0dbc4b788f17c88ffb41b081c8a441c2943a3ca78ccb3d0ab5938040aaac83ca

Sharing

Copy URL

Twitter E-mail

General

Target

ASSAYYED_KITCHEN_V1.82_STABLE.7z
Size

37.6MB
Sample

230327-3lw8eahg4v
MD5

84de2d8e7ac33afad8b6020f2789e70a
SHA1

c8440efc00c6c273b627ec750311c62af8324ed3
SHA256

0dbc4b788f17c88ffb41b081c8a441c2943a3ca78ccb3d0ab5938040aaac83ca
SHA512

61dcab9c138629db1736ba876258f05b3e361c2172d40c7cb655e9f08fdf9815f694a8284cc93ea079eee2c59cb67004f7e3b9d6a71aee40f3d6fce44e2bac13
SSDEEP

786432:fTkMDwW1hXzNLJFY/idRY+KCWrJ5QjMQfc2UmJ/jAvK3Fvxg:WW+aYVHQj3PLLAvUZg

Score

7^/10

upx

Malware Config

Targets

- Target
  
  ASSAYYED_KITCHEN_V1.82_STABLE.7z
- Size
  
  37.6MB
- MD5
  
  84de2d8e7ac33afad8b6020f2789e70a
- SHA1
  
  c8440efc00c6c273b627ec750311c62af8324ed3
- SHA256
  
  0dbc4b788f17c88ffb41b081c8a441c2943a3ca78ccb3d0ab5938040aaac83ca
- SHA512
  
  61dcab9c138629db1736ba876258f05b3e361c2172d40c7cb655e9f08fdf9815f694a8284cc93ea079eee2c59cb67004f7e3b9d6a71aee40f3d6fce44e2bac13
- SSDEEP
  
  786432:fTkMDwW1hXzNLJFY/idRY+KCWrJ5QjMQfc2UmJ/jAvK3Fvxg:WW+aYVHQj3PLLAvUZg
Score

3^/10
behavioral1 behavioral2
- Target
  
  TOOLS/kernel/magic
- Size
  
  41KB
- MD5
  
  af32967dee6794a70da99219a1b6e9e3
- SHA1
  
  d8f4656b04eb16cb441b7290fb47e60d5c714e98
- SHA256
  
  ccd9016e810a8f6abff6fcc19fdaa05a30dbfaf8ef299258eccc3d486b272890
- SHA512
  
  7ac57fa83f9b88f9148f1ba9edc9db52756b287fea0be219038ca729f162872a3e1585c985bdc209e4817c383a1fbe70492c319f23c8c76fb88eb06de3614729
- SSDEEP
  
  768:vsKLVNmOEAeGuqMz3Hsi/Ky+kSouDwOCVZLJLO5dczHL9ZJqRzxxTg:vPLVNmOzeGuqMzMiCGSouDwOCVZLNO7O
Score

1^/10
behavioral3 behavioral4
- Target
  
  TOOLS/notepad_pp/change.log
- Size
  
  447B
- MD5
  
  ddc336ff6abf500ccfcf76e582c6fac7
- SHA1
  
  14a13507af1aa60390a62cb95adba340d4bb1e13
- SHA256
  
  7e5ce8864bbeb2faab7617c9c87ed26268ffeb67d624529d67cba968e6f8165f
- SHA512
  
  ddfe78b9b320d821aed573f306b18e1e508de12054a10757509f5228e6106a594998c4f08373abd47df47f41ffc8983333e9f8af31db45111e778c7f5d8ce69b
Score

1^/10
behavioral5 behavioral6
- Target
  
  TOOLS/notepad_pp/config.model.xml
- Size
  
  4KB
- MD5
  
  c1f0d8bd9fe76a375693420742f5005b
- SHA1
  
  95e0d0be217090695c1a4295a17523e9abc80c4c
- SHA256
  
  a8c1586643c94de0fa157b02f1f9eb5891d664ce6c2bc51f68d1b44f21f43fec
- SHA512
  
  ba0b1d28e8ddfd73e956919a4bd595863b079f18b9aa5f07fdcb90aba1ab373f4a612e6c2028db7284dcae3c2fd7520b4b2f7e1fedf13d348ae0b8b4ad1bc0f3
- SSDEEP
  
