Resubmissions
10-05-2024 15:02
240510-sern8sbg4x 1030-04-2024 20:30
240430-y99q7aha99 1030-04-2024 20:29
240430-y9v8ssha94 1024-03-2024 03:37
240324-d6v4eahc35 1024-03-2024 03:36
240324-d6c8labh2t 1023-03-2024 01:22
240323-brmglsbe62 1023-03-2024 01:19
240323-bpxjsseb5v 1023-03-2024 01:18
240323-bnxheaeb4s 1023-03-2024 01:17
240323-bnjxbabe28 10Static task
static1
Behavioral task
behavioral1
Sample
630a2dec95e68275d9ffa75a87d4809a9da69434c30cd95099fa401c9e4c9ebc.js
Resource
win11-20240221-en
General
-
Target
630a2dec95e68275d9ffa75a87d4809a9da69434c30cd95099fa401c9e4c9ebc
-
Size
475KB
-
MD5
b3466ea07dc83fcce7eeba0dbc1c8aa6
-
SHA1
1aeee7429327e3241fccddd4b2f06b8e6fb67ab8
-
SHA256
630a2dec95e68275d9ffa75a87d4809a9da69434c30cd95099fa401c9e4c9ebc
-
SHA512
f8b4f246112071a91c125ce6384a0b86d6be1b9631801e53e9e4f2b8027b4b5acd9aedf8b4fab7c7dd69e1729f1ef27b2aeea1f940ffceaf8f2abd320fbb57e2
-
SSDEEP
3072:VVnNs48OW0kT97kFUxj3mKMABR3R7DyWvEXNemiS0KPMID5whT0bMNj69wrVRs3f:nbkw83zLJtMtwmIj6ERCcXhe
Malware Config
Signatures
-
AgentTesla payload 1 IoCs
Processes:
resource yara_rule sample family_agenttesla -
Agenttesla family
-
DarkTrack payload 1 IoCs
Processes:
resource yara_rule sample family_darktrack -
Darkcomet family
-
Darktrack family
-
Detect LockFile payload 1 IoCs
Processes:
resource yara_rule sample family_lockfile -
Detected Mount Locker ransomware 1 IoCs
Processes:
resource yara_rule sample RANSOM_mountlocker -
Detects Surtr Payload 1 IoCs
Processes:
resource yara_rule sample family_surtr -
Detects Zeppelin payload 1 IoCs
Processes:
resource yara_rule sample family_zeppelin -
Lockfile family
-
Processes:
resource yara_rule sample m00nd3v_logger -
M00nd3v_logger family
-
MassLogger log file 1 IoCs
Detects a log file produced by MassLogger.
Processes:
resource yara_rule sample masslogger_log_file -
Masslogger family
-
Matiex Main payload 1 IoCs
Processes:
resource yara_rule sample family_matiex -
Matiex family
-
ModiLoader Second Stage 1 IoCs
Processes:
resource yara_rule sample modiloader_stage2 -
Modiloader family
-
Mountlocker family
-
Shurk Stealer payload 1 IoCs
Processes:
resource yara_rule sample shurk_stealer -
Shurk family
-
StormKitty payload 1 IoCs
Processes:
resource yara_rule sample family_stormkitty -
Stormkitty family
-
Surtr family
-
Vulturi family
-
Vulturi payload 1 IoCs
Processes:
resource yara_rule sample family_vulturi -
XMRig Miner payload 1 IoCs
Processes:
resource yara_rule sample family_xmrig -
Xmrig family
-
Zeppelin family
Files
-
630a2dec95e68275d9ffa75a87d4809a9da69434c30cd95099fa401c9e4c9ebc.js