af0510fea7562a1dc80e555e1bb8fdce8dd63df903bb7d0833c2c473fb41bbf6

Sharing

Copy URL

Twitter E-mail

General

Target

owobot_.rar
Size

5.4MB
Sample

231011-xr2gesff8z
MD5

daad33c95071867498cf743ef2b9e234
SHA1

e1809eb5382e572412e6f190199816b1a3908e6d
SHA256

af0510fea7562a1dc80e555e1bb8fdce8dd63df903bb7d0833c2c473fb41bbf6
SHA512

64ab676401239e79c2afb9e9e6f48035beffa918e6f1b6f1168a307f3080db3f1e779bbddc66752a8589e842c3332a7c371d37a382a6bb4412dd8e1ba08762ae
SSDEEP

98304:fpWF6CEhh/dMdAqfMCQqSi86GmVuCB6DMTxOR5uEd5hJmZiSiW6dpYlywgao2aTc:8FJYhGLMCjDFuCYQOR5H23eVj2j

Score

4^/10

linux macos

Malware Config

Targets

- Target
  
  owo bot/başlat.bat
- Size
  
  49B
- MD5
  
  8f22cdc4e55c73f178cd3cd94bbd4ddd
- SHA1
  
  6804a71b34140e33c657bf380c75dec1e068a248
- SHA256
  
  416f30eac4bcc292108646df34b30e956d9f67f7d8a783e680b8139521f5464d
- SHA512
  
  ce045b8d4015f97c29fae6f94ca7ed4e216b02b8e9ba86c863e3e54b674bce85f1a60d5ec6e359cf955542da712290f1d71329cb9eb00752773d795a65ebe060
Score

1^/10
behavioral1 behavioral2
- Target
  
  owo bot/bot.js
- Size
  
  47KB
- MD5
  
  104378c79c2c03f39c75ff652c2163b2
- SHA1
  
  047e9c243e8e882d8e8ae96d4c19928ced108e4f
- SHA256
  
  94cd5fc8a67f3c465bf8d04f81ec7bf8f005540fa5e3ffd78655edb9c5e84f3c
- SHA512
  
  cfbca597131858f935b9470d7191017f30daf950505beb4a0c0b57074fd210cee5b3bfbd406c4900cbbc8c4ea0947b5cca5a24c0e01451ed1ec010e9b7a7383d
- SSDEEP
  
  384:mAZuDOg+JpM4y5SaQ/P2UpWa5+3e20c8k+RWMlZkH6gjRx8LI8IXVXtXIXaX+X3+:VVhp20cEWMlJgtx8Lf4bgtIlwko6
Score

1^/10
behavioral3 behavioral4
- Target
  
  owo bot/info.rtf
- Size
  
  1KB
- MD5
  
  b975ac17d8cda6473cc36e52aeb3a26e
- SHA1
  
  d22376023f27fd8ee773e015a25ad81f3f04fcda
- SHA256
  
  845fa5d51bf9a2804a1ef2958913c92746892af019ad27ab9e282b43cbf4d582
- SHA512
  
  2235e9d1912892c0199d507e45e86303ac71c4a4c0ee367e905cbc019c5bae0034bfa750c9b98cad3b06f27ae7150ef017c8de39fd2762eab04d600fd870c984
Score

4^/10
behavioral5 behavioral6
- Target
  
  owo bot/licence.rtf
- Size
  
  1KB
- MD5
  
  51a32e00fb1b623b09a9492681739426
- SHA1
  
  ae23b1e185c548fa25ac68ad9851ae8be2f33ee3
- SHA256
  
  46e7f1a40083c22e227181f87ddf7ddf08172ec495f825422b3a3b6937c4ec44
- SHA512
  
  96cbd0436dde617646686dd141a4c7e9336cc1ec25f11a82adfaf4302b86b4e965b0474e1baa975949fbb89d711d1ad37dabb0f70b194939bce5c8635c5958f6
Score

4^/10
behavioral7 behavioral8
- Target
  
  owo bot/node_modules/@discordjs/uws/README.md
- Size
  
  2KB
- MD5
  
  394f58ce091a1656458f572c5b7e2778
- SHA1
  
  508336370204f62679863b2711038b710d0122ca
- SHA256
  
  aca363cd5a895960b2df02c5ef026573df778cf70655d89522f9b5b1234dc6ba
- SHA512
  
  33f691e07417b08ce87bff915418417a9c57488d64c32de67c2572b04422dcdf71e485feb0ee313f38a377fa13adf376948739cdb95162a1e70da10d4afd1b2f
Score

