General

  • Target

    CraxsRats v4.9.5 @Attackndroid.rar

  • Size

    197.9MB

  • Sample

    230717-q9f5wacd32

  • MD5

    961d73381a4c26e255bf546ac10b2a09

  • SHA1

    9b681d49004926178c84123fc3a2ee7e4abc7571

  • SHA256

    657005c9b10293a6d5f9de0aaa5245fddbd1a179ee8cee07e4dc071d4872e1d0

  • SHA512

    4a631b3457e6da009e28a730c336f1cb2c655dab484c37c860b988b29738372e5320ee7cc4e3d760a3ccea2fdf658c78071e487fb1dcd0e3c8128f01ff02656e

  • SSDEEP

    6291456:k2JyZEYD9Sm6TdA5RNdY24sUs+NzQMJNb6:7J4EOSm224FbNJNO

Score
7/10

Malware Config

Targets

    • Target

      CraxsRats v4.9.5 @Attackndroid.rar

    • Size

      197.9MB

    • MD5

      961d73381a4c26e255bf546ac10b2a09

    • SHA1

      9b681d49004926178c84123fc3a2ee7e4abc7571

    • SHA256

      657005c9b10293a6d5f9de0aaa5245fddbd1a179ee8cee07e4dc071d4872e1d0

    • SHA512

      4a631b3457e6da009e28a730c336f1cb2c655dab484c37c860b988b29738372e5320ee7cc4e3d760a3ccea2fdf658c78071e487fb1dcd0e3c8128f01ff02656e

    • SSDEEP

      6291456:k2JyZEYD9Sm6TdA5RNdY24sUs+NzQMJNb6:7J4EOSm224FbNJNO

    Score
    1/10
    • Target

      CraxsRats v4.9.5/CraxsRats v4.9.5.exe

    • Size

      46.7MB

    • MD5

      7d9facc343042d56245e50cf5f706ea2

    • SHA1

      2dae924d1bdc2d5a1bbd35b286642aa2b6b1bd1a

    • SHA256

      28bc062103750c7170f26a60556094f3537da32ea94541a0e57c2b7d9bc47409

    • SHA512

      c047da0cd0ef5e74c8f7630663296ad0f7671f8db3200bf6b96b129d4505d8232f9c433edabb3d6b28ff279d1be40844999c4dc8afda1d5cef4f38c5b8f54661

    • SSDEEP

      786432:OCUYLWX8C2cq4orfoE9iQfger150lVBvSFP1af5XWfFyHXvs0Rm4FiHFKPj:OKPcq4orZMgz0lVoFp9yHrEeilm

    Score
    1/10
    • Target

      CraxsRats v4.9.5/LiveCharts.MAPS.dll

    • Size

      53KB

    • MD5

      dfee15e4c6efa37e6645d8b47c8581e0

    • SHA1

      876140e0855fcd15bfb590431fb7b280d1db4a21

    • SHA256

      5b8a9a04f454a2c4da5989fa454a0138d3e5c40712816600f90111b7bf045c40

    • SHA512

      4d0e7b0a5642b649c04e54d89e707ec00e79a0fa282eac19b6097b819652045c3e157763b5b2922a4c2252b0877059ef90eb60038280dbfbef9502f421d739df

    • SSDEEP

      768:r4gOx89xKERw2U11HI+bZO603JLw8MOrNNLSW5/5xTcb2y1ehVHp:rPKB22HIwwFNuC5N6n+VHp

    Score
    1/10
    • Target

      CraxsRats v4.9.5/Vip.Notification.dll

    • Size

      17KB

    • MD5

      a292d382f369373d6a925fe5907c69c9

    • SHA1

      7336065527d93566f79121c478545ae86ba8bb2e

    • SHA256

      ec7dc8e7890b3881e0a6f8616c7363d4fb43b9c5af2c090b08bbe0275031a6d7

    • SHA512

      9f45240686f506b11dbce466dd8b843683e09ff3896bc6563a6580d531898f60523614295c62556a5e058af5af18c3e98e80b3f0642f49f07dd2dc44a181dfdc

    • SSDEEP

      384:EDkSAZXF8SniyHUX4ICx3Fs9SqVW4z5QdfVASCFCDOtfgTuokwuwAqu05yokwOwG:ED8fR4tQsNFLfgvuPIOjk7ch

    Score
    1/10
    • Target

      CraxsRats v4.9.5/WinMM.Net.dll

    • Size

      43KB

    • MD5

      d4b80052c7b4093e10ce1f40ce74f707

    • SHA1

      2494a38f1c0d3a0aa9b31cf0650337cacc655697

    • SHA256

      59e2ac1b79840274bdfcef412a10058654e42f4285d732d1487e65e60ffbfb46

    • SHA512

      3813b81f741ae3adb07ae370e817597ed2803680841ccc7549babb727910c7bff4f8450670d0ca19a0d09e06f133a1aaefecf5b5620e1b0bdb6bcd409982c450