  96:q09AHS3Vv7oQMnoHVv7ojDYr+kS7Tqcn4cwwnrdxPM1:L933h9MoHhxihKcnDwkrdxPq
Score

1^/10
behavioral7 behavioral8
- Target
  
  TOOLS/notepad_pp/config.xml
- Size
  
  5KB
- MD5
  
  a35381d07773b57f95ce9d39c8e2c94f
- SHA1
  
  b38c4651a4ce79f8f9bf07290220fef7fbe1f9e0
- SHA256
  
  357b025ea4a901018374f2222e95e8eace6453cc477b86c3dcab43e45c1c284d
- SHA512
  
  5e4ddc5473c861808e2037a2d308a5650c968c889f85d53275fdb9a14dc8b9763ef159c8fed6305b942d4a3564cb616de9c0177f905dbc495d172207b2aef4ec
- SSDEEP
  
  96:ogugLHSYzSgSTr4d5n71OpB5ztsGJHZYMUQqu2bCvdH:huYuguY4L5zt7JHZY+qjCh
Score

1^/10
behavioral10 behavioral9
- Target
  
  TOOLS/notepad_pp/contextMenu.xml
- Size
  
  3KB
- MD5
  
  4f46475c050c985c98669102d3138f58
- SHA1
  
  2606f836b1fa00ac484ae12e6e4a5504837cad30
- SHA256
  
  1eb58d72ee0d7c5e1d51cf7ee98e31b31f545383e2842e4e6184675f341a9ba1
- SHA512
  
  f0e9df7a2daf29e8ad5a2a9aa33399d62e5cd86773b4064b68b8b4edeb89e35bef08513c6463ea5157beb0787a77d00afcca7c3912bee1cca3d0abb645b5f8a0
Score

1^/10
behavioral11 behavioral12
- Target
  
  TOOLS/notepad_pp/langs.model.xml
- Size
  
  271KB
- MD5
  
  356c92f489d66b4f35e73b2478aea9bd
- SHA1
  
  4bc8b3ccadf870f1e4e73645fbbf238595e92564
- SHA256
  
  e5f5cabf66660b46814f38f35f7695e35f3b7bd0798f2371e08d5966fd1c3f26
- SHA512
  
  eedb55762e2cd7e581544270ee71cd20b507cfdae59f628e7289800ced31c5733c3adb042823d9966b7a87b9de3ccfd6f318243e02a1a1286bd84c705d96f0d4
- SSDEEP
  
  6144:PCrKDJr8JcZK3DwnQIKJouN+OrxzxRNbcVzNKTegPU90DplB/1EmSaFimA4ikmVq:arKD7SIKOuN+OrJrFimA4y0
Score

1^/10
behavioral13 behavioral14
- Target
  
  TOOLS/notepad_pp/langs.xml
- Size
  
  271KB
- MD5
  
  688c5d9fd01f7f5b45d2ee08acd78659
- SHA1
  
  30b28ab7808be061013849166f0917989eb3201a
- SHA256
  
  980dea01a4904cf90175207fd62dbaaec469cc0ae425b3029b59db62205ae88e
- SHA512
  
  07ba45934117239e091730219707c50d914ae2b7ebe21ecaf50b5f004a5b5ecc498e55672addea5ae518ccc6fb3b63a821cf285c3f16504a9b8ae99aaf04a2a7
- SSDEEP
  
  6144:0XzKXJw8JcEK3DwnQIKJouN+OrxzxRNbcVzNKTegPU90DplB/1EmSaUimAnikmVr:ezKXxSIKOuN+OrJrUimAny5
Score

