snakebot | e687b9d26149f7320a82e2dde3b044945f1ad5d12968bdc5c4b976602ef9d175 | Triage

Sharing

General

Target

discord-reg.zip
Size

11.7MB
Sample

231012-brc8yahf39
MD5

0f8e63e0c8d88479061c9d384d7bb46a
SHA1

00d990b75bc412609d5e5a3a56bc27db302ae87d
SHA256

e687b9d26149f7320a82e2dde3b044945f1ad5d12968bdc5c4b976602ef9d175
SHA512

9b6ee06f3d49292c6a89a5d8da4e63c5e2bdced99aa69ad6c6adac30b7ec769496bd6c8c4011dda7afb3f0e26351e430f734904510b383027a550b0fc29b1b71
SSDEEP

196608:exqUY2IMgs4jdDkkYkWKmkeWkFOFK16RZMjFIFBsbrbcH6ouaf/dPX1lbwLmvP:eJjIhDk3kPveWOGKYvB4rIuaHdPXF

Score

10^/10

snakebot linux snakebot

Malware Config

Targets

- Target
  
  discord-reg/bypass/browser/index.js
- Size
  
  1013B
- MD5
  
  2cadbf600ffd18e930076f09a09b91f2
- SHA1
  
  092b62fd948ae13f9dc61d7bbe41b120c37b4097
- SHA256
  
  c063afe1af28f7389585fc8d7bad80cd9cf553d864ee7add452b5b403f60986f
- SHA512
  
  93a2b0080a6bfbbf04a9641b6ba1f81b46e9cde6f1ce56f9c43523472a1ef2f636b56d8b602ae6d6ad79364bab102e0534ceee20ae5a0c15e0439e6bf4ffbb3e
Score

1^/10
behavioral1 behavioral2
- Target
  
  discord-reg/bypass/browser/node_modules/.bin/mime
- Size
  
  290B
- MD5
  
  e4d81a9361ab73a8625569d919a4a2d6
- SHA1
  
  6a8e47e2efb492c4cf4d73a68c9d4080c3aae433
- SHA256
  
  35c181f94e140d910d2bf4c5c4a2cb084cf76b19a2e6aff6b4b9e93dbe6f3c32
- SHA512
  
  a18832e0d1cf5af0379c523ee1714bf24d78595654ec08bd1a7ec1ba813df0cc6b6b87168c5a9e77e2d42decf59e68d1a2de5fa5143462f46660effd86d8da6f
Score

3^/10
behavioral3 behavioral4 behavioral5 behavioral6
- Target
  
  discord-reg/bypass/browser/node_modules/.bin/mime.cmd
- Size
  
  316B
- MD5
  
  2872347ac99221152281bfd56705d437
- SHA1
  
  83fa66cd05f64de1ef7f3010344a0f7babe54819
- SHA256
  
  cd5ca2f059e780c0a4b1aa9cdd6edc7dc10413d30bf51ad537adbd428e5e7a16
- SHA512
  
  3c0b9e12bc1ff8f2bbaa5301d8db78a5c3636dd93f5755728e5b255c4250c0ea9e3c53a545011087b9c2536b1c1676ff01f7eff3015e6e99f2e12c9f15386fe5
Score

1^/10
behavioral7 behavioral8
- Target
  
  discord-reg/bypass/browser/node_modules/.bin/mime.ps1
- Size
  
  769B
- MD5
  
  bef04abf08e89532a476c3e474b5f509
- SHA1
  
  bb81073d8e07c483ee29121358871535973336e7
- SHA256
  
  a43d8b7d57dbbb21f2f98c331970d011177fa1c6be327aa0dbb84c1ad01e9201
- SHA512
  
  e20f86c40ce523477da136cb4aa3f29683dee567a31ebfad666666192417f49568e848cb8844e8dcd32d5501fb7176d47aca54c195324e6d41e73093699788b1
Score

