gigabud | e78bb0e4ff1131855c0c1bb5e94c961e4b9b10a15e6f4598c9d5322813456269 | Triage

Resubmissions

23/07/2024, 15:33

240723-szhxtszena 10

13/10/2023, 22:12

231013-14qggaee57 10

Sharing

General

Target

Chinhphu0805182515.apk
Size

8.6MB
Sample

231013-14qggaee57
MD5

07914e333b98fa6a7f7f2e9f5526d0cd
SHA1

010f6efa8e33879b4a9337026cdea07f65e500b6
SHA256

e78bb0e4ff1131855c0c1bb5e94c961e4b9b10a15e6f4598c9d5322813456269
SHA512

596a45d7250923746afa593d2dba5b7c349c1b9d4b48a2051dd9069bc8c18b1d10b972a8d8ee15a5685ef83aabe1ef2219de1c4d06ba407ed17aab33e222377d
SSDEEP

196608:TY6gLpitqFnKGjMqC5sChStvs1FMvxH8d/45:MlgfqC5FAs1FaH8dQ5

Score

10^/10

gigabud android infostealer linux rat trojan

Malware Config

Targets

- Target
  
  Chinhphu0805182515.apk
- Size
  
  8.6MB
- MD5
  
  07914e333b98fa6a7f7f2e9f5526d0cd
- SHA1
  
  010f6efa8e33879b4a9337026cdea07f65e500b6
- SHA256
  
  e78bb0e4ff1131855c0c1bb5e94c961e4b9b10a15e6f4598c9d5322813456269
- SHA512
  
  596a45d7250923746afa593d2dba5b7c349c1b9d4b48a2051dd9069bc8c18b1d10b972a8d8ee15a5685ef83aabe1ef2219de1c4d06ba407ed17aab33e222377d
- SSDEEP
  
  196608:TY6gLpitqFnKGjMqC5sChStvs1FMvxH8d/45:MlgfqC5FAs1FaH8dQ5
Score

10^/10

gigabud infostealer rat trojan
- Gigabud
  Gigabud is an Android RAT first seen in July 2022.
  rat trojan infostealer gigabud
behavioral1
- Target
  
  index.html
- Size
  
  2KB
- MD5
  
  81ee641cd889b806ca2210d6ffa0393e
- SHA1
  
  92410cc86acf7ef6d7fb9c079db1503e7dc140fc
- SHA256
  
  b188afd15dadf6e2f0cdcf0548c7a2a4921d5efe1a0ee7dc0b1a86631e7552a3
- SHA512
  
  e752754cefbdb7826e519132df6600fbba39535c7c7633f56f8c374896a0d48e61c752a42b281592f648cd237f516bb74b08963cbd973488a3d53f65e0ac7906
Score

1^/10
behavioral2 behavioral3
- Target
  
  l4ed5947e_a32.so
- Size
  
  1.9MB
- MD5
  
  49bd518f107d476e9795a34557328fab
- SHA1
  
  e9ef161211ad97bb21ad4f98bb47462699ffb05f
- SHA256
  
  da7fe37dc966ea01a7d3831f9b26cdb46fccbe827904ef030c79caea4dc7e2a4
- SHA512
  
  773e23d54befb6f73ac8120c12be4473ca4d90e80c69a58a5a0dcaa9feb331ccbca62483f7a53f2f100b8938fe5545af9234fc34f17517fcf0e2db97e7181463
- SSDEEP
  
  24576:GqXBSihNQeJFftUkhIcFQf727zVHck0YnqXpmkqq8jlSEZHr7x03Q:LPrb6O/ogjlVhr7xB
Score

1^/10
behavioral4
- Target
  
  l4ed5947e_a64.so
- Size
  
  2.9MB
- MD5
  
  30c5044d158b144e68f669e3c3befc4c
- SHA1
  
  9b6f2195006cae70a61ddb11d340609de2889a27
- SHA256
  
  8972676b5eadd2cc7da446a068e1fbe759b4da381423197b195b33b4b65efa88
- SHA512
  
  01ce5f8d7ce78c6be94a2179b57502d851e294b03ed91d49a4af61286f13188d9aca8a84c7af6492626fe456f622c1313f437f501b5ff4bbde4a48e058415658
- SSDEEP
  
  49152:3K3wR2r2wjFqtBOPBUOlTFHbwvOLVg53Zq:6AAr2WsiXlTBkOLyZq
Score

1^/10
behavioral5 behavioral6 behavioral7 behavioral8
- Target
  
  l4ed5947e_x64.so
- Size
  
  1.7MB
- MD5
  
  4e34069900e718203e3768bd3494b1b5
- SHA1
  
  6da1c7f612ad983470b15dc7169ed5a1e9b34007
- SHA256
  
  79ee8d674fe4aae0a30d693968fbf0e8ce75da67b86480c67da6739578e0c4e9
- SHA512
  
  922d13db7df2c7cfd6202709eb62a7327ffa023de50c92295aba1af18ec5b78fa954e45ca8ebba21c27b30b27ab6000cc03986f2dd0242d31afc242262999759
- SSDEEP
  
  24576:Lw1TY1duAA2RNVbVidqzjgHebykB5BR+oy:LETY2d2RNVbk+FbykB5i
Score

1^/10
behavioral9
- Target
  
  l4ed5947e_x86.so
- Size
  
  1.7MB
- MD5
  
  2641b6e41b80bcb4b1b086b161f4e200
- SHA1
  
  f160fec29dc4e7f91d2134290f534c2f1d664e3a
- SHA256
  
  56eadaebdb57c44524ea25155bda707ef9a490d9c1fbfea46e4ee611e31a85d8
- SHA512
  
  73ce93f4cae711dcc6411235baf8851a1f0a88871b66f9b2c377997f9e2ea63a7bf15e811e9c86c2b67765aee3f6e29762340d7def8159d121c06500de7c9231
- SSDEEP
  
  24576:VaWjPIqpZNo0vnA5RZD7aov/8Y+uRwTJdt2wdW:Y09Zi0v4R5aA/8PuqTwYW
Score

1^/10
behavioral10
- Target
  
  mask1.html
- Size
  
  2KB
- MD5
  
  9aa3391a7a415faef97a33205cf13c23
- SHA1
  
  681e275b5950807307ecc68996037b4bd0562b0a
- SHA256
  
  26536e90f8d09b85e177b9bf0d112b569fc59d732ba61c9db22a2724024ab55a
- SHA512
  
  af6ec21da60ea400a06051c55662e82a64c7a45e14fc382b7ece8fa2b236f834ccecdba5f3c7a628e378f1a6d4a89674497a7befa0b8bc8b0c4e85e4bece3e63
Score

1^/10
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

gigabudinfostealerrattrojan

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12