General

  • Target

    y2mate.is - God Damn (From Stimpee)-aGZPGrpVsKs-720p-1687434769.mp4

  • Size

    673KB

  • Sample

    230622-xar7esgg94

  • MD5

    271f14cb8fe3633dac8704802153afbc

  • SHA1

    a065a6df4371e8a327ae6c3e9b572bba6d393af3

  • SHA256

    8faa5eac05fdc3c25b031c01dc8e66b6c7faf2f24acf2c2f96df107b0517d57d

  • SHA512

    e2883ad623423990d60abd7d7ac97412d9197d7544476d192ebabd418950177b2fa20f177c9377bb4d0466a02cddfa96d269f7f39f2d4a3aeafe03444da3d868

  • SSDEEP

    12288:AsuCrBpDSC7bKUpYYS2uO5wg8qhNTTJdaOugROJ91Lhhjh1R2fBWZ:VumPDS+bxpNSiwg8SPVRe/12YZ

Score
7/10

Malware Config

Targets

    • Target

      y2mate.is - God Damn (From Stimpee)-aGZPGrpVsKs-720p-1687434769.mp4

    • Size

      673KB

    • MD5

      271f14cb8fe3633dac8704802153afbc

    • SHA1

      a065a6df4371e8a327ae6c3e9b572bba6d393af3

    • SHA256

      8faa5eac05fdc3c25b031c01dc8e66b6c7faf2f24acf2c2f96df107b0517d57d

    • SHA512

      e2883ad623423990d60abd7d7ac97412d9197d7544476d192ebabd418950177b2fa20f177c9377bb4d0466a02cddfa96d269f7f39f2d4a3aeafe03444da3d868

    • SSDEEP

      12288:AsuCrBpDSC7bKUpYYS2uO5wg8qhNTTJdaOugROJ91Lhhjh1R2fBWZ:VumPDS+bxpNSiwg8SPVRe/12YZ

    Score
    7/10
    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks