Overview

overview

6

Static

static

1

Sploot.zip

windows7-x64

1

Sploot.zip

windows10-2004-x64

1

Sploot/Spl...ce.mp3

windows7-x64

1

Sploot/Spl...ce.mp3

windows10-2004-x64

6

Sploot/Spl...st.mp3

windows7-x64

1

Sploot/Spl...st.mp3

windows10-2004-x64

6

Sploot/Spl...ap.mp3

windows7-x64

1

Sploot/Spl...ap.mp3

windows10-2004-x64

6

Sploot/Spl...p2.mp3

windows7-x64

1

Sploot/Spl...p2.mp3

windows10-2004-x64

6

Sploot/Spl...ap.mp3

windows7-x64

1

Sploot/Spl...ap.mp3

windows10-2004-x64

6

Sploot/Spl...ck.mp3

windows7-x64

1

Sploot/Spl...ck.mp3

windows10-2004-x64

6

Sploot/Spl...sh.mp3

windows7-x64

1

Sploot/Spl...sh.mp3

windows10-2004-x64

6

Sploot/Spl...h2.mp3

windows7-x64

1

Sploot/Spl...h2.mp3

windows10-2004-x64

6

Sploot/Spl...et.mp3

windows7-x64

1

Sploot/Spl...et.mp3

windows10-2004-x64

6

Sploot/Spl...ap.mp3

windows7-x64

1

Sploot/Spl...ap.mp3

windows10-2004-x64

6

Sploot/Spl...ap.mp3

windows7-x64

1

Sploot/Spl...ap.mp3

windows10-2004-x64

6

Sploot/Spl...et.cfg

windows7-x64

3

Sploot/Spl...et.cfg

windows10-2004-x64

3

Sploot/Spl...es.cfg

windows7-x64

3

Sploot/Spl...es.cfg

windows10-2004-x64

3

Sploot/Spl...ta.cfg

windows7-x64

3

Sploot/Spl...ta.cfg

windows10-2004-x64

3

Sploot/Spl...od.cfg

windows7-x64

3

Sploot/Spl...od.cfg

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Sploot.zip

  • Size

    26.6MB

  • Sample

    230710-295n1sdg67

  • MD5

    64a3526451959a8977e5e698be2f9b9b

  • SHA1

    ae671ebb2f9a16a0106cec4bedc60744977b7c85

  • SHA256

    ac0f683632e27a7ea2f6ee14c27e76073881842ed81cc6b961ac1f274515360a

  • SHA512

    06eef3a82b75fd55c318586c432e986b52e46dd1a37ab52d298c133624b69c14ff69d7ad9032bee4ddcc1d51175e74d62633aeeb9da87f172c39096a8a742a67

  • SSDEEP

    786432:kBzOyHMEOSZe30BvUJQnfBzz6kM3pS97iqCnUJWnX:/ysFue309UJQnh655C7iqYUJWnX

Score
6/10

Malware Config

Targets

    • Target

      Sploot.zip

    • Size

      26.6MB

    • MD5

      64a3526451959a8977e5e698be2f9b9b

    • SHA1

      ae671ebb2f9a16a0106cec4bedc60744977b7c85

    • SHA256

      ac0f683632e27a7ea2f6ee14c27e76073881842ed81cc6b961ac1f274515360a

    • SHA512

      06eef3a82b75fd55c318586c432e986b52e46dd1a37ab52d298c133624b69c14ff69d7ad9032bee4ddcc1d51175e74d62633aeeb9da87f172c39096a8a742a67

    • SSDEEP

      786432:kBzOyHMEOSZe30BvUJQnfBzz6kM3pS97iqCnUJWnX:/ysFue309UJQnh655C7iqYUJWnX

    Score
    1/10
    behavioral1behavioral2

    • Target

      Sploot/Sploot/Sploot/audio/Moe Shop - Notice.mp3

    • Size

      2.9MB

    • MD5

      6ea3b1f09e0350e13f6a25cff1b4d54a

    • SHA1

      79e4744ad93bc9fd90146966378e6f9c3e4dc4bf

    • SHA256

      5a77f62f8ccae93f8e9c3a8028e057a122d3e66c6f112c416a4208fd852f874f

    • SHA512

      957a9e98ad86bc768d314cc4c5d3d09afb6da067a5d31a7c4075ad484d7aa271c1504332ac9860b796c70df3305f54ed3dab01a166dc8758db03b2c182806b1f

