769bd7e4a56311666fe39e1dfd419bec3d5df4bb3f6ab337c9bb1ffb935bda07

Sharing

Copy URL

Twitter E-mail

General

Target

eclipse.zip
Size

101.9MB
Sample

240219-ec6hqahf37
MD5

14230df72ba7693afac0bfd2be4e7ad6
SHA1

b86fea2d80dc2a85e60b8795fa7511cf48b84adb
SHA256

769bd7e4a56311666fe39e1dfd419bec3d5df4bb3f6ab337c9bb1ffb935bda07
SHA512

8b2a42be78742384f8c0a3aa838d5b898102c6563e44b34ad8f312de252883350e956f5e3d83151e63976d693a28574e408b47bd5f08969d2904b9c68f5c7ad8
SSDEEP

3145728:y1QLfDW8m52RndEtob4XgVIwhjsJ+rUyhWD75T:yEi8FndEtsbnr1Ch

Score

7^/10

pyinstaller

Malware Config

Targets

- Target
  
  eclipse.zip
- Size
  
  101.9MB
- MD5
  
  14230df72ba7693afac0bfd2be4e7ad6
- SHA1
  
  b86fea2d80dc2a85e60b8795fa7511cf48b84adb
- SHA256
  
  769bd7e4a56311666fe39e1dfd419bec3d5df4bb3f6ab337c9bb1ffb935bda07
- SHA512
  
  8b2a42be78742384f8c0a3aa838d5b898102c6563e44b34ad8f312de252883350e956f5e3d83151e63976d693a28574e408b47bd5f08969d2904b9c68f5c7ad8
- SSDEEP
  
  3145728:y1QLfDW8m52RndEtob4XgVIwhjsJ+rUyhWD75T:yEi8FndEtsbnr1Ch
Score

1^/10
behavioral1
- Target
  
  colors/Arsenal Green.txt
- Size
  
  39B
- MD5
  
  951f14e6d743ac8807f4b094b4af6d54
- SHA1
  
  8a9d75f10f0e6cb9b89bb5ef00c423afb2b53039
- SHA256
  
  aff70bf3d6fcf8f8b7f667c41b1a4100dabef4d111598fc23502b8405c9e1504
- SHA512
  
  9a517fd0a0faa2b7db0446bb85a585f41b7fe86846b44547efb8e6d4812622783c0164a5dcebc87b44c62f969d750d0d8fceaa2e72a73b8ac1042103f009edc8
Score

1^/10
behavioral2
- Target
  
  colors/Arsenal Pink.txt
- Size
  
  43B
- MD5
  
  404c0151ce269eed7f0d1a61acadfc25
- SHA1
  
  dc1194ae16f39ce0e9704a8a21514e77ba7058dd
- SHA256
  
  dc5c7f4c36f56773aa5f6ea879f518931c6af6fe09bf7378a319fa83558d77a8
- SHA512
  
  75fc75734feded485317243e54eba137057fd3133f6994b9a09548339d1095d87792012c0d3c50a9084d4ba9a37815b411e23702810e239d0fe11eaa846272cd
Score

1^/10
behavioral3
- Target
  
  colors/Arsenal Purple.txt
- Size
  
  42B
- MD5
  
  74d95bb6b10fea3780179f0b58a796f9
- SHA1
  
  fbcaa238028dfe511a0972506139b4e02af14633
- SHA256
  
  ec8617f3d2f4dbaf29cae195755665727e7fd1d873bd77a0bd2eddd498f9b82b
- SHA512
  
  38b3e595902e29db606af110e58eb9ebd68ff493bd069f55433933fe2ede2c0fbe06a34234aa3a1327e8a0a5160c5623d59ea0a86b0ef0fc9f12c51c76395cce
Score

1^/10
behavioral4
- Target
  
  colors/Arsenal Yellow.txt
- Size
  
  46B
- MD5
  
  c94dbafd1db0a9df07b818bb9caada49
- SHA1
  
  a900e584aebf6b46b16ec48ed3d50a218cb29192
- SHA256
  
  8b46994ccd0d6eecbb1cff33093e05e61c70448286bcc9f452b3e5b62be148bb
- SHA512
  
  699a65309d541da278df3a8c6f506cf8aca5e4297ea7d5c5edb63aa85a7b7416b4b4b106055aa949f81086900bf9037f37c60d10461086b3fc19f6515642674b
Score