1^/10
behavioral15 behavioral16
- Target
  
  TOOLS/notepad_pp/license.txt
- Size
  
  16KB
- MD5
  
  6a0438c04e6553dfb631636dbdb199a1
- SHA1
  
  1fb5eb9da193f6a474ea1ae754d69cbe6fcd2b48
- SHA256
  
  da59bed2b60d1ba57830d1bb71e5993de37c6085b2d86e41ec43938467234c55
- SHA512
  
  37cf8ee3148354a4537f25fbd22b20548df2dcc155707fa4daf56de020d8eb72c17bade292948c0862ae07fd7deede346fbf42e45bf4fd596ea51123b9bc7097
- SSDEEP
  
  384:j5nNyeIQaInRiSXD68QbzbhATI7BLt8KMyTyT:NNyebJ3COCHfRyT
Score

1^/10
behavioral17 behavioral18
- Target
  
  TOOLS/notepad_pp/notepad++.exe
- Size
  
  2.2MB
- MD5
  
  c54bb5e4b00c6447629530e0a472821e
- SHA1
  
  eeacc452f4008e1378324ec39edfa7a7b4ed8062
- SHA256
  
  909414ae2b17407eabbd26e89862f230757b2d84e0eb91fe42d05b80764d4181
- SHA512
  
  7767cf3c5ef851655f7a827bdf2a52e8af69ef56c988cacc4ed11e0efd38d3ae3e3bf5225d041152159ce3da8dc30d9f13d67f2c95106d539794599beb5f80a7
- SSDEEP
  
  49152:H0DzBHjJupdGJYt6KAwC4qznRw7YIqRGVTAJ6:HiHFCdGJYAc8w7/1Td
Score

3^/10
behavioral19 behavioral20
- Target
  
  TOOLS/notepad_pp/readme.txt
- Size
  
  1KB
- MD5
  
  5c52adcd2bcc000a8b4bd5eb36b84cde
- SHA1
  
  b51da3c7700102dad5d71b2a8551320b2529322a
- SHA256
  
  f09758a2c953bdd2b817441e9a00255d3685c99369468c2695f0ca39aaaa5e6b
- SHA512
  
  ace8a1161b75f4bc2d279bdef5d8e2c0e10d6c906ae8743d33ecacf8f01fa053f8a75799ced9e6fb3dd6cc4eddc873761795a5f7680e307ec252edc2ace6b15a
Score

1^/10
behavioral21 behavioral22
- Target
  
  TOOLS/notepad_pp/session.xml
- Size
  
  1KB
- MD5
  
  f9d2b18eb4b3d7c0355085e9b6989941
- SHA1
  
  194db765ea4a1860fade8298c1ce02ea7a050172
- SHA256
  
  068f54060c7cb88c795e76fd2217874f5118591d879937fddbc441b8a1c6b97c
- SHA512
  
  9ea51b6cfe49b664ed5154fa7662af56c6acd7dfcfb59600af4928b0e2f869042be4853e0bc99b5174a6f564632b14f149c55a604834f76229e0be79d40b30d4
Score

1^/10
behavioral23 behavioral24
- Target
  
  TOOLS/root/CLASSIC.zip
- Size
  
  5.6MB
- MD5
  
  b568366627fe2cfc6851a9d9b0990c0f
- SHA1
  
  9fd8bbd98f214293e02faf823554f18a20366169
- SHA256
  
  539e4a6b61d56926475b82ea7350a7ffe6028933910cc9ff2ead608f900971d9
- SHA512
  
  5a38e27a56be0ad7183410311cd65651f802623b735441274ccfa5377a599497b09da5a227c26d5cb11bc0697a937d9cfa8e9f238d5869d48d45a92da2ba495e
- SSDEEP
  
  98304:NtaxlUjxNUYPNCk0owLRTD+xH/d7Cg5Ruy4dDlUhdYg5NMIlyAIrGpduvGGVJIiC:NoxlUj4y50h1Qlmg5RX0DWTYg5NDISdJ
Score

1^/10
behavioral25 behavioral26
- Target
  
  TOOLS/root/FAST.zip
- Size
  
  5.6MB
- MD5
  
  8e259abaf1eb758c126cfe566621ea87
- SHA1
  
  2a26f0f1d1880a745556ca10af98c8e045c2dc43
- SHA256
  
  3983e3caae3066aad34ec4a00639d220d6b26ea1c6e9bb7174f45c8f799fb5d3
- SHA512
  
  30f92dd4724b19bc0222fcddbd0eabae9d76ab4839ee037eb014cb9932ede4de4c5601bcb9e082925de1300aefdeeb90d304e811688fc444f0411c305aea8b0a
- SSDEEP
  
