dbc153ff08766e9b203cbb9d49cffc811cef981bb477e63189c681babc995e44

Sharing

Copy URL

Twitter E-mail

General

Target

bfbp 3.11alpha.zip
Size

28.4MB
Sample

230830-t76jjagb4z
MD5

6b97f1337622bdea8766db812fc6bb3d
SHA1

3520ba7c5b5a53e6cdb7da9e3f11112b33fff098
SHA256

dbc153ff08766e9b203cbb9d49cffc811cef981bb477e63189c681babc995e44
SHA512

cbd66455da86aa8661f92ec1c2b2a0932299c38d09546b66485aeca1d50df9ed894a6efa5a1ac581f6a92d30038f3267a5cbab5358354ca4db5495c30f32c870
SSDEEP

786432:JV0Dh4VqKDSvOPOJGbkszg0LG1V50q6fVEkipbFwH:JV0DKVqAPLYtIGEfakihmH

Score

3^/10

Malware Config

Targets

- Target
  
  exe.win-amd64-3.11/lib/tcl8.6/init.tcl
- Size
  
  25KB
- MD5
  
  982eae7a49263817d83f744ffcd00c0e
- SHA1
  
  81723dfea5576a0916abeff639debe04ce1d2c83
- SHA256
  
  331bcf0f9f635bd57c3384f2237260d074708b0975c700cfcbdb285f5f59ab1f
- SHA512
  
  31370d8390c4608e7a727eed9ee7f4c568ecb913ae50184b6f105da9c030f3b9f4b5f17968d8975b2f60df1b0c5e278512e74267c935fe4ec28f689ac6a97129
- SSDEEP
  
  768:rXugPHudKlExBG+Xg3Qonlm6ofRRECLSQDjr5vkhzx/i:ygGdKli4eonlm6offLzehNi
Score

1^/10
behavioral1 behavioral2
- Target
  
  exe.win-amd64-3.11/lib/tk8.6/listbox.tcl
- Size
  
  14KB
- MD5
  
  804e6dce549b2e541986c0ce9e75e2d1
- SHA1
  
  c44ee09421f127cf7f4070a9508f22709d06d043
- SHA256
  
  47c75f9f8348bf8f2c086c57b97b73741218100ca38d10b8abdf2051c95b9801
- SHA512
  
  029426c4f659848772e6bb1d8182eb03d2b43adf68fcfcc1ea1c2cc7c883685deda3fffda7e071912b9bda616ad7af2e1cb48ce359700c1a22e1e53e81cae34b
- SSDEEP
  
  384:apDYV5Yupn5OcckwBv3HCpg2J8JvJBfWeZhXkz+WkHGowv:aPPkevB2JuvJ9D3XmSc
Score

1^/10
behavioral3 behavioral4
- Target
  
  exe.win-amd64-3.11/lib/tk8.6/megawidget.tcl
- Size
  
  9KB
- MD5
  
  d83ed6ac2912900040530528a0237ab3
- SHA1
  
  2d18e42a8b96c3d71c1c6701010fdf75c1e6d5d8
- SHA256
  
  848258b946c002e2696ca3815a1589c8120af5cc41fbc11bbd9a3f5754cc21af
- SHA512
  
  00b4cd0d58029fc37820c163a4ae1dead22fb5c767bdc118659eace26d449c362189611dfb3fab1ac129fabfec2ce853ea2c10d418fae5aeb91ddc9330ff782d
- SSDEEP
  
  192:mvEEVwjVwqOpOLbkVAg/vyKEZ25YbKZbwrmQ:mvEEVwJwpALPgnyx25YGZkr3
Score

1^/10
behavioral5 behavioral6
- Target
  
  exe.win-amd64-3.11/lib/tk8.6/palette.tcl
- Size
  
  8KB
- MD5
  
  4ce08a10cd9ae941654b8c679df669f3
- SHA1
  
  f1288babca698fd18c3bd221e6ae6c02f2975aae
- SHA256
  
  849b4c57e4644e51beaeaeb3ae59b7ff067e582ecd10f1b2caf6b6e72f11f506
- SHA512
  
  0f37539da3540e9b1da7b0377e3bbb359b71db4271d63bc9501e95931b4e609e8cb91dc2f7b08a6452598d4a0d58c6a2034049a215000eef0f93a9963d003632
- SSDEEP
  
  192:HWh/x+hFMyTA/CTzxFoUuliRLDm8pQrQlENPyF3o48M6C:HWL+MyTA/CTzvAiRqyEw3ok
Score

1^/10
behavioral7 behavioral8
- Target
  
  exe.win-amd64-3.11/lib/tk8.6/safetk.tcl
- Size
  
  7KB
- MD5
  
  21a3ac11146ec26784c0e729d8d644d0
- SHA1
  
  c7e0918e8692c42c1d1dd1bbcbfff22a85979b69
- SHA256
  
  579701605669aadffbcdb7e3545c68442495428ee6e93c2d3a3133583bcd3d33
- SHA512
  
  724ed83b989ad9033bec4211ee50e4c9e85b51054c518cdf7e02d0ed0416f636b9f38c0b0d29f8f4f7f465b77c7d2e01d0918d2c2c3fec4c7739ea982302fa2e
- SSDEEP
  
