a78eba93e438205a8e4043479b5c00831382ad1d6fae95216327199d38914366 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

magnus.night.v3.zip
Size

28.5MB
Sample

240201-nnj9asebhn
MD5

a6a6bf2e206140dd8a42f397078689d3
SHA1

8bdcd4b1ef0e4931e14816973baf329fb880f847
SHA256

a78eba93e438205a8e4043479b5c00831382ad1d6fae95216327199d38914366
SHA512

fe661c014f555b7cf2f520bb3e584e15ecaf2995963e2a7520827938b17115915d02aba5fc95c4e47659bc66374cf5bd9b7d471c0ce42227771632e221fdc437
SSDEEP

786432:wzLLnfLhz8jgnx7BaaNfqpLdaR7RZ+TjaukhwCH4//Ls9lqk0no:C3njhAyTfqddaRNELz//ilano

Score

6^/10

Malware Config

Targets

- Target
  
  Magnus Night V3.exe
- Size
  
  2.8MB
- MD5
  
  ced2a2b65c17ea7446fc38db55c136f2
- SHA1
  
  37a09e0adfd6c694837fd3818dd649877c6763c1
- SHA256
  
  3d77ce08aae982d05bbf4bda58be1fb848225e8ff499e82ee5f8219bc06f6797
- SHA512
  
  85554a59fb0b67bc57dbea1fe53416cfd49584c2d516fd299db03503053baf3a44e280592a4d30cc963386c1399362dc5891bb0ff15e325eb3525cc3f896eefe
- SSDEEP
  
  49152:BeI/nFaNjfSVzHKsRXmPOpFasLsIt89QC7wlf6C/Zu4E3k:wsIlu56+E3
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1
- Target
  
  decompiler.exe
- Size
  
  61.1MB
- MD5
  
  5058183e711ea583457351c4188864ab
- SHA1
  
  16d24cc8d8a8cb1d1f766309b4811130d450a917
- SHA256
  
  63e6414115b577c273fe682515a35191640904633ece4f3c97f6283809eacd78
- SHA512
  
  05d195a289c92bb77a0397f46e2979f464cd1f5e235a70b4d07b9423c7cdcb664db6843ce4213b97bb8fdd6cc13a6794e0c9c84e5351be33350302e1f4f3e900
- SSDEEP
  
  393216:yC48h4EpGFxgIwSLlvFwltckh4d4n4QjBaw1uYOyJ4jHY8s6uILqmvz2Dvm+ECwG:TwAVt9OyJ4jSQqmvaDuB449Y9
Score

1^/10
behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2