8c42150870b90dbfd58366df3caada21b231727d452f9f26e5d69fcdb7ee3275

Sharing

Copy URL

Twitter E-mail

General

Target

37236d6f64c3cdcc1edf6ce53a30c7e2.bin
Size

5.5MB
Sample

230811-bnanmsbf8x
MD5

d8732962d604d6840735ab2c2a161f2c
SHA1

789cac6286afdbf4adc6caf6555801a65a2200ea
SHA256

8c42150870b90dbfd58366df3caada21b231727d452f9f26e5d69fcdb7ee3275
SHA512

991db3e9507974c1a2d7de7394b31c98819cabec364c446bad1613271dc51ea0943d5f308299fa8615c2ac77752a1ea8d73d9ad4229d859208b9432fb15acc35
SSDEEP

98304:VhOSHBrbUwGc1kDqMv6yUMJT6UnpO4+cquGb6AQhbSsdOV3NmjZjLpxzURWhcqP:VlrbJ1kDt6sJmcqr6AcbSsE2jZTUSP

Score

7^/10

android

Malware Config

Targets

- Target
  
  𝐯‌‌/Flie/saham-edalat.apk
- Size
  
  2.6MB
- MD5
  
  585fcbd8b8f34a1b19ea724edc763582
- SHA1
  
  82fd864645b31135b3a21220981425a10c0c658e
- SHA256
  
  3cf104f6eb881eef0b5d8a00e33f23b277212ed5bc6931152ed830ef5598b7d7
- SHA512
  
  0067c85ceaf461284d415b0e7530946af2bb22fc9f0df11118557762433362bc2a8ed53eeb866122174936c9654d3ff730120267176cc5bd16ceb8e3ddaccbd5
- SSDEEP
  
  49152:NsLjkkDGXio/ZIgMYiEQ6AlInb0rAypybWlEbu51+nnxbkvkegAfwD5vZOi:mjkk6XxZIgMYpQhlIb0rVAbWOKniEfwj
Score

1^/10
behavioral1 behavioral2 behavioral3
- Target
  
  𝐯‌‌/app.php
- Size
  
  19KB
- MD5
  
  701a031a737c213fe2c278b104b5e7ed
- SHA1
  
  a04819303a05d42e422867843ba06e472ce5def8
- SHA256
  
  81df21713356b9a4c735d6a6f79b2086f1ef71dadecee683561b9a02296d4ca4
- SHA512
  
  22fb9f55c960ed8ec9f29cbf266429d4c358f48b0bfa5b990d3cf018d7f3d8cb6c50d33170cffd60dd6d5a6ab6985d47b05afdf1405dcd8526863d6d5c887ff8
- SSDEEP
  
  192:NdEmRhlyIGNBzANk4kr5b1GOHv1qPex87WpanHhDexeT0UGcBWUd2Dex+4I9W4qX:n/yIty8aOJXGipoeQ4AWyMeFZxM
Score

1^/10
behavioral4 behavioral5
- Target
  
  𝐯‌‌/assets/js/jquery.min.js
- Size
  
  87KB
- MD5
  
  7c14a783dfeb3d238ccd3edd840d82ee
- SHA1
  
  ad886e472b3557f3dc7dfa2bc43468ab8d1cef5b
- SHA256
  
  80f04717f32ea0320c5e8618fbacedd1fee3a8775ad8292140a6113551d4b5b0
- SHA512
  
  fa3e021ca60a9adbe570c6565c7370727904c4396c23a4c519daf258d05fae3e17bfb7607a0ab6dfe2b7150a4ec1b6a95e6d49675291be5f6a4e5679ad78d858
- SSDEEP
  
  1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1vN:DIh8GgP3hujzwbhd3XvSiDQ47GK/
Score

1^/10
behavioral6 behavioral7
- Target
  
  𝐯‌‌/assets/noty/noty.min.js
- Size
  
  30KB
- MD5
  
  5bf0b80bddb73236c0757d5f6cd30188
- SHA1
  
  ea0117d93bc7aace8b1c11450952916b1a2b1271
- SHA256
  
  6c473452cab51b080ef78e28a5527085abca80ff9bf171519561489548cedcbe
- SHA512
  
  7f90ce12afc9fe3d24c299efcbe467e215e776f03e6543afa9effc6a815b5b1b2bb1937fd55f9a159131927e70ed050e19a8d57ba57861ac3d926265286abaf6
- SSDEEP
  
  384:gcn4t7IxkVYfpD41F7B5PawjvhiBBML8uSjNQRMTi8RdcvWl1eHp7CPDYX/yJe9m:i7Amq4H7BIwj5YHYwqCO9m
Score

