197763392d7cb107f6ef533f60e476c9183458184b4da1f0d0b5ca1112087c4a | Triage

Resubmissions

23-05-2023 12:22

230523-pka2wsfb86 4

23-05-2023 12:17

230523-pgjjvsfb78 4

Sharing

General

Target

Slinkware.zip
Size

707KB
Sample

230523-pgjjvsfb78
MD5

c7a6a0976e7f3f7f697ac8ade19aa631
SHA1

cb788963adaf17c02b9a6d6945b3185f13e9d039
SHA256

197763392d7cb107f6ef533f60e476c9183458184b4da1f0d0b5ca1112087c4a
SHA512

ac3a070519b5192cbda4af380ff8afdd0f2f0734be4315e924f5a2d71f5d7282008ddc3db9198e411ec7ae4c845c6342b9e64db881b8e3026fe49b4ac9b843ef
SSDEEP

12288:/BCcm98J949B/V6FkXApvVuAKwMg+HzNYTjHkIR24h/hBndx+OQQRZ:/8cm9LnAHuAMggzmbR2w19Bv

Score

4^/10

link pdf

Malware Config

Targets

- Target
  
  Slinkware.zip
- Size
  
  707KB
- MD5
  
  c7a6a0976e7f3f7f697ac8ade19aa631
- SHA1
  
  cb788963adaf17c02b9a6d6945b3185f13e9d039
- SHA256
  
  197763392d7cb107f6ef533f60e476c9183458184b4da1f0d0b5ca1112087c4a
- SHA512
  
  ac3a070519b5192cbda4af380ff8afdd0f2f0734be4315e924f5a2d71f5d7282008ddc3db9198e411ec7ae4c845c6342b9e64db881b8e3026fe49b4ac9b843ef
- SSDEEP
  
  12288:/BCcm98J949B/V6FkXApvVuAKwMg+HzNYTjHkIR24h/hBndx+OQQRZ:/8cm9LnAHuAMggzmbR2w19Bv
Score

1^/10
behavioral1 behavioral2
- Target
  
  Butterfly.toml
- Size
  
  307B
- MD5
  
  188252261a39c274a2d29c7491c5c868
- SHA1
  
  8469cd933be332a98aee6a7372c4ed327a5b06a4
- SHA256
  
  d2932370e786eb99b91ee9acb3174289775dcf52a2b3155ffe2afd5748811b97
- SHA512
  
  cf44e7f92280080cea0b975cfecf0189629fec9e0e3d0646dd2da6d4de55094bb4ada2c0655ba1152fe897fc22280d843202869396c92d3d2f59a980bf8a7f21
Score

3^/10
behavioral3 behavioral4
- Target
  
  Paper.pdf
- Size
  
  483KB
- MD5
  
  f96e6ade3cb81a7d204d7792023ffa40
- SHA1
  
  adb37ee06ea6f10b1f44275e5599b792379283a9
- SHA256
  
  62fe25a7bd22e357c8cf077c879e02ce5e8ab8af83e556e46746542dcabdbecd
- SHA512
  
  1ec5b22bfd689d0cde66ddc5825c50f9ec143f9ba1946da668076ae9e931540ac67c36819ad4c32b03906953b054ea642a7f11148eeae75137fda3a9adceaddd
- SSDEEP
  
  12288:pNkng6Bvi5630LKw/J49BchEnJ6LyLQA1K/wgwM:jkPqk3MKwCqAJ6LCKwM
Score

1^/10
behavioral5 behavioral6
- Target
  
  Slinkware.exe
- Size
  
  599KB
- MD5
  
  dd95d25de98d28b0a876f838c2a9fa3c
- SHA1
  
  f136e2be3d29c97c29c54d2d4b4225477cdb2669
- SHA256
  
  0bade446fe989cdfffdd8ffc73417497f5da229a5a5c7610f62a9152d4e7396f
- SHA512
  
  3f15dc4d8314e26e98d0db755e5b59ccae1a5d7ad6990b81ec7d579ad13b682b87c9444ed5d09cd37850fd0f8248011f4d7d2add7391f6c53f5294e210c964ab
- SSDEEP
  
  12288:BNZLClT2UklCBvQiplTWlTXSuR8NZSre7ceskSEof5Hno3LIf:BNZJaYGlU++8yre7lskef5HnGIf
Score

1^/10
behavioral7 behavioral8
- Target
  
  Slinkware.toml
- Size
  
  304B
- MD5
  
  307297a3bd7a372e9d930a9e2c836799
- SHA1
  
  d802213b5a85dd339c1a496a9e1454bac5695d2f
- SHA256
  
  c320d191e3e09e7d1456c3e3095ee6bd2a898ccc98f22118a6fbc9e798e16887
- SHA512
  
  886264db088fbc79e23b3bd40a21468006642767d16b710658835796f6f91639ecd7e24150e11875383a64019de4c01136d11f664974442e0d0ec96b0204f8c2
Score

3^/10
behavioral10 behavioral9

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10