b17d10408e97c9211d0f1f34f9592c2823c5982760209d30cff2ae263b96efc3 | Triage

Sharing

General

Target

eclipse-grabber-main.zip
Size

32KB
Sample

231231-sa8f7agfcp
MD5

d59d40e09f5bae7aaf3fafd28b809a50
SHA1

e4a91b12522864a2acad27f6d5818694b0a817fc
SHA256

b17d10408e97c9211d0f1f34f9592c2823c5982760209d30cff2ae263b96efc3
SHA512

93adc2c5a27b6de9f8aa735cf400e771e675492d7893a8fd47f8445906782b4ca4cf3fc7173639d1b866b2937fea9b72254dca7ba63f6b4cede26538b79a0787
SSDEEP

768:TjphyASwxeATweDpGEOlxDuR/3LH8WqciWukAGTaBz95D7iV5FNO:fLyUYATpsEOlxDo3zOcsOXe

Score

6^/10

antivm linux

Malware Config

Targets

- Target
  
  eclipse-grabber-main/builder.py
- Size
  
  7KB
- MD5
  
  27d9823d19950d7681d6c474a46f69ad
- SHA1
  
  05516d8db715636203c811106597cdffb5ed7e83
- SHA256
  
  2d647ceb04e55a2f72f0e75a4c58cae5f0fd8296e4c07473c0b900437ef7e13d
- SHA512
  
  1177801ee4c55386bd2210e0e48191ca3f5407291fb2ac2e65a6123713b7817179d84a77fd15a64e80ea72ca9ce46c306a3d964f3c2d7a909c62f7f70ada12bf
- SSDEEP
  
  192:6Gh6rr4GiVLG+XFD+HIOCuqgUbTTlFh0kk8KUFP:3DV8EudkTRFh0krPF
Score

3^/10
behavioral1 behavioral2
- Target
  
  eclipse-grabber-main/code/eclipse-grabber.py
- Size
  
  6KB
- MD5
  
  71af649b8e5acfb8fde73832399c8869
- SHA1
  
  1d612ba7ff0fa9634b1501a68f48ecbf1070d39b
- SHA256
  
  26121236a4f356afaa208d956d5a38b13280bb2144b9368bdcf89dc7c1fb6232
- SHA512
  
  1414fbd3080e864745a642a3fcbf3b8bfa5e38db7be0f97d6fc7b302fa60f55fce580d5fa3842085f88adc9f65934b5fd780ac3e97c2baa62e89649a40e590d9
- SSDEEP
  
  192:V9doTpmXlRac5xHBWfInlO4jXGX6RKhWy0TX:V9dbec3YSCX6R6o
Score

3^/10
behavioral3 behavioral4
- Target
  
  eclipse-grabber-main/setup-files/setup-lin.sh
- Size
  
  610B
- MD5
  
  bcc4b937a5f5c30a63ca55acbc45a3b0
- SHA1
  
  2b8c3ae59711036263d94367e9a8b470c91546fc
- SHA256
  
  c9309b50bc9ef89f4dae68e5e0c4d57855e1050aea2b4eeddd8cf5f6b762ee27
- SHA512
  
  585d4cf31921eb79b06bb285761bfb80c7337636d1a7074dbdc4d59f022466f6991dc28a31e9d5289745e140413c7b5f4ff104578b7ad91289f871c9bc90a2b4
Score

6^/10

antivm
- Checks CPU configuration
  Checks CPU information which indicate if the system is a virtual machine.
  antivm
- Reads CPU attributes
behavioral5 behavioral6 behavioral7 behavioral8
- Target
  
  eclipse-grabber-main/setup-files/setup-mac.sh
- Size
  
  181B
- MD5
  
  62ea0dc64c487499921c900c3aa177ef
- SHA1
  
  ce1fc0ca2ee9f70c0795d50b41be7b8932c8431a
- SHA256
  
  ac8bcb19ff288d9cbaea1ac7c10339f74a6a32ede56516549ba4abb1b4b623f8
- SHA512
  
  8cda3bbbb0dd2f2e5633c5146dd322a9fba5d3ef2dc6070df8d014ab906773480093dad6d17cd66758e3d498432f96572ca9ecb0da949e5cdcc64942eefaf9e8
Score

3^/10
behavioral10 behavioral9
- Target
  
  eclipse-grabber-main/setup-files/setup-win.ps1
- Size
  
  756B
- MD5
  
  8132f357f595b6789953cb8c62976a15
- SHA1
  
  a9a2844c62aced35d6a1affb6fac591a2f6b8edc
- SHA256
  
  67ab3148da9665e9fb5cf65a9b4eb6bc7395fa3ac7c4d9802b42c6b4e59d718b
- SHA512
  
  d2f966e98a943fd7563632256510c7b159ba4fc8c6f015b1413be72fe32b2736177721d2ceeabca7f18b712aa6c9d9e2d1085b1ce3aa081c718546f82614cf08
Score

1^/10
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

System Information Discovery

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12