1^/10
behavioral5
- Target
  
  colors/Blue Arsenal.txt
- Size
  
  41B
- MD5
  
  30d696cec5887df48d03ba1afa70723a
- SHA1
  
  9aa577ab1b296b7bf16c96035082c76c17e3bb42
- SHA256
  
  6beae70fc16e724af5bc5d8eca98543fd7a6519b930984802d61ff721eb541bc
- SHA512
  
  5809cbe0c33f2126235779eba4e3052652053f987a7ef06a73f4b67b9810ce472e204e25a54b71c54ffa9573a6495d540ad8aaf5e0284552d27369bc3493c41c
Score

1^/10
behavioral6
- Target
  
  colors/Counter Blox.txt
- Size
  
  34B
- MD5
  
  428df77cffd3b9e03f5646850027d6e0
- SHA1
  
  45f834c846e87f203dea62b3f9daf0b8ba32c640
- SHA256
  
  922c4d14055c5de0465dee0460199d9717950b48c4ef16823e0858e1d23dc7d7
- SHA512
  
  43c38fa930dd9c5ae1def9a0878295113b7ac4505c70dadaeeb5c7853a6348cfc7274b03f158cb9ccc9ed39562a7f75e1941b12fe5aa7de06accc7b72b1dfbd3
Score

1^/10
behavioral7
- Target
  
  colors/Da Hood Day.txt
- Size
  
  39B
- MD5
  
  628cadcacc954a9f63bac540a5853126
- SHA1
  
  b10a6d1d9a56126ce6e37041bc0928499a4ed820
- SHA256
  
  9c10eb9b9be0b6b0f3ae9d65aa3fa7fe51b842fb980d510f8f1a32e6eab3cf8e
- SHA512
  
  2a1b2cbccf4c73cd072ea953700de627100c4c3f9230de22cee2dc6b9e2121db1c1a39f17c75009da529d16208503a0faea2b2dbc784ffc9fc6911165869acfc
Score

1^/10
behavioral8
- Target
  
  colors/Da Hood Nametag.txt
- Size
  
  39B
- MD5
  
  4f232d3a147ffef2959039a4df889db9
- SHA1
  
  b5e7cccaa2fb8bb7878092da4ece2f717ec1d419
- SHA256
  
  68a9f122c10e06e573ed2fcf74db453e92f220a09078eb98c9331b73c3d0c53c
- SHA512
  
  c5e3d20b166828ea5d75db32fc5c3e48e95d38e0909de8a268941b0c8a977996ff24647e8c3e60643114572f9f0924c281e0d801fbef33e81e767edb6ae746ac
Score

1^/10
behavioral9
- Target
  
  colors/DaDuels.txt
- Size
  
  41B
- MD5
  
  55f181c98ee66d3bc1472557d284e034
- SHA1
  
  68b2833f1f5fc9e3334c39ba0ffe39a6972e7c8c
- SHA256
  
  8191e30bb0e9b5c8d8e09901e7e51b59f432bc8f3c9c30340f410cb881abf41a
- SHA512
  
  f80428d91408b8fb148156ba53c6c252c606a0cdd2eeff1c29fe1142d60dca7f2a652ee363b3eb3cebc5d3ffe95875d340ad5b9957c7699fd16dd2a4c7710583
Score

1^/10
behavioral10
- Target
  
  colors/HSV Nametag.txt
- Size
  
  37B
- MD5
  
  fefef21c70c401965fa6fb7fcc900870
- SHA1
  
  7cffa034bfd0f9f98192c25640b367291f6da123
- SHA256
  
  2fbb5db61c8adff566add7ccc7130a0cf5ccfb852942f252b62eb09122d7b84e
- SHA512
  
  2bb5203ffdbbf04060d3f6e4fd65dc08d8c2f469a9e5652f1753ac38c9433fcad894eaa703ca05b1276fff3ac8f21d21ddae936492dfe909a4803f2fe1d3128c
Score

1^/10
behavioral11
- Target
  
  colors/Nametag Lock V2.txt
- Size
  
  38B
- MD5
  
  b19057010221bff5754b8b59156e3b5c
- SHA1
  
  f9ba00b89b1b6862a2e9fec8a7dfa4b0136d99a1
- SHA256
  
  be5c29b2c18879d26ca39e1bfeec8ab4802926a6cf134a28f0c8e5954ca5e30f
- SHA512
  
  f98d90b93cb24bc373f09eda19e4a76ea438e70f0233e2201887baa48ac8bed755ba1bab2d1d3d1ec174ee2739cadcfdcc8e85ce43d0231988383a32c971c712
Score

