805041a1d7e2aeddbfc55cd3567219685172c5f67a3082b0f70f7c7b9d93d14b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

crab_rave_easier.7z
Size

2.6MB
Sample

231030-zcgvksha73
MD5

971a83e80090c6b06f07d19a5af6a3d7
SHA1

8fc15fb8935d95eda1879fb536d26ba9ec95a3f3
SHA256

805041a1d7e2aeddbfc55cd3567219685172c5f67a3082b0f70f7c7b9d93d14b
SHA512

cd1b0f5365070522c3baf9535bae2d8d0c199bab24612ae9bea4dcc841d4067bde4e7a6f9d1c10dcac0ba5125fa3cbf2021ebbf1a125d01073a5bf1f745a655b
SSDEEP

49152:ji0ACEUDOnvVhQQaT4BsR//G+YK1rFOSdo9+Sa39zaVBYt7bt5KgvHjEU+7dCb:GQGb7BaXbZ/u+Sq90M5bP7+7Mb

Score

7^/10

Malware Config

Targets

- Target
  
  crab_rave_easier/company_financial_report_SAFE_NO_VIRUSES.csv.lnk
- Size
  
  2KB
- MD5
  
  2a4cd71893deab92e8a12e10e521c4d7
- SHA1
  
  4b9571cf86241f9db6318c989ac59321cb58f139
- SHA256
  
  c2eb8ad6a32b8985dd3fad2cd1e54121b2257cd49ff05bdf083d2559a700d3ef
- SHA512
  
  29688d22c560277a5f797ce47c0310d5d0a283491d200c3cff7901c5ff5e0cc49bb5d638046597ae617fab1a3914cc45b310be65ebf4a94d010694a01aab76fa
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2
- Target
  
  crab_rave_easier/ntcheckos.dll
- Size
  
  12.6MB
- MD5
  
  43a0ceaa84c5917a7398a62eae766adb
- SHA1
  
  432b327fa34e121c552115899ed0c0ca63377fa8
- SHA256
  
  5fe66f9bd19e3efce939998d388be51efc107eb7865ad4c72c470b30e010f988
- SHA512
  
  fec394c8e4f06282c964f6f2ead25eef0ab1722a577aeb6e09eac1b69416ef6ed1e0103865b1954528d5e6357a7f85c2b149186365c07691b7c0485e3e939cca
- SSDEEP
  
  98304:fcDTwXlUKj57xHAe/JyS1DOlRomRQvPMaQQBtVD/EmYESD8G+JKBdK9/TToGFXob:fblUWNOlRomRQvPMa2+JB2
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4