Overview

overview

8

Static

static

7

Illegal_Se...in.rar

windows10-2004-x64

3

Illegal_Se...LA.rtf

windows10-2004-x64

1

Illegal_Se...es.exe

windows10-2004-x64

8

Illegal_Se...l.html

windows10-2004-x64

1

Illegal_Se...za.dll

windows10-2004-x64

1

Illegal_Se...za.exe

windows10-2004-x64

1

Illegal_Se...xa.dll

windows10-2004-x64

1

Illegal_Se...za.dll

windows10-2004-x64

3

Illegal_Se...za.exe

windows10-2004-x64

1

Illegal_Se...xa.dll

windows10-2004-x64

3

Illegal_Se...ox.exe

windows10-2004-x64

3

Illegal_Se...ox.exe

windows10-2004-x64

3

Illegal_Se...-1.jpg

windows10-2004-x64

3

Illegal_Se...10.jpg

windows10-2004-x64

3

Illegal_Se...11.jpg

windows10-2004-x64

3

Illegal_Se...12.jpg

windows10-2004-x64

3

Illegal_Se...-2.jpg

windows10-2004-x64

3

Illegal_Se...-3.jpg

windows10-2004-x64

3

Illegal_Se...-4.jpg

windows10-2004-x64

3

Illegal_Se...-5.jpg

windows10-2004-x64

3

Illegal_Se...-6.jpg

windows10-2004-x64

3

Illegal_Se...-7.jpg

windows10-2004-x64

3

Illegal_Se...-8.ps1

windows10-2004-x64

1

Illegal_Se...-9.jpg

windows10-2004-x64

3

Illegal_Se...ad.exe

windows10-2004-x64

1

Illegal_Se...ad.exe

windows10-2004-x64

1

Illegal_Se...er.exe

windows10-2004-x64

7

Illegal_Se...kg.exe

windows10-2004-x64

1

Illegal_Se...iz.exe

windows10-2004-x64

1

Illegal_Se...rl.exe

windows10-2004-x64

1

Illegal_Se...N.lang

windows10-2004-x64

3

Illegal_Se...R.lang

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    Illegal_Services-main.rar

  • Size

    12.5MB

  • Sample

    230923-qhdknsff4s

  • MD5

    c8413216ca5253448c28f8d624598560

  • SHA1

    b410c8ef45a0120cd352ecd017cc5f653e85ea59

  • SHA256

    1c814b3e4c9685df73d89843e014e8a422c652a49d773cb40da2eedfc1808b26

  • SHA512

    7910f76128da568d1fd10223a7b29e4bf2c03c74861d7b8a9443c7fada115c6441d0d4e7c60bea8da79ff4554cf668be5aa6311b5d278fe5abc74f94ca704bdf

  • SSDEEP

    393216:OneKvfs+8SsGIAdXeGMg9M2cAhBqJ0CEk6e2ey:OB3sWsJJg9LBe0CIGy

Score
8/10
evasionpyinstallerupx

Malware Config

Targets

    • Target

      Illegal_Services-main.rar

    • Size

      12.5MB

    • MD5

      c8413216ca5253448c28f8d624598560

    • SHA1

      b410c8ef45a0120cd352ecd017cc5f653e85ea59

    • SHA256

      1c814b3e4c9685df73d89843e014e8a422c652a49d773cb40da2eedfc1808b26

    • SHA512

      7910f76128da568d1fd10223a7b29e4bf2c03c74861d7b8a9443c7fada115c6441d0d4e7c60bea8da79ff4554cf668be5aa6311b5d278fe5abc74f94ca704bdf

    • SSDEEP

      393216:OneKvfs+8SsGIAdXeGMg9M2cAhBqJ0CEk6e2ey:OB3sWsJJg9LBe0CIGy

    Score
    3/10
    behavioral1

    • Target

      Illegal_Services-main/EULA.rtf

    • Size

      1KB

    • MD5

      d637221f9cf08906bfbfbdfb5077ad8c

    • SHA1

      76ad8bb9481ad4e5bbf1a554202975f32a8a1350

    • SHA256

      196fa5f8a3072d18ca9497bcbca24f89f2b7c63c1b3d6e9b39c0f529443ed273

    • SHA512

      715ee32a2e9f68b6396a9fcff44f3e25393cb8ad7509852635699557bc3ad84654ec56a82b5526bd9160e1740f77f8830773e6d210c67518496b4d08fc70d754

    Score
    1/10
    behavioral2

    • Target

      Illegal_Services-main/Illegal_Services.exe

    • Size

      401KB

    • MD5

      4e1ec29a1b1c04253beef0652a4480cc

    • SHA1

      9b7852f19ec37d3cf1f92acfad0f08d644950105

    • SHA256

      144bd8cca10ca792802f3d3d71048ec507da2e4ab83e13c0ee0b10cabfb91936

    • SHA512

      40a8e55594fe268738fbd7ab46dc89c37a60b351a35603861f203da4f45ca9b0352ef1ea8e2f2fdb748315abb53bea0a9d16621b51d4111a1ac157889690ddad

    • SSDEEP

      6144:pFJppEPA9emp6QSA8FmI3AcFAwtGzLj3dN4WRfHwBom4/iM+cdUkaNBo:pHGA9emsFmRcXo3dDRPSMZUkaQ

    Score
    8/10
    evasionupx

    • Downloads MZ/PE file

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Legitimate hosting services abused for malware hosting/C2

    behavioral3

    • Target

      Illegal_Services-main/Tutorial.html

    • Size

      5KB

    • MD5

      8193072047b5be3465203f0675970c98

    • SHA1

      32a032e6f8e1022ce43065d16d6b66a1d93f4036

    • SHA256

      515a8c9ac7e65d7d371e867608640e16c2401307d9c363b77e991252e07b78c3

    • SHA512

      81c1b8bf71d77196273a3b41187a26edcaf60e19939c224d06fdd7ec229d8e9173b3378aa3ad6dc1a440f5ee538ff29987b5b3aef5e0de36eaf3bc90948843de

    • SSDEEP

      96:YIDx5tzbTspw0NiUCcXe5Jnfhq/E5H4e5H+oFKa5PPYgG5:YWkTMv8e5dQ/sphIl5

    Score
    1/10
    behavioral4

    • Target

      Illegal_Services-main/lib/7za/x64/7za.dll

    • Size

      373KB

    • MD5

      5e79330dfa8f102da34a4ae39b181da1

    • SHA1

      231c9f1ee6cb75c094b07f81266bc037e8bb32cf

    • SHA256

      f306d5766040c252e312893b232cd985b5bf8c7bb1856db78cce9fb2d4a4ff58

    • SHA512

      f3a94186ff62ddfd9ba3dcefc25e55d30255d3b57b94bdd76ce2f541487357b4e6aa7bca431757cd448e8a15d22989240ccbf87617bfd6a79d941d961554bbb6

    • SSDEEP

      6144:l/4fqOC0P+faEZ1S9xtu21T5O+okeTCfK007sDXS3aZsBGJmuUd:lwfR+faEjx21TPef0h23aZs8k3

    Score
    1/10
    behavioral5

    • Target

      Illegal_Services-main/lib/7za/x64/7za.exe

    • Size

      1.1MB

    • MD5

      e86eff95691b1c0e7e4f3e9cb1ae2e49

    • SHA1

      d0acbf9ae29ec74acc67b53b2063bbc9739bc9e8

    • SHA256

      8117e40ee7f824f63373a4f5625bb62749f69159d0c449b3ce2f35aad3b83549

    • SHA512

      1c26201f214fc068d2d7f7c812be022dbc102077ef34bc1f231ac118aa04b94139cc2005628491747888faf95863241b3847524db097f4822b75f646f4345ff6

    • SSDEEP

      24576:IyotkuwTgCfs7Ck+PCZbS1IJdJ0FAH48fw2:ITtkVxkdyCZbS1oCFo/fw

    Score
    1/10
    behavioral6

    • Target

      Illegal_Services-main/lib/7za/x64/7zxa.dll

    • Size

      204KB

    • MD5

      275114d5c4ee6285991160671424e162

    • SHA1

      83c8fc44020919a51408fcd9ec0647548e011456

    • SHA256

      fc831c36755602b29b042e7e8079cea4639489bd72fbaca0835cde93aff7885e

    • SHA512

      1267e2602e6f8e86290fd0d63f34799d93401a5322e9af46d59d6ecffd237ad75a2ffba897906bb700bd4c572d79f6cc617a34cb0bcccd465790afc5021164b3

    • SSDEEP

      3072:ttFTvBbeC3+AiQPmzwIZi4Zvtb5dGgjIpvcvg4drUImDNuIPsihYc3GZPd7EY2pT:1VbeI7dPWhHyDCfw0DDS4AWOKkCSv

