81bc7887f0a7285505c69f51b9711b854d91b0e2608b083dfb224614ac02080f | Triage

Submit
Reports

Overview

overview

8

Static

static

7

Xotic Splo...it.exe

windows7-x64

6

Xotic Splo...it.exe

windows10-1703-x64

8

Xotic Splo...it.exe

windows10-2004-x64

6

Xotic Sploit/finj.exe

windows7-x64

1

Xotic Sploit/finj.exe

windows10-1703-x64

1

Xotic Sploit/finj.exe

windows10-2004-x64

1

Sharing

General

Target

Xotic Sploit.rar
Size

23.2MB
Sample

221009-t7qs3shcc7
MD5

0a17dbce5225824876ab25b9afdfe7bf
SHA1

d71507ce9c7f2a499fa8c20c819f89aab3a3909a
SHA256

81bc7887f0a7285505c69f51b9711b854d91b0e2608b083dfb224614ac02080f
SHA512

4dca3d0d72f7de885c720cc3ad7d2955a81e11cbf74813b1b79f44f27e9517f2333ba786e848b0d1a592efb2093b485f781685bfab11b504e39c2b0fbf9a5077
SSDEEP

393216:x5JAVY0NJmy7bJu6hj2HSaxVt9dK7AqfZHki7/nCBoZmvcHCgyOvON:xYS0NJmy7bJV+rXfKscEi7/nCBoZmkix

Score

8^/10

agilenet

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Xotic Sploit/Xotic Sploit.exe

Resource

win7-20220812-en

windows7-x64

2 signatures

600 seconds

Behavioral task

behavioral2

Sample

Xotic Sploit/Xotic Sploit.exe

Resource

win10-20220901-en

windows10-1703-x64

8 signatures

600 seconds

Behavioral task

behavioral3

Sample

Xotic Sploit/Xotic Sploit.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

600 seconds

Behavioral task

behavioral4

Sample

Xotic Sploit/finj.exe

Resource

win7-20220812-en

windows7-x64

1 signatures

600 seconds

Behavioral task

behavioral5

Sample

Xotic Sploit/finj.exe

Resource

win10-20220901-en

windows10-1703-x64

1 signatures

600 seconds

Behavioral task

behavioral6

Sample

Xotic Sploit/finj.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

600 seconds

Malware Config

Targets

- Target
  
  Xotic Sploit/Xotic Sploit.exe
- Size
  
  139KB
- MD5
  
  02781c5cc102ad8c27ccec9de2cc8310
- SHA1
  
  f11c062dbc3066b008fad9c4ca5cb15cc3cecb4c
- SHA256
  
  270005e520837f87a67ac3a643c45565ba56bc743c4df1bfe72f3bbba31d45d5
- SHA512
  
  6ad92cad2a21da5b5a5ebe1bd7ca4c5bd65ce65efad1e874432553a1ad81853d4e1752422f3e9fa9714a3448c8afc7f229bfcd785fd5bebacf69d6a778d471f2
- SSDEEP
  
  3072:T9Y/2IbL+MK5ZRm9QUUQEp5I+mc/SrNiAxEQhmwR:tbzQ3Sqj
Score

8^/10
- Downloads MZ/PE file
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2 behavioral3
- Target
  
  Xotic Sploit/finj.exe
- Size
  
  6.2MB
- MD5
  
  0ccba8ce9eecd586877ae92584564ef0
- SHA1
  
  3d68728f6cb5175add6b4c111066737f370d7272
- SHA256
  
  617745e55247916f3fadfcca7fa1a45045743b045eb3876c1062b955ba2170dd
- SHA512
  
  9d149f2aa487857a3ad8b61da68d210ee475669cd8f60df86f7d835734056a300b6f3d779e28930c2d4912e3866adc52156b9e1c59bf715ba4e0cfe83a042eb6
- SSDEEP
  
  98304:mycqtDD6WhDCLI2XzJg4w5udI4d9Y6PNfE0As7Vo/lKEMb1TxKlnLYVwKr:mycKeI2a5eI49zPN8B/KH+LawY
Score

1^/10
behavioral4 behavioral5 behavioral6

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

© 2018-2024

Terms | Privacy