    • SSDEEP

      49152:PxT1vz1XSQ4hdwtOCcAKnpiH+ag4rX6NVIuXR1vpDhGAuQYu9pFXr4O2Fhz:Zl5PoLaKn8yEfoRlp1GATYuPF7nghz

    Score
    6/10

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral3behavioral4

    • Target

      Sploot/Sploot/Sploot/audio/coomdoompfast.mp3

    • Size

      93KB

    • MD5

      c4ce8c6d6f84d78a6665b55eff0224aa

    • SHA1

      84a4b4c96453868dc7afcf9e2012e31670039c42

    • SHA256

      cf5fe2ee630515169eaf6503f1b43a3084e14bc7a89fee19ae071446ca4fc772

    • SHA512

      bb2c7b98369dae3e41ec71d3ac912af229bc5f8e115421f3581be2d01accd9580ecb391e32ea7a32eaa3f7d7b628b48bd1a9f0702f534eddb31292a676b7b8fc

    • SSDEEP

      1536:lD9SNtNrPFb4yx+QUT1LwuOx1pO66Z/CsM2FKIhI0Gk:59ctBP+E+QUZkXTloC9Gyk

    Score
    6/10

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral5behavioral6

    • Target

      Sploot/Sploot/Sploot/audio/slap.mp3

    • Size

      13KB

    • MD5

      4a7e75c9fea7fb11deb7752322903c99

    • SHA1

      de49e8045d686dc05b451ad808348fa48824f874

    • SHA256

      41f8336f22b52fa5f01929361cd7977a7e6722614c4d578e2a52eccbb56b7472

    • SHA512

      e2ecc49afd816b701d5eec012cd78bcfb7cbe6451790d17b71ee9009b049ff7d7c30e11621b20230ab1e9d155563fdf21f05eeb3abdbb1583e437c1a118d8909

    • SSDEEP

      384:b+nstFunF5MUNJ0Vwy5xRlCzjRrx6K0poMysI:ustFkfP0V/Lel96ThI

    Score
    6/10

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral7behavioral8

    • Target

      Sploot/Sploot/Sploot/audio/slap2.mp3

    • Size

      12KB

    • MD5

      ee14dc709b6cce964384973f2ac0e532

    • SHA1

      fc5d82d1f531637d73a3b8328523899a1d1db85b

    • SHA256

      87f43fbc7f49a9b535c34248a5911fd8c4cb9726a510350e49b32d58f87a716c

    • SHA512

      ce9c64a82ba0e146e4608683b25d8b653e2376bc8b03060e20c57f7959f906cc5ba687a3d606186baa120954a88c9558df0e7886ec08cd9fa6af143a6aed4c62

    • SSDEEP

      384:78VwILvNFbF4Od3vbwvxnx+dGy0xpv4wRwkLW3:gVwmDSOBT48Y5jNL2

    Score
    6/10

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral10behavioral9

    • Target

      Sploot/Sploot/Sploot/audio/slopslap.mp3

    • Size

      10KB

    • MD5

      79902c033369d43d20ab5028b664f041

    • SHA1

      220bc8a44943d0a6112bd6e81ffcf924c0feabb1

    • SHA256

      971d0e7a90ec8f29f14b3d759e429c9d0432e90a7fad3405cc31b77fe8a65ceb

    • SHA512

      2b737e309d9d08b95fc7a8e1e825c24e1cf2d845b525ecfd3bca044799f43bae137d8993bfd6aca33fe5246f783378ce570a91fff76a4b25b1149eaccebab381

