28c8dcc3b747156a96f18f1cad3e43f1b4bef95768bd8c62314fdc63abb49d0d0e8cd24872c7440e2e4aa

    • SSDEEP

      24576:Wt+xDt+x4t+xht+xRt+xnt+x8t+xHt+x5t+x1t+x2t+xIt+xPt+x3t+xFt+xKt+r:z

    Score
    1/10
    behavioral19behavioral20

    • Target

      Wallets/Google MetaMask/000159.ldb

    • Size

      1.6MB

    • MD5

      81be0af8f54c215ce39d66337fcce7c2

    • SHA1

      0975695b12dceaa03431e4614249194200fb1d83

    • SHA256

      abfead83b4ea5ded6ed3e3de2d49705f0ac7a82c0938c9b45a83409eb6b98c82

    • SHA512

      a1ae9fdbb9659486e644de804fc399184c4f3fd21adfdb716f97e6ef31bc13b146e069826264cf9a5f2b030390fd350582664fd584d0b96293a194a8d534b1bb

    • SSDEEP

      49152:iLyim0GqVA4XKZuAmZoARtLnQvqIdAKEMW7NSl2bWDx:iLyim0GqVA4XKZuDZoARtLnQvqIdAKEE

    Score
    3/10
    behavioral21behavioral22

    • Target

      Wallets/Google MetaMask/CURRENT

    • Size

      16B

    • MD5

      46295cac801e5d4857d09837238a6394

    • SHA1

      44e0fa1b517dbf802b18faf0785eeea6ac51594b

    • SHA256

      0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

    • SHA512

      8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

    Score
    1/10
    behavioral23behavioral24

    • Target

      Wallets/Google MetaMask/LOG

    • Size

      415B

    • MD5

      d4b05b42f889ab36fbb1afcd627e711e

    • SHA1

      7fdd971822aaaa174c95aaae5be43618da61c1d9

    • SHA256

      feda07318a1c8a50a30500d27e95ebe3e747a9cab6c8e7c7d43fd27f3cd9f7b5

    • SHA512

      7d323c425c0303c74f60289d7d1d823ad0cfa17d4b886f21981ead6e4ff8ee038a6b5235485dc7fa95d6d8862b683e2640d9f05c09fd3cfddea7503b2696d085

    Score
    1/10
    behavioral25behavioral26

    • Target

      Wallets/Google MetaMask/LOG.old

    • Size

      589B

    • MD5

      63abcd9ccd8d96cc39b0f40cc76f6b3b

    • SHA1

      609f632bfc81f3eeece1c1b56db8cde6cd5b4d8e

    • SHA256

      3e1193260f4ac72bc500cbeacfa3f808c1d502ff8c7e68752d36f0ad4ce78260

    • SHA512

      cc67a7afb321ebf9eb8247f391a494f42bdebec28afb01566cb292c042c5f8059264377f04d028c48e79ff6615324afee0c103573af814edf2f66f432912ab9d

    Score
    3/10
    behavioral27behavioral28

    • Target

      Wallets/Google MetaMask/MANIFEST-000001

    • Size

      3KB

    • MD5

      eca47467ef986d326f6c30ad8fd2989e

    • SHA1

      484e026deb476cbb72ea8d2ed5885f01bea7472a

    • SHA256

      d61f7cee0f8d325a416b4203118ed9a1b1d369676ec45de267d1ab0a32f6dc88

    • SHA512

      8a43a40c6997ff01e54696a5422c535771583a357d84ca55a9862203c3e9870ab325bfa446cdee2335d1e40767ed372d79ae011f31291e638c865f4ad6556369

    Score
    1/10
    behavioral29behavioral30

    • Target

      WiFi Connections.txt

    • Size

      104B

    • MD5

      26037115d6e443be8865e139659c999b

    • SHA1

      19ab079d33de26d1106b7ed85dd9a7358f5046dd

    • SHA256

      edcfc1d0f22762d00852bd9248d8ee7b45f55529301bf0d40f39ae1d64cddbe5

    • SHA512

      b016cbd9247f596b3e14007ab908dd03602fdcd9d3748573958f5e7d629566bb7cc97f3111638210fbb3d494a472de65995f02e9982c33fef0a2f948fdca6146

    Score
    1/10
    behavioral31behavioral32

MITRE ATT&CK Enterprise v6

Tasks