1^/10
behavioral10 behavioral9
- Target
  
  owo bot/node_modules/@discordjs/uws/uws.js
- Size
  
  14KB
- MD5
  
  6c0183f2cc02830f488a7264d5ebcf4c
- SHA1
  
  46e23b781dbcd7abba6956231f5c7684f9a2ec08
- SHA256
  
  5e287e79c774ebef4225f49803561dd0d956bf0d6331fec297e09eec05cdb1ab
- SHA512
  
  39017963b1dcac4a1f078fc4dd667b7977a247c05ff3672782ed8eda7a99e9f9f29749a8ce54563ed96afcd0b622434814c840f440b78d70f9aff3b729c09250
- SSDEEP
  
  192:SuzVRbgDMFCaBAa37YLYvz6FYnZI3gSrA0uGi8Xr8lsHrp9b+Bt83jzG:ZTbgg3aP24DzG
Score

1^/10
behavioral11 behavioral12
- Target
  
  owo bot/node_modules/@discordjs/uws/uws_darwin_48.node
- Size
  
  380KB
- MD5
  
  465de36e9d89e7d3267d2a42e84b4f84
- SHA1
  
  5db7797cfe765d4ee016f5699b6cfaddac10713a
- SHA256
  
  814c480791c5d5637b0df47f584a76258c83df629078344ad8660626dc0e331c
- SHA512
  
  14e4492c4a5bcfefe0a4d73545df21ca4569bdaa9d3beb7eda7823212f3bc84f05a826d46e6accdbcba8895c7f0e73f4c3955df112fa9efd90a644798b8ad5b4
- SSDEEP
  
  6144:Iu3RD31eNxS3Ckq93aqNa7B4goAvpAAm/WIDtZckLLVjtr84L33/MMoYchG/54b+:Iu3RD31eNxS3Ckq90N4AmN
Score

1^/10
behavioral13
- Target
  
  owo bot/node_modules/@discordjs/uws/uws_darwin_51.node
- Size
  
  380KB
- MD5
  
  1f8cb7ccee85b3271280f99724563f59
- SHA1
  
  5d3b89afccb47763c94338720fabeaa2f9dca351
- SHA256
  
  df840ec6772f6871ccd7975c2ea76535908f729f7bfa04cfcafc8bd1bf667234
- SHA512
  
  165c75b39bf34c004eaa7ac0d65d9927a8e096895500b65859351e9f38a9f837f72c97b72daee856fb36c8aaecdec51eff802d6c74ec468840738d536c138d4e
- SSDEEP
  
  6144:8NXtSVBgh9MZpc+/IaIjKEg0RnoAsbmAmQfDtrpckLLVjtr84L33/MMoYchG/54H:8NXtSVBgh9MZpc+/IF0KhAm
Score

1^/10
behavioral14
- Target
  
  owo bot/node_modules/@discordjs/uws/uws_darwin_57.node
- Size
  
  380KB
- MD5
  
  81b234259d91269b041b5c5d4100dcfb
- SHA1
  
  f96ca648d42ee1e4e87e63bfcb740c79dbfaebb2
- SHA256
  
  5682dbf8a4a95f8cc8166192af4fd96f73c4e35b37d86f85424f695aeb355881
- SHA512
  
  37901c109ed4a34c5a8a854b3e8d8072f42af9e15c82995d5fa4bf0b40d67aac179d622502a15791bbec5ad10f95abc5e1cbd1b60373d272eb0dc614550c16c0
- SSDEEP
  
  6144:rB30S1QThY/546gIDCCNCJgO+e9AshZGAmL//jNL4ckLLVjtr84L33/MMoYchG/6:rB30S1QThY/546gI5UmeuAm
Score

1^/10
behavioral15
- Target
  
  owo bot/node_modules/@discordjs/uws/uws_darwin_59.node
- Size
  
  380KB
- MD5
  
  9cd87fa31a5b0769196c85d02cdf2393
- SHA1
  
  d50e4bcec0bbf5ef2a2d8580b1f428807a2a312f
- SHA256
  
  5b939fbb9020d61bec115d93d1627a2015daa5449a5d118f0b75b81f3f304159
- SHA512
  
  3516704d7bfbcc16182f7c03982cc89ee594fae71f28d693f799501e5678616a1fa48c59bbfcad35b1cf4fd51cd13eb947bf86ad1d3db2a14e587d1bef5ee1ce
- SSDEEP
  
  6144:J4HNylxQGh9cJ5Hy8l1fGcgvWAssdWAmICvzd72ckLLVjtr84L33/MMoYchG/54H:J4HNylxdh9cJ5Hy6dAm
Score

1^/10
behavioral16
- Target
  
  owo bot/node_modules/@discordjs/uws/uws_darwin_64.node
- Size
  
  384KB
- MD5
  
  ad23315a054e95cfab9cd46b27590d59
- SHA1
  
  8506ec38f6233e76030edb1e685f02b2f34cd951
- SHA256
  
  6562a6d9d3b90c3f05ef6b7708b6ec9bfa7e0e2d94b769f3c9ad06264282645d
- SHA512
  
  64d5f4bb69b4858e9759f4480b945f88acc912cd0a4faadf170eaae37308315d7c4544506b8ad1091212fd710657d7c2a79f80d6537e9ea23e6419459df307ca
- SSDEEP
  
