4058bde8974da0952b95736c0fa26ce98ef5aa8ca754af9b48980eafae263050

Sharing

Copy URL

Twitter E-mail

General

Target

controlloid-server-master.zip
Size

14.8MB
Sample

230701-s1ydxaab7s
MD5

d46823178ee51192a59810b4007f4677
SHA1

10bbfb176e800d4141e2a9ed4a14c9dec8f63b49
SHA256

4058bde8974da0952b95736c0fa26ce98ef5aa8ca754af9b48980eafae263050
SHA512

b005a5e6a277847944728c4914761843925434b97ea31782d57e9b4da63046f7a9fe12da0bed2c0a7f492dc0a115689bc19c3c52a697b456dd0f893c7209b786
SSDEEP

393216:kaAII6nyCHA6JAsy3a6E/cln/x3tEzQvMS:HAIBnYsyq673tuE

Score

7^/10

linux

Malware Config

Targets

- Target
  
  controlloid-server-master.zip
- Size
  
  14.8MB
- MD5
  
  d46823178ee51192a59810b4007f4677
- SHA1
  
  10bbfb176e800d4141e2a9ed4a14c9dec8f63b49
- SHA256
  
  4058bde8974da0952b95736c0fa26ce98ef5aa8ca754af9b48980eafae263050
- SHA512
  
  b005a5e6a277847944728c4914761843925434b97ea31782d57e9b4da63046f7a9fe12da0bed2c0a7f492dc0a115689bc19c3c52a697b456dd0f893c7209b786
- SSDEEP
  
  393216:kaAII6nyCHA6JAsy3a6E/cln/x3tEzQvMS:HAIBnYsyq673tuE
Score

1^/10
behavioral1 behavioral2
- Target
  
  controlloid-server-master/.gitignore
- Size
  
  22B
- MD5
  
  453c975b74d196c81f073246691d51cc
- SHA1
  
  d84d876dceb4dc9c2cb030b79ad8ab52ab21c510
- SHA256
  
  81e75df7d1a65daa41afb90a70eb5777dcd604e495a7bb27c1013cca68a18ddc
- SHA512
  
  60252715023561c6fbec70d43b3b0993891f1b99f344842c6c6ce58a6c4904e5efb31dbd9ca29ccc436f318d325e383167c9964aaf93d132e99c66416b8264b0
Score

3^/10
behavioral3 behavioral4
- Target
  
  controlloid-server-master/LICENSE
- Size
  
  34KB
- MD5
  
  1ebbd3e34237af26da5dc08a4e440464
- SHA1
  
  31a3d460bb3c7d98845187c716a30db81c44b615
- SHA256
  
  3972dc9744f6499f0f9b2dbf76696f2ae7ad8af9b23dde66d6af86c9dfb36986
- SHA512
  
  d361e5e8201481c6346ee6a886592c51265112be550d5224f1a7a6e116255c2f1ab8788df579d9b8372ed7bfd19bac4b6e70e00b472642966ab5b319b99a2686
- SSDEEP
  
  768:Fo1acy3LTB2VsrHG/OfvMmnBCtLmJ9A7J:Fhcycsrfrnoum
Score

1^/10
behavioral5 behavioral6
- Target
  
  controlloid-server-master/README.md
- Size
  
  1KB
- MD5
  
  e330c78a3fe144d9a5c6e0ff115b2294
- SHA1
  
  03b7e624a570764b2408b1929b4dbcddd0bea1f7
- SHA256
  
  ef508132ced0fa11fdf5b209bea2b51a0ecc0c78d9d6538580d3520062d44dd0
- SHA512
  
  e984a8256e3b79824564f7ef112ce93de23919f0c42d7fa2111d3b3428ec89f5b2b016f7ae093b292b3f9fda134d20da91f36ad71cfdde89d61a8570ecc29898
Score

3^/10
behavioral7 behavioral8
- Target
  
  controlloid-server-master/dist/linux/bin/ws_handler
- Size
  
  17KB
- MD5
  
  997ca161b0d2d101fcd1f2fe9a9b22f2
- SHA1
  
  31b03976175f8a74a07d60f7435292e0a5efaa66
- SHA256
  
  73edc50f51815a9e014d377b89ed9695c71a7dd4d66ce5a4638caac1da1e9621
- SHA512
  
  eb04c08ae33527c8c212a324e4d94778925204bc38dd9b738f28588b34f5f551cd8741c5c75fe048c2d21401a587eb2b5f832fdfde9d1865158faf4b70ca2570
- SSDEEP
  
