eabb567d402c51623e0563016748fdb1b8d701b6bcb0509eb65f8aa05d694162

Sharing

Copy URL

Twitter E-mail

General

Target

1e15fc37b9058a1607afe41621df62e1
Size

234KB
Sample

231225-pkvrascff6
MD5

1e15fc37b9058a1607afe41621df62e1
SHA1

087f4c4b39afc4cbda9837c2e85e81bbd8475748
SHA256

eabb567d402c51623e0563016748fdb1b8d701b6bcb0509eb65f8aa05d694162
SHA512

8d8d0774fa4fc2c702210ac2a60e7672ea16c8f835204214d55d6a809a6ca13124780903a5374e3faa2e41c7f68d6ec7e8f9f693fbd553bee6212678626c7717
SSDEEP

6144:/5A6s3TRyFnIAZbU8dmItQ/bFqeqMwtulXZ475WGEP:BA6mlyf9DdmIm/Jfdl452P

Score

7^/10

upx

Malware Config

Targets

- Target
  
  Lenin_Script/#Beginner - IRCops, Who they are, and What they do.htm
- Size
  
  32KB
- MD5
  
  da5c1becbbe037a9baab36a055c149c3
- SHA1
  
  9866a5dfd912d51ed3a604076e02864fb1a160ca
- SHA256
  
  a14e7efecd978ca1b57633a58d0882cc2c7074e2c787bc0fb9540c95269cea16
- SHA512
  
  1dad96cc8d06df3f70bac8436200d14c1f2af8190f05e4cb711f0f4acd0d57195a730e580066a71b930f130ca66615405cb64d3f65f270e6efd3dc908c012b85
- SSDEEP
  
  768:b5lPc7CgKI0KdS8GuHEcBf0QWEHFngKpxN+P8+3eN+PLVC7XweRdmPnRYY5KGsS4:b5lE7CgKxi5DkcBf0QWEHFngKpxN+P83
Score

1^/10
behavioral1 behavioral2
- Target
  
  Lenin_Script/#Beginner - IRCops, Who they are, and What they do_files/mseovert.js
- Size
  
  615B
- MD5
  
  158fbe7b6cf87324677e05173a77f58b
- SHA1
  
  a60925fcb55efac1a480ab4012bff7a69a8e2b69
- SHA256
  
  c9b9569f01d82e6aec67b630c3bfd4502f691a08981b4c0a1a6e84b959443be0
- SHA512
  
  eb8973a647bdcc07fbe443167b6b4fcbd9b5963fd64ec5649cf09ad41587f9e2ae4b7dee1c5bd6d040a8f5942268964749aec622450f1eafdddd4c1dc582490d
Score

1^/10
behavioral3 behavioral4
- Target
  
  Lenin_Script/bordem_net full commands_files/ads.htm
- Size
  
  3KB
- MD5
  
  b685c33e8a0997a4cc63987acb5835e2
- SHA1
  
  245640bf294fac0e48e1b8e579caef5af6c68090
- SHA256
  
  6d43cba5d05391f68a967f481bdc48cd21053cb9d5bb20858f893018908afbeb
- SHA512
  
  af74be727daa240430da53a2f3e4b09d3f961ed8347e5674efe6d4475f510fa06636aaa7ce18d6a23c1d777e9ee51b9ee59228e1a9c6f155b427f05cf37e5daa
Score

1^/10
behavioral5 behavioral6
- Target
  
  Lenin_Script/bordem_net full commands_files/i-1.htm
- Size
  
  558B
- MD5
  
  c784d953cf435e0f5c2776720114a9ba
- SHA1
  
  39ec1a26a62075703e7628d22b847ef1bb5b6293
- SHA256
  
  7ad89521a3b8b3962ba6a2cccbf100c168efc7e12ede3e5221751f815de53ef6
- SHA512
  
  ebb29afe84be86158bd7284a8d5c31237bce95338181e04c2d6ffe185d6e7b4a9d325a4dfcb84ab7a28292a3bcccf303d9dc57f1ec32c0eb6101c5044f983914
Score

1^/10
behavioral7 behavioral8
- Target
  
  Lenin_Script/bordem_net full commands_files/i-3.htm
- Size
  
  544B
- MD5
  
  fc9af24a69d59867e76a471d8e4fbc41
- SHA1
  
  d22f3a0a75009dcf8f3c4d4eae065421cf278dde
- SHA256
  
  58acec798eba719aabce2b35660e51c60a7fdadc61b9812c895b0632f59f0776
- SHA512
  
  e844850539d50ece15c3f1b0d61f1d3e6b6b797941a8d8e411f17cefdb47d68cd0966223bcbac011a547ba6746ed3a2258715d7b346dfa46c7e4e842d1534302
Score

