50fe30911ec9e239a214bb1ab496c674d019a42c0638dbc4d3a9872bc269fa39 | Triage

Sharing

General

Target

timetravel23.exe
Size

29.2MB
Sample

240326-jelnjsgg41
MD5

1d54ca3d8128b07ba7b610ed9110d19c
SHA1

40204fc8f008089409e448bec654cfbcf8b27f6d
SHA256

50fe30911ec9e239a214bb1ab496c674d019a42c0638dbc4d3a9872bc269fa39
SHA512

a6acf3fc9a64dd8fc33cb1f00e40b8e34b813e2d5303f93448cfa7380e040daf20377fcdb2c8f4ab0baaad2bc79c9fb5b2659fde7af90388c159a9cb720e192a
SSDEEP

786432:89dB5ZdQjPVFfdoeUEI9JzW8p2EkzBT3ijww:8XB5ZIPDfJIrzWA2vBOjww

Score

7^/10

pyinstaller

Malware Config

Targets

- Target
  
  timetravel23.exe
- Size
  
  29.2MB
- MD5
  
  1d54ca3d8128b07ba7b610ed9110d19c
- SHA1
  
  40204fc8f008089409e448bec654cfbcf8b27f6d
- SHA256
  
  50fe30911ec9e239a214bb1ab496c674d019a42c0638dbc4d3a9872bc269fa39
- SHA512
  
  a6acf3fc9a64dd8fc33cb1f00e40b8e34b813e2d5303f93448cfa7380e040daf20377fcdb2c8f4ab0baaad2bc79c9fb5b2659fde7af90388c159a9cb720e192a
- SSDEEP
  
  786432:89dB5ZdQjPVFfdoeUEI9JzW8p2EkzBT3ijww:8XB5ZIPDfJIrzWA2vBOjww
Score

7^/10
- Loads dropped DLL
behavioral1
- Target
  
  time machine.pyc
- Size
  
  23KB
- MD5
  
  42857f84b4eaa6ae3c83dbb7189084ea
- SHA1
  
  436404ad9efd7fe965651090b1451fa1be27573f
- SHA256
  
  28bc595885ef8b7b0ca1986290e1a76680c1dd76f61f78f483fc73765bf27ee1
- SHA512
  
  eb3de97bf04ff1fbcf73f15bcc3b8c9386377a31fe471d69b0534209750aadc66589ee16fdcd60b66fe829377bc54778088c6ae1ce0a336e6f135fb25e1c4a53
- SSDEEP
  
  384:qLQKYJmzSjk1vaqAzNQf8CtcgW3PV+1fem69uGyNVphzCvpldFtlgHr8d8MI:q0KYJKf1vaDzNQf8Ctc61fh6IGyNVphJ
Score

3^/10
behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2