  192:RoQEPwSe7XsNU4Arl68k/gVkZk9qkujkRqcwoQm+/5WthBt0S:3XsNUdhNk/gVkZkkkKkRqaa5W
Score

1^/10
behavioral9
- Target
  
  controlloid-server-master/dist/linux/start.sh
- Size
  
  414B
- MD5
  
  9b9aa7636bdb1df9e7da45fe72a29c71
- SHA1
  
  b4f9643ed86ba2821b57d468467afa38d2bbf40b
- SHA256
  
  62d7f98315d09ca7fd0e3b2bc34c831bd5fac624988485674a005f9ebc81d375
- SHA512
  
  60673902da5b2bc899934aa72ec4c4e044cfb86a6119287cc0d05a98fbf43e75b2edbfa62bebe5d378a487b455bfd408769555f9995cb664cf4a4f06d34bcb9c
Score

3^/10
behavioral10 behavioral11 behavioral12 behavioral13
- Target
  
  controlloid-server-master/dist/linux/udev/77-controlloid-uinput.rules
- Size
  
  70B
- MD5
  
  76b1380215f173064b7c89553394c372
- SHA1
  
  b5c22f19ec767a8ab35c982f7ad2cc6492d78e8d
- SHA256
  
  39d0873154a96be37461ef6f61fdb1b03b6ed670f3a8ab2323b4a216f54550af
- SHA512
  
  1235fb20ff99cb364dc57861b667c36c858a696d3dcd311648a785fa58ab84b0105bb52e81d3f616ee9ec59251a4888a8fb6bff6d86a22852340ea36c86219fc
Score

3^/10
behavioral14 behavioral15
- Target
  
  controlloid-server-master/dist/linux/udev/setup.sh
- Size
  
  522B
- MD5
  
  3d0bfa2ea4db769f3324fb598a2e1453
- SHA1
  
  79a9f29340c57867609f781f6fa5bb718ef311dd
- SHA256
  
  02315d910ffdbe191b83ee512d7ee324c99e624885ceb67c703f91a03f1c2488
- SHA512
  
  bbafa0e4dc0897d79442dd625a0f229174cc1e13c86ef3beffb76f40477e33dfcec36fe513eb6edd69e0059d5d39d6eb6467828c904c77f496808b74f9af6b6c
Score

3^/10
behavioral16 behavioral17 behavioral18 behavioral19
- Target
  
  controlloid-server-master/dist/linux/websocketd/CHANGES
- Size
  
  1KB
- MD5
  
  4b4f1ab66d2ef8329fa208a78ea8ebcf
- SHA1
  
  e370985532407142aa26d870ad0f4f6cb509cdd9
- SHA256
  
  37d7419967cc926c6429f8e297244f23ab210b0850f2ec36c2a259009bc5bfb8
- SHA512
  
  37063e8eec360dcf3d6790dfe5076d92f9ca1dddbce8315a30f25235cce826eef15833e46491749fc2a9f167a6ceda46040b217b7f0443283dd19bfa4c1918c9
Score

1^/10
behavioral20 behavioral21
- Target
  
  controlloid-server-master/dist/linux/websocketd/README.md
- Size
  
  4KB
- MD5
  
  c8a153ea653d822c4c1229be9f86220b
- SHA1
  
  f4c3319f8a5aae74a40c3a72e8f4e181ed047e44
- SHA256
  
  48e9a1d827de22f5b4f12443ef5b0d7fedc170a88e9c637a96f27b3a08a43cce
- SHA512
  
  a555abe2f5735013ca3be78d13f415c41d084348bd1a5211e88a7e9dd52de2c76a34457d48cae6bf41909b3a4cfeaa72938ea3d30badc96f0422c57915d3f5f3
- SSDEEP
  
  96:7F5t68C50V/sOFLh+t1U5YxB8a0UKxMbgXzIZTq7wQSIumgXUidtKwl:7F5tE501s8Lct1oKK/UW/XUZTq0QSTDN
Score