    Score
    1/10
    behavioral7

    • Target

      Illegal_Services-main/lib/7za/x86/7za.dll

    • Size

      263KB

    • MD5

      3107caecf7ec7a7ce12d05f9c3ab078f

    • SHA1

      b72ac571efde591906771b45bed5b7dc568d7b08

    • SHA256

      bd377ba96ff8d3cbaea98190c8a60f32dc9d64dd44eed9aade05d3a74d935701

    • SHA512

      e5f7bceb39975bc77de3d118ab17aed0f2bd5df12dbbcad5a355c34d71dff883a482b377e4b98622ccc3ba48649ba3330d3bb0bac7f9f2e861d9af0c10d1637e

    • SSDEEP

      6144:ZNnwY0ozR5spzvSrnHefQOWdFQJvUhq36F:ZGY0YR5VrnHefgd6JvUe6F

    Score
    3/10
    behavioral8

    • Target

      Illegal_Services-main/lib/7za/x86/7za.exe

    • Size

      722KB

    • MD5

      43141e85e7c36e31b52b22ab94d5e574

    • SHA1

      cfd7079a9b268d84b856dc668edbb9ab9ef35312

    • SHA256

      ea308c76a2f927b160a143d94072b0dce232e04b751f0c6432a94e05164e716d

    • SHA512

      9119ae7500aa5cccf26a0f18fd8454245347e3c01dabba56a93dbaaab86535e62b1357170758f3b3445b8359e7dd5d37737318a5d8a6047c499d32d5b64126fc

    • SSDEEP

      12288:AwAxBpwU5gU+2/9dB5XlH1YAEa5OLW0TjLWG3rn0Yf5ogmn9X9Rf6TIALr22DIVM:AhY2gUfVH5XlVYzagW4/3rn0Y5zmzRfq

    Score
    1/10
    behavioral9

    • Target

      Illegal_Services-main/lib/7za/x86/7zxa.dll

    • Size

      155KB

    • MD5

      786d4c74c05832a652be5c0a559be1e6

    • SHA1

      56bc5cf0bef56565da871af9e10ac8c2302d2ad7

    • SHA256

      d0680ac62e94f953df031533acd0acb718ad8494f938d84198c655507709e5df

    • SHA512

      29cf07d3acceb716a2e9ec66434170ba7f15c5af3c843253d72be6f7bf1ab942a6e098a423beb33efb9fbf8bb6c967c34d4dedf65aca72984c6aa70c58e0eeb4

    • SSDEEP

      3072:QwBYN3i204AHpzTjaLd4+OTpLcl28hpQplf4btKL6mCF:E3cp3jaLupLc3fclAKmJ

    Score
    3/10
    behavioral10

    • Target

      Illegal_Services-main/lib/OpenFileBox.exe

    • Size

      12KB

    • MD5

      867ff8be4d59e321f40a5adf1ebafc87

    • SHA1

      6417c2a9c8cf513b3bfe68480878640ce4f43e9b

    • SHA256

      e30eacc0079eea5f32174fc258a717f5bd6671ca7d44911b7f06361590338793

    • SHA512

      a8865d127bf8e5f270cbfe422ce680c6ceb6e744d907b27ba51e84b91302797e9678f46db1d42e8dd4eb918d6135822ead55bae9730d30bef493b3bcaa8d8b01

    • SSDEEP

      192:FsqGtf5/Mh0OEFfrF+jcGwp96RiOTmbJr+e:FsqGtlMhvEJ13D6E5B+

    Score
    3/10
    behavioral11

    • Target

      Illegal_Services-main/lib/SaveFileBox.exe

    • Size

      13KB

    • MD5

      8108ff69b5760c8117563d6b10f77158

    • SHA1

      f2f855408f671e1856f08d5f2b9bc74fa7e7bd0f

    • SHA256

      48eb5c03141732b810570b557fe148e3f76764df3a632008972de44be88497e3

    • SHA512

      63f1ab3095bf3a542bf980a43ea02948de9d1d44d975574aa7b6db20eb8e0fadd22c781a53c0e0603e81934bc3c96477c5330a2369728e5ea183f84712204ab9

