db9e025c787bd2ca636b8e1fc57abe3d69de792e62b42674ad664d4dcd003fd5

Sharing

Copy URL

Twitter E-mail

General

Target

0e6fa715d2b8c1de87396f5552f5fbce
Size

7.2MB
Sample

231230-e23hcscgdj
MD5

0e6fa715d2b8c1de87396f5552f5fbce
SHA1

0bd5244f75f93953f8f996a7d7e146ac024d358f
SHA256

db9e025c787bd2ca636b8e1fc57abe3d69de792e62b42674ad664d4dcd003fd5
SHA512

ac291b76bcddfd9aba6f9bdc29880702f025079513fa6c536d301fef33eac0282a3712e101cbd559222a9f6283c4d8ae4f15294e0dcaada185ce01e2ba32f276
SSDEEP

196608:UEnQqWwTJrPo+iTlvOjQw6ldhAHhLEui0uJY:UVqZLoRlvOkNdG3i0uJY

Score

6^/10

Malware Config

Targets

- Target
  
  Slurp 15.06 AutoUpdater!/Bunifu_UI_v1.5.3.dll
- Size
  
  236KB
- MD5
  
  2ecb51ab00c5f340380ecf849291dbcf
- SHA1
  
  1a4dffbce2a4ce65495ed79eab42a4da3b660931
- SHA256
  
  f1b3e0f2750a9103e46a6a4a34f1cf9d17779725f98042cc2475ec66484801cf
- SHA512
  
  e241a48eafcaf99187035f0870d24d74ae97fe84aaadd2591cceea9f64b8223d77cfb17a038a58eadd3b822c5201a6f7494f26eea6f77d95f77f6c668d088e6b
- SSDEEP
  
  6144:SIQpxILDXGGMO7Ice9C5kQw2hWHcHTykhb:SIQpxILDXGGlET9n/cHG
Score

1^/10
behavioral1 behavioral2
- Target
  
  Slurp 15.06 AutoUpdater!/FastColoredTextBox.dll
- Size
  
  285KB
- MD5
  
  bd5e987f0db5e1c221f8751301e3dab3
- SHA1
  
  64025e1583b6ade427e37ac6fb9cb0b1ee82c4f6
- SHA256
  
  0fa9894a0316032fd47a044156bf8eeda42d3438ca4202fdebc2b56e1f50b246
- SHA512
  
  4b8a272ef04c4d57dbd046fcdf6790a06b894890d6f7061388c8646c263ed041275f02a8d38dae5932a6b382366b90b7c802a859bef74617982d3af7222b1207
- SSDEEP
  
  3072:fRRnCOlhWbTKQf1Nu1HamXMYQdHAE8mrpx2igF5+OGD4FKLlTW/PE6Anau9LwvXZ:ZRIvvlrEuEFZE/3aXssHNe54ZEDJoW
Score

1^/10
behavioral3 behavioral4
- Target
  
  Slurp 15.06 AutoUpdater!/MetroSuite 2.0.dll
- Size
  
  305KB
- MD5
  
  0d30a398cec0ff006b6ea2b52d11e744
- SHA1
  
  4ceebd9c6180a321c4d4f3cfb5cfc3952bf72b45
- SHA256
  
  8604bf2a1fe2e94dc1ea1fbd0cf54e77303493b93994df48479dc683580aa654
- SHA512
  
  8e06ff131a81e73b1ff5de78262701a11ecc2bcdaf41011f4e96f11c5372742478e70b6a0901b61953c21c95725532af8d785654405ec5066ad157e2143467cc
- SSDEEP
  
  3072:K6J2UBugOAI+yjNDWswy1MNo1EvnvkgvloSVQBjDifX0pPSRZ9KZdf8uvqtXfZBF:K6Jr8xhFzfOaa3xqQnQGTO
Score

1^/10
behavioral5 behavioral6
- Target
  
  Slurp 15.06 AutoUpdater!/Newtonsoft.Json.dll
- Size
  
  659KB
- MD5
  
  4df6c8781e70c3a4912b5be796e6d337
- SHA1
  
  cbc510520fcd85dbc1c82b02e82040702aca9b79
- SHA256
  
  3598cccad5b535fea6f93662107a4183bfd6167bf1d0f80260436093edc2e3af
- SHA512
  
  964d9813e4d11e1e603e0a9627885c52034b088d0b0dfa5ac0043c27df204e621a2a654445f440ae318e15b1c5fea5c469da9e6a7350a787fef9edf6f0418e5c
- SSDEEP
  
  12288:rktg1lrjC8rjICqbwNjR4xq7iiX19K7Df/SoOKQrIB+jfP:rggD7PIEjR4xq7iiXTK7D3So9AIB+jn
Score

1^/10
behavioral7 behavioral8
- Target
  
  Slurp 15.06 AutoUpdater!/SLURP.exe
- Size
  
  6.4MB
- MD5
  
  0faf0894e56231768611e1376a19d043
- SHA1
  
  ba413d5903e5e63f9cfc71889644e7e3d3644edd
- SHA256
  
  364bb4787e4eb929266c2a8acecfbd29117df87732670ed47716e5ee84beda1a
- SHA512
  
  c10af3aee120ce0b42ad9b930f54b5392ff1c6771a5f1ebed06c300fadb8d9fc2aa8b05b42903ba40931c59b2aec9181ffcd6918c57edebc68efb7b46b163b39
- SSDEEP
  
