Overview
overview
10Static
static
11568391f1a...07.exe
windows7-x64
101568391f1a...07.exe
windows10-2004-x64
4Bredfuld/d...on.asp
windows7-x64
3Bredfuld/d...on.asp
windows10-2004-x64
3Bredfuld/tropes.doc
windows7-x64
1Bredfuld/tropes.doc
windows10-2004-x64
1Bredfuld/u...ns.app
macos-10.15-amd64
1Pukkelens/...er.deb
windows7-x64
3Pukkelens/...er.deb
windows10-2004-x64
3chatwood/Semisoft.ps1
windows7-x64
8chatwood/Semisoft.ps1
windows10-2004-x64
1General
-
Target
1568391f1a4c822053eb04483a5359a67eec5756df1531a864b375bee6ca8f07.exe
-
Size
1.1MB
-
Sample
240323-chldmaca87
-
MD5
701b3dd6fbb063581fa4eb342abac2cb
-
SHA1
7740374fb99c3d2ad75d6f033d7330fa56cceeb2
-
SHA256
1568391f1a4c822053eb04483a5359a67eec5756df1531a864b375bee6ca8f07
-
SHA512
7091c0179d8dcbdb584b52972a3e31866fac670b8feea5083f616d7c9caa9a204ed38ad8d9288b6897f9307549377177a0b548421a57cf05e24b7b3723f0f075
-
SSDEEP
24576:rTfbeKb/ar6aSQ4z8VhAIOirpVq9PgUq1RkNbXuoQ/:rbrbvaSwh3OirBlTSbXs
Static task
static1
Behavioral task
behavioral1
Sample
1568391f1a4c822053eb04483a5359a67eec5756df1531a864b375bee6ca8f07.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
1568391f1a4c822053eb04483a5359a67eec5756df1531a864b375bee6ca8f07.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral3
Sample
Bredfuld/depopulation.asp
Resource
win7-20240319-en
Behavioral task
behavioral4
Sample
Bredfuld/depopulation.asp
Resource
win10v2004-20240226-en
Behavioral task
behavioral5
Sample
Bredfuld/tropes.doc
Resource
win7-20231129-en
Behavioral task
behavioral6
Sample
Bredfuld/tropes.doc
Resource
win10v2004-20240226-en
Behavioral task
behavioral7
Sample
Bredfuld/udlovningens.app
Resource
macos-20240214-en
Behavioral task
behavioral8
Sample
Pukkelens/Sprattled/Glumpier.deb
Resource
win7-20240319-en
Behavioral task
behavioral9
Sample
Pukkelens/Sprattled/Glumpier.deb
Resource
win10v2004-20240226-en
Behavioral task
behavioral10
Sample
chatwood/Semisoft.ps1
Resource
win7-20240221-en
Behavioral task
behavioral11
Sample
chatwood/Semisoft.ps1
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
1568391f1a4c822053eb04483a5359a67eec5756df1531a864b375bee6ca8f07.exe
-
Size
1.1MB
-
MD5
701b3dd6fbb063581fa4eb342abac2cb
-
SHA1
7740374fb99c3d2ad75d6f033d7330fa56cceeb2
-
SHA256
1568391f1a4c822053eb04483a5359a67eec5756df1531a864b375bee6ca8f07
-
SHA512
7091c0179d8dcbdb584b52972a3e31866fac670b8feea5083f616d7c9caa9a204ed38ad8d9288b6897f9307549377177a0b548421a57cf05e24b7b3723f0f075
-
SSDEEP
24576:rTfbeKb/ar6aSQ4z8VhAIOirpVq9PgUq1RkNbXuoQ/:rbrbvaSwh3OirBlTSbXs
Score10/10-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
Suspicious use of SetThreadContext
-
-
-
Target
Bredfuld/depopulation.asp
-
Size
1KB
-
MD5
9dc829c31369a1fb285618a4c58f3181
-
SHA1
2706b324245b3ce469c3f9d8d35d97f392594d58
-
SHA256
45820ae7562dbe707f7393eb65caba8ff3ab61f9c76a650afeca5202cb53200f
-
SHA512
b260627dba4be927fe11616b1068b485d5d984d791b024ac0cfca0754ca01593e92d0e769876e5b35eaf5260ee03689af56e4a12f08b4f2378dba8955568539a
Score3/10 -
-
-
Target
Bredfuld/tropes.doc
-
Size
1KB
-
MD5
9549f27d380527ded73a50063892a61e
-
SHA1
2db5780e6e0cecc70fc55ece9fd0c51f9fe16647
-
SHA256
a1ce933545dc9b475bb5292197086b3311d2b89d6109740ac5d7a846e58602bc
-
SHA512
ddf2406808f68034c5b761c06dab0278f9e7aff3412628c3dbd6bdbcdfcea907f0b15c8d69710fa90520e4f5e20a982b73c47e0b575ee2e369780ede0ec57d4b
Score1/10 -
-
-
Target
Bredfuld/udlovningens.app
-
Size
1KB
-
MD5
19efa8d6cdc602a55a4ff019facde55d
-
SHA1
a045deca2f76b2a21e3ddd0f9a725a7524e5b4e9
-
SHA256
56387d3006e1cf2422296aaeb3a6428f9c3cbfb734d66e5bb2b4d26981a03507
-
SHA512
bd18acb252a7ae98ae1dc92bb7e5f88b3696f6d5e2eedd83cc8be56ebfb9690d5d4e56ceb7c8e2cc26373a919afd2460b7b3c3aeda832346f5d0fbd17b68c9e0
Score1/10 -
-
-
Target
Pukkelens/Sprattled/Glumpier.deb
-
Size
1KB
-
MD5
76de2d8cf74f4347837f989b070b87cf
-
SHA1
a30002d6d2fa6f67a8df28f9cc3ce07ab340a0d9
-
SHA256
8d380165f1bb8a3e646e07c3f7bbf0c1a887e0734f654a5116c88158c6c27d66
-
SHA512
7a89063ece68d47870d958328aa94f98b9f74cbdb44641a2cd2547728b0e079733d6f0d696878a3a68327985d8582fdfaa4ea00bc6208d66592ffef29fb519b8
Score3/10 -
-
-
Target
chatwood/Semisoft.Por
-
Size
57KB
-
MD5
0750e59723dfb561090d74f4873510c6
-
SHA1
9495da7a4878a22f914fd8aec2b4e797a1373d55
-
SHA256
21ca7c012ab5e6338ec4b18628fc6bf2eeb4ec3779cefed6fc0077b9aa89e897
-
SHA512
6c5de77df1ffafa9d533bcdf422e51ff8669f90ea5e4cb85269dc5d7d6a1e5ca37728b375d462afb91467a77b58be864ec5d5596c52a4bfa7a7db4d510bbe59a
-
SSDEEP
1536:8s075ZKIeOD9dFHyAPaLB67ZxoUxluTe5ANU28+ABdP1yPqT:8smYZOD9TSN67ZPae5AGBdgqT
Score8/10-
Modifies Installed Components in the registry
-