dd9a95436bbce09e0049ab8a8c59069ae43b4b4e400f41ab8cad933b2cde69fd | Triage

Sharing

General

Target

Complex_Tool.zip
Size

25.1MB
Sample

240306-syaj3abe35
MD5

6263760c03622bfdba07c01fbe3429f1
SHA1

cfe065a3b7e7fbbec4b933b27f63dc6c56e54f85
SHA256

dd9a95436bbce09e0049ab8a8c59069ae43b4b4e400f41ab8cad933b2cde69fd
SHA512

e8bf96eadd45da1e01ad2d1b1530024305cd80034f57eb73775bca91e66c29c99fa196e0ec1ff69ce9e86150abc848d8be4835ff45678656f634fd92e90219bc
SSDEEP

786432:7c/zresPZ0HfPFZu2soY7loJLM1pZKk+lM8E4ajvH:7KfesRoXFRsocCM1pZKZlE4avH

Score

7^/10

pyinstaller

Malware Config

Targets

- Target
  
  Complex Tool/Complex.exe
- Size
  
  25.4MB
- MD5
  
  7100a9a2a3b3efc89f4883011d67af00
- SHA1
  
  517ec282fe57541abdbce0fe623a69e430e71664
- SHA256
  
  7472eaa82e2304902f2ca359c19ea712cea58f17c3fe61b171cc6d8cea5bb2e0
- SHA512
  
  88965c55640d34cacce3c1c5a6cc6a346e98b4f3ab80866ee68bbfb3a99785b254d15bda4c6a57150e3dc0a52fafab3d7c8addcf7df0e2b21e4de7e6ba303bcd
- SSDEEP
  
  786432:1yjK3po69FE/JMs1xJJcpGqaDCpd1KW8LWg18keEV:s4o6rE/7xLcpGTWpdQWYxxeEV
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2
- Target
  
  reg_backup.pyc
- Size
  
  6KB
- MD5
  
  10fdb4b38c53a4831819705aab9f4c2e
- SHA1
  
  211afce3552e094054b4a2ceaa4e54bc4babb93e
- SHA256
  
  0209a0220ed750582b41b74187203a501c333f2bbc797d81976bb368a43597aa
- SHA512
  
  4d5b6204f09c01e88ed47c20a1fb0da4dbee1d1be5112417234735eafaa534d874f3a9efb1174d37cb6c80cd483406c16575400801a1f540d126680fa8ce427d
- SSDEEP
  
  96:q+CNsheuyFqytMAdchmmnf53CGKzGA6NL+8qGtQsGR7ds2WrReMFYQVGA:VCaheltMZm85CW+8h5Cs2IEMFYgF
Score

3^/10
behavioral3 behavioral4
- Target
  
  Complex Tool/proxy.txt
- Size
  
  36B
- MD5
  
  94df667276dc43a2a3d40004fb5b6bd3
- SHA1
  
  e7bd58a8de31e726dbf3e6a3715848f70e08fcf4
- SHA256
  
  a3addc81d967c37d1a8248b4bca69f01f10adf2d3657016e5d264e6d9de6604c
- SHA512
  
  5cd45cd645e434b5ea1ebe4594f1b8c3e4c6047b30e3d1ebbc0cbcaccc79437fcfe61fed07a1e9c37c4937a298569c3e1b2e9e1f4f7bfe1a1aac9d504078a530
Score

1^/10
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6