1^/10
behavioral12
- Target
  
  colors/Pistol 1v1 pixelbot.txt
- Size
  
  41B
- MD5
  
  e4e14e83ef62cdfcef9bfc9741cc7a89
- SHA1
  
  d949c76cec9112b3655eb0c934b4525cc7cbb5dc
- SHA256
  
  ffee4c2d5fb1f79a0627616408dbc33f9b44e02c2fc152d837129724ada8b7be
- SHA512
  
  3355f10b59c04562d5426b28969fe3fae03497543d1559c5aecca569e80bc9cf4a8096d168393f3582c30de57668f38f85fa931782128c9f1f1b8432de6fcaa5
Score

1^/10
behavioral13
- Target
  
  colors/Pixelbot Arsenal Purple.txt
- Size
  
  41B
- MD5
  
  4bb582e21a46b8df655de822e89d5a2a
- SHA1
  
  977b1a704e843cacd64a8a15e8e82d17ee6f200e
- SHA256
  
  4e7c5b50c08f4392be90009e2c40a567b276d6346a9af9ae096bd5276e97ef7a
- SHA512
  
  ff4435338074adae71b6729ac31a1de8428e289b179968874bc14bce4ce60a4a4405da60ebe15751774f877eeddb71a2b6171e16b6250e40d00a8e63f332f2c8
Score

1^/10
behavioral14
- Target
  
  colors/Reflex.txt
- Size
  
  40B
- MD5
  
  d0aee06dfed045ade87f2b5c11ec4885
- SHA1
  
  dac7d5a25555f1376b4b93a470bf4553b117475e
- SHA256
  
  5fc0147c7569a032a042041c475b56919a1871cd6d8ac807af7f20adbb16dfb9
- SHA512
  
  a8983f753003e66438b85c30af0cb4bd1259f66bb73202f193a576d5255fdb9d1c6d5f0bc0d8c238f12fa076eed37d57cb3c4d95ee3d9d69304b97fdb59b3edb
Score

1^/10
behavioral15
- Target
  
  colors/Universal V2.txt
- Size
  
  35B
- MD5
  
  5dfdd9c0abd19a10946e2dee3ec35c2f
- SHA1
  
  e5f30500f8251c9dbf14a692fe2505f729f4ee1c
- SHA256
  
  fee6f7d056b101db0c7e19caa5a15c1165acc8a632a72d505f37c1c3cf75340d
- SHA512
  
  9595609124f0cf106189d79309a8d19ab670e740fc9cc532ce8c698403124a9000a00b1495ff376fd4ac4862e7045f81d6478a8eb01d14c1c6c956f7ecbf4437
Score

1^/10
behavioral16
- Target
  
  colors/da hood nametag pixel.txt
- Size
  
  44B
- MD5
  
  894681a0337e6fe741f00e3095c244f6
- SHA1
  
  25eb1173bfcb1ed1ad3eb9049c6e980548c61301
- SHA256
  
  9f4bb5bf0bf847ad62456900b429be33ce954300fa75babe60a2e3757b44ad17
- SHA512
  
  66cb99d2fed2a49374851c50bd62dbe279fbad2d26d141bfb2e9bcb44ba8de99a2c6fbfcc9b973a1bfb8af334b8a48fccba7fdf8119fd4e6b2ec99b728bb0e84
Score

1^/10
behavioral17
- Target
  
  colors/no scope sniping.txt
- Size
  
  41B
- MD5
  
  d960b2efef1b5ffda0c405ce9d0c32a3
- SHA1
  
  5a1daf24cb1f7ad9ce263e0abb941bf60b8275a4
- SHA256
  
  e131468245fe7cf34158c202de1e276cdb4fcc4198afb0c8fa3e89fc3e38b967
- SHA512
  
  d486777c0e4ef210db7428021e2e9a0bb3e7824df7ae3b93840f8e1e8ee1aabf81484f33779b902051da2ab733a0e5c616190635c8bd675e1539d607499c9bb9
Score

1^/10
behavioral18
- Target
  
  colors/strucid v2.txt
- Size
  
  41B
- MD5
  
  b43c467a5a5646b95bd7351652da2aa3
- SHA1
  
  d7df5924544d72a34dcb9e4d3348812e646b29c6
- SHA256
  
  fbd91cff18abb970d404fcf0cc0104377f90adb2290d3f669dfbfdb44a7805c8
- SHA512
  
  d3c2c6a1cd856659ead2bf8adecbd706a0750813e7dec615a4111f37960f353bfe388db5ea03f45552cea7684eb637e1fcaecc56905882c985891def1def3f9b
Score

