577ebca3d2c49cd3ef9130d3ffc0333369877a92e451c25e3ddd9be4d0860254 | Triage

Resubmissions

25-02-2024 00:35

240225-axtx7shb69 6

25-02-2024 00:28

240225-astrmsha99 6

Sharing

General

Target

GoDm.zip
Size

7.7MB
Sample

240225-astrmsha99
MD5

1694af8e1f3ef431ce9e8b3922491483
SHA1

a507c1243ce68e5b403f66c6178d5325e230b603
SHA256

577ebca3d2c49cd3ef9130d3ffc0333369877a92e451c25e3ddd9be4d0860254
SHA512

8af5ba153b1d658660be1500ab04e080f360934a07e5d03fdde65e7f273aa8e7b0930679852a6b724273b111e4b7562c1ce711e6c90dfa82208707c1bbc98bf9
SSDEEP

196608:mwW+gSbSSxaqah9Qo1bcBtC9cm2PQsZyCveLMRMg1fi8:a+/RwP91aE2PQsYCmMF68

Score

6^/10

Malware Config

Targets

- Target
  
  GoDm/source.exe
- Size
  
  13.5MB
- MD5
  
  5df1ae0ac565c650821135785b158021
- SHA1
  
  25d21ca9c049a6ab821734093a58c1b9fd7789e4
- SHA256
  
  43f604cdb1bc8ceab09dfffe2198e7d7829712ab834a1c5c7fe5171c8c5368fb
- SHA512
  
  fc734695cdc694e218675aeea07386e35a47b2f23a71608ef07be10f5a1e80dcc24b6177d28597a74a06cb4a65cab5506bfc5d197a3a420f61b6a52e29aa1da0
- SSDEEP
  
  196608:sZhXsph78ipqLZINPMTQB6YoTu19lcviP1sfGbbU0:7L78BLZdTQB6Yok9lco1P3
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2
- Target
  
  GoDm/src/client/client.go
- Size
  
  1KB
- MD5
  
  8c5935665dadb125eeb400e1766820ef
- SHA1
  
  c2b30d5e35c136f6e95cdab3848e152f55bc1ffe
- SHA256
  
  330161f9e8d0e99532f15a3d62914380ef45184795956718627f6655216eae58
- SHA512
  
  2ebe65e23e0050894424e0d786efb90f09637a0e3ef312b8731b2b6ad7d0de39173bc3f2916644f269ea39b4d26147b7e2d913c8fa6ea59fc0c7587221c54b4e
Score

1^/10
behavioral3 behavioral4
- Target
  
  GoDm/src/client/connect.go
- Size
  
  7KB
- MD5
  
  0bfb48edda99afc6047229f4898e9108
- SHA1
  
  ac1118cc36fbfdb53cc687103f5160ff01748f88
- SHA256
  
  54da4513e9449ca20ac8a1438adc17ea28565c68ff8245e56a0ac577ec7e297f
- SHA512
  
  7b2abc95d4f9941ca84b50131be28a88863fd3978d09303352200e32dbf69adf6b570e1cc6c4175429a9cddb72719e0afbbd18f4db16e594d53aea8f50297b55
- SSDEEP
  
  192:GbEY4OEWJcJHgO5ZPG6t/PoDvtShlcitjcPb:gEY4O0wvtST/job
Score

3^/10
behavioral5 behavioral6
- Target
  
  GoDm/src/client/cookie.go
- Size
  
  2KB
- MD5
  
  3187ec86feb1003f3e2050822239a901
- SHA1
  
  692e2f65c85eae13800030870786f7ff665ec55c
- SHA256
  
  85fc39bcaf3a75383c0f5229a5e5081ee4cc8998feb9c6fd2efef504333c50d7
- SHA512
  
  74e3a8c884837ce8d310f1472248de66cae037e6343cff37285d5ca866e82f58ba58aa9a5d67f903bfe474a1e7abfe7a7331912792ebd3d23b202e51a8f4c744
Score

3^/10
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8