    • SSDEEP

      192:4c+5oL+r/AtFRJ3F2C1o7bsp7G9DguFfpkxL4hG:4mSrMz3Kbspq9DguR2x6G

    Score
    6/10

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral11behavioral12

    • Target

      Sploot/Sploot/Sploot/audio/smack.mp3

    • Size

      3KB

    • MD5

      f792e0215ff793cbb966586686898041

    • SHA1

      e58e769836b7d03c077f53951ea71080fface925

    • SHA256

      dc9b5750ac1b8892930e43d77f736602146f0b7b080219054fc0ff23b2bd2676

    • SHA512

      8b9311d556bc14752a5353e68deff468aa4a13dc3ca1a251a8cd93c19d9a3b1b01a79e231a605d08edaaa342938a3b61aeaba6716f59747663cf1a3ee2321773

    Score
    6/10

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral13behavioral14

    • Target

      Sploot/Sploot/Sploot/audio/squish.mp3

    • Size

      10KB

    • MD5

      4fc993bc50aed6983b32a32edcba00c2

    • SHA1

      67fdef546ddcad71c0cdd6320e7b2dc6a19b0a8f

    • SHA256

      9350b30eb1bd8c0b479918cc8a162dd66665cf3015faf044fa1607e51d752a90

    • SHA512

      578237669e47a2be735e045a00d10e5d380ec07c6204e908e616762faa2da48cc20eef8cfc189618e0e93ce719c8d73954cb3ba2b3a5784af92766b0e94b6c9d

    • SSDEEP

      192:3jN6i3NDOLeB8cvCO3oa/rCV3jB/CRKlRcUpDKzNCPWuJtsw8Tm:zwi35OL6xvDTUB/CmHQz9q8Tm

    Score
    6/10

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral15behavioral16

    • Target

      Sploot/Sploot/Sploot/audio/squish2.mp3

    • Size

      6KB

    • MD5

      b219d3afae1f435b0999a121fa7811e6

    • SHA1

      f2204aeba188e186a3f598307b307bbe824578c4

    • SHA256

      3455acf92c16e77b96d244d3c7aa0bf2644ece78728dfa2f6af9724470d077ef

    • SHA512

      81d49a195c510ed5b872b2d7861c1f1b295a0dfb4024e846b640c75dd58841756ddc28db75fc2abb3cd55e6d73403156b2f5bb44d1f5c5b8e3657ec065669b80

    • SSDEEP

      192:ZsMo4/bONHyFswPHG4urowwKVvL9JdCmLXYT/R:Zg7NSF1Ero29JhC

    Score
    6/10

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral17behavioral18

    • Target

      Sploot/Sploot/Sploot/audio/wet.mp3

    • Size

      3KB

    • MD5

      7c6df5b89afe3ae7f11d348dac189de7

    • SHA1

      af7029ab6ff1b2f37a81475d43e57e120479836a

    • SHA256

      7f93d6d83f44f8e3a5193bd05872ea7c52fae0b3e615f28deb7d6656a8dc05fd

    • SHA512

      cafed2395c7728721814a4dba6e1a0e6b35d06411b7a18eb0641d2a6f98d52beab1510d2ed430b7b5246e2c104a085fe6ed1decb0b7dc253f56372223fcba7e8

    Score
    6/10

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral19behavioral20

    • Target

      Sploot/Sploot/Sploot/audio/wetslap.mp3

    • Size

      3KB

    • MD5

      f3f5b6f9041044dc4fdfad1f0a2214d1

    • SHA1

      1c1892b8c14bc093c38de1e7e4ed2ee51e4d8e8c

    • SHA256

      cc422df7d67585f9c075a02ad587bf7ece96eccd2831a36fe475aa1b75507def

    • SHA512

      2d3c3c9e3a21c39ccfea8b3dc12e6ba6f0fd48fa79f4e0f46e72cf446ba9579f987c57f667699f7700749d017bbd1796ea86f74dbf60eea5d0474c960db7256a

    Score
    6/10

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral21behavioral22

    • Target

      Sploot/Sploot/Sploot/audio/wetterslap.mp3

    • Size

      5KB

    • MD5

      9524179017c7fe30a0102a3952764c7d

    • SHA1

      005a70d62f315da8fbfbcdf64e6ae666d7f0e3a6

    • SHA256

      4ab3b0d7a3db24c202117c4107844f6c5b7eb69170eda3d7eeec68ba83db4758

    • SHA512

      9743f5cf22726390c7c99d8b85496cd2187517bf524a2349dfba05f08014834a315cac9c9892dd6a20824034b791144e22f8aee104a7e7e53af62af404402f1f

    • SSDEEP

      96:Cr1KgzPe18t9FoF13l4pQYZUSMmdAqu7EIykkUow2qH7Y5/wdACOdPyZUAG:068t9FoGuY3dAv7EIOZ6U5/wm3dPaG

    Score
    6/10

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral23behavioral24

    • Target

      Sploot/Sploot/Sploot/config/asset.cfg

    • Size

      216B

    • MD5

      263e72d731d0cfc1ff4cb4c019f2a5f0

    • SHA1

      9f331ef2e81b9575d4f7b6e22a6e5a93e3e7b2bc

    • SHA256

      a78338d1cadb93f545414e32f3b5a72c657016cd667e6dfe288f3027637657c6

    • SHA512

      c327f9197e91a6389a49a56f33a73f12dc0098e1c77b46b70db9a2faea4967a2fa56314dc9b24c736e0ddce9eb1808730ffb5a4aa103d1337c019514f107da2f

    Score
    3/10
    behavioral25behavioral26

    • Target

      Sploot/Sploot/Sploot/config/keyframes.cfg

    • Size

      25KB

    • MD5

      ba02495faf5fb4cd7d659a093b240040

    • SHA1

      dbf3e17b0444e49b0b5932aace7736a4dd2ca25b

    • SHA256

      f311a3b188c844211f81d7dc483189ec458b7a81bd1e27fa970acca471adac5d

    • SHA512

      e3232b61e60e2a8df16a1db6c869fdb8afa51713d8bb5a04e82e8e06bde61606dfe444a10916930cd7c7b9f15f14f35adaba5feafe2f9cc7d258aafeb849f7bf

    • SSDEEP

      192:UTmTqTtTCTcTkT4TjT1TbTqTkTWTOTwT5T7T/ToTtTMT1TNTAT3T3TcTmTETnkTu:3m1RMqVlS

    Score
    3/10
    behavioral27behavioral28

    • Target

      Sploot/Sploot/Sploot/config/meta.cfg

    • Size

      137B

    • MD5

      e48740268002b7ddbb3fc41d401b82b5

    • SHA1

      65107fac6787d187cd76920fd9a26aa2810f535a

    • SHA256

      af5bfa004e94519181fd9fa3f86a171e0875a8f9cdd6099cd2b7d4efba91cf4b

    • SHA512

      c8460c08bb3e8c8bb2d5d10df0895db5ab3098ec75a641188e9522bd61ace024c5f401e2abd67f91e1bad610ce08f8f17d98a7855853d90ec1f520e58cee792f

    Score
    3/10
    behavioral29behavioral30

    • Target

      Sploot/Sploot/Sploot/config/mod.cfg

    • Size

      194B

    • MD5

      4ce1dcad229d27091e915eaa69caf1d1

    • SHA1

      5f0feb8e19bb317f6d92649d26d050d4df667494

    • SHA256

      9415ccb24164636cdcccaced9bdead8ffb06fbcb9a88954043af3605d9e516ff

    • SHA512

      69edf3b76f58d7064d6974a64db79e190e8dcf4fababd15b45a4b3bac04e3fd3f6432674297f976f682050353dbc4e3f0aca2d8b7c6427cb9a9edc8739fe8c3b

    Score
    3/10
    behavioral31behavioral32

MITRE ATT&CK Enterprise v6

Tasks