    • SSDEEP

      192:AnIIycajz2wF6HrwFNjOCuMN55ZBZD8KKYPWOztfMj8:4/yfz2wFv+K5Zf99S

    Score
    3/10
    behavioral12

    • Target

      Illegal_Services-main/lib/backgrounds/background-1.jpg

    • Size

      201KB

    • MD5

      d156d6eaf931d4f2c8a93dad8072ba88

    • SHA1

      7f0aadcd01a27ecbbda57794f501a371667aef26

    • SHA256

      7a87fe781ebb56eacaa7440aa97e070b4a7503360a0487af6b3a0d549f6c0ae3

    • SHA512

      4e25818701858e4f4f26f757c2159db82444284cf76110a39a81b3f91c9f1358b8b74befcfe4cae31c357cd91333b29d86cf17c9d84005b0384eb8fe49d696d0

    • SSDEEP

      6144:1cA22Dy5Dpue4zfbYY4DAXI7Q3wZZxm3Am7t3o:1cUe6pfPWQaZxm3Am7t3o

    Score
    3/10
    behavioral13

    • Target

      Illegal_Services-main/lib/backgrounds/background-10.jpg

    • Size

      543KB

    • MD5

      1c66ff88383b6cc373f14b0967a03928

    • SHA1

      15cf1c3abf171636ecc313344b9856ac53ac2eb9

    • SHA256

      1156f2f62d75c6c57e66b26d18369d62b424e72ac92eb91336d2050347568f31

    • SHA512

      fe1a4dc1bf8600b9d6af1df1367b08be9bc7920e7e2a74ea2b4999aa17fc27ceb61631dd859e3189b0bfd9a287dce0e0ff450d321045ee43108987fb3d7a35f4

    • SSDEEP

      12288:lP1194gWCCt6y3PYuqc061fAYGnNTsm6Tak9SlXNgr4AsC:F1XPCP3nnSY2NgmVWcdgn

    Score
    3/10
    behavioral14

    • Target

      Illegal_Services-main/lib/backgrounds/background-11.jpg

    • Size

      140KB

    • MD5

      e5a334e8fe228678044edc42639f02af

    • SHA1

      98f4eef02338280a74b59219ba266e187e9d578c

    • SHA256

      450eeb7971f122c5fbb13c2b0b04c75bac926896c107ce72510f5f0bb200c1fa

    • SHA512

      763e5f170709e3c1cddaee6b186757225205b3401e01cb2e4aa2cf6f47b14b986e8a9987b7211da03ace4584581865e66307cc3a7453a0774407df43ae5e4817

    • SSDEEP

      3072:2pJNlLNrR0XSAQbvt1HdvYDATHyZOLCNNtDnC:SNrqSzbvtzJTyYgNtDC

    Score
    3/10
    behavioral15

    • Target

      Illegal_Services-main/lib/backgrounds/background-12.jpg

    • Size

      133KB

    • MD5

      72cac81bf12d6625706c1468a2251400

    • SHA1

      e330abda004432ef2bf57f133a1f57e66924b433

    • SHA256

      ae776431445807632da9bf053c4a443b328a25793df6d8db5d4d639fca53c912

    • SHA512

      3d38c7beb4443c995372618c519e4a11e11b72f1ee6062476eab88d033738edebb98fb2d2dae1cf52201fdd0b2aff46962917f8ecab54ddc1bab16feebeecff8

    • SSDEEP

      3072:QV/fXwnyRMbbKvbdPQNDGpohAwOGUcXuJWz5:QV/4nyRM6vBPQhGmhApGUZUz5

    Score
    3/10
    behavioral16

    • Target

      Illegal_Services-main/lib/backgrounds/background-2.jpg

    • Size

      227KB

    • MD5

      2192256d4f99534c591db8bfa147d7cc

    • SHA1

      5d266a9e654facf4a2b8a0f0464374a0f1c8560b

    • SHA256

      d8bcf289eeaf135076d1ce5cfaea19d2a845405959a50364a84312d3c6744295

    • SHA512

      0288fc85a383e3c1cef56a1cc949edde8c9a04ad7cbe402299cc94c0287a3b9300d1dab234b7671a9158c77ee7ad87222e78e3e0ba5310269769168fef1f6972