  6144:RJ3dchUf4pnR4gU0B1UvlJ9u9FAsPAmLa8v5w1kLLVjtr84L33/MMoYchG/54b4M:RJ3dchUf4pnR4gU0pAmk
Score

1^/10
behavioral17
- Target
  
  owo bot/node_modules/@discordjs/uws/uws_linux_48.node
- Size
  
  1.5MB
- MD5
  
  e272cb61e63750c5afb6cc2c5398e90a
- SHA1
  
  f8a47d2f086e569d248b2f29a5bd9bbbcb2e28fb
- SHA256
  
  dfd6d172139f370045d84cbaddca64386eb417d86ea5460a3f236285af8ae21d
- SHA512
  
  925b788933713ba8280738d0e4c6084f51ed2df21ec3385290c65d65b150e6cc3916cfa593b92792a7e59bcbe3a65a474474973cc57462b192709d6eb5511297
- SSDEEP
  
  24576:Fk/8c/X2Vv8ZUGBkbYmUTTCOFfcef08TH:hVv8Z3ibYmUTT/Ffcef0e
Score

1^/10
behavioral18
- Target
  
  owo bot/node_modules/@discordjs/uws/uws_linux_51.node
- Size
  
  1.5MB
- MD5
  
  396386591489428672873a9c2090d893
- SHA1
  
  6a12c48dcef3343d75911bc2a7ef150fbd882ece
- SHA256
  
  46e5c0f5212c94b0d94d57b069fc75ad8c47b0098d7f3dbc8a83f60d6be2d7de
- SHA512
  
  bb79bfc2bbaea721b7eb1dd646f01d7ed206b0ce30142f57c610e25f068b69ddd6398d6e3ff56ae940d1d0fb6f12e6d62faf06513659296627209aa49d3f481f
- SSDEEP
  
  12288:4eFP5zRnfFv+AlcXHQZ0nk/8B6/xczDoL4C68AfZwUyK2XRQzmO6meWoKPIgT5D9:ck/828ZwUy5QzJPloKPIgtD0Bv5cSaO
Score

1^/10
behavioral19
- Target
  
  owo bot/node_modules/@discordjs/uws/uws_linux_57.node
- Size
  
  1.5MB
- MD5
  
  8372c1986a419af2cd1244b1d389d61d
- SHA1
  
  8dfdb12d2d800f536aa1056939bff1e3b995b33d
- SHA256
  
  e03a2bd5ec26cc392b38f0aa9fe90eea7f49d55c7bbb686dbfe4b483ab566efe
- SHA512
  
  5c28f1d6cd3f0cad9fb79f567a46783efa64e2cd98288295ba5cde17433e66b16b13594a39b1bed4c344b3ee6015537ab1676547b9e343f207b37fad721696df
- SSDEEP
  
  12288:R6FPfzRnfFv+AlcXHQZ0nk/8B6/xczDoL4C68AfZRUyK2XRQzmO6meWoKPIgT5DI:jk/828ZRUy5QzJPloKPIgtD0Bv5cS9D
Score

1^/10
behavioral20
- Target
  
  owo bot/node_modules/@discordjs/uws/uws_linux_59.node
- Size
  
  1.5MB
- MD5
  
  daf8c8e96da60021ceec59870cbe2dda
- SHA1
  
  abe6fee7066ebfc65b226cd0807e92bfea4c1fc7
- SHA256
  
  463d5b2f6ba806fa745ace485b865ec98f72f66877f5d648852da336600e93d9
- SHA512
  
  e2daa5f208434a267ba78f15527ab43eb5c503615a79ebc021189287f2ab6a69963c40dd2c7c4484b8e7806a0e8179bdf1cf408a63e73196c213aa268d253476
- SSDEEP
  
  12288:ybGluXwmzRnfFv+AlcXHQZ0nk/8B6/xczDoL4W68LJioF2XUEGsLM7nNWiVMRGjV:5k/86Hio1EGCgAiVMGja3KTn
Score

1^/10
behavioral21
- Target
  
  owo bot/node_modules/@discordjs/uws/uws_linux_64.node
- Size
  
  1.5MB
- MD5
  
  f46249c7de117559fea92e0234dbfe01
- SHA1
  
  72856e9fee2b407e8124ef90ffaa7d177300d510
- SHA256
  
  f28ab8046a10be7de79e4ca904ead75a846db4d4ce59bc8a01ab3356bc6c760e
- SHA512
  
  915e353ef115b22d8e1ea3d33db96ff5351a4b80a7800fce27b7a848e4caab7ef98c7dfef36326a6e624f03ff6575678e3573cf84047e75d97370ec698c9f65f
- SSDEEP
  