1^/10
behavioral10 behavioral9
- Target
  
  Lenin_Script/bordem_net full commands_files/show_ads.js
- Size
  
  5KB
- MD5
  
  3dca1ff14fad5c4191eecfe4a512e946
- SHA1
  
  95e449477bb8c3961de9e8c7e0ec389953bd7899
- SHA256
  
  66784f0d65a9db44cbc981fcd327bf128c6503ae18a52982c2602f05a11f63e5
- SHA512
  
  8edb662cb5519ecc08843e49cb9c34024197713e7b07ea95e5bbc640a4c82c0eed1737719496da87fcbf6af112f45b454fcfe5ab63f39e36df6d5eb53e71a6c3
- SSDEEP
  
  48:ntVbfLIJHKKsJTvVqqzwghtZ3dOPzBd2vu7gfS72vT4de4kt0XntQJB+R9Nu5ZBY:r8Jeqqjn3Mn2ygfS72sdZktG9UveMNkV
Score

1^/10
behavioral11 behavioral12
- Target
  
  Lenin_Script/dll/BARS.MDX
- Size
  
  25KB
- MD5
  
  16967b88e1699ff881999b423a916fb9
- SHA1
  
  c614f8077e7ec04311077158b3800fe42f92d759
- SHA256
  
  b6dcb56cc9bcbfabb0a5b725ccf396c52e8e320dc1e71b5915cedb8f83cec2e6
- SHA512
  
  b63dbaa521d15480d971acc78287392fcf317e3ebb748e8bd199ba8509fb99f623428c4a23216034e466dda987b29cd9799389b4e7c6741d58f1e0fb080b71b2
- SSDEEP
  
  384:byPAKTj2P4lAMxKb+aPkXUwb/Rkcds80OZqG24hMotbP1Pfcx0GZEMy3:MAKTj2PtM0wdbG+sWQd45xXa0GmMy3
Score

1^/10
behavioral13 behavioral14
- Target
  
  Lenin_Script/dll/Band/band.dll
- Size
  
  19KB
- MD5
  
  1dfc3f7391d4a800dfaf1bdc71f3d4b5
- SHA1
  
  62029ee67031db78f81ed9a2a1bb7e8ad3301c59
- SHA256
  
  ae66e335ccce95a10ef4260f6448812c7e84e15529cbf30372fd8ff0518c50fc
- SHA512
  
  501ef6c17c36d21b6c67e124ca70cc0800ec4186620141b2ff00de704cf0406616e04410ba44eb40fc047408a7ba0dab17e6ca567a2f5e92c26e58cdb1054271
- SSDEEP
  
  384:wtg30paiX7jlbfr3P7RrRTX/dNGHnXMiBqIFt3EJGJR:wtgEj75rr3jtRvGoIFdEJsR
Score

7^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral15 behavioral16
- Target
  
  Lenin_Script/dll/color.dll
- Size
  
  3KB
- MD5
  
  d97dcf39eb9862d972501e58bd6c2b6b
- SHA1
  
  ea9ba2a232132d8be7920fff24549afc5196282c
- SHA256
  
  f02e921771b819376cf368436b7f581ef459fe95b6a4aa2e20a78e5fed04c836
- SHA512
  
  a7b7654558b0596d6c7824049da828e5aca3bea0d5766ecdbadf31f1df8f84c7f894a77e63269b91f238b3ca1cd9bc415cfc11ba74e393fc70972edf71ade911
Score

1^/10
behavioral17 behavioral18
- Target
  
  Lenin_Script/dll/ctl_gen.mdx
- Size
  
  33KB
- MD5
  
  b1dd704e30c3d40cbc10ca122815f852
- SHA1
  
  976584979bec7d15d725603cc5fbe34c8e02d58c
- SHA256
  
  b1755f336dc45ca0489a3bc6528f0f167e1b7bb4334ef2185cfe295a7786c6e6
- SHA512
  
  7f2133771bec56f9032746aa79b3996b66d4c0393a08105b0ab1d6dbc3f6fdac72dc2048b354c34d845b2e90c2dd8a88888de50932671e29f3bcafbb5f1d9058
- SSDEEP
  