    • SSDEEP

      6144:NruCWBtlcS2C0Dn5rOqBSIlHnm95gG3cvIXl:hatlP2CaqqBSIZcgUcwXl

    Score
    3/10
    behavioral17

    • Target

      Illegal_Services-main/lib/backgrounds/background-3.jpg

    • Size

      161KB

    • MD5

      2652b971dca18ed640e1d1fe8bf14956

    • SHA1

      439acd7a00b988d47b7892bed107f9d06031e470

    • SHA256

      667a1d482ab233810f19944d822b58fffe886a2a13c03eb641e83b315ff6e753

    • SHA512

      99284df9cdaf2dd2d50f1c61456d3e17e9454182006b93be2ac9fc7eb39c93221a746e7795d28459099d9cbdda59c614d6e67d0d0059efb8036af376e9bf8c7b

    • SSDEEP

      3072:oW44YrT4UnSYEgEJ9WRMaIsA32liIzF2deJywNwfmFOmZTPTP3tRgJ3:oWbinhEgEJ9WGal028IAdQNGwPT1Rw3

    Score
    3/10
    behavioral18

    • Target

      Illegal_Services-main/lib/backgrounds/background-4.jpg

    • Size

      140KB

    • MD5

      e616b2f7cbf5dc9a0adfe12bf8a5b2b2

    • SHA1

      a626ba6fec6b4b0e34e170030ace9bdd577c65d0

    • SHA256

      9bb456d80ba82007cf58d32cfb9bcc77c4c93589a51cab3d1455889dd43764c3

    • SHA512

      723fd5d5db1817eed38517f141df56cc8bfe05c14334649a2744e5821653062ca2f3c1204bef38b9e81fa646fbab28aa4cb2747516edd2e299c43294d41e7a89

    • SSDEEP

      1536:Ho3Gp1mgyBK96wTIQkHpgw8hc7C/4YiuHnZZ/EoBpbeq1CQa:dpw34spSwoc7CwF67s0b51CQa

    Score
    3/10
    behavioral19

    • Target

      Illegal_Services-main/lib/backgrounds/background-5.jpg

    • Size

      638KB

    • MD5

      d6fd2db42635abbe42bed83162084d40

    • SHA1

      a166347d923845e6a4d7eda53f1153a937d9f224

    • SHA256

      bc24fff7a03b327daedd1c3e47c80567d66a023d25422b25aad035510cdd8346

    • SHA512

      81052ce356d18502e1ff5db94779527d7076c1108031b76ec889c8db4334e2305e470ffa830733c29fee3e221792024875f607bd1434c75264694b427fa8c0c4

    • SSDEEP

      12288:55EeHZCcEws5jRFFwGqEO/lbVhvax/kqe/KSlFWbUGKiHVcJ8w7d:/EekVnFFW/PJaxESSwH1cJ8wh

    Score
    3/10
    behavioral20

    • Target

      Illegal_Services-main/lib/backgrounds/background-6.jpg

    • Size

      223KB

    • MD5

      0afa105abc97db14c86bc10d79f0e061

    • SHA1

      64b477bc404fd8b38d5f078b925e52c899a3011c

    • SHA256

      bc780469b66f5164385c818e126a8f3569bad35ec0e0a5cff2a99eab59f20723

    • SHA512

      6aa419b4e12d0a021676a44821b6a7179803e132509a186536233ed33773de871ebea3381be818462c1fa039956450f24d8d3c6d5ec774ce7ffa857317758eca

    • SSDEEP

      6144:gGf02cjtL63Sx7jZboRU4cniz2561acHmPg:hojtmChjGK4iia81ai6g

    Score
    3/10
    behavioral21

    • Target

      Illegal_Services-main/lib/backgrounds/background-7.jpg

    • Size

      108KB

    • MD5

      679acabedd26ca11178267b6e0d70c0d

    • SHA1

      cc7e88bf930e2ba1859d9da8e42348a8220eb76b

    • SHA256

      80b3cd6d81d0c18520cfe3246b5ecdf21992bafc11a4abbdad19c4bdc1c3bde8

    • SHA512

      7e6d554bd10989b82ebfc659ef7f6abf7db471e02f80b66d227fae910f4f7e1346f362cc2f0d015947856b6f9ec1b7ce6cf574973a1580a141cb91b9bfd70244

    • SSDEEP

      1536:dE//6nku0u9X2clAKxT/COoKpd37o3oKI87JcZVVCzClm1lG0ia8OhNonUfdiYSZ:dE/ykfSbXT/nTH74JRi7CldVoailZ