1^/10
behavioral10 behavioral11 behavioral12 behavioral9
- Target
  
  discord-reg/bypass/browser/node_modules/.bin/node-gyp-build
- Size
  
  310B
- MD5
  
  12cbf3babb786218def63efb615f8b6f
- SHA1
  
  acf59353111d1c24e1622d5fc86cb449cb182c61
- SHA256
  
  2c34c104880b8ac95bea71c954c848697835b3aeeacbd6cb01369b237e2e295a
- SHA512
  
  98f0acc66694d2b1732364f69f777b2df58c3cd477029c50b4cc62965dc0f7c518e149ecc9670283636aa92306559b1c7998fd2a1353d026107054aa7639c585
Score

3^/10
behavioral13 behavioral14 behavioral15 behavioral16
- Target
  
  discord-reg/bypass/browser/node_modules/.bin/node-gyp-build-optional
- Size
  
  320B
- MD5
  
  c13608407ba10ce1acffd1a92455ae71
- SHA1
  
  1a9e2cc78d977b02068b7fc93dd95c183a13a5f6
- SHA256
  
  7a2579617eebed9e4a7d860a2c0e149d0236117810d1c53a0a7041737bed5ec1
- SHA512
  
  3ad46ce9cb92eb1eb5435c2fdc4ec3b1d199e1aa69a4bc2f8fbdace18322548f40433a044c9849dcd267bcadc98bbfc5c1f2b9553c11155376c2786691450343
Score

3^/10
behavioral17 behavioral18 behavioral19 behavioral20
- Target
  
  discord-reg/bypass/browser/node_modules/.bin/node-gyp-build-optional.cmd
- Size
  
  331B
- MD5
  
  c384d0b8cf1f9da7e1fc02b68925d90a
- SHA1
  
  7f5b4f85e33f27b781c0daade2d06ac5cbf864ec
- SHA256
  
  da44b2c1cd136f824fe957b8dde4642154d4710c7c7bb91582b20236e71bd729
- SHA512
  
  60ef6b7e236f06d94a093e6c2bf1faa8b900e075a368013c447c43de11517eaf576cdae63a43051c73fbce4eea94570e35939a8782140ba26ea3aaa1832fa714
Score

1^/10
behavioral21 behavioral22
- Target
  
  discord-reg/bypass/browser/node_modules/.bin/node-gyp-build-optional.ps1
- Size
  
  829B
- MD5
  
  82a94d3fa50e219462a6fcdedc1690dc
- SHA1
  
  f94b03f65477ba7ed8fea534f6049c976436f642
- SHA256
  
  77f7395b308fcc84e1f90d6cd5208f6429b9c5275a3b9f21dc6e6b4b2ff99972
- SHA512
  
  4c2f9355954382f621891e1729294e88af1fd3cf269de68ae93d9957e16263784895090742a18ac207326bfe1cf13716aeb784e8f74b6d2510e8488603127d6f
Score

1^/10
behavioral23 behavioral24 behavioral25 behavioral26
- Target
  
  discord-reg/bypass/browser/node_modules/.bin/node-gyp-build-test
- Size
  
  324B
- MD5
  
  f87430448b9c6fa9d758d12638d01488
- SHA1
  
  2cd0d4c025a0caaf193b4a15eaf3f6ff0b4c2fa0
- SHA256
  
  5afc301d22d0441c71ce3277c844fc066029e715698f09e769cff83b562695c9
- SHA512
  
  1e402544e068dbd86c058a0a48decce1ec58bd5079be2469d918d8b9601444c158b8d7bb05b87126f7495713583b2944dd84bad24f21353c65f3f32c09075206
Score

3^/10
behavioral27 behavioral28 behavioral29 behavioral30
- Target
  
  discord-reg/bypass/browser/node_modules/.bin/node-gyp-build-test.cmd
- Size
  
  333B
- MD5
  
  147cc2afb01e3ae297cb4db223b42413
- SHA1
  
  c1dc9b82baa9b4626491da5ba7019eb3b9aedf3f
- SHA256
  
  487054421665f094672bed7147e8c489d8fe2d7930c77cdd3fb5b65db6c530e8
- SHA512
  
  dfcca9ecf36d7c9b00d06a0883c413f558d39ad7170c785354769664e0d15ec6c9d380c3963cd5820c07629885a1fd94926beb119d757338665b5c8f7571a289
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

static1

snakebotsnakebot

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32