8505c83167206b75f9b21bf02cb6aca0cecf769842221bed094b5677f879612e

Resubmissions

24-05-2023 12:03

230524-n8dbgscd25 7

Sharing

Copy URL

Twitter E-mail

General

Target

CraxRat V4 CRACK.zip
Size

197.8MB
Sample

230524-n8dbgscd25
MD5

6301bacc961ddfd26380b139cb9f8a43
SHA1

459c094ec73f2435ec24fb65247646e136c77b82
SHA256

8505c83167206b75f9b21bf02cb6aca0cecf769842221bed094b5677f879612e
SHA512

f708e63a279feee65ff47eabed0c818a3097d46a61e1815c6d6f5127e751912b416a943fb9061d684542268823f6c03c6ca639b438433145ffcc6d0fca380d41
SSDEEP

3145728:I/7RM1U7hCMG5w61OqZT25OH5kN4NQ908t24lZT25OZbU3Io8Sk4GpUk9h+V47pm:ktVhCMGLykkRm0yP8Sk4o5ampm

Score

7^/10

agilenet

Malware Config

Targets

- Target
  
  CraxRat V4 CRACK/CraxRat V4 CRACK.exe
- Size
  
  282KB
- MD5
  
  2d8459cff12270ee6e7a7f5ca60d2686
- SHA1
  
  67ae332887c21b0ef9aac516936abdd06b24aca1
- SHA256
  
  186dbbbb1c825368ec3a7e7a8ed8a118588a19c76dc874007175e57054525160
- SHA512
  
  f546d79e2fd0a693228ec05f3eef5a0c816ed67681b099b324b124ed4a38a40c70cf544589f04184e718b7c117142c8556425aa10e9470e66e2ba9cabb627b65
- SSDEEP
  
  3072:hRk+zfeGFUPTI7I+1zFK2my4cybWsAiTPR7P/K2Xj/skd6vknOivD3S9tvTTrbIY:hRzDjO2AS9JTrE88vwaNmSI
Score

7^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1
- Target
  
  CraxRat V4 CRACK/LiveChartsCountries.dll
- Size
  
  59KB
- MD5
  
  740659d4411bcf877f27217a2710b874
- SHA1
  
  9df5c0d033e49026995e846fe27e1ab4955d43b1
- SHA256
  
  f6e951697226a85e8ad11578a20a0de8c1923afbc69dfce3f0e10ea823d54c1a
- SHA512
  
  96d810233dc40915d06c9adf6f49a62be8321a0ea6ace3c139922272dcf543e48b041b341694c126727e37e7a4ca1bd4ba7395ca18d998f629e87aa409c36b37
- SSDEEP
  
  1536:E3VBdmmdVR/GF3VZC/owI8bbS56VX1xPzSoE3xy:EFDht/GF3VZC/xdu6VlxPzhIxy
Score

3^/10
behavioral2
- Target
  
  CraxRat V4 CRACK/LiveChartsRegion.dll
- Size
  
  59KB
- MD5
  
  0d4672955cddebc60cdc5cb0510294d8
- SHA1
  
  8cad08e2fb925656bf7f70f954874f661d2fe32e
- SHA256
  
  e0553e5afac83e74fee2d5a69d25ecba12da126fba9e00b8757f769dbdcdb0cc
- SHA512
  
  45741d5468e745ed2bbe8b0583243d7a2b5e6a0cafeb23dd6c19831700c93db546ab18ec8c46f58df29ddf805352cd72bc7bc3837759cafe8304ad431b723db7
- SSDEEP
  
  1536:TJeUvbSllXaYYeODO3ujE49i+tgX1xPzq3ePM1c6O:rzilXzYeOC+/9HglxPzfPD6O
Score

3^/10
behavioral3
- Target
  
  CraxRat V4 CRACK/MetroSet UI.dll
- Size
  
  444KB
- MD5
  
  d99a97de55b2561e57135433b44bb786
- SHA1
  
  ab588b8d36683b52adcb32c03a9859b884838f29
- SHA256
  
  6288e559b0f34d56ab4601ffb2ba2289001c77cf7351d135dd93915034c56bba
- SHA512
  
  7ef95cb161265fcf110ba843fe3af5e6cf6d47465e17a10c742256bebd91c128df2cfa7d21696d716bfa861c952d6fad445912f8cca9da9cb03d780211b0545c
- SSDEEP
  