    Score
    3/10
    behavioral22

    • Target

      Illegal_Services-main/lib/backgrounds/background-8.jpg

    • Size

      176KB

    • MD5

      97bc33b1bd4fe40114b956381117a18b

    • SHA1

      09bcabaf15a9b22e88b6526bce67036da7de8834

    • SHA256

      ff62f1d8dee67272138dd5317fc374aed081395b998e8bdc5c9c7b04ce35fef7

    • SHA512

      b765ea00f8a5e30cfbbc4ee5d7745eecd8e98c7ea98279e4d9fc6d4cd7ec72502c762e2cc6d72eb28b1d60b62fd15dedf60b2465727c80bc2c3eb16ae440d622

    • SSDEEP

      3072:Ix0rMvDfY/yu9n/87cy+XRpxg5ERauwFBUIluKBvrQjm6IN2NwkQW:Ixxv12/Kcy+BpxgRBUIgKajmRMSkn

    Score
    1/10
    behavioral23

    • Target

      Illegal_Services-main/lib/backgrounds/background-9.jpg

    • Size

      100KB

    • MD5

      5771849e1fee0f25134da6c29b20edea

    • SHA1

      d8139f4b7599700a210f7f5159682ce8659c1d75

    • SHA256

      aad3de074e3d368b4fed3bf9c700ed68b4a4770aa508a334d6fd919d1d6e178f

    • SHA512

      34ff7afc066c8b65e674f85c45c621579f46ebcddc2e8916af51443770de722505e984a74d011fd3f61d4b996bf788f84215c6c6d3f790347345ef60ca7f0d30

    • SSDEEP

      1536:0uRpG3fSnLMSnk0X1h97MtV0GGfshMCkWzc84A/ObGiqh9UK7cCtDFoVC5etU98L:0uJLBnk4ytV5DkWqOpzUkcCtpBG

    Score
    3/10
    behavioral24

    • Target

      Illegal_Services-main/lib/binread/x64/binread.exe

    • Size

      2KB

    • MD5

      261a2f27a394ce802911bc8abdaaa414

    • SHA1

      4c4bbc910e4ca477391b2e333f4f61cf23847537

    • SHA256

      ef6f4a7db62ae6df3276973c89e853c9d10a9dbd48814395319fd09ecdb8fd8c

    • SHA512

      79e8d928d58ff041c5a30b775088ad5d8ab663338cd5b95f64567c8ff871d6a5030d0e1d24d5e73f9cc2ada10469df8f8d46a59e86e0506606df06d3e6e818e9

    Score
    1/10
    behavioral25

    • Target

      Illegal_Services-main/lib/binread/x86/binread.exe

    • Size

      2KB

    • MD5

      9aed262f42b68f9571b3955d5a537044

    • SHA1

      4be8886da476e17f22ba557bbfd14a9842118b68

    • SHA256

      97531774c0d70bf8c3d75dbdf24127d9900b51b58b864ee13a25b46436aa5573

    • SHA512

      ae134e079e07112e195dbb6016a60af559fcf30425595253b741d51ccc0fc16e4d5972557dfeba23a2d4cf9cc21746402e12b75af9bc2625f641f6a187b9836c

    Score
    1/10
    behavioral26

    • Target

      Illegal_Services-main/lib/bookmarks_parser.exe

    • Size

      4.9MB

    • MD5

      0024fb2a8b21fd0b100b4569fb2db2de

    • SHA1

      e0e29770b67a8462849fb8e550a50ee802a9591e

    • SHA256

      a1be50e4f27588775579853e450b80495a8e54b441ac0d1bb289eecc595674b2

    • SHA512

      1dbe968ce41b783aa2f916a6a7fa1d34a1e82552cdff300d0ce449f1afdba28fd7bc81cb785f9ec5417edf6aaa428d4d2007208876fb4f130e3ede188865c7b7

    • SSDEEP

      98304:PWZpdAeYVH917pxX+T5zCTZT6FQ/C3QnVDZhWwA7r3vsQBaWlhTV5qc5k+QH:ejAeEPK9C6Q/OQVtQw2r3vpEcLIc

    Score
    7/10

    • Loads dropped DLL

    behavioral27

    • Target

      Illegal_Services-main/lib/cmdbkg.exe

    • Size

      24KB

    • MD5

      36050e30e659b685501bbcb1e91eaa80

    • SHA1

      c9bafdbdc725aea0342c201a00f829162c69ed64

    • SHA256

      c616f22db40d43f720cf95fc99cfb2676fa9eccb7990e28cac96fedfed721b01

    • SHA512

      a9f5751b9694337df9db3ce58843fb4b6cd2425115b2e8009bc372b8b154571ae3d13130c54b9a57c9c1a3585f7c4d0ba3f953fc2a727be0beb4283cff336a23

