45ed564080a3c100d32f53674d2a66a50219df571657039ae80f788cfeb0a240 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

tranny-garbage.rar
Size

5.3MB
Sample

230706-bm7lzsgd94
MD5

9371cf53b06bfbabd75e77f294f82d8f
SHA1

19e60ce9c7e2fb815374a6c04df474817612f161
SHA256

45ed564080a3c100d32f53674d2a66a50219df571657039ae80f788cfeb0a240
SHA512

67966410eacad999b889640c31acd41e3b85ce713ce658f8e7d0575c1f7f691052487dfa0f30c7d832a687560c24023a9d661fd822f094307358f33512d89f9b
SSDEEP

98304:y1UReUeORPqnmPqOAFjnHq9wee8d4dBzb094uXO+N+N8qedgmfJaL6bZ1F:y1vcMnmPqNFjHG3BuY4ueS+NBsc43

Score

5^/10

pyinstaller

Malware Config

Targets

- Target
  
  tranny-garbage/tranny-garbage.dll
- Size
  
  3.5MB
- MD5
  
  bc81934baa6f5939787dbb4c19e5ab89
- SHA1
  
  aadf1d30a10887a741a901e438a496db6bf999d7
- SHA256
  
  f37d3174eac0d4279439ec64db92bc35d7a5b6afcf0c0306c5701072655b459b
- SHA512
  
  aaa347e234558fc80f6d9d972aa38e9eea3e1d356669246dd56abcc602d7986832cdda0f2712cfa488830429952e56de421bac9a8e3dad227c8cd06fd169c726
- SSDEEP
  
  98304:8k6EP4/F1jENrx4ECqUKtvoNg2mP8zVCrHRjrpu:8fjENrqVqUEOa8m
Score

5^/10
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1
- Target
  
  tranny-garbage/tranny-garbage.exe
- Size
  
  2.0MB
- MD5
  
  885d0863baf0b5255b32f60d1f5d8e4a
- SHA1
  
  b10fa80bce6261c29f046b8ae28030a502e710c3
- SHA256
  
  c03ba52d05e3d4a3d4b4a2c91a33e7ac003430e9f5a0463e1414ea15e07a969e
- SHA512
  
  edfba12539549ef1756f9f779ee71e2c407492dd3f4720191f564aa224e6238561cecf6081211ab26570394251fb53497be5b157211a4cd905e83775809eac4e
- SSDEEP
  
  49152:D+To877WRxe0r9HT9IQNKyoKovFTMBARCXPqDs:Dn877MVRT9IQ17ovFIvd
Score

1^/10
behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2