1^/10
behavioral19
- Target
  
  colors/strucid.txt
- Size
  
  41B
- MD5
  
  cf393a7131fa52768824cfcc4ad94764
- SHA1
  
  73bbe6e3c55f5a0c4d944d1894bbc798b8517a38
- SHA256
  
  7fb19fec850a23c711348827dfd725fe879de14078aea634dd2e5a5e9e5e2a58
- SHA512
  
  bbf4045446093412ad1a92cca91bc2b184876a20c5d32ce553e7f95b11c2a5cd2a84f1e78ae4b843e2aad111ac6c25c71c2eb2e6c556f729e632efd01ba006f8
Score

1^/10
behavioral20
- Target
  
  colors/test.txt
- Size
  
  44B
- MD5
  
  ced4a154b826503b57d33c955ed2eb1c
- SHA1
  
  68f5e26c164183d1b658e5a716017dd7d328bc95
- SHA256
  
  6b21c560d5979a8846cbe916b486b3b8e1a8207b59f55d7078f52bd0b630a12d
- SHA512
  
  6bf321980918003f3fd9e29e99cd85a025d1c5006b8a34d503b585e591c43ad0caaa8b046d5fc55e45285a5bcbdbcfd1f0ee9a8660cfdc3b065c01707c7e9912
Score

1^/10
behavioral21
- Target
  
  main.exe
- Size
  
  102.3MB
- MD5
  
  2dfc5ac6d83ba0886dd38fe1e8cd4609
- SHA1
  
  8e37db677b04d0a25ae25a3421ce66f8b7094a18
- SHA256
  
  9a908c0b3a44eec4e2e8770b4fd924723aeb2ddcb5e1dbbee12b26de1cdf0122
- SHA512
  
  ea0186f84b3e8858f9a306f8cff4c559c0d39b6cc5093530ab57c6b07efebbe1b811932716e754f4424f05a756ebfd4cf1aeefbedae51c7aa6df4bb44c04dd58
- SSDEEP
  
  3145728:ygYRPSC++6y9JuLH46uMDhrPIAa7DOZ2qHO5iJ:yxaC4y9QLGzDWfHCiJ
Score

7^/10
- Loads dropped DLL
behavioral22
- Target
  
  main.pyc
- Size
  
  20KB
- MD5
  
  9f18589ea99bc9182ca6d2e6b8b4b1fc
- SHA1
  
  c9055fd79592ee3c92f229464eb2b6f9092e83b5
- SHA256
  
  af84e098284297a8645a5d25865157d13cf9d40c2738af0c2f30e1952137ac70
- SHA512
  
  d9b664ec2198ca3f787d43b79d2f02c243de6178c273766465baed607f6c17dfceba7c16375e7ae133e21ce11f61f853a105dd7670b8eb4397e9d5c42b3c978c
- SSDEEP
  
  384:auRHWbdFyZ3GgxkFG+RrhK5DXKN6XtMRb3YXwEVHiEjPqloHe/h6aiG4PWP:auRHW5rs+RrOX/9L5juoH8h6aiHPWP
Score

3^/10
behavioral23
- Target
  
  settings/ReadMe.txt
- Size
  
  235B
- MD5
  
  e75719cf9f88c6fb971fd0826121831d
- SHA1
  
  880042dc1d21a662b1274af46ab74b0e4e231b85
- SHA256
  
  6ae5a869fb4650be33fed5115ab918959da0c2a1c35edd3a0e975f23ba93d35e
- SHA512
  
  057f253dcf6ef49922d7508df352881d590abe9a83382956335307077878b68e91cfb7a4ff58f15849c52e2482cd764e99bf3285a3cdad125977592e2a6493e2
Score

1^/10
behavioral24
- Target
  
  settings/Settings.txt
- Size
  
  17B
- MD5
  
  654a348d1f3109770769a4b67bbe7655
- SHA1
  
  60aca5db5cc69324ac7502868e9aa3689ee87f4e
- SHA256
  
  1d1707092f08de109c69836d303d70751b2a25a3920d1db5d441fd4b257b8d0e
- SHA512
  
  6365a79125312feb68f75595344265711e5d24627672a7fdf2d93ed2725f1b1962b9ace6be8394eb7a8d1ae541b3380f2068427564f024105b35f314997ad3bb
Score

1^/10
behavioral25
- Target
  
  settings/inaccuratecolorconfig/Target.png
- Size
  
  266B
- MD5
  
  08d7b06d516615c3421503bd11217b47
- SHA1
  
  b49aeae897e4ec96c4b2b9d75ff93f0b388b936d
- SHA256
  
  081496c82601523ba070ad794526c797523446579bf7fb036ebcdde8b4939302
- SHA512
  
  88399d7242fb858e456b377a4c9b4c9b07329b60640fb2060370767f345b514e74c319d6defa930345fd8f874a6dbedf3a085a463f84d4858b813f06f39e4167
Score