    • SSDEEP

      384:56XVcKT09UyflHybR02faEE0zw26o73IhLcLa6S31s4t4mq97uSKl2J30:0cKTmflSRVf/E0kfZcLi1Lu30

    Score
    1/10
    behavioral28

    • Target

      Illegal_Services-main/lib/cmdwiz.exe

    • Size

      64KB

    • MD5

      059203fd4737e90742a19626a06906df

    • SHA1

      3189fbf7b6b0952404bbca0c8b6205603b861771

    • SHA256

      0c8d17e077a7d547613c61fdf7328356430eacb83237dc3d440283ad56e79909

    • SHA512

      f1ec330ad0258b00bb027906f524e8824a0cb222d60c4f6d43207f36afb8bd76d2152505ed06f229f2e7508ac8f8a844d1277aaae70878cf2a561756fb2acaa7

    • SSDEEP

      768:w7MS3EBbxMFKwrNpCGRMvbVZw+7KtXsdqaYLNRHeujwh0TmU+OaVmrUxzcyPSrLj:vg8O5IyebVZw0UsdqaQJe0SmaGUxOrLj

    Score
    1/10
    behavioral29

    • Target

      Illegal_Services-main/lib/curl/x64/curl.exe

    • Size

      5.2MB

    • MD5

      104023cef829fce3e34bf1514daff629

    • SHA1

      b6e7b949109298ec7ff1aa64404a859b5b41ccae

    • SHA256

      15b1158d806de14013fdc3f0e81dca725481d2393249994a122c0a70721ae9f5

    • SHA512

      efebee49ffebf0dcb07c6e7d24477101a7c8a2a03b0bea4df9c1054943823026ffd46f54cc51fb8de062e3641f021d5cf0b23ed67d46a549ee23e5fa7b12be1e

    • SSDEEP

      98304:sZAOsqvbnypxMKKzxrirSL+7goHUs5YrZDv:BqvbnI2uIVo/5Yrxv

    Score
    1/10
    behavioral30

    • Target

      Illegal_Services-main/lib/speak/EN.lang

    • Size

      3KB

    • MD5

      1cf02f5ef32ed6e8860dae881620d6a4

    • SHA1

      913719a2a67b9311495718b60b46c47edfde40c1

    • SHA256

      7f9f8eb8347cd3f5bcc0b8d4df57ba783b42aacc079fdf53c0281249959cb95a

    • SHA512

      77a89df03c4b9dc4c898aef34e71451e4f6734fab32866c855b50a00dfb1b19487163962932ba8a076c1fd1f43ca9c8ae2a72e5ee1359af76624ec1635fc0ea5

    Score
    3/10
    behavioral31

    • Target

      Illegal_Services-main/lib/speak/FR.lang

    • Size

      3KB

    • MD5

      c8131e874fc1b448b0a7a7538cd0a4fe

    • SHA1

      d8f6d039712eea46a511e35006d40709b5975db5

    • SHA256

      26d70ae9cd291261739ac3d67db8be648815d10be82a7547efa5c37e03b5a98a

    • SHA512

      feca272186e58795844a7e391ed46228cee17a51d6ce1cf4f7b9f9d1358fa3475db9286476dfbd15ecbb0d9a8ade87936da6a66013211f339aa1433f87d2c2a4

    Score
    3/10
    behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

pyinstallerupx
Score
7/10

behavioral1

Score
3/10

behavioral2

Score
1/10

behavioral3

evasionupx
Score
8/10

behavioral4

Score
1/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

Score
1/10

behavioral8

Score
3/10

behavioral9

Score
1/10

behavioral10

Score
3/10

behavioral11

Score
3/10

behavioral12

Score
3/10

behavioral13

Score
3/10

behavioral14

Score
3/10

behavioral15

Score
3/10

behavioral16

Score
3/10

behavioral17

Score
3/10

behavioral18

Score
3/10

behavioral19

Score
3/10

behavioral20

Score
3/10

behavioral21

Score
3/10

behavioral22

Score
3/10

behavioral23

Score
1/10

behavioral24

Score
3/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
7/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
3/10

behavioral32

Score
3/10