  196608:oWYdxfa/NAKQAt2tpMYaSaoCYcHH87CouJRn5du9:GXf0npoMPSaoMouJRnv
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral10 behavioral9
- Target
  
  Slurp 15.06 AutoUpdater!/SlurpBootstrapper.exe
- Size
  
  11KB
- MD5
  
  46bde87641de5afde46d61f3eed68365
- SHA1
  
  6f63b329d9f425cc0bf035831dbe6189af7686e5
- SHA256
  
  3b16810e51e5e18f1e93c3c3c400fbf0b4b8769391f44582649fa7e9d6cd2a3b
- SHA512
  
  32c819c33f86f3dfb29407348bcbd426bda987b611945fc8ff4c30b4711948b49d6df6b52f8bfddf83e469db5258398702506894b18eb4f961c00896755a9ae1
- SSDEEP
  
  192:zrJt0D3B6j5+ME1H6zcWdmUBkm5/DfbFLmfW5b:j0Dkj5PEozuV6/DTaW5
Score

3^/10
behavioral11 behavioral12
- Target
  
  Slurp 15.06 AutoUpdater!/WeAreDevs_API.dll
- Size
  
  13KB
- MD5
  
  a2abe5b1bf089bd7de815ad7d8eb3ae3
- SHA1
  
  248ae11ebe1460d1399993b63eeec2c6eacf8b4d
- SHA256
  
  d5eee3e2eea0fbba5c9625c4ee4a1c85973bdd8c8aa011ccd43a1a0995ed3913
- SHA512
  
  cac8355a2ebf96eade92647365827b2a229ea49ecf0f84adb7626cec7382ab5154a7edc19a5273ee6c7ac8fa49e28583ad3d332dbe4b23120a1ea9e3ef1970fe
- SSDEEP
  
  192:gHPKSlZqzMKcBe3AQM1ft7dj7COVk3COrBdUBmTsX802Nfa5TeUiI194xxW:edli21PjFVk3C+BdUJ802Ni5TD6W
Score

1^/10
behavioral13 behavioral14
- Target
  
  Slurp 15.06 AutoUpdater!/exploit-main.dll
- Size
  
  577KB
- MD5
  
  28f806e475b066d7311918534ff5e9d5
- SHA1
  
  27e75898cbe10e279905dcb423adfd334ff8b553
- SHA256
  
  3bcd1bab937232bd25d372037c6663a50e60a5a04361107ebd0f0f770aadd398
- SHA512
  
  4f88f91af26e52c84c7a4cc3b76b8883eaf19e081d32f3a1ebcf93c7304cdb0d873fc6a75073946c8c003ba760c06afc7a865f082dd83ff6ea1454c199630c1c
- SSDEEP
  
  12288:qshyISiLNAhzDDsJLe5+SL4iP8F3tNWvU016DiAQ2J8xIG3y8r1XSvHl:gDMLe4w8pqFADiNr1iN
Score

3^/10
behavioral15 behavioral16
- Target
  
  Slurp 15.06 AutoUpdater!/rbxfpsunlocker-legacy.bat
- Size
  
  34B
- MD5
  
  322583d25381163aa1070f4312130a93
- SHA1
  
  705c47a2d0b4b7c9d155321f6794c264a2675c6f
- SHA256
  
  14e6b3294cbbadae50f0225db5a0fa5ab773631539a8d05d583227a744db0490
- SHA512
  
  a951b4cc52c38a10ea9dd17aa7ed960bb7dffcf40444d041bb874bd92777bcb8a092422948035e1f462285b5959870a7438b18dce4b5ad7933c46ca34cefcd4f
Score

1^/10
behavioral17 behavioral18
- Target
  
  Slurp 15.06 AutoUpdater!/rbxfpsunlocker.dll
- Size
  
  105KB
- MD5
  
  a534c154f95f305a63fb42a323a01301
- SHA1
  
  f1108134e119e37b44d2d66efee5d4152fa62803
- SHA256
  
  2a1a62fec5fc46870f1a62fda83b5a556f5432be9a6e2c9ddaf0e81c82a0f659
- SHA512
  
  c1c5cdb86130bd0de788c240bac498517ad3cda3cf33e723c0dd2f996a7dbfd91332779a11ff3cef36e1714ac06e6ca5553b70dc85c67f44d4d36fe9cbb1e3fd
- SSDEEP
  
  1536:ctXhpORw5PyZpPHJq6lj5OSiag+RVctzp+1c2FXgIaslR3sW43cdnM+TRaZa:c9sw5qLpq615OPag+R4zp0avGnM+TRa
Score

1^/10
behavioral19 behavioral20
- Target
  
  Slurp 15.06 AutoUpdater!/xNet.dll
- Size
  
  110KB
- MD5
  
  ac1dceddbc66a1ab7915ac9931f0cfec
- SHA1
  
  22ce2ec96192a520a2a76a0fa272656c77f1041a
- SHA256
  
  cc949931ef9533adced83f3d58862e9732e5db7ad17b5fd4cb9d209a99edb592
- SHA512
  
  3906b3b7f8874bfd79f94e945d857dbc83ec89ed73ac13d49790c7fc4eed5c7e98c99c32ffc4a05795da9981c3163978c7f84a54298e94420e365c395392b3f9
- SSDEEP
  
  3072:PqCUxh+3H0MznY3wihz0YmcTqnV+xnEdU:PqCUxhfMUTqnV+xnEd
Score

1^/10
behavioral21 behavioral22

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22