3^/10
behavioral26
- Target
  
  settings/inaccuratecolorconfig/obama.png
- Size
  
  69KB
- MD5
  
  c8f8cb1a054ad12231db965f956a6358
- SHA1
  
  2ef63c91fcead4640ff9ca0c66d4e138b86113b0
- SHA256
  
  403c14debe9c0b35567cf2035ccec513f416b9cb4cf576b38d649ffe3580ad2b
- SHA512
  
  79a98cf4dfc75e92aefad9df7fdc7cc4e919f11afb371b5605ee2a60be0cf3ca3c97be7d6f5589aefef2e57383936c572ebcc051040e0c0255bb77efba575acc
- SSDEEP
  
  1536:icvhBgMkyrEarTTikjCadba7xQMsSjF4lET29FBP:icv/PrXZuatayW6r9Ft
Score

3^/10
behavioral27
- Target
  
  storage/Font.otf
- Size
  
  124KB
- MD5
  
  722c5f898bbca8b2eb3fce0287688326
- SHA1
  
  acd8beda0d3d0d108f94092cece27d1ab74ddada
- SHA256
  
  88b3795f97ee469c9e30430b54d35c11cdf28c96e3e71d0122e37e6bf025c0b8
- SHA512
  
  1117e3a9c2645e1446e7107f2898e3937a36221be53a747aaa2580129adebf117ae6777e2973e8a886c5e116a510fecc22640cc47352f738785d78c94ae2bb53
- SSDEEP
  
  3072:fsr06ylOmoz++ieHRB5RTqpYPBRbaV+LSPz8q2WVzVZoDyg67mZ3KcKv4LLEpPW:Er/JHJ1rePP2WNwDx7K7EEA
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral28
- Target
  
  storage/Watermark.otf
- Size
  
  9KB
- MD5
  
  037f501dc4690b7a7396e0560a8d89a8
- SHA1
  
  9d63c2bad28843b15b3e75d6b155491bcd19db9e
- SHA256
  
  e999bf7b0d02f13298e7fb77a97352ff192c9ea5718e3231a58e754edf835ed9
- SHA512
  
  b17f54749c683abd0c8a0d97015c7d2809c2756ec75955320b05cf644677d6af647b16d2f0ac221aa5b32e4cd97b67a68b470d3155daa047d6243e96819288e9
- SSDEEP
  
  192:R+Ot88hkuUVfBbvURK6h1LCLXSuXZqrIPz8hhQ1:RDWfURKPTSupqrIPz8Q1
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral29
- Target
  
  storage/WatermarkMoon.png
- Size
  
  94KB
- MD5
  
  546778b411343be57b8108f023e01e02
- SHA1
  
  30c57dc40dc86378db1e40012f39755feb514955
- SHA256
  
  8d4f9e833fa31e1a0dcdbb1414c90d1ccb906590aceb324599d86d7fc3eac90f
- SHA512
  
  bd793d49672a8bac523bcdf845b2d124c24fdf83002a2fa26a4627f9d59bf759a417960ddada4911fe56236f7619c91f3470adfc430ba47c998bb784956ac3ce
- SSDEEP
  
  1536:lshmibNZ0P3+BXA2ghciXYmVfwYyDPbvYPGValxEYxQEmuLbTCFv4QfG8dZoufgz:lsNZ0P3D2otXCDPbdolxE4hOFv4QfBd0
Score

3^/10
behavioral30
- Target
  
  storage/theme/Background.png
- Size
  
  426KB
- MD5
  
  086fde4d6881d818f5698cd29fe90eb7
- SHA1
  
  a621ee9592a423f80d67a15d59326ae73a7a2cd7
- SHA256
  
  fbc951d35370e6755b95aeace9f3b5f98ef164e397ad87e1c0a926b51d24ef5e
- SHA512
  
  eb1aa32420d71c59cacbeed4ec69835430b8876cb592c3f646084541f1f24fd28f1697ba265fbb35b2365f95e2cb1e8e65ca00fd6d3815f3c207c688e37d9547
- SSDEEP
  
  12288:rkTzsLab8zhpCOSp7CuXjLVRLjuR4A40H9smD:rCs2IzjVSp73TLDLjrR0dse
Score

3^/10
behavioral31

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

Checks computer location settings

Checks computer location settings

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31