  98304:ytaxlUjxNUYPNGk0owLRTD+xH/d7Cg5Ruy4dDlUhdYgwIrJNMIlyLpduvGGVJIiH:yoxlUj4yl0h1Qlmg5RX0DWTYgwItNsd0
Score

1^/10
behavioral27 behavioral28
- Target
  
  TOOLS/root/arm/chattr
- Size
  
  9KB
- MD5
  
  ba683e328c1edab49c4bf787a16e7cd1
- SHA1
  
  164738705565c5ca25f3a4d4875c1cee2e394de3
- SHA256
  
  3dba02fc12e085ec7e08ad7f1860ab050e0c50d8142e87cf7feae82becd50a89
- SHA512
  
  c1a2a480b9234c89c65af1c9c819117426b8e71c606aa08651b461bca91408cbec6ccf362191efb9768127a8d5bd771766982907f7f578b352bfb2818de1bbb9
- SSDEEP
  
  192:Jpv20eogFnE5Bz2rmW24gYuRC6J7OyVOWO/xCYqqJ26SZ:eRogFEP0m/h/JCyMJ/EYfS
Score

1^/10
behavioral29
- Target
  
  TOOLS/root/arm/chattr.pie
- Size
  
  9KB
- MD5
  
  1e42373fa7b9339c6c0a2472665bf9d4
- SHA1
  
  aa8110633b1ef77977abe66882c52104884f55bc
- SHA256
  
  941ee4e877d24867fa03344291de569a7ffcf31f1d88685a4bcea9b7d4635de5
- SHA512
  
  51734c3e096a3bfa11dd9dd573bf4186f4d402f1237d3463b3ed8e0761af78b9c54ce24752ddea5321dd9af2e464c0f2306a12952d60dddac324267c77a46ef8
- SSDEEP
  
  192:9FX3Xs8Z/bcA84cj4KIcEzEnO6SHfvDoWOWOMQ6fWMI:7H88uABxQnj8LoJJkex
Score

1^/10
behavioral30
- Target
  
  TOOLS/root/arm/libsupol.so
- Size
  
  198KB
- MD5
  
  4ed52a961508b8126146feba6d26ffcd
- SHA1
  
  36a215f4fd8b08c65ac93316ff385e03b5936177
- SHA256
  
  aa73fcf14f217d93613822f938268f5b04bad9060fb83bf7d3f977acd1e3c78e
- SHA512
  
  58d8a02056a638841225124399db077c959742655a346dde53a87955f60809ccbc3465976477a758beeb9ad0e0e2b6faec97ff3dfcdfdd6410a1aefcd2206f26
- SSDEEP
  
  3072:AZ0ozFxLJF7feQ9N9ZMUrJDIUJ6UJ67hj:AtzHP7feQ/EU5L6Us7hj
Score

1^/10
behavioral31
- Target
  
  TOOLS/root/arm/su
- Size
  
  77KB
- MD5
  
  a9af47d9ee3dca71bb428be5d4d7a283
- SHA1
  
  1a90af011dda9b2e581ad7c4096e6ec73bb9a50b
- SHA256
  
  dadf77e2af0531181fdf5b567e87e120762159fc179ecef9eacab6a2d922e888
- SHA512
  
  13ea25b1d275eb374f12a2cb0ed5c10ea65c920d73a7fa0b5aabffad9cd7887f462f6e6a4b166060a1fd189a5f50bb18dcd5ff241bbc20ba4c2fa03c86429210
- SSDEEP
  
  1536:iIefGolEQfbhfFaUpOcYF70iVsK5MGcmBnle9blJ46tQys7:ivllfFictKv5MGcd9BJ4H/
Score

1^/10
behavioral32

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

System Information Discovery

T1082

Query Registry

T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix ATT&CK v6

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32