Resubmissions

12-06-2023 09:02

230612-kzv86abg4t 10

06-05-2023 23:59

230506-31vm5aad49 10

General

  • Target

    20230419492af928bf7209037aab62c05b82a75aalinaaspxspycerberdarkcometderusbidridexinceptionjratlazagnelockbitmiragenautilusneuronplugxredleavesrurktarsliverth3bugutkonoswannacrywebshellshellwinntiyayih.exe

  • Size

    5.0MB

  • Sample

    230506-31vm5aad49

  • MD5

    492af928bf7209037aab62c05b82a75a

  • SHA1

    c24a6f7736e125620abed012b4545ddeeac0675e

  • SHA256

    91caa1fe289cdd8500399b3dcb07a5417223126a8cfd6833ece052acaaeb27f7

  • SHA512

    0fbacf27a474203fe2c29e5c62b5c3d86803901a69e5ce538f9c2e09e42a0f7e4faff39eb0ae76a58a53412d49ae31ba86123fb28f28f1912ea54aa372cd48af

  • SSDEEP

    49152:3Gbf5gfKJu0zf4R+oUN+edPTPR5Y0Pf/deh/1XwshSLGI/trdxblHK:cFlRm01+j0BA

Malware Config

Targets

    • Target

      20230419492af928bf7209037aab62c05b82a75aalinaaspxspycerberdarkcometderusbidridexinceptionjratlazagnelockbitmiragenautilusneuronplugxredleavesrurktarsliverth3bugutkonoswannacrywebshellshellwinntiyayih.exe

    • Size

      5.0MB

    • MD5

      492af928bf7209037aab62c05b82a75a

    • SHA1

      c24a6f7736e125620abed012b4545ddeeac0675e

    • SHA256

      91caa1fe289cdd8500399b3dcb07a5417223126a8cfd6833ece052acaaeb27f7

    • SHA512

      0fbacf27a474203fe2c29e5c62b5c3d86803901a69e5ce538f9c2e09e42a0f7e4faff39eb0ae76a58a53412d49ae31ba86123fb28f28f1912ea54aa372cd48af

    • SSDEEP

      49152:3Gbf5gfKJu0zf4R+oUN+edPTPR5Y0Pf/deh/1XwshSLGI/trdxblHK:cFlRm01+j0BA

    • Matiex

      Matiex is a keylogger and infostealer first seen in July 2020.

    • Matiex Main payload

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    • Snake Keylogger

      Keylogger and Infostealer first seen in November 2020.

    • Snake Keylogger payload

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

MITRE ATT&CK Matrix

Tasks