    • SSDEEP

      768:LyasDzF2TDSemqD9tGI+ffwj2Au0LVpqmf7KxcOOrYCPTxqPb85:LyaXKemqD9tGI+ffwj2Au0LVpq4KWrlv

    Score
    1/10
    • Target

      CraxsRats v4.9.5/World.xml

    • Size

      112KB

    • MD5

      28a1e2b477ebe7de49df597a4117c28e

    • SHA1

      a7cfdaa2e2307f443bead3b1f02e6936772020d6

    • SHA256

      cbd20c5ccc5b11718b782547bb5b818fe368168c1794b2254fed7333959757da

    • SHA512

      087622b16c9165f8007455b161df4f2e6bf1a5de787c73e3beeaee4583c5bad2b2bdb6320ff61e9b036543342045ff3bed6fc3aa1ed885ce7afa0a619967b38d

    • SSDEEP

      1536:qu4P6sZgrZzXA/hmK5ITweUbPyTOQnSwBnN1RSC4OHKtPrAnyfUZyUtDl5+jZ4uq:7

    Score
    3/10
    • Target

      CraxsRats v4.9.5/avcodec-57.dll

    • Size

      26.4MB

    • MD5

      f203d1a907e2fcb253347e86369c10f4

    • SHA1

      3fd4ad54af5413b9305b741d736dfe3ad6d177f9

    • SHA256

      d9c3b37b31ae292465fb62e13acee284d64396f883f6dff9a3d50f1acd3e55fc

    • SHA512

      60ac5932172394b62c496fa8ee7ddcda71fe003248c77c0bfcb99424dc76d373082b5124e7ec99edb7bdbfa8277688d27fe6d543a9f0de5a060fb4df6b167120

    • SSDEEP

      196608:imQoJcYPNCZ3AEtLa0z6c+/ix0FuIbOW9uGYcd7cpPDK1VLIjHP:Z303HBD+/tFuIbHYcd7cp2HU

    Score
    3/10
    • Target

      CraxsRats v4.9.5/avdevice-57.dll

    • Size

      2.1MB

    • MD5

      a6471801148994f5defcf227ae884574

    • SHA1

      c63b4895fc009483336d21c8e6a2f4d1b9b97d56

    • SHA256

      9e22e1e3d3af2eb643f4a86d7e3f443494d6a7f3d6d85025f35e6b70f9ea6a1b

    • SHA512

      9d3c4b873521d273e2d83a3783166f0920ea4615d8be07c2cb1663a047be8416583fbe85a165d502cff86e9a58712c6fc1aff529de973d41ad1bf03357b33cf0

    • SSDEEP

      24576:SolvE4h4G/Sc7/bOv/yssEbuAImCf6BtPXeY3T4bJABO3:VvE4P/Sc5EbuAImCf6BtPOY3pO

    Score
    3/10
    • Target

      CraxsRats v4.9.5/res/Audio/1.wav

    • Size

      551KB

    • MD5

      194a5ec11d85e9364aa10762ae5eca6c

    • SHA1

      cf355096e7502b0a2b2e112b01ef21b10e5562dc

    • SHA256

      c340131b0790a6e9f3a12dbe8fc7af2c6747824db5d96f303826d8adf0f58512

    • SHA512

      52ff5487eaa35469ad1f1c1c03cd3aaf22759b86d796612cb3a3031ed8d5e67f93387fc935592f500220b6cb171766ab8a81fa7978121ef19f3b34c4dcb2b8a3

    • SSDEEP

      12288:w9SO/GduNe5YogopVeWSQRRhD4txC0FuR:NRuiVNRzsp8

    Score
    6/10
    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Target

      CraxsRats v4.9.5/res/Audio/2.wav

    • Size

      812KB

    • MD5

      9b15a3d6ea1205c555f91893859bdb7a

    • SHA1

      3b22f19fb7dc65df73d655e1aa34de7b8d49c955

    • SHA256

      40504be5da4002abad4b6b6b54de0b966a3b9a5f4f24793b3ac9fc90e6cbe2cc

    • SHA512

      f0331f4bd78fbfe7eb306eb3e59ff1ca5458b934edd3f4e139d72db393d01313f19f0a24e8d3a1102efc71063bc5aeb700685bf1899968a44bb968ae28f0b335

    • SSDEEP

      12288:qECqMPwZ1f3OogSL1LSJav5x82qA5ptPMprAkSs/Yr6rmfga+s0JjqfbxUbWLG:ng4W/41LFv78ALtEprAkVYmaRzG

