2e9189fbbd26c3227d39a14662a95979f9a737da62270d2f2b7ed690c9a040c1 | Triage

Resubmissions

19/11/2023, 17:55

231119-whj1cabg8v 3

19/11/2023, 17:48

231119-wdn4haba35 7

Sharing

General

Target

Pump-Mac-Win-1.0.3.zip
Size

35.6MB
Sample

231119-wdn4haba35
MD5

745a3d402724dea851fdb03d0531af4a
SHA1

c826ab67f2e9fba245b64f13123d9d5bc63cec72
SHA256

2e9189fbbd26c3227d39a14662a95979f9a737da62270d2f2b7ed690c9a040c1
SHA512

48733bf10702f3254dddf27920290596e4075052933ccdbde2154a909304abf9461f5a68cb9f3e910c55434164a1d73c2ae039df0bc3238e252bc3382bef9261
SSDEEP

786432:Tt+VFeGxZ9zlYod8Wp/o1iHFfqB5kiT6Yzhj4F724Gy/Of:Z+VJx3zlPdI1iHVi5ki+CjQo

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  Pump-Mac-Win-1.0.3.zip
- Size
  
  35.6MB
- MD5
  
  745a3d402724dea851fdb03d0531af4a
- SHA1
  
  c826ab67f2e9fba245b64f13123d9d5bc63cec72
- SHA256
  
  2e9189fbbd26c3227d39a14662a95979f9a737da62270d2f2b7ed690c9a040c1
- SHA512
  
  48733bf10702f3254dddf27920290596e4075052933ccdbde2154a909304abf9461f5a68cb9f3e910c55434164a1d73c2ae039df0bc3238e252bc3382bef9261
- SSDEEP
  
  786432:Tt+VFeGxZ9zlYod8Wp/o1iHFfqB5kiT6Yzhj4F724Gy/Of:Z+VJx3zlPdI1iHVi5ki+CjQo
Score

7^/10

discovery
- Executes dropped EXE
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1
- Target
  
  Pump-Mac-Win-1.0.3/Pump - How to Install.pdf
- Size
  
  2.0MB
- MD5
  
  3d9c3c425dec59530cfbddb205de9a20
- SHA1
  
  c87e8d855243ce874ed798028c9c6bc79ae3d992
- SHA256
  
  7c4cf416416de81446b7a697068743d2e5133a146f6107b246f7c1bacba73b24
- SHA512
  
  68a7b13028c8c7aa0ab1a097f848b310022737e0d0ea32bbabc803dfc27dc4a2dfe7511682bcd7e3b25e50829c3235a9c2e5a0f5da9d48c43bf7ac9a96fffb9e
- SSDEEP
  
  49152:ybjsvdcEerlIUquvlIUqur5TJou4yBhD+lWL7Mnqnqnqnqn5PDH6Nnqnqnqnqn5P:xWquPqur5Tyo+MLsqqqqZ+pqqqqZ+GqU
Score

1^/10
behavioral2
- Target
  
  Pump-Mac-Win-1.0.3/Thenatan Official Store.url
- Size
  
  53B
- MD5
  
  80520002873dcb8b2ae174cddc11c3f0
- SHA1
  
  9116ff5fc68f44ccc8268a44c391f3cb465b60ef
- SHA256
  
  ad7246c6ec3efc1130c280c7dfa9fbe5cdb0220cdd0a8bb8cf4934cf86f90cfa
- SHA512
  
  6ab7eadccb1d7c82a64244b3a3cf20277a84477442718c3da9fd4bbcae28d47b0f902c72a93a2bde86d1e60ae5723150a78e66c841fb609aded491faf027d4c9
Score

1^/10
behavioral3
- Target
  
  Pump-Mac-Win-1.0.3/Win Installer/Pump 1.0.3.exe
- Size
  
  12.6MB
- MD5
  
  fa387c49265b3b27b47dc81b8311d885
- SHA1
  
  e97d919bc1be5b0867454478ca74c0c6199ce618
- SHA256
  
  87dde3d8c812d42d8b7ffd877c5499087e35eab965c2e97c0e73b710fed3ec98
- SHA512
  
  858e03480448d1f98cf3c38452a099312d4359ae1ca96dddda5f2eee63f619d2f76bd99cf6a1558ea9076b50b696ab24c71a92056a4c4bd68073391b0f1c7a13
- SSDEEP
  
  196608:dq7TPK9qE3HB+x00QPo0bW5W3sZxwtxEAW0Jmq9fZE4zZRJsmNfmatNNig5t5o9g:CTP63H2uHbJBW0JmUZRnJsmNf5Biso9g
Score

1^/10
behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4