1^/10
behavioral8 behavioral9
- Target
  
  𝐯‌‌/kos
- Size
  
  2KB
- MD5
  
  c0add04f64ddddaf39d45f9c1e61c3c7
- SHA1
  
  c6ef30ab4cf7090a9bc1b598238dae4fae8c9f61
- SHA256
  
  2d1bbbef691b84bb3deb50ea72b251b586e74b08538cf4b4058966258482cb78
- SHA512
  
  a1c0dc6ca3f7333dc301e9e5f7b9083c50ba98f0ec8b38ea3170c485bfb5a650d249a0146b3367b2069da1adcb35fc8ee66b8e289f285e4f743b6305fe1fbb49
Score

1^/10
behavioral10 behavioral11
- Target
  
  𝐯‌‌/nanat/TelegramBotPHP-master/TelegramErrorLogger.php
- Size
  
  3KB
- MD5
  
  f04185de682dac1f5abc78bee169f7c5
- SHA1
  
  ad25d4c7ff0d99b88d9c1a118f708db38e06d4f5
- SHA256
  
  57b0cd93b3dfa7741ff536607e206a4cfbf60e721ea81773490723709f1a8d22
- SHA512
  
  738a32ad2549de967c70a1b329841759167e1a5c0845cab880b39bf984243ab48d4e68bf30e7e00392d379aa0344248d54d57e1635c0003e9be72c6bfec76992
Score

1^/10
behavioral12 behavioral13
- Target
  
  𝐯‌‌/nanat/TelegramErrorLogger.php
- Size
  
  3KB
- MD5
  
  f04185de682dac1f5abc78bee169f7c5
- SHA1
  
  ad25d4c7ff0d99b88d9c1a118f708db38e06d4f5
- SHA256
  
  57b0cd93b3dfa7741ff536607e206a4cfbf60e721ea81773490723709f1a8d22
- SHA512
  
  738a32ad2549de967c70a1b329841759167e1a5c0845cab880b39bf984243ab48d4e68bf30e7e00392d379aa0344248d54d57e1635c0003e9be72c6bfec76992
Score

1^/10
behavioral14 behavioral15
- Target
  
  payment/css/fonts/woff/IRANSansWeb.woff
- Size
  
  37KB
- MD5
  
  df14582918ca379a280e453bb3cc6ba5
- SHA1
  
  da54a2d366daa668fcfd6ab2e07688ae425de99f
- SHA256
  
  a8f29f97bdd79c13a83136b0d0ae6f7daeaefbf5e36e88c9cb473092d6b7485d
- SHA512
  
  39e7c8e387e80d5a49dd572be30db324d01683de35879f0e7cc9960256e23ccaccefd15cfb1aa5d5724bd721c6bdb8c749c0a5575fb642a46e39de98370134be
- SSDEEP
  
  768:A/e0m+XVWYp0v+83domOUIEvm/5DUqShmpSTPAQkqy:A/e07FWY2v+839vmRUQkTPXG
Score

1^/10
behavioral16 behavioral17
- Target
  
  payment/css/fonts/woff2/IRANSansWeb.html
- Size
  
  30KB
- MD5
  
  c6f46673e2449eb071e2c098c5190c2a
- SHA1
  
  d9ba337d1d40aaeb82e51906ddaa0492239d291a
- SHA256
  
  224e0a53fcc1456dbe75f0ae0bd200131609055790eaa109222ac0d0b8045a5d
- SHA512
  
  785bb16b33546d5bb0d9b9c5cadd69c8e4016521541e1cceccf964abf3858cec6a232a42cd386f73bf513b6a549705faa4e6cc1676586f711d0ba8660cee7070
- SSDEEP
  
  768:lF7mr8mz60mCTXpVIAQfwkj3TQMfWoqClQX4A:n7mr8me7sXpV2jDQglq
Score

1^/10
behavioral18 behavioral19
- Target
  
  payment/css/fonts/woff2/IRANSansWeb_Bold.html
- Size
  
  28KB
- MD5
  
  6ec03a37e370c0d7f4f6bbdba0feac23
- SHA1
  
  adfc091b993c4d39a2d771473b918d7fdbb9302b
- SHA256
  
  ca1fe702b020c3d4a4c2ff5f2571fc85f9166d0d02339fd59765a2d3f55ce180
- SHA512
  
  ae90175205d31e863d6ff2b930e1569f906cfc243591ff64d6ecd87c8398bb41b48c2bba15415977c796908ab5313863ff7c01fed9f8b194c856688096113645
- SSDEEP
  
  768:mRxMclQ5A6Peexzu1TCWSLTopdA86omC5nHJK3ZYE:4+5NP3du1TCwpC8jmC5nQ3ZYE
Score

1^/10
behavioral20 behavioral21
- Target
  
  payment/css/fonts/woff2/IRANSansWeb_Light.html
- Size
  
  31KB
- MD5
  
  414e7148a634bfc82a601e3dacf84e96
- SHA1
  
  34ad3aefa1da8949aca7c08248c9a9606aa90c69
- SHA256
  
  6aa81aa885f0548103814374c70bf35db500c29f4b1f58703b750f4bead65798
- SHA512
  
  c33e5657c74eab45043640e77e875dbea61b3c0f6e953c22556f64fe4792e1213da63ca39d36cf058c3830300ef7b72e6768cb80e125619525b69cf8713b7378
- SSDEEP
  