  6144:PTJ1DwrSfCmrB0O1SIai39IkRetlJT4ihPrsAgbP2UiuE2Bnw7M:rJSpmaxIephPrYDK
Score

1^/10
behavioral4
- Target
  
  CraxRat V4 CRACK/NAudio.dll
- Size
  
  498KB
- MD5
  
  6ca17abccae3050f391401b2955f9333
- SHA1
  
  0975b039a793accb58130d6639262cd291d80d5d
- SHA256
  
  3ad5d09b4c8c3146d15955a564a9f1a57d7c795b189a25c6f722a738d95ef89c
- SHA512
  
  c08f366aae9baf0e7762f47a2f79d0dee5187a1d7631e5838590b7c12911bdeb6247e0ff860ade36e04f1d6717f919ad98df6d3a1a556bff4b8994db9616ccec
- SSDEEP
  
  12288:MnXnae2TPlr3zvzar5oRDaw92wP6mai9gs6C:K8lrT+r5ADakP4i9gs
Score

1^/10
behavioral5
- Target
  
  CraxRat V4 CRACK/System.IO.Compression.ZipFile.dll
- Size
  
  24KB
- MD5
  
  dcda916372128f13ada8b07026c1b3e7
- SHA1
  
  99d6c187de8510206a93d2eed9c65e65e0c86e72
- SHA256
  
  b5c12e9099643e2eda9b49edd0d98bdaed153c72a7e8e6235d8e78714402d16a
- SHA512
  
  d66de5d61cf7090ce2e11ca8064723a44c2fdbd7ed937f1cf4198ebe13083037941b816ad9022d332bbb853666785600fa8b1faca94c498d2f82de73fe1e42f9
- SSDEEP
  
  384:dK8Y54xRiW3mWeW+mWE3rq0GftpBj52ERHRN7dldBopPI:dKfemqiuEBHoa
Score

1^/10
behavioral6
- Target
  
  CraxRat V4 CRACK/System.IO.Compression.dll
- Size
  
  55KB
- MD5
  
  dc852942e3fda3284b7a213a4a0c61a9
- SHA1
  
  4b042f43eb249309a398390757f671cffd26056e
- SHA256
  
  7512939c42ca6eca7afab25ae5c5891d046bcb2c689c73d7aebf634618afa824
- SHA512
  
  ec8e5b659f18592d4c9dc81e899309d2883b9d67f139d625b1f8fbd563465603279ce1e0fcde05b1712372503f3dbbe4d6a05165260a349925db5f2b7035fe79
- SSDEEP
  
  768:V4gOx89iNkRw2B11HI+bAeg603JLw8Mi9wt8AQfaKKP2kYlevy1eh0B/z:VQNh2BHIwqFlCKYYIU+0B/z
Score

1^/10
behavioral7
- Target
  
  CraxRat V4 CRACK/V4.exe
- Size
  
  40.9MB
- MD5
  
  2c3de095ad1ad12d56c4656642c4e541
- SHA1
  
  f8925dc9c68895958961a5c01e989f622f644f0c
- SHA256
  
  85e1519a11df4b2c6d36d64536fb1070cd6cdd01da502056aab2a01b468016c3
- SHA512
  
  5be44b6e3c99847f8507e1ba32f2fa157b6da8cf09f7baf12030bd57f29c5872e2d5934cc64836b2de98242422f4d91b9224071b041f48b539e6f23e6d3ebcac
- SSDEEP
  
  786432:Thyqe9n+N5GsjzKGCGWdo3LuqIXwfWeY6VQoJOjzTheSsXaKAoija5w9Fm:NtOn+uLGCG6qOgfzbUjzTDyadoea5g
Score

3^/10
behavioral8
- Target
  
  CraxRat V4 CRACK/res/Plugins/Android/crack.exe
- Size
  
  621KB
- MD5
  
  53e9f3c1f7e1cfcf9439bc0835efd644
- SHA1
  
  fd91e335c9da742f0972107a240606bb81bbc675
- SHA256
  
  47e39ef464af14cffd9e2cd2951a98e61afab9e37431feb3ba0730bef88d00b4
- SHA512
  
  b8835578bdfc45be76774106d5298f22915bc1d84ca39b3d9a1a4708f4dcf02a8eec8e1184644c22cd1f77b088cc731e551158ff34bb5bfcb139a48f8478940f
- SSDEEP
  
  12288:m1M2CoLIJHQ6dp82sv4UfFuXk8o2F6ujLZbpIgXTdlUFk5bSw/zBO5OiWsLVM/Ji:U4HQQpuv4D/36ulpImU25uoBcOBIh
Score

7^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral9

MITRE ATT&CK Matrix

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Executes dropped EXE

Suspicious use of SetThreadContext

Executes dropped EXE

Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9