  192:Eet0t8bm9Z+Yjo+j/YKOtOUOtk8XKUal320:EetG8biZZs+bIAUoxX0d
Score

1^/10
behavioral10 behavioral9
- Target
  
  exe.win-amd64-3.11/lib/tk8.6/spinbox.tcl
- Size
  
  16KB
- MD5
  
  77dfe1baccd165a0c7b35cdeaa2d1a8c
- SHA1
  
  426ba77fc568d4d3a6e928532e5beb95388f36a0
- SHA256
  
  2ff791a44406dc8339c7da6116e6ec92289bee5fc1367d378f48094f4abea277
- SHA512
  
  e56db85296c8661ab2ea0a56d9810f1a4631a9f9b41337560cbe38ccdf7dd590a3e65c22b435ce315eff55ee5b8e49317d4e1b7577e25fc3619558015dd758eb
- SSDEEP
  
  384:IMpfy/Ku9TzD0E8+9T1wqBaQKpiqQr7E32fnzXfWJU:IMpfy/Ku9Tx8WODTp2zPP
Score

1^/10
behavioral11 behavioral12
- Target
  
  exe.win-amd64-3.11/lib/tk8.6/text.tcl
- Size
  
  34KB
- MD5
  
  7c2ac370de0b941ae13572152419c642
- SHA1
  
  7598cc20952fa590e32da063bf5c0f46b0e89b15
- SHA256
  
  4a42ad370e0cd93d4133b49788c0b0e1c7cd78383e88bacb51cb751e8bfda15e
- SHA512
  
  8325a33bfd99f0fce4f14ed5dc6e03302f6ffabce9d1abfefc24d16a09ab3439a4b753cbf06b28d8c95e4ddabfb9082c9b030619e8955a7e656bd6c61b9256c3
- SSDEEP
  
  768:Rp4LaQDlJrqquMwIMyv4Et8avJLgmTGXs1bYMeNnnZl8n6KRD:R/K8aymTGs1b0xncn6KR
Score

1^/10
behavioral13 behavioral14
- Target
  
  exe.win-amd64-3.11/lib/tk8.6/tk.tcl
- Size
  
  23KB
- MD5
  
  338184e46bd23e508daedbb11a4f0950
- SHA1
  
  437db31d487c352472212e8791c8252a1412cb0e
- SHA256
  
  0f617d96cbf213296d7a5f7fcffbb4ae1149840d7d045211ef932e8dd66683e9
- SHA512
  
  8fb8a353eecd0d19638943f0a9068dccebf3fb66d495ea845a99a89229d61a77c85b530f597fd214411202055c1faa9229b6571c591c9f4630490e1eb30b9cd3
- SSDEEP
  
  384:Nuyxt+WaB9USY15gSgC3DbTbXLXKr3cIXyDAbK2LMGgtewT+3oFQRyH5bAy59Hmc:NuItNe9USZblXysm7GgteoFQRYMSySL
Score

1^/10
behavioral15 behavioral16
- Target
  
  exe.win-amd64-3.11/lib/tk8.6/tkfbox.tcl
- Size
  
  38KB
- MD5
  
  47635811aaa1ceb26eda3930d91c8855
- SHA1
  
  f071757bed525af8ca21bfa0fca89ec3f95aa278
- SHA256
  
  595a0b05eb2cbd4cf489e57624b509fc3b4885e6410ca6416e7521d23694373d
- SHA512
  
  a374126ec28e70c89ee247a591c2168df55e110f260664f46f470c53cda3a2411c3775391fc8fd575cee69cd1768512e68cddcb335204d00b9eb81906ac79344
- SSDEEP
  
  768:+oj+AqE9cn9eJNgDN0/vsKulXgx65Eh6pSb:+6+ZM/gAEdix65Ehpb
Score

1^/10
behavioral17 behavioral18
- Target
  
  exe.win-amd64-3.11/lib/tk8.6/ttk/cursors.tcl
- Size
  
  4KB
- MD5
  
  18ec3e60b8dd199697a41887be6ce8c2
- SHA1
  
  13ff8ce95289b802a5247b1fd9dea90d2875cb5d
- SHA256
  
  7a2ed9d78fabcafff16694f2f4a2e36ff5aa313f912d6e93484f3bcd0466ad91
- SHA512
  
  4848044442efe75bcf1f89d8450c8ecbd441f38a83949a3cd2a56d9000cacaa2ea440ca1b32c856ab79358ace9c7e3f70ddf0ec54aa93866223d8fef76930b19
- SSDEEP
  
