9595d2a8ca21b1a1eea75058f16ab7de4db9da720c30c77bb8eb6313df88bade | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fixedskibiditoiletclicker.rar
Size

14KB
Sample

240221-qj2znagd25
MD5

28970ba4e59c17673e1318926bdca5e9
SHA1

9c4988a0342e8348e0846ffd6624c5db8da7e60b
SHA256

9595d2a8ca21b1a1eea75058f16ab7de4db9da720c30c77bb8eb6313df88bade
SHA512

6e046d1c6e7398de7c0b6048fbd7b5cf3c65f0eac8296333d61fa11b23da469c932eaf629ee75c8b081f161be0532ae86f6e6b35bb651b3f3cec7a7064fb52ba
SSDEEP

384:hmEThIV2ZADqUR939jae+wxB7O1JO6XW2Gzr:d+YZgqUR9tue+wxB7O1JRXWF

Score

7^/10

Malware Config

Targets

- Target
  
  fixedskibiditoiletclicker.rar
- Size
  
  14KB
- MD5
  
  28970ba4e59c17673e1318926bdca5e9
- SHA1
  
  9c4988a0342e8348e0846ffd6624c5db8da7e60b
- SHA256
  
  9595d2a8ca21b1a1eea75058f16ab7de4db9da720c30c77bb8eb6313df88bade
- SHA512
  
  6e046d1c6e7398de7c0b6048fbd7b5cf3c65f0eac8296333d61fa11b23da469c932eaf629ee75c8b081f161be0532ae86f6e6b35bb651b3f3cec7a7064fb52ba
- SSDEEP
  
  384:hmEThIV2ZADqUR939jae+wxB7O1JO6XW2Gzr:d+YZgqUR9tue+wxB7O1JRXWF
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2
- Target
  
  SkibidiToiletClicker.exe
- Size
  
  16KB
- MD5
  
  517fb3a4b17748c0ac9c9f1b5d198027
- SHA1
  
  4d2a7e0b4618a44907288121f16404130a4e6e0d
- SHA256
  
  a7cdf9ae9e5bb5764952ff63d48fc1a4873fda517dc9361bc83ec76a3e4ce2ec
- SHA512
  
  f68f67b744856062916ae12402f7ee437661b284137e4dac5ff38db16a93baa25b869bdc3fe0346048bf1c7c15e5abfb2a2d70544b56409ed437eaafa9392195
- SSDEEP
  
  384:127oWlfanZ6kyl+aFHnVv0eVauokwdwAYsiASBIm36iDuY53XQIuN:/Z6/L0eHlBIm3LuYuN
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral3 behavioral4
- Target
  
  SkibidiToiletClicker.exe.config
- Size
  
  189B
- MD5
  
  9dbad5517b46f41dbb0d8780b20ab87e
- SHA1
  
  ef6aef0b1ea5d01b6e088a8bf2f429773c04ba5e
- SHA256
  
  47e5a0f101af4151d7f13d2d6bfa9b847d5b5e4a98d1f4674b7c015772746cdf
- SHA512
  
  43825f5c26c54e1fc5bffcce30caad1449a28c0c9a9432e9ce17d255f8bf6057c1a1002d9471e5b654ab1de08fb6eabf96302cdb3e0fb4b63ba0ff186e903be8
Score

3^/10
behavioral5 behavioral6
- Target
  
  SkibidiToiletClicker.pdb
- Size
  
  33KB
- MD5
  
  eacadac9610d69ef9741cf467c29f709
- SHA1
  
  dd2194999eed1b03d5822e01d889efc5ef40e8db
- SHA256
  
  14cd73a467255e8cc4d228bdb38765f15529d9b4743ff3a36f1077b29c4f8749
- SHA512
  
  55d18ab9a3697b8411feaab3324e8438f1140389615f152692b2f2796a0365f87d34bca526283451a4e77a0383baa7d17ddbb4686ee6073e8588c58a2b96d56b
- SSDEEP
  
  384:6u+zc+zuy28txu4vECqYgxpHX5o3y2txCf2a:6u+zc+zuy2uxWKy2txA2
Score

3^/10
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8