1f5d39cb454ac3c993f9ece1dbeec900194a867b50ceec6148c99398484f4468 | Triage

Resubmissions

15/10/2022, 08:00

221015-jv913sfdb8 8

Sharing

Copy URL Twitter E-mail

General

Target

Cracked Amazon Brute By JLXP Crew.rar
Size

8.1MB
Sample

221015-jv913sfdb8
MD5

18cac9fdaeb7bfd2e34783100c635158
SHA1

425962ddb3b972f407b03bd9b56f4262b90807d6
SHA256

1f5d39cb454ac3c993f9ece1dbeec900194a867b50ceec6148c99398484f4468
SHA512

68ee0f99c4fa1f0b35865e5c4f575e49d473a66020a15aeb57ba925f5056fb9a35e8c674e0efc7a229cf0c5eed2b6b28e8b04ddd8f8fc839cde5b98381e3e4f9
SSDEEP

196608:yuEBsoCBFaBYndxnzEFau0X0M6U0CcgLppLt1P+m:IygIdx+ahX0OUgdZ+m

Score

8^/10

persistence pyinstaller

Malware Config

Targets

- Target
  
  Cracked Amazon Brute By JLXP Crew/Amazon Brute By Erganto.exe
- Size
  
  185KB
- MD5
  
  69c8af379628492df07fff92dc91964f
- SHA1
  
  c627d28e839f0a9a62f4262e936bc5ccc11e2714
- SHA256
  
  568ed0eb65b1c9c1ac34eb7f0b5660f3349cd134fd856e6e20cf03e68056ef7f
- SHA512
  
  2a7b61f4e1a1820eb9a3ea505e21a15bb1a04f342480a509bfef1d117aa8c83c3eeffd388c824738fd2afb25006aaeef0b03de377dcef2122b0a4c437d6d96f5
- SSDEEP
  
  1536:A4l/ePOr942zytUK9rS7RhhBBIMBBuixi16o0fDjH3CIyHCD:A4l/OhtoIMg0nH3C5CD
Score

8^/10

persistence
- Executes dropped EXE
- Drops startup file
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1
- Target
  
  Cracked Amazon Brute By JLXP Crew/procs/Launcher.exe
- Size
  
  53KB
- MD5
  
  c6d4c881112022eb30725978ecd7c6ec
- SHA1
  
  ba4f96dc374195d873b3eebdb28b633d9a1c5bf5
- SHA256
  
  0d87b9b141a592711c52e7409ec64de3ab296cddc890be761d9af57cea381b32
- SHA512
  
  3bece10b65dfda69b6defbf50d067a59d1cd1db403547fdf28a4cbc87c4985a4636acfcff8300bd77fb91f2693084634d940a91517c33b5425258835ab990981
- SSDEEP
  
  768:FKtnBTTQi/YqMFlVt52ftDhKeoNzZq8OujxUu5XEAb4b9yvMzUV5:qBTUgYFveDRuFEAb4b99QV5
Score

8^/10

persistence
- Executes dropped EXE
- Drops startup file
- Adds Run key to start application
  persistence
behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2