  96:DRYEqfLDxGmxGUz4GUtaPT6t6brv0q3O4Uu0:DWEqTDbxdWaPqe5PUr
Score

1^/10
behavioral19 behavioral20
- Target
  
  exe.win-amd64-3.11/lib/tk8.6/ttk/treeview.tcl
- Size
  
  9KB
- MD5
  
  f705b3a292d02061da0abb4a8dd24077
- SHA1
  
  fd75c2250f6f66435444f7deef383c6397ed2368
- SHA256
  
  c88b60ffb0f72e095f6fc9786930add7f9ed049eabc713f889f9a7da516e188c
- SHA512
  
  09817638dd3d3d5c57fa630c7edf2f19c3956c9bd264dbf07627fa14a03aecd22d5a5319806e49ef1030204fadef17c57ce8eae4378a319ad2093321d9151c8f
- SSDEEP
  
  96:FoTvMxHZZ1u2xj7+ZBHxjiXJv9IfwW+vr3UxjXEJDTF/MyLF3JcMzlsra2tYGa5P:mImAkRKYXMH59o4UbS30LWb
Score

1^/10
behavioral21 behavioral22
- Target
  
  exe.win-amd64-3.11/lib/tk8.6/ttk/ttk.tcl
- Size
  
  4KB
- MD5
  
  af45b2c8b43596d1bdeca5233126bd14
- SHA1
  
  a99e75d299c4579e10fcdd59389b98c662281a26
- SHA256
  
  2c48343b1a47f472d1a6b9ee8d670ce7fb428db0db7244dc323ff4c7a8b4f64b
- SHA512
  
  c8a8d01c61774321778ab149f6ca8dda68db69133cb5ba7c91938e4fd564160ecdcec473222affb241304a9acc73a36b134b3a602fd3587c711f2adbb64afa80
- SSDEEP
  
  96:lfxukTy5jPTq8LIgF2diyNTNR6nkrn4ijSSvNigyJ5612HtZG835MSvWOTRsHWU:BM+y5jrq8G/2nkEijSSvNigyJ5612Htw
Score

1^/10
behavioral23 behavioral24
- Target
  
  exe.win-amd64-3.11/lib/win32com/readme.html
- Size
  
  3KB
- MD5
  
  9526997cc08298a2385b3ab78bc198c3
- SHA1
  
  230227292d5de2bc0d73188a010ec44a6e84bbad
- SHA256
  
  605af9ea17ce0a2aa2f88e9a750b5f2b6809f6a4d2c19c05abb657650cf772f6
- SHA512
  
  2766f2d414681646281b5343de2f035918d2c462011d3193bbf3ecc7f8dc496123545fa9d11a9337811481711470573dcfa7cf809fef8ac63f744de501c56b3b
Score

1^/10
behavioral25 behavioral26
- Target
  
  exe.win-amd64-3.11/lib/win32com/shell/__init__.pyc
- Size
  
  326B
- MD5
  
  3f4fed14db984c523b2ae660574673c3
- SHA1
  
  c7dcb3b624d296f403a5f1a5ce8e49e392dddd32
- SHA256
  
  755747b8ee380a8286fdd11b3f2252e918c9ad8beb04af508bdbea2bf15e6964
- SHA512
  
  5cb6adcd8d506b8783e3bd7bd7ed16e85fd93ce215487bb086020f99cd89fa1a06353f991c16295a1ebeace4db6362c7cb8df79a95432a96d239462a9e737603
Score

3^/10
behavioral27 behavioral28
- Target
  
  exe.win-amd64-3.11/lib/win32com/shell/shell.pyd
- Size
  
  516KB
- MD5
  
  8a0c2f96414475498d6e9bada00de986
- SHA1
  
  bb8e66f3df9f25b12777e3f48ba7069940f0c920
- SHA256
  
  3f45c59f75e61fa93b5c2b1f65995b621c3fd301fb500a17599befa54538d1d0
- SHA512
  
  75d718f30209d81819cea7b148d3a8dd7fcb9fc94e87a8dd5d7c795b334deacd6a598f583475b7005d0e81929c9e70f19babfe92be1e1e39f62296078fdeeaea
- SSDEEP
  
  6144:x1uoSNIiaRGfvtQqmJeRAsgUW9yKj6pWa1P5ziI7RRWf:x1uoSNIH8HtQbems66pWab37R4f
Score

1^/10
behavioral29 behavioral30
- Target
  
  exe.win-amd64-3.11/lib/win32com/shell/shellcon.pyc
- Size
  
  53KB
- MD5
  
  85ffc7a31e54223fc809715bfe457da1
- SHA1
  
  1b2f041d84092e3bbf66ad9472126936def398a1
- SHA256
  
  8b20a850e4d4d5b310da9e71a26157b69288affa1c39524a00e528f5ca3d267f
- SHA512
  
  f8b7f014a875722dd306e8d833fcddff6a2246abc665d0b212df95c3c9d4640627213154667d813d9d4be605ba7091e6a5f89a9923b30014093f5b45e8b87b88
- SSDEEP
  
  1536:JnjS0Hsz1RJIoZxAS89RHPSwuEexSOLHz:c0sLTZxAS89RHPdaj
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32