  12288:FSm22ozRnfFv+AlcXHQZ0nk/8B6/xczDoL499V4S8l2eue4b2XzKt1mTGcDi/1nd:b5k/8K2eu5oKtET92/1nS+/AhFtVw
Score

1^/10
behavioral22
- Target
  
  owo bot/node_modules/@discordjs/uws/uws_win32_48.node
- Size
  
  598KB
- MD5
  
  fcefed6566838469814322f70d1ff89d
- SHA1
  
  e7c762b846f324a8492f035a731448a630f332fb
- SHA256
  
  f0605ce4e72f56af432639d742d6edb84f0107eaf334bf910362f69adf2a36f0
- SHA512
  
  da8143eb9c4523c7f55387a8b75f5d8fefea0c136094d67f246f7862f1141c94bd239b7c291eb1314517a15f621bfe1b854ccd179e8e4c328c21a5b6b77e59c4
- SSDEEP
  
  12288:GY7yQ/cTDjTInJ40M0Q0krspm8tObB+ZVyl0oLt5:GYGz0sr8tg+ZVyl0i
Score

1^/10
behavioral23 behavioral24
- Target
  
  owo bot/node_modules/@discordjs/uws/uws_win32_51.node
- Size
  
  599KB
- MD5
  
  335a318c6a857f2b43d7085726905911
- SHA1
  
  4f32da9127f7adedc92bad2bc074bbfd903d2241
- SHA256
  
  8834ad2db9cae783316df869b38dee133db5d08693a380a7be20856fecb85a5c
- SHA512
  
  49c61bd724d06b3d47634c4e1891d9e9c8cbb131696d2607ca069dc72c9b200605359c768db85ad0a29f1ee366c900ac7f67934f9ff4624adc4ee3b513dd3b83
- SSDEEP
  
  12288:DMyyMBIQ5TnYUXOOL2WjfZbZHcRI/Hlj2GHSdoNS:DMPk2UflORIl2GHSdr
Score

1^/10
behavioral25 behavioral26
- Target
  
  owo bot/node_modules/@discordjs/uws/uws_win32_57.node
- Size
  
  599KB
- MD5
  
  3a25833cda13c8afaec666fc7c59806e
- SHA1
  
  c29e3ac214811fb197bfbb1e98b596a5a9db5c21
- SHA256
  
  3d18e402c7e88e713eb35a9685671a6ffbea11dd2c3f492232966feb3f121029
- SHA512
  
  a2b682e0fe0eb711a8eac944bf8b37700799b087099a7f7f927c5fc586a33e34b63321067e316366068137db8fe8cec61ab9d15501579ddae1407ae333d78bf1
- SSDEEP
  
  12288:LMsNfBIQ5TnYUXOOL2WjfZbZHcRI/Hlj2GHqdoW8:LMCL2UflORIl2GHqdI
Score

1^/10
behavioral27 behavioral28
- Target
  
  owo bot/node_modules/@discordjs/uws/uws_win32_59.node
- Size
  
  599KB
- MD5
  
  829d7d208b336a9c625dca9f9a7335f2
- SHA1
  
  a025f89401768cbcbff26c021a34e8f828783161
- SHA256
  
  05ea640b796f6b266f5a4eaa5a5f87434a48e40db952b0b5e73ca019628d294e
- SHA512
  
  02a95bb07ba087f709074c0970da539ad15cc50dfcf3bd25f54c4e72ec2d5f0927f6d1bd21b8446b7a14f0cec7c529238ae6399af4e811595097d6f90e451071
- SSDEEP
  
  12288:jqN5UJdBf75U34nLcOIr+eiAd0cV44qpphOcxFohkLT:jqz66+BehV4xphO+Fhf
Score

1^/10
behavioral29 behavioral30
- Target
  
  owo bot/node_modules/@discordjs/uws/uws_win32_64.node
- Size
  
  599KB
- MD5
  
  d48b57bb508aa6f81929fb7196027c9e
- SHA1
  
  59fcead29ed227a19282d99753593edcd0011a50
- SHA256
  
  78b313134e1250d294d51e1339e5fdc5ec51bb9f64834d53e6a393448133da14
- SHA512
  
  f58bf35635575b8e1ef5de7481644ba81c3949566e04e29039e8d4326669bd4f2401b6ae4876f888bc105b883f9421f5269230610a52d756f755ce0b4eaed179
- SSDEEP
  
  12288:/L2f8jL0e4cGxI7cscQ6AoPk6D4MOdk4pVTL6kLyoumO:/LWwOQdkTD4na4pVT9yM
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32