1^/10
behavioral22 behavioral23
- Target
  
  controlloid-server-master/dist/linux/websocketd/websocketd
- Size
  
  7.0MB
- MD5
  
  3675ae3e8721d15422ef25acfbc8d01a
- SHA1
  
  214226e48a39d6ae84cd2f57455925f8a720c0b0
- SHA256
  
  03b8d90b4ac1f58469965c133cf3dd9c43dc0811e525b2319df578e7057db5b4
- SHA512
  
  b4f5bdff7f281e75caac041a36b53fa52df35ff73192fcd60e6b9b3e102495fab29a0d3b15240420e2249b7919453af9d36909a8772139d9d4ac9e6bfc9d3812
- SSDEEP
  
  49152:EPglS7JUH/u3P/8cwiIlhey+AsKn6p5F11rKAsOl2Od20mfg1tFnS0bfSwoFqTQd:EeWQ8Vd2l/0vQgzEiRc
Score

3^/10
behavioral24
- Target
  
  controlloid-server-master/dist/windows/bin/vJoyInterface.dll
- Size
  
  144KB
- MD5
  
  f0acd0d4427ce43e77361206db094895
- SHA1
  
  c4e25ea26ea900c46a7573283b4f2649cc2b4f54
- SHA256
  
  593dc7f62fd4541a92c4fb670b73757adef4e0d37049de74fbac20e3372987b1
- SHA512
  
  7afe35410a69c2ebb85fbf02c59bd003ec345fb1390d5e2030bdbe1a40cfa7b8d401269851c216bc446f06193e8a8f02a2cc0fb4b5928e0d99661ee361738981
- SSDEEP
  
  3072:eoJBR+86kHfz+8u+NpS4WFv2tdY6OxLB+KA3BnzRIG9bZK:/bR+8x/6z+NvW0q7Be3BVtBw
Score

1^/10
behavioral25 behavioral26
- Target
  
  controlloid-server-master/dist/windows/bin/ws_handler.exe
- Size
  
  344KB
- MD5
  
  0277b66cadf95be69e5ceb8b4698dd70
- SHA1
  
  4a18252ff651b33d8b14b57bde986d4c23036c4e
- SHA256
  
  82e5eec611b199022ccb1c791c14a7ae6081171b11c2cdd317e79eac12c0194a
- SHA512
  
  218766377701c6bfc7fd5395161f0a2f6399a8bf37c5dcbac083408804371e772e9eb2e1229b39f53fbc6eed883318646eb59737da98e74ac92d5dc382fb65a0
- SSDEEP
  
  6144:vgZrWrAet07Fo2TUKYGI0wvz0FOQ4Ou0l5EAKAIeKdzj1as2Zl:YxPleJzvtvYM9MlXTIp1nI
Score

1^/10
behavioral27 behavioral28
- Target
  
  controlloid-server-master/dist/windows/start.bat
- Size
  
  659B
- MD5
  
  d2952fa301d050c22172944800b2dd5d
- SHA1
  
  9a9fa11795afb9447073067a30b3fa5dbda9ae59
- SHA256
  
  af0bc1eb93d7c7f491860b86c5988675a00ffd5efad8a230e1e09a5749a4d0a5
- SHA512
  
  d031363f281b010b4fc82c7b02af945aa39e9e8333f1dd6221bd3d34e7d30f4fb2f82a5b7a5728b3489eecabbcc3fcb5f766b12f9824afb1c5a82579a5e5e3c5
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral29 behavioral30
- Target
  
  controlloid-server-master/dist/windows/vjoy/elevate.exe
- Size
  
  77KB
- MD5
  
  6d454071ec396f0534171e1248345a62
- SHA1
  
  c4dbbad056855869b1a760d278fe0fb12ad77a7e
- SHA256
  
  a28a2cf5ecfef2c1914d6da7a63bb3cd1f4d66aa18b7c91396b24bbe72061d54
- SHA512
  
  273ca877fa97f012de0c07c2dd27b820497444ef5692bcdf78bf898a548f65a1e5ed067b6313095baf116b7074cfb4985ed9e11418fa4eca79c0f389c280190e
- SSDEEP
  
  1536:LNOX8QziMrx5SRXd2sBeP7Hky7C+cbFq0/sWjcdeNSqPVtWhZW:5ivPSddVsjBCHAe0qPVUG
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

T1130

Modify Registry

T1112

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Executes dropped EXE

Loads dropped DLL

Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32