  768:U6tsGeLSGeDcvl5sN7uvByzed2X2lpbY00p04EsyfKv+nk:rtsx1Rvl5sxayzedpFY0aH+Kgk
Score

1^/10
behavioral22 behavioral23
- Target
  
  payment/css/fonts/woff2/IRANSansWeb_Medium.html
- Size
  
  28KB
- MD5
  
  bb6a9fe5edb6791184821d992bffdcf4
- SHA1
  
  675eed1aa8008c971b9748fc722bcd83469b7593
- SHA256
  
  f0df32a86465d005467a3db05aa101c6c626df4d02830d4da2ac696da8a7af93
- SHA512
  
  1664a1ca5f8bc0fdf911a4c13c954542f52aaf014079f8a2e4ab95a38e8a448e6d0c27172797cfed4a6fb956485031a1340955456ab28070f88d3aa605d8fdc7
- SSDEEP
  
  768:19NgPW3Skxd3Mq/BvvBqTYrzFcO/jw81afmZ6P:7NgPeSkvMW3BqTYnFdE8gfmZ6P
Score

1^/10
behavioral24 behavioral25
- Target
  
  payment/css/fonts/woff2/IRANSansWeb_UltraLight.html
- Size
  
  29KB
- MD5
  
  5010d0152420ca7bd3acb1a9d668a57e
- SHA1
  
  b26fd95d7cf4f167223fef4040790db48e35d0ca
- SHA256
  
  2058fda079f21b54c31022c6f88179cfb8fa290f95f1ffcc84233dfeb75e099f
- SHA512
  
  4c53f258a9f4b2924ee39787f6d3becf1005b845a3e4b0d9d6dfc7fa929e1140de9ecd671c1f3c97a2ff452af44d09e056da41f089f7ae879aca6a1a77efca90
- SSDEEP
  
  768:MsVzCeaniXSg0HRfBX6eqTkoU7L4aoewLStVRrF+xgfIJs14bfp/O9:MczCeanSSRRfBXR7L46wCj5gGIrjpm9
Score

1^/10
behavioral26 behavioral27
- Target
  
  payment/img/mellat_arc_footer.svg
- Size
  
  592B
- MD5
  
  88c463cfd41ec2f833ab67c83d9dd843
- SHA1
  
  004156dd40df89fe3cae7a4cbcf5a5b1f61d1a3a
- SHA256
  
  9019fb40193423b787b752dfc130ce05ad4c5863f1002302a315ec57a0f36cc9
- SHA512
  
  48550fc2c303b0c3789c8dd4104c845cffaf45e384f1d4240372e1ba9210cfebd3ae13cd79aeaa845ee3e5618711a32aeb28a55f8f5c3122e12417991bec1a25
Score

3^/10
behavioral28 behavioral29
- Target
  
  payment/img/shaparak_logo.svg
- Size
  
  30KB
- MD5
  
  e6ce63001e77b7b374b0cca42f6073e8
- SHA1
  
  d8bc057bcce7bf3148ac400972b0fddc088fe089
- SHA256
  
  d1e7151a7b6e0e0a0be950a03eebdd6307bdeb5696735e828421046b1010ba56
- SHA512
  
  b3635163aac1655b35b768ca4282b97ae67d169e95b7d0e3c0b7b149c1c3999434ac82c576f36491d5342a538b812673ec547ec6205938368cd083d2bd3c858c
- SSDEEP
  
  384:jL1obPUGHaidGxreP9C5rdZ4urGWNA+wmoBnHtnbFbUszbt5RyjweKmtXQKX1OzU:g6JPrmld6
Score

3^/10
behavioral30 behavioral31
- Target
  
  payment/index.php
- Size
  
  29KB
- MD5
  
  4a72c8d723da79b0c952d75a1c9a556a
- SHA1
  
  b1aff3a64d207c5d0e305e3a857316a4a52654d2
- SHA256
  
  ac31e28b1701c16e4bf1b0493057d2c091e8d646e8580172c3ad0161554225f7
- SHA512
  
  4340c3f4b1f235bc9cce71e1f7530ef0834e5ac366b331d84e8d78b37e2ad52938689372c79e851aedca0d287e778a782b170c061bb191c6aeb5d1075f447df6
- SSDEEP
  
  384:/K+uKjUjR7CywNKJb2vpP+vhAjSd8Pemeu5GJdFzh:1jUj8jKdqkHzh
Score

1^/10
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32