Overview

overview

10

Static

static

3

Setup.exe

windows7-x64

10

Setup.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    _U_N_D_R_T_L_ By Freedom Chan TM.rar

  • Size

    120.9MB

  • Sample

    230828-zm289sah7v

  • MD5

    0bbc8cead924c65da7cccb3297edf455

  • SHA1

    66b40ba9834cc86b1316434213d4d0a1ec14c00e

  • SHA256

    a3c8ca44daf1998a1ada646b3759f6a62674f8bad6f194a64d4ec697ea8455ab

  • SHA512

    2f27cae08f2c3a73dcf71ac360ecdb2d1af8402388f75fbe0df0939fb11cc357d4991ef7fe2f5430331ff83faf1c1daced7855f29a9673635b871b693c73aed6

  • SSDEEP

    1572864:qiM7DhczCaxWLABs8spKCFLme+A2akcvAYBkbKiD5DEeM9VCwQdUzkO:qlOCaELAO8WLiA2aTVkbKidc9IdUzZ

Score
10/10
snakebotsnakebot

Malware Config

Targets

    • Target

      Setup.exe

    • Size

      120.1MB

    • MD5

      5fb9b3c109ad471d0bc148329344e8ca

    • SHA1

      21f2a06e7f83cb2886c16cafc20968f370fa2643

    • SHA256

      c9ae7f8a79a27955d93c32f1b9fc3100496f4cdb6acfa848e80acabca6d1749f

    • SHA512

      b50c9420e0709391be280b4f65be35bde9018388872c4ad675f104fd0093be22159a74b0d46b0d1c92043887824cb97464db452d422bcd339a1f3578b3f7456c

    • SSDEEP

      1572864:uiM7DhczCaxWLABs8spKCFLme+A2akcvAYBkbKiD5DEeM9VCwQdUzk+:ulOCaELAO8WLiA2aTVkbKidc9IdUz/

    Score
    10/10
    snakebotsnakebot

    • SnakeBOT

      SnakeBOT is a heavily obfuscated .NET downloader.

      snakebot

    • Contains SnakeBOT related strings

      snakebot

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Tasks