    Score
    6/10
    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Target

      CraxsRats v4.9.5/res/Audio/3.wav

    • Size

      264KB

    • MD5

      269e4f85692280ed9c59cb1c40517007

    • SHA1

      eb20f4ef05467de845c480f2fa41943e22086010

    • SHA256

      258c0a0b95163a9379e6bd7e95cea5f47b96ce2816692016dab5dafa73aa1fe9

    • SHA512

      36c157de57bdcfab7b798422adb036b034d693c0b967cb22a892e65e8cb50e88066cafe00c29d1fcfd421b7753ec6119e54636721c75b9d300987e0d99069a66

    • SSDEEP

      3072:jEH/69/CkDX4NzWI9u8AzS3JjlfAoqiloxUfVbtA:jK/i/JDIdBuY3R5A1RSltA

    Score
    6/10
    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Target

      CraxsRats v4.9.5/res/Audio/4.wav

    • Size

      194KB

    • MD5

      87f33dc8407b25deaf98ac120e1883d6

    • SHA1

      750f558450a4f7a6d5f1e88f4c9a49a34e7dd515

    • SHA256

      a3b05031fc5d69766f5c59923495a1158d0624d4d168070bc74b7f315405b127

    • SHA512

      14751fc89cf7447da09d63c84d950f81d9fe6d6b7c3e77e73d52fbe8e8add962f565c212959edb786b8befb36eaa25bf2794dbbef80f9a745d01e96db04ff6dd

    • SSDEEP

      1536:E5mgl44jQzvyIwz9vwRnB8JR+elqHa1TkUPB+tYKygV0B:E5mI4EJI+IMJ84QU9

    Score
    6/10
    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Target

      CraxsRats v4.9.5/res/Audio/5.wav

    • Size

      256KB

    • MD5

      33794366bb58c3af5e464b0a974cc182

    • SHA1

      e7972b1df1bda231bf61dd7960d27f61c7c68c03

    • SHA256

      19dfff92a123ac883f38bf617d530c6cd222abf5540e3f215c9a44f6fcba0d60

    • SHA512

      fb0161a2ad5e4a70a424229bcbe2ec8e34dc5cf8afd102a07fb5922a8e6553edcf80aecfce4de568fad0dd8cb5dda4a04d04c28234060c2503587dd50b45268c

    • SSDEEP

      6144:LCQNEDMou74xiaxlVuhdebZbNh9dh/DKqM2HJ32Gzncz9XFvVf0jRM+ItO5gNgZ6:dyMj74NtHg5kgx

    Score
    6/10
    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Target

      CraxsRats v4.9.5/res/Audio/notification.wav

    • Size

      74KB

    • MD5

      a812f51d703ff92c95dd481fe270782f

    • SHA1

      851dbc0bef5938da3375b73a1da973ad72bcd74f

    • SHA256

      4ac90b06262e1d8dd6fc3f25e09acd47619d159a46c763dc8298616910c0fe3a

    • SHA512

      dc32755697d5b44deaf2d6a1d0741e847be1affcabaf5f7d68c72987716ea4e71de614c1e15b0a02f6cea723fd6bb569f360f04925734958552e40b7d708d291

    • SSDEEP

      768:wMWeic73mUaOloq6X7uHRW8x3xSY+tjYSTtCQax/0LxbAIX7YzEcjNlvEYkIbqLk:eeicrmnTLuH8yfqPsULh3o3kXL3VZnxq

    Score
    6/10
    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Target

      CraxsRats v4.9.5/res/Config/Pass.inf

    • Size

      24B

    • MD5

      e1b54e517318b3b3363551e926b9e474

    • SHA1

      cdd2df4411afed1c9e44997dc9ebf85728eafcca

    • SHA256

      dab8688b4d139db5ba57783791efbce34e9e46c37a2c506685cbc6d18e68073e

    • SHA512

      edcdd405bf3d57cd524151e9f41670cb7c3bf693e59254c8a034c30a8457b936d507fa434d38e733819a11cf3afc6858d909fbe73bf091f3c96526cf99138728

    Score
    1/10
    • Target

      CraxsRats v4.9.5/res/Config/key.inf

    • Size

      24B

    • MD5

      ee19727b45486a798513abb51f5d1328

    • SHA1

      c18c6f42ec96212ecf2527feda4ad4f0ae219c19

    • SHA256

      e507f6e5ab113f4b75afed2202e8eb200a6a7f24382691d9aa62235308494b7c

    • SHA512

      8299a6f45f978c8d21d30e2c12c869d35e38946113fb8df8aca03ea39d018d1a1b272c4d627e44317b14c970933b2036f648c1fcd56ae218de59491584d39d97

    Score
    1/10

MITRE ATT&CK Enterprise v6

Tasks