  768:2hKuHTWsHs99wk5I0gd1Tp3Ns0lN/wfHJfu:UKuHTWVwk58dh7s0LIfHJG
Score

1^/10
behavioral19 behavioral20
- Target
  
  Lenin_Script/dll/dialog.mdx
- Size
  
  19KB
- MD5
  
  e6fc1297e8eb2cddab0e1be400866690
- SHA1
  
  54718e0149676ca32c3f8d40778809039096d97a
- SHA256
  
  3238d3e12ef962e588c5f51958594f6bd575a9e59da02b76cbb12cf29052c4bc
- SHA512
  
  1766780f0ab687f78f854f7f68d42a7fa75f71a7c5d47f045cf7e04047ffe25e08617ff0bac149d5e6c70faff61fc8ac4665b031e96b5b8c4647c18b5b2cfd51
- SSDEEP
  
  384:0okPNS4MMMYWJ7PTSoznJ6ZWsMy2ZMFrAhwtGf:94lMMAJ7rSoznWzeBC
Score

1^/10
behavioral21 behavioral22
- Target
  
  Lenin_Script/dll/dlls.dll
- Size
  
  52KB
- MD5
  
  2a62b6205d28c98da5ed0fe2a9e09abe
- SHA1
  
  51ec112c5e43d6ad083330a638deda6917c55aa1
- SHA256
  
  394e8de908cecc40638ff20c3ac14b7f81dcaf636d5b687f24329b71b3e8935f
- SHA512
  
  dcbf4f347fc8f03c7311a0833e14f5b6aecd7f0c2c31a55fb8bc6c339be348fc91c2b801eb7dc4be36faa0f62d007da06950fc5e4e7bcbbf1b0a5bc9e1fd98bb
- SSDEEP
  
  768:CVXqYKk3DTHtNSIwd3W/Prr5jEjxSwRgbN4jzCpmGHtKQMCCH4iFwG+tV:yXqYKiHtAGXfZwRONsMmGHyH4uwv
Score

3^/10
behavioral23 behavioral24
- Target
  
  Lenin_Script/dll/edll.dll
- Size
  
  32KB
- MD5
  
  13321dfa8168da27a2a195bac2b66900
- SHA1
  
  aa277a8fae99b3c6a9f1b992a26d67997d51186e
- SHA256
  
  887e479d14e61e448e351c1c3d70f6acc04772ddc9fc41ab6bea8a1cae5d889f
- SHA512
  
  62b7f2d7e0edec0af6878ea944429ba37b5ea7fde6008a167f4709a94b40d640da652160bd5f91a77821046cd1d37027a1773e967efc38e281fec598d37c612f
- SSDEEP
  
  384:adLlKBrIx01Tv7A7P7W8b5mlF7yQjrZuU+cAEopXLCK1TZH:ULlErd1Tv7Iq8bEhjrZaEopvZ
Score

3^/10
behavioral25 behavioral26
- Target
  
  Lenin_Script/dll/findfile.dll
- Size
  
  20KB
- MD5
  
  7c8d4f4d3bdbd35453080088d5ed835f
- SHA1
  
  365d40eababe1012d4b06e883bb34420024b9142
- SHA256
  
  f36950152f68f871b8a6a89ad38ec17b5fc4d62778ca3c69513df9ce15bb3f81
- SHA512
  
  6c11d36c162cadde393571d2a494b97ce6e99681ad516329ba54ddb5c98fae68fd5f34c2792147fc8b2055d9d13fa4901fc79e3078168d8f59dd6a38f335adde
- SSDEEP
  
  384:Afo0liOTmsFhQFivKUb0v5cumlkjyVavuopo5/d:QiOTmEjCUb0vdtvbpo5/
Score

1^/10
behavioral27 behavioral28
- Target
  
  Lenin_Script/dll/mdx.dll
- Size
  
  41KB
- MD5
  
  901479fce8b78f9030c20a8f7a236e25
- SHA1
  
  4bfc1c28fecbe899035a0d3d66b72a0f7e709cd8
- SHA256
  
  50f52db4ded447793b13aeeaf26f41f6547c2784443fafd7e4d43758614c33bc
- SHA512
  
  dda26bf97cc75609bb95d087164cbaca1976b133871899bf974bda2975550719501a8ea9c093d8591a5c87819ec081c2fdf30a10c4305a230fb9de134154bd42
- SSDEEP
  
  768:YGAYTiNNsvUXVgbtW63nzIWCqjd9pRiuTNlF:DTWNs8lu13ndNjDpRTT9
Score